$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6362303a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6362303a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: dF4lz4b9uILyKiQv5ty5oA8TE3niW+o+umdhEtVVLnc= Subject key identifier: 28:1A:DA:5A:3C:01:0B:0A:3F:F8:C7:8D:72:5F:F5:CE:73:A9:B2:11 Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Certificate serial: 039C27A53254A5657C35ECFD42FCE451A5C001F9 Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6362303a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 20 Dec 2024 19:58:48 +0000 ROA not before: Fri 20 Dec 2024 19:53:48 +0000 ROA not after: Fri 19 Dec 2025 19:58:48 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cb0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:9c:27:a5:32:54:a5:65:7c:35:ec:fd:42:fc:e4:51:a5:c0:01:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Validity Not Before: Dec 20 19:53:48 2024 GMT Not After : Dec 19 19:58:48 2025 GMT Subject: CN=281ADA5A3C010B0A3FF8C78D725FF5CE73A9B211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f5:52:22:b6:aa:21:e0:26:88:88:77:dd:c7: 6b:ce:6f:ea:bb:0b:fb:a6:39:d1:9e:71:a2:fe:93: 2c:0f:4c:66:4e:4e:e1:ad:eb:5c:ca:34:e1:cf:7d: f1:6d:b6:1d:ad:83:28:8c:d2:97:45:39:8c:37:78: 91:3f:50:3d:aa:c8:0a:8d:4d:c6:b4:da:c9:f8:41: 66:cf:bd:58:d3:55:2f:7d:b1:10:4f:11:96:4c:81: 51:dd:6e:d1:88:51:f4:09:0c:38:1a:e2:06:19:94: d1:53:49:32:c9:b8:ec:e4:58:9a:6d:03:81:ad:27: 60:b0:16:da:a8:aa:b1:da:03:95:da:66:96:f5:0d: 6e:9b:d9:bf:32:35:2b:1e:e8:ce:2b:89:99:09:0a: 2f:00:0c:35:54:91:f2:38:4d:cf:12:e6:68:85:dd: 05:2d:7f:75:da:fa:80:bd:02:eb:e9:e1:84:85:7c: 46:24:4c:e4:71:8e:96:c8:74:4b:92:28:bf:cb:f3: c9:5a:83:92:c1:e0:ed:bd:26:dd:d4:0c:08:86:63: ca:d1:b4:5f:75:c4:a0:4d:1d:90:d0:bf:7f:5e:3e: 40:f1:d3:f2:27:d6:27:d7:83:ba:6d:0a:ce:02:5e: c5:0a:34:9e:da:8f:7a:e6:7d:54:a4:74:a7:93:39: 61:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:1A:DA:5A:3C:01:0B:0A:3F:F8:C7:8D:72:5F:F5:CE:73:A9:B2:11 X509v3 Authority Key Identifier: keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6362303a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cb0::/48 Signature Algorithm: sha256WithRSAEncryption 5c:3a:2c:00:18:02:93:12:1e:75:3a:2b:37:9c:87:88:03:0e: 1d:ff:85:2d:18:a5:66:40:23:26:3e:06:65:96:85:4c:c3:6f: c6:21:51:1a:7b:55:b2:7e:93:1a:2d:f0:a9:18:86:8d:fb:2d: fd:aa:4b:d4:33:18:d4:2b:a6:d7:eb:f8:bf:9e:6f:c7:52:e5: 29:db:80:d6:72:d0:90:a9:d5:d1:8e:cd:bc:51:e5:d3:a9:b4: fc:c5:4f:d7:2a:ef:52:45:69:b4:84:ed:06:0b:b7:63:36:b0: 13:d7:01:19:e9:f6:dc:65:cc:69:d5:61:3c:8e:b3:a0:27:d3: 60:8b:33:df:40:dc:5f:87:d4:0d:c4:e3:d4:69:fd:c3:b4:c7: 6d:2f:e4:45:37:76:77:26:50:07:f5:0a:24:1e:e4:86:1b:07: 08:9d:06:34:7c:d6:22:ce:6d:37:2c:b8:6b:7d:97:72:a0:26: 52:20:37:e1:5d:76:0d:fe:29:58:43:76:8f:d7:47:c4:61:ee: 79:b4:f7:6d:a8:d7:f8:fd:83:8d:ae:e0:46:87:d2:8c:a8:55: 1e:05:ec:25:1b:c2:18:1a:20:e7:22:1f:e1:7e:a6:ce:5a:42: a4:fb:67:f9:65:d2:cd:57:01:ff:72:96:0b:b9:8f:7b:d4:12: c5:90:cf:ef -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUA5wnpTJUpWV8Nez9QvzkUaXAAfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5 NzE5OEJGRDAeFw0yNDEyMjAxOTUzNDhaFw0yNTEyMTkxOTU4NDhaMDMxMTAvBgNV BAMTKDI4MUFEQTVBM0MwMTBCMEEzRkY4Qzc4RDcyNUZGNUNFNzNBOUIyMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC59VIitqoh4CaIiHfdx2vOb+q7 C/umOdGecaL+kywPTGZOTuGt61zKNOHPffFtth2tgyiM0pdFOYw3eJE/UD2qyAqN Tca02sn4QWbPvVjTVS99sRBPEZZMgVHdbtGIUfQJDDga4gYZlNFTSTLJuOzkWJpt A4GtJ2CwFtqoqrHaA5XaZpb1DW6b2b8yNSse6M4riZkJCi8ADDVUkfI4Tc8S5miF 3QUtf3Xa+oC9Auvp4YSFfEYkTORxjpbIdEuSKL/L88lag5LB4O29Jt3UDAiGY8rR tF91xKBNHZDQv39ePkDx0/In1ifXg7ptCs4CXsUKNJ7aj3rmfVSkdKeTOWHDAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUKBraWjwBCwo/+MeNcl/1znOpshEwHwYDVR0j BBgwFoAUoL3NTO8Cuao8vQqDdmZxY5cZi/0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzEvQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5NzE5OEJGRC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0EwQkRDRDRDRUYwMkI5 QUEzQ0JEMEE4Mzc2NjY3MTYzOTcxOThCRkQuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2MjMwM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQywMA0GCSqGSIb3DQEB CwUAA4IBAQBcOiwAGAKTEh51Ois3nIeIAw4d/4UtGKVmQCMmPgZlloVMw2/GIVEa e1WyfpMaLfCpGIaN+y39qkvUMxjUK6bX6/i/nm/HUuUp24DWctCQqdXRjs28UeXT qbT8xU/XKu9SRWm0hO0GC7djNrAT1wEZ6fbcZcxp1WE8jrOgJ9NgizPfQNxfh9QN xOPUaf3DtMdtL+RFN3Z3JlAH9QokHuSGGwcInQY0fNYizm03LLhrfZdyoCZSIDfh XXYN/ilYQ3aP10fEYe55tPdtqNf4/YONruBGh9KMqFUeBewlG8IYGiDnIh/hfqbO WkKk+2f5ZdLNVwH/cpYLuY971BLFkM/v -----END CERTIFICATE-----Generated at Thu Apr 3 07:09:29 2025 by rpki-client