$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313438303a3a2f34312d3431203d3e20323134393330.roa File: 326130353a646663313a313438303a3a2f34312d3431203d3e20323134393330.roa (raw, json) Hash identifier: DisLBeD5UYoHuVO4itXlxTDbjFdQ+cuiB6NlT84wLk8= Subject key identifier: 5B:0E:F0:2C:98:3D:C9:5B:20:F4:C4:2A:88:0A:80:2D:FA:1F:07:85 Certificate issuer: /CN=A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1 Certificate serial: 1E9966C6CF3C9CA6EC1D56D3A42A07EED5FD6D54 Authority key identifier: A8:45:D8:47:B2:7C:18:D2:A8:C4:3F:47:ED:AA:EE:AB:5C:CC:0B:E1 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313438303a3a2f34312d3431203d3e20323134393330.roa Signing time: Thu 20 Jun 2024 11:11:49 +0000 ROA not before: Thu 20 Jun 2024 11:06:49 +0000 ROA not after: Thu 19 Jun 2025 11:11:49 +0000 asID: 214930 IP address blocks: 2a05:dfc1:1480::/41 maxlen: 41 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.crl rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 18 Sep 2024 20:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:99:66:c6:cf:3c:9c:a6:ec:1d:56:d3:a4:2a:07:ee:d5:fd:6d:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1 Validity Not Before: Jun 20 11:06:49 2024 GMT Not After : Jun 19 11:11:49 2025 GMT Subject: CN=5B0EF02C983DC95B20F4C42A880A802DFA1F0785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ce:61:d2:6a:b0:99:1a:bf:68:8e:4a:fe:51: 4e:9f:96:b0:94:45:a3:b0:b3:3f:b7:c1:95:b8:79: 29:06:14:c2:ab:c1:62:56:f9:1d:a6:ac:d2:a0:c9: 89:fa:ba:f9:97:fc:9c:50:04:c4:60:e8:53:4e:2b: 4e:fb:94:e3:6e:5e:35:77:53:38:3d:4f:18:99:32: 5d:59:9b:6d:e1:36:1c:f1:8a:d6:e1:98:95:a4:77: 3a:0f:3c:02:82:9a:6d:ed:2d:1a:54:b4:34:3c:3d: 50:60:d8:02:d5:54:5c:d7:6e:2c:63:8f:2a:64:1a: ba:87:36:ef:3d:2f:c9:0c:71:76:e1:d8:a5:8b:4e: 71:e0:6a:1c:96:9d:64:19:15:3c:12:20:dd:dd:0d: 14:8e:c5:77:bc:3c:e6:31:7c:82:74:33:09:64:cd: 38:87:35:c3:17:09:90:7d:16:87:1b:d5:57:cd:d7: 55:99:4b:8a:c2:39:25:15:31:49:8b:c6:65:f5:59: c7:c0:3f:7a:2e:73:a7:39:df:d3:2e:99:80:17:e4: 15:d0:71:07:6d:e5:b4:41:ef:c9:31:18:24:f9:20: 60:16:60:43:39:38:e5:92:3e:77:4b:15:74:70:77: e5:5b:37:90:3e:4d:50:c7:14:aa:2a:a9:82:fc:af: b9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:0E:F0:2C:98:3D:C9:5B:20:F4:C4:2A:88:0A:80:2D:FA:1F:07:85 X509v3 Authority Key Identifier: keyid:A8:45:D8:47:B2:7C:18:D2:A8:C4:3F:47:ED:AA:EE:AB:5C:CC:0B:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313438303a3a2f34312d3431203d3e20323134393330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1480::/41 Signature Algorithm: sha256WithRSAEncryption 3a:fe:d0:a7:bb:76:cf:28:23:11:a9:2a:02:43:a3:4a:68:bb: 