$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165303a3a2f34332d3438203d3e203134363138.roa File: 326130613a363034303a313165303a3a2f34332d3438203d3e203134363138.roa (raw, json) Hash identifier: BDvnLpOERWIDq8JIXH11OjnaFN1OB1EXqxx5QPZseLQ= Subject key identifier: 72:ED:83:F8:9D:74:AE:2F:E9:36:2E:59:78:BC:FF:BE:64:23:E0:85 Certificate issuer: /CN=F900BC65E2B646EBAC472A5DEA12BDB0011AC122 Certificate serial: 53375543517DA30A78A60630D4519E7E791BDCFF Authority key identifier: F9:00:BC:65:E2:B6:46:EB:AC:47:2A:5D:EA:12:BD:B0:01:1A:C1:22 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165303a3a2f34332d3438203d3e203134363138.roa Signing time: Thu 22 Aug 2024 02:37:16 +0000 ROA not before: Thu 22 Aug 2024 02:32:16 +0000 ROA not after: Thu 21 Aug 2025 02:37:16 +0000 asID: 14618 IP address blocks: 2a0a:6040:11e0::/43 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 17 Feb 2025 05:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:37:55:43:51:7d:a3:0a:78:a6:06:30:d4:51:9e:7e:79:1b:dc:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F900BC65E2B646EBAC472A5DEA12BDB0011AC122 Validity Not Before: Aug 22 02:32:16 2024 GMT Not After : Aug 21 02:37:16 2025 GMT Subject: CN=72ED83F89D74AE2FE9362E5978BCFFBE6423E085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:99:b7:91:27:3d:f7:5b:d0:49:e6:77:a7:98: 14:b5:df:11:ac:21:f5:88:4c:23:fd:bc:6b:f0:3b: 9e:f5:7a:65:39:c8:cc:4d:bf:fe:ee:a5:82:0b:16: d4:c2:f7:75:a3:ba:22:2e:e1:58:89:5d:28:02:66: 00:7d:58:59:74:07:b5:f3:bf:d8:d4:d8:f4:1d:43: 3d:4e:90:24:88:d8:71:fd:e3:08:85:8a:fd:f5:eb: 6e:6c:bc:bb:e7:03:a7:a0:36:c5:7c:37:46:ce:ba: 95:9f:78:a2:18:81:5a:66:e2:fb:0c:b3:74:86:78: 19:ba:a2:65:e8:95:fe:c7:ea:70:04:0d:c8:1c:71: cd:94:3e:68:98:91:0b:5e:a0:f2:8f:67:6e:06:58: 7e:e2:7b:87:22:47:66:31:74:0a:e1:25:da:4e:9f: a8:de:6b:b5:b6:a3:c7:7e:f8:38:85:5e:10:7e:eb: a4:4a:29:fa:b4:03:24:a9:40:10:42:aa:f2:53:7b: a9:05:a1:41:43:b2:e7:f6:22:b4:a2:73:26:98:17: 0a:f7:d6:ca:51:25:b1:eb:56:54:76:35:f1:52:40: 82:63:e9:a3:01:19:df:e9:e4:19:b8:6f:85:03:50: f7:f2:09:5c:85:90:de:cd:39:a7:da:d8:6f:8a:90: 67:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:ED:83:F8:9D:74:AE:2F:E9:36:2E:59:78:BC:FF:BE:64:23:E0:85 X509v3 Authority Key Identifier: keyid:F9:00:BC:65:E2:B6:46:EB:AC:47:2A:5D:EA:12:BD:B0:01:1A:C1:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165303a3a2f34332d3438203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:11e0::/43 Signature Algorithm: sha256WithRSAEncryption 25:3a:b8:17:a5:4e:25:f7:a2:72:fc:f6:80:a6:a7:24:ea:86: 