$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165303a3a2f34332d3438203d3e203136353039.roa File: 326130613a363034303a313165303a3a2f34332d3438203d3e203136353039.roa (raw, json) Hash identifier: 7KM8pV+bRFQ+nSRC7wE98lIHJ6EuNDV7Y4EsUdbo+nk= Subject key identifier: BA:E5:DA:08:FB:22:D4:ED:59:AA:68:70:5A:23:3E:40:BF:EE:33:1B Certificate issuer: /CN=F900BC65E2B646EBAC472A5DEA12BDB0011AC122 Certificate serial: 114B428DEFA2AF7D50F907703998B9C81CA146C5 Authority key identifier: F9:00:BC:65:E2:B6:46:EB:AC:47:2A:5D:EA:12:BD:B0:01:1A:C1:22 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165303a3a2f34332d3438203d3e203136353039.roa Signing time: Thu 22 Aug 2024 02:38:57 +0000 ROA not before: Thu 22 Aug 2024 02:33:57 +0000 ROA not after: Thu 21 Aug 2025 02:38:57 +0000 asID: 16509 IP address blocks: 2a0a:6040:11e0::/43 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Oct 2024 08:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:4b:42:8d:ef:a2:af:7d:50:f9:07:70:39:98:b9:c8:1c:a1:46:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F900BC65E2B646EBAC472A5DEA12BDB0011AC122 Validity Not Before: Aug 22 02:33:57 2024 GMT Not After : Aug 21 02:38:57 2025 GMT Subject: CN=BAE5DA08FB22D4ED59AA68705A233E40BFEE331B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e3:cb:72:9e:f4:0a:67:00:6b:26:13:08:74: 92:c5:bb:59:b1:1e:2b:0d:92:3e:99:68:74:f9:96: 97:ba:8b:f9:8f:a1:35:e3:ea:cd:42:f3:fc:f2:01: d6:c6:e2:f7:be:80:92:29:f8:02:b8:1f:04:ac:4a: aa:42:a5:b3:25:31:ca:7b:37:a8:28:75:bd:54:9e: 3e:4b:66:0f:68:12:b9:9b:14:0f:52:b2:40:0f:a6: 59:7d:28:2d:e5:b3:82:1e:5e:e2:49:bb:b4:38:9c: d8:4b:47:98:5d:22:6a:8c:74:71:b6:dc:a8:34:75: 57:1d:78:6e:a7:fc:84:a0:89:ad:af:1a:d8:b5:d2: 18:0e:0f:9d:5b:52:2d:2c:41:b4:54:ec:4d:29:f4: e7:f4:5e:97:b8:41:42:13:09:9f:29:29:3f:f7:07: 88:b2:ab:c6:3a:35:78:e0:7d:d9:01:bb:18:d4:e5: 98:de:e3:86:8d:45:c6:26:63:35:93:55:f3:00:9e: 73:f7:0e:c5:3a:fc:68:28:f6:a2:2d:b8:c1:fb:d7: ff:e8:55:c3:7b:7a:64:d4:d6:1f:7e:cd:5b:5f:70: a9:ad:fb:e3:dc:37:94:d1:8c:f3:fd:71:5c:75:04: 6c:bf:a6:8e:41:e4:fd:7a:0c:db:d5:ae:49:48:ba: 5b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E5:DA:08:FB:22:D4:ED:59:AA:68:70:5A:23:3E:40:BF:EE:33:1B X509v3 Authority Key Identifier: keyid:F9:00:BC:65:E2:B6:46:EB:AC:47:2A:5D:EA:12:BD:B0:01:1A:C1:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165303a3a2f34332d3438203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:11e0::/43 Signature Algorithm: sha256WithRSAEncryption 2a:92:ee:1e:f6:14:0c:4a:ba:3d:e9:1f:90:5a:3b:a9:1c:1b: