$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: kouAYYDPp7u5DWXmWbdg5czloBE5q1b/LH37S7gdkyM= Subject key identifier: F5:20:96:7C:65:BE:A0:B8:14:77:4C:00:AC:BF:36:D7:92:E1:35:85 Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Certificate serial: 3B4BCD789351929E8A4BAD62D8718E31F69C091F Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 19 Jan 2024 19:27:57 +0000 ROA not before: Fri 19 Jan 2024 19:22:57 +0000 ROA not after: Fri 17 Jan 2025 19:27:57 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cd3::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Nov 2024 18:11:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4b:cd:78:93:51:92:9e:8a:4b:ad:62:d8:71:8e:31:f6:9c:09:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Validity Not Before: Jan 19 19:22:57 2024 GMT Not After : Jan 17 19:27:57 2025 GMT Subject: CN=F520967C65BEA0B814774C00ACBF36D792E13585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ca:5f:05:ab:72:93:76:2a:b2:9e:a5:eb:4e: 9d:19:41:cd:c9:28:0f:c9:42:d5:0e:06:fa:ac:30: 66:18:bf:fc:53:97:6f:c9:80:c8:cd:81:85:22:50: 45:12:a7:f1:7a:9e:30:09:56:ed:00:06:e4:9e:55: 21:e2:13:d3:7e:6b:9b:81:c1:d4:34:9e:e7:db:63: 7c:8a:93:40:dd:65:b9:ae:b8:bf:43:24:10:5b:94: a0:76:e4:b1:28:90:cc:fc:f5:d1:6c:03:46:af:15: 91:92:3b:b6:43:0a:99:58:71:f0:96:94:13:cb:61: ab:51:31:56:25:3a:fe:a3:5a:3c:42:91:f0:8e:67: 6f:b3:88:d7:85:31:21:4b:2c:ee:14:ac:0a:4a:4c: 89:29:33:2f:75:f6:42:92:a4:b0:a0:33:fd:80:48: 0b:e2:68:df:10:bf:b0:0c:4f:4b:69:08:38:a3:c7: 31:a3:4e:c6:80:f1:82:6f:d4:79:78:e6:93:dc:29: 53:e9:16:81:3b:a6:d7:dd:68:87:04:0a:e1:cf:6f: 44:e2:39:a4:1a:13:7e:df:a6:aa:44:cd:b4:05:f7: 40:a5:65:b6:4c:2f:ba:57:f8:03:84:ec:b4:d2:81: 05:79:73:de:86:9d:bd:6c:27:e8:e5:f3:9e:7c:dc: dc:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:20:96:7C:65:BE:A0:B8:14:77:4C:00:AC:BF:36:D7:92:E1:35:85 X509v3 Authority Key Identifier: keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cd3::/48 Signature Algorithm: sha256WithRSAEncryption 31:25:59:73:b1:61:52:f9:12:32:59:bb:77:a4:81:96:8e:fe: 37:ed:91:3c:af:f4:70:9c:8e:b8:d6:92:a6:c4:cc:a0:3d:6a: f9:ae:31:ab:68:b8:eb:c9:2d:85:fe:a0:b4:34:75:ba:ec:5e: 23:c2:83:ac:93:d5:f4:03:21:c2:26:0d:e8:20:1e:e0:13:b0: 21:77:a3:2d:c8:af:e5:b4:9b:0f:35:61:9e:66:92:43:d6:74: 97:df:c6:90:f3:d1:1f:fe:58:59:d3:27:eb:8f:e5:af:a9:63: 1e:53:7c:91:7d:bf:b5:95:78:f6:bb:2f:22:c2:31:f3:12:26: ef:a7:73:af:19:06:9c:0f:38:f7:e8:0c:57:f1:72:2d:d9:df: f1:50:d4:a3:6f:e4:0d:04:61:85:3c:d6:d7:65:3b:e5:3b:8b: cb:f9:4b:45:cb:ce:c9:2f:2d:43:50:31:0e:ce:33:c8:e1:37: f3:38:cf:19:4e:29:c7:e0:c4:6c:d6:b2:3f:5a:57:38:10:a4: f2:75:c5:00:25:fd:89:d4:e4:88:b9:da:a7:8b:0e:7e:f4:81: c6:e8:56:f5:16:e2:47:9c:04:9a:dc:da:d0:93:3b:56:4a:81: 72:88:63:a4:d2:3e:50:e6:c1:ff:2c:36:6d:c0:3e:af:d8:da: 53:22:3d:53 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUO0vNeJNRkp6KS61i2HGOMfacCR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5 NzE5OEJGRDAeFw0yNDAxMTkxOTIyNTdaFw0yNTAxMTcxOTI3NTdaMDMxMTAvBgNV BAMTKEY1MjA5NjdDNjVCRUEwQjgxNDc3NEMwMEFDQkYzNkQ3OTJFMTM1ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3yl8Fq3KTdiqynqXrTp0ZQc3J KA/JQtUOBvqsMGYYv/xTl2/JgMjNgYUiUEUSp/F6njAJVu0ABuSeVSHiE9N+a5uB wdQ0nufbY3yKk0DdZbmuuL9DJBBblKB25LEokMz89dFsA0avFZGSO7ZDCplYcfCW lBPLYatRMVYlOv6jWjxCkfCOZ2+ziNeFMSFLLO4UrApKTIkpMy919kKSpLCgM/2A SAviaN8Qv7AMT0tpCDijxzGjTsaA8YJv1Hl45pPcKVPpFoE7ptfdaIcECuHPb0Ti OaQaE37fpqpEzbQF90ClZbZML7pX+AOE7LTSgQV5c96Gnb1sJ+jl85583NzPAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU9SCWfGW+oLgUd0wArL8215LhNYUwHwYDVR0j BBgwFoAUoL3NTO8Cuao8vQqDdmZxY5cZi/0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzEvQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5NzE5OEJGRC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0EwQkRDRDRDRUYwMkI5 QUEzQ0JEMEE4Mzc2NjY3MTYzOTcxOThCRkQuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NDMzM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzTMA0GCSqGSIb3DQEB CwUAA4IBAQAxJVlzsWFS+RIyWbt3pIGWjv437ZE8r/RwnI641pKmxMygPWr5rjGr aLjryS2F/qC0NHW67F4jwoOsk9X0AyHCJg3oIB7gE7Ahd6MtyK/ltJsPNWGeZpJD 1nSX38aQ89Ef/lhZ0yfrj+WvqWMeU3yRfb+1lXj2uy8iwjHzEibvp3OvGQacDzj3 6AxX8XIt2d/xUNSjb+QNBGGFPNbXZTvlO4vL+UtFy87JLy1DUDEOzjPI4TfzOM8Z TinH4MRs1rI/Wlc4EKTydcUAJf2J1OSIudqniw5+9IHG6Fb1FuJHnASa3NrQkztW SoFyiGOk0j5Q5sH/LDZtwD6v2NpTIj1T -----END CERTIFICATE-----Generated at Thu Nov 21 02:01:29 2024 by rpki-client on console-fra.rpki-client.org