7c:75:7e:68:ab:da:52:70:cf:00:bf:69:ef:c7:00:16:e3:1b: fc:a0:a5:dd:dd:ac:b2:89:c7:79:9f:ee:6a:65:f9:5c:f5:8a: 7c:8f:f7:70:92:9c:d1:b1:74:39:f8:ed:8c:4c:a3:2a:3c:f6: 86:2e:65:b6:ae:30:5b:08:48:74:bf:8b:aa:3a:be:6f:1a:fb: 6d:7f:06:46:f1:c8:bb:95:a8:e5:ba:36:86:b0:56:22:71:38: c3:72:a0:99:87:4e:c3:fa:25:00:94:65:65:a4:8a:7d:1a:30: 7a:a0:80:c4:3a:1b:53:60:ea:12:e0:1a:f7:42:ee:58:63:b2: 20:9b:75:1d:4d:62:78:61:12:ef:13:98:e6:70:fa:19:1e:4f: da:b1:27:55:83:90:79:dd:49:fd:e3:09:d4:26:24:8e:72:8b: 8a:c9:0e:2c:cc:4c:92:d3:88:4c:6b:05:a7:66:05:b8:21:b9: eb:65:67:79:9a:b9:42:1f:0c:41:61:aa:98:51:f9:c3:d2:34: 9e:af:16:f2:be:6c:d8:cb:b1:a9:f6:61:23:0e:99:18:95:51: 7a:a0:cd:b3:55:0d:25:49:8d:8e:72:5b:3a:fb:7b:df:d2:e2: d6:46:36:22 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUHplmxs88nKbsHVbTpCoH7tX9bVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTg0NUQ4NDdCMjdDMThEMkE4QzQzRjQ3RURBQUVFQUI1 Q0NDMEJFMTAeFw0yNDA2MjAxMTA2NDlaFw0yNTA2MTkxMTExNDlaMDMxMTAvBgNV BAMTKDVCMEVGMDJDOTgzREM5NUIyMEY0QzQyQTg4MEE4MDJERkExRjA3ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXzmHSarCZGr9ojkr+UU6flrCU RaOwsz+3wZW4eSkGFMKrwWJW+R2mrNKgyYn6uvmX/JxQBMRg6FNOK077lONuXjV3 Uzg9TxiZMl1Zm23hNhzxitbhmJWkdzoPPAKCmm3tLRpUtDQ8PVBg2ALVVFzXbixj jypkGrqHNu89L8kMcXbh2KWLTnHgahyWnWQZFTwSIN3dDRSOxXe8POYxfIJ0Mwlk zTiHNcMXCZB9Focb1VfN11WZS4rCOSUVMUmLxmX1WcfAP3ouc6c539MumYAX5BXQ cQdt5bRB78kxGCT5IGAWYEM5OOWSPndLFXRwd+VbN5A+TVDHFKoqqYL8r7mtAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUWw7wLJg9yVsg9MQqiAqALfofB4UwHwYDVR0j BBgwFoAUqEXYR7J8GNKoxD9H7aruq1zMC+EwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWQyMGJlNGMtOGRiMy00NWUxLTgxNjktMGYyZTQwODQx MzJjLzEvQTg0NUQ4NDdCMjdDMThEMkE4QzQzRjQ3RURBQUVFQUI1Q0NDMEJFMS5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0E4NDVEODQ3QjI3QzE4 RDJBOEM0M0Y0N0VEQUFFRUFCNUNDQzBCRTEuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzFkMjBiZTRjLThkYjMtNDVlMS04MTY5LTBmMmU0MDg0MTMy Yy8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzEzNDM4MzAzYTNhMmYzNDMxMmQzNDMx MjAzZDNlMjAzMjMxMzQzOTMzMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwcqBd/BFIAwDQYJKoZIhvcN AQELBQADggEBADr+0Ke7ds8oIxGpKgJDo0pou3x1fmir2lJwzwC/ae/HABbjG/yg pd3drLKJx3mf7mpl+Vz1inyP93CSnNGxdDn47YxMoyo89oYuZbauMFsISHS/i6o6 vm8a+21/BkbxyLuVqOW6NoawViJxOMNyoJmHTsP6JQCUZWWkin0aMHqggMQ6G1Ng 6hLgGvdC7lhjsiCbdR1NYnhhEu8TmOZw+hkeT9qxJ1WDkHndSf3jCdQmJI5yi4rJ DizMTJLTiExrBadmBbghuetlZ3mauUIfDEFhqphR+cPSNJ6vFvK+bNjLsan2YSMO mRiVUXqgzbNVDSVJjY5yWzr7e9/S4tZGNiI= -----END CERTIFICATE-----Generated at Wed Sep 18 12:51:44 2024 by rpki-client on console-fra.rpki-client.org