$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: tss3iIr0s+RFnIHyplXQ4q+OBp0HEyxQ6VxVRzHZdNU= Subject key identifier: 54:07:40:43:3E:1F:A6:9E:06:C1:BA:30:BE:C5:F8:B1:2C:0E:22:36 Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Certificate serial: 201A029B976650FF2546734460F7C13F390A3D92 Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 19 Jan 2024 19:27:29 +0000 ROA not before: Fri 19 Jan 2024 19:22:29 +0000 ROA not after: Fri 17 Jan 2025 19:27:29 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cd1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Nov 2024 18:11:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:1a:02:9b:97:66:50:ff:25:46:73:44:60:f7:c1:3f:39:0a:3d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Validity Not Before: Jan 19 19:22:29 2024 GMT Not After : Jan 17 19:27:29 2025 GMT Subject: CN=540740433E1FA69E06C1BA30BEC5F8B12C0E2236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ff:0e:0c:e5:4d:5b:4d:6b:40:8b:8c:cf:e7: 6a:ca:64:e7:cc:b9:3f:f6:21:5c:71:99:e1:5d:ad: ee:b9:d9:f0:9b:9c:cc:92:6e:39:5e:08:49:f3:55: d5:5b:75:c8:1f:79:f2:58:02:79:df:78:ae:e9:5c: 4c:9a:91:f6:1f:fd:27:fd:14:79:86:ab:ac:bc:d7: ec:3a:ac:d1:19:db:20:ec:79:42:4e:7e:26:99:6b: a1:6b:54:41:5a:85:57:48:42:bc:cc:3b:91:bb:27: 68:46:79:45:d3:b3:11:d8:b9:a2:34:dd:a8:6c:5a: 8a:98:dc:6b:df:86:fe:21:62:f9:1e:82:04:30:aa: e1:ea:e8:59:7c:d4:7c:51:5a:36:3d:d0:e4:ef:78: 1f:ad:c2:d8:ca:1d:79:52:fa:57:02:25:6b:fc:2d: 1a:3d:16:0d:68:c2:40:34:d3:0f:e7:f5:66:a9:61: b4:29:ab:7c:f5:3b:35:c2:8f:83:88:2e:71:e7:04: a2:dd:7f:80:9e:fc:55:97:1a:14:97:f5:64:6a:c9: b8:09:54:22:2c:77:14:ec:1f:67:21:53:e5:25:ef: a2:30:0a:20:fe:44:5f:62:af:0e:d5:8f:49:35:8e: 45:03:f8:35:a9:66:b2:2c:68:3d:69:4f:cd:19:33: 54:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:07:40:43:3E:1F:A6:9E:06:C1:BA:30:BE:C5:F8:B1:2C:0E:22:36 X509v3 Authority Key Identifier: keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cd1::/48 Signature Algorithm: sha256WithRSAEncryption 43:5c:ba:e5:80:02:db:86:79:68:f5:0a:10:69:73:cf:76:d0: 99:76:5c:2c:e2:3b:98:b5:d1:27:07:3d:7c:97:86:10:45:a5: 01:68:0b:af:5d:c2:88:7e:83:7c:95:6a:41:d2:f0:44:9a:24: b8:76:92:ae:4e:9d:ca:fb:00:d4:d6:35:8f:09:00:b7:0e:8d: 43:18:1f:eb:c2:58:40:7e:bb:ec:0b:18:3c:35:7e:99:d1:fd: de:cf:b4:e2:06:04:2c:ad:55:52:71:80:a3:b8:0c:2f:4e:cf: b4:a5:ad:9c:e9:44:9a:c6:c9:41:cf:51:65:f2:3b:cf:1b:b5: f1:63:48:2c:82:42:b2:9a:57:80:a4:c6:74:61:09:75:30:e4: ca:7a:49:e8:64:f5:eb:8c:50:93:44:31:9e:23:7d:1f:71:7d: 0c:f3:23:35:1a:36:ff:3a:a1:bc:70:94:53:53:42:7d:86:35: 54:3f:b9:51:8a:d1:30:36:e3:89:fb:9c:e3:72:8a:9f:f2:23: d2:4b:aa:56:9d:d7:b7:52:ae:dd:de:f2:69:d6:da:68:6b:77: 21:21:c5:ea:76:3b:0f:da:1b:66:2c:27:0a:be:2b:83:82:72: a7:4c:48:63:fc:0d:73:11:75:b1:a1:32:52:b1:96:c3:a7:7b: 3b:87:fd:ff -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUIBoCm5dmUP8lRnNEYPfBPzkKPZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5 NzE5OEJGRDAeFw0yNDAxMTkxOTIyMjlaFw0yNTAxMTcxOTI3MjlaMDMxMTAvBgNV BAMTKDU0MDc0MDQzM0UxRkE2OUUwNkMxQkEzMEJFQzVGOEIxMkMwRTIyMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg/w4M5U1bTWtAi4zP52rKZOfM uT/2IVxxmeFdre652fCbnMySbjleCEnzVdVbdcgfefJYAnnfeK7pXEyakfYf/Sf9 FHmGq6y81+w6rNEZ2yDseUJOfiaZa6FrVEFahVdIQrzMO5G7J2hGeUXTsxHYuaI0 3ahsWoqY3Gvfhv4hYvkeggQwquHq6Fl81HxRWjY90OTveB+twtjKHXlS+lcCJWv8 LRo9Fg1owkA00w/n9WapYbQpq3z1OzXCj4OILnHnBKLdf4Ce/FWXGhSX9WRqybgJ VCIsdxTsH2chU+Ul76IwCiD+RF9irw7Vj0k1jkUD+DWpZrIsaD1pT80ZM1QPAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUVAdAQz4fpp4GwbowvsX4sSwOIjYwHwYDVR0j BBgwFoAUoL3NTO8Cuao8vQqDdmZxY5cZi/0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzEvQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5NzE5OEJGRC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0EwQkRDRDRDRUYwMkI5 QUEzQ0JEMEE4Mzc2NjY3MTYzOTcxOThCRkQuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NDMxM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzRMA0GCSqGSIb3DQEB CwUAA4IBAQBDXLrlgALbhnlo9QoQaXPPdtCZdlws4juYtdEnBz18l4YQRaUBaAuv XcKIfoN8lWpB0vBEmiS4dpKuTp3K+wDU1jWPCQC3Do1DGB/rwlhAfrvsCxg8NX6Z 0f3ez7TiBgQsrVVScYCjuAwvTs+0pa2c6USaxslBz1Fl8jvPG7XxY0gsgkKymleA pMZ0YQl1MOTKeknoZPXrjFCTRDGeI30fcX0M8yM1Gjb/OqG8cJRTU0J9hjVUP7lR itEwNuOJ+5zjcoqf8iPSS6pWnde3Uq7d3vJp1tpoa3chIcXqdjsP2htmLCcKviuD gnKnTEhj/A1zEXWxoTJSsZbDp3s7h/3/ -----END CERTIFICATE-----Generated at Thu Nov 21 01:58:30 2024 by rpki-client on console-ams.rpki-client.org