68:ad:34:41:8c:c9:22:bb:b5:cd:c7:c9:00:24:b1:66:c8:5b: e1:64:af:d1:f2:6d:20:0f:7d:79:ae:96:b5:f3:73:8b:66:81: a4:3b:15:77:2e:af:78:08:06:aa:9e:3f:84:00:d9:6e:69:1a: 3d:db:2b:01:cc:55:1b:69:59:e2:65:08:72:11:a2:fd:09:f2: 17:7e:9d:ab:4a:38:06:10:b1:d3:46:bd:13:f8:6e:b4:35:29: 06:da:06:7a:1e:43:23:3f:32:03:3b:a8:2a:cf:2e:98:64:78: 7c:ea:8a:03:11:a6:ae:ec:26:e4:a0:37:ee:bd:4e:28:c5:20: f7:29:30:0a:6b:40:5b:b2:02:36:27:a3:4f:97:d1:5e:ff:22: 06:30:87:ba:c5:ae:7a:81:7b:4f:37:99:fc:8c:92:6a:21:ae: d7:4e:ab:8e:c6:61:7f:69:33:59:2f:1b:92:e8:89:9e:ea:02: 63:03:4d:f7:67:5a:34:52:1c:68:33:f2:63:d3:dc:c0:38:5e: ae:c1:37:74:3e:69:5f:99:d6:a3:14:aa:e9:2b:0e:66:69:e7: 3f:92:42:a8:3a:ab:a4:fa:28:06:12:d7:9d:12:67:ac:e4:44: 3e:94:f3:8d -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUUzdVQ1F9owp4pgYw1FGefnkb3P8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkwMEJDNjVFMkI2NDZFQkFDNDcyQTVERUExMkJEQjAw MTFBQzEyMjAeFw0yNDA4MjIwMjMyMTZaFw0yNTA4MjEwMjM3MTZaMDMxMTAvBgNV BAMTKDcyRUQ4M0Y4OUQ3NEFFMkZFOTM2MkU1OTc4QkNGRkJFNjQyM0UwODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpmbeRJz33W9BJ5nenmBS13xGs IfWITCP9vGvwO571emU5yMxNv/7upYILFtTC93WjuiIu4ViJXSgCZgB9WFl0B7Xz v9jU2PQdQz1OkCSI2HH94wiFiv31625svLvnA6egNsV8N0bOupWfeKIYgVpm4vsM s3SGeBm6omXolf7H6nAEDcgccc2UPmiYkQteoPKPZ24GWH7ie4ciR2YxdArhJdpO n6jea7W2o8d++DiFXhB+66RKKfq0AySpQBBCqvJTe6kFoUFDsuf2IrSicyaYFwr3 1spRJbHrVlR2NfFSQIJj6aMBGd/p5Bm4b4UDUPfyCVyFkN7NOafa2G+KkGcTAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUcu2D+J10ri/pNi5ZeLz/vmQj4IUwHwYDVR0j BBgwFoAU+QC8ZeK2RuusRypd6hK9sAEawSIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzMvRjkwMEJDNjVFMkI2NDZFQkFDNDcyQTVERUExMkJEQjAwMTFBQzEyMi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0Y5MDBCQzY1RTJCNjQ2 RUJBQzQ3MkE1REVBMTJCREIwMDExQUMxMjIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzFiZjhlOTc3LTcyNzgtNDZjZi1hYmQxLTk5Y2QxZmQyYmU0 ZS8zLzMyNjEzMDYxM2EzNjMwMzQzMDNhMzEzMTY1MzAzYTNhMmYzNDMzMmQzNDM4 MjAzZDNlMjAzMTM0MzYzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcFKgpgQBHgMA0GCSqGSIb3DQEB CwUAA4IBAQAlOrgXpU4l96Jy/PaApqck6oZorTRBjMkiu7XNx8kAJLFmyFvhZK/R 8m0gD315rpa183OLZoGkOxV3Lq94CAaqnj+EANluaRo92ysBzFUbaVniZQhyEaL9 CfIXfp2rSjgGELHTRr0T+G60NSkG2gZ6HkMjPzIDO6gqzy6YZHh86ooDEaau7Cbk oDfuvU4oxSD3KTAKa0BbsgI2J6NPl9Fe/yIGMIe6xa56gXtPN5n8jJJqIa7XTquO xmF/aTNZLxuS6Ime6gJjA033Z1o0UhxoM/Jj09zAOF6uwTd0PmlfmdajFKrpKw5m aec/kkKoOquk+igGEtedEmes5EQ+lPON -----END CERTIFICATE-----Generated at Sun Feb 16 15:43:01 2025 by rpki-client