e3:13:06:c4:24:89:2d:3b:99:7b:56:62:82:b3:5d:a4:58:19: a1:88:df:9b:6d:30:04:a6:b3:ab:36:dd:07:cd:f5:bd:72:46: 31:54:20:d3:c2:d6:f4:17:c3:b0:1f:a2:11:a4:ba:e9:c2:84: a9:af:3b:e2:6a:7d:af:56:51:07:a2:f6:2f:33:10:44:bc:9d: 65:ba:34:be:ce:d3:84:bf:7d:37:be:58:c1:47:d7:47:8b:55: 3d:4c:c6:e5:62:6e:70:8c:23:17:98:96:8b:2d:fe:3d:c3:3a: 75:1a:74:04:54:36:aa:67:b9:0e:cf:4a:65:5f:9f:00:ed:fc: e4:72:fd:17:6e:1f:e8:ec:ff:a2:95:7c:93:9b:17:e0:43:96: 28:eb:ca:ac:07:1f:4c:83:54:dd:7c:bb:8e:78:6d:6e:ff:4b: d8:b1:bb:bf:ba:42:44:4a:55:42:b9:c7:d8:8b:d3:34:2a:19: fe:ad:9f:ff:26:2c:16:c0:27:c2:2c:a1:7d:2e:ba:c2:c1:55: 15:fb:21:75:3b:5a:5a:91:b5:9d:b9:77:e0:35:83:60:b0:03: a9:2b:b4:c0:09:4b:2d:3e:f0:ca:96:a8:a6:26:6f:5e:51:07: 03:4b:ae:4e -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUEUtCje+ir31Q+QdwOZi5yByhRsUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkwMEJDNjVFMkI2NDZFQkFDNDcyQTVERUExMkJEQjAw MTFBQzEyMjAeFw0yNDA4MjIwMjMzNTdaFw0yNTA4MjEwMjM4NTdaMDMxMTAvBgNV BAMTKEJBRTVEQTA4RkIyMkQ0RUQ1OUFBNjg3MDVBMjMzRTQwQkZFRTMzMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF48tynvQKZwBrJhMIdJLFu1mx HisNkj6ZaHT5lpe6i/mPoTXj6s1C8/zyAdbG4ve+gJIp+AK4HwSsSqpCpbMlMcp7 N6godb1Unj5LZg9oErmbFA9SskAPpll9KC3ls4IeXuJJu7Q4nNhLR5hdImqMdHG2 3Kg0dVcdeG6n/ISgia2vGti10hgOD51bUi0sQbRU7E0p9Of0Xpe4QUITCZ8pKT/3 B4iyq8Y6NXjgfdkBuxjU5Zje44aNRcYmYzWTVfMAnnP3DsU6/Ggo9qItuMH71//o VcN7emTU1h9+zVtfcKmt++PcN5TRjPP9cVx1BGy/po5B5P16DNvVrklIuls7AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUuuXaCPsi1O1ZqmhwWiM+QL/uMxswHwYDVR0j BBgwFoAU+QC8ZeK2RuusRypd6hK9sAEawSIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzMvRjkwMEJDNjVFMkI2NDZFQkFDNDcyQTVERUExMkJEQjAwMTFBQzEyMi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0Y5MDBCQzY1RTJCNjQ2 RUJBQzQ3MkE1REVBMTJCREIwMDExQUMxMjIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzFiZjhlOTc3LTcyNzgtNDZjZi1hYmQxLTk5Y2QxZmQyYmU0 ZS8zLzMyNjEzMDYxM2EzNjMwMzQzMDNhMzEzMTY1MzAzYTNhMmYzNDMzMmQzNDM4 MjAzZDNlMjAzMTM2MzUzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcFKgpgQBHgMA0GCSqGSIb3DQEB CwUAA4IBAQAqku4e9hQMSro96R+QWjupHBvjEwbEJIktO5l7VmKCs12kWBmhiN+b bTAEprOrNt0HzfW9ckYxVCDTwtb0F8OwH6IRpLrpwoSprzvian2vVlEHovYvMxBE vJ1lujS+ztOEv303vljBR9dHi1U9TMblYm5wjCMXmJaLLf49wzp1GnQEVDaqZ7kO z0plX58A7fzkcv0Xbh/o7P+ilXyTmxfgQ5Yo68qsBx9Mg1TdfLuOeG1u/0vYsbu/ ukJESlVCucfYi9M0Khn+rZ//JiwWwCfCLKF9LrrCwVUV+yF1O1pakbWduXfgNYNg sAOpK7TACUstPvDKlqimJm9eUQcDS65O -----END CERTIFICATE-----Generated at Tue Oct 22 13:48:11 2024 by rpki-client on console-ams.rpki-client.org