$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364323a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6364323a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: qeKhwSxBv73kgRxW6Pg8dImsSOEmPLh3wTLxedRpHZA= Subject key identifier: 77:35:46:2C:38:1B:2F:CB:E6:B0:D8:1B:59:9E:A8:64:50:35:6E:19 Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Certificate serial: 1850EC52050F04E45893BC18639B5B391C6AC273 Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364323a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 20 Dec 2024 19:58:49 +0000 ROA not before: Fri 20 Dec 2024 19:53:49 +0000 ROA not after: Fri 19 Dec 2025 19:58:49 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cd2::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:50:ec:52:05:0f:04:e4:58:93:bc:18:63:9b:5b:39:1c:6a:c2:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Validity Not Before: Dec 20 19:53:49 2024 GMT Not After : Dec 19 19:58:49 2025 GMT Subject: CN=7735462C381B2FCBE6B0D81B599EA86450356E19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b5:53:ed:72:00:7a:f2:35:72:06:b7:2f:c3: 66:f6:50:9e:93:7f:ea:91:78:d4:58:12:aa:fe:f4: 5f:e0:40:2f:e4:dc:63:c0:d9:c5:ab:77:07:36:c6: d8:77:b7:33:39:8b:78:6e:77:6c:02:32:44:50:e6: a5:b9:87:7b:f8:6e:78:e9:1b:da:e0:0d:e3:55:38: 15:12:3b:62:e2:14:ed:e2:a3:57:fa:f2:1e:e0:19: 2a:4e:b8:48:ce:9c:9e:bd:b9:4e:48:a0:79:0c:18: 1f:8e:58:89:9b:d7:15:58:de:0c:51:ee:6b:d0:27: d3:a7:66:bf:b9:d4:b6:e2:fc:35:bd:6c:4b:68:ba: 1d:00:1a:5a:7c:b3:ae:10:5a:97:f4:00:4e:8b:5f: 18:e7:7f:10:92:aa:05:63:7a:1b:b7:81:2b:13:99: 92:73:86:4e:02:11:ed:76:74:66:eb:2d:5b:6e:7c: 53:73:90:4b:52:10:91:50:f7:14:83:99:6c:9c:99: 3f:20:a3:35:e8:ed:48:c9:ea:fd:cb:92:c3:ec:ba: f6:0e:a7:1e:4b:bf:b7:21:22:70:04:6a:dc:a9:a7: a2:b1:42:a8:2a:72:c7:99:4f:0d:cf:23:2c:48:51: 7e:38:ff:a7:37:68:5d:b4:ae:ea:17:1e:5b:90:c4: 07:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:35:46:2C:38:1B:2F:CB:E6:B0:D8:1B:59:9E:A8:64:50:35:6E:19 X509v3 Authority Key Identifier: keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364323a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cd2::/48 Signature Algorithm: sha256WithRSAEncryption 98:e1:c1:16:d5:c2:fa:d5:4e:e1:9e:82:e0:1c:98:8a:fa:bf: 43:ce:63:07:85:17:cc:62:20:63:09:fd:de:ff:0b:fd:cd:04: e2:24:df:cc:19:32:d6:b2:76:0c:2a:b8:77:8b:cc:37:cb:a7: c1:14:38:bc:39:c8:88:a6:35:cc:36:24:cc:e7:03:70:a4:a0: 53:c7:7c:70:eb:97:47:dd:23:7a:79:e9:20:0f:4c:1d:d9:64: 4a:d2:40:93:36:3e:59:7d:c9:35:1d:3c:78:2f:0c:f9:bb:0b: 1f:c2:d0:b0:20:65:c9:eb:1a:9a:bd:64:56:ab:19:d2:3f:78: 04:18:a9:ad:a6:74:4d:13:56:32:1b:c7:8f:ee:e5:3f:00:04: 25:b8:43:9f:3f:0c:2e:81:e0:53:89:f8:13:94:82:0e:cb:d9: b2:7f:30:c8:59:05:4d:d8:60:2a:22:24:b5:e9:b6:7c:1d:b6: f9:2b:7a:51:ef:71:15:a0:71:b8:40:2a:b2:13:b8:55:d6:6e: c4:76:c4:16:77:83:12:11:40:8f:0c:22:19:04:b2:7d:e2:ae: 05:8f:5b:14:2e:c5:85:82:5e:2b:93:06:12:75:b7:32:6c:00: 6c:dc:2f:9f:30:c5:1d:d0:08:1e:a3:85:ad:db:5e:61:63:7d: 77:e8:76:5f -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUGFDsUgUPBORYk7wYY5tbORxqwnMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5 NzE5OEJGRDAeFw0yNDEyMjAxOTUzNDlaFw0yNTEyMTkxOTU4NDlaMDMxMTAvBgNV BAMTKDc3MzU0NjJDMzgxQjJGQ0JFNkIwRDgxQjU5OUVBODY0NTAzNTZFMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWtVPtcgB68jVyBrcvw2b2UJ6T f+qReNRYEqr+9F/gQC/k3GPA2cWrdwc2xth3tzM5i3hud2wCMkRQ5qW5h3v4bnjp G9rgDeNVOBUSO2LiFO3io1f68h7gGSpOuEjOnJ69uU5IoHkMGB+OWImb1xVY3gxR 7mvQJ9OnZr+51Lbi/DW9bEtouh0AGlp8s64QWpf0AE6LXxjnfxCSqgVjehu3gSsT mZJzhk4CEe12dGbrLVtufFNzkEtSEJFQ9xSDmWycmT8gozXo7UjJ6v3LksPsuvYO px5Lv7chInAEatypp6KxQqgqcseZTw3PIyxIUX44/6c3aF20ruoXHluQxAeZAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUdzVGLDgbL8vmsNgbWZ6oZFA1bhkwHwYDVR0j BBgwFoAUoL3NTO8Cuao8vQqDdmZxY5cZi/0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzEvQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5NzE5OEJGRC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0EwQkRDRDRDRUYwMkI5 QUEzQ0JEMEE4Mzc2NjY3MTYzOTcxOThCRkQuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NDMyM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzSMA0GCSqGSIb3DQEB CwUAA4IBAQCY4cEW1cL61U7hnoLgHJiK+r9DzmMHhRfMYiBjCf3e/wv9zQTiJN/M GTLWsnYMKrh3i8w3y6fBFDi8OciIpjXMNiTM5wNwpKBTx3xw65dH3SN6eekgD0wd 2WRK0kCTNj5Zfck1HTx4Lwz5uwsfwtCwIGXJ6xqavWRWqxnSP3gEGKmtpnRNE1Yy G8eP7uU/AAQluEOfPwwugeBTifgTlIIOy9myfzDIWQVN2GAqIiS16bZ8Hbb5K3pR 73EVoHG4QCqyE7hV1m7EdsQWd4MSEUCPDCIZBLJ94q4Fj1sULsWFgl4rkwYSdbcy bABs3C+fMMUd0Ageo4Wt215hY3136HZf -----END CERTIFICATE-----Generated at Thu Apr 3 07:09:29 2025 by rpki-client