$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364343a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6364343a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: h7T/IBKgZ+g5LGDA1fTNWZlyWBtya6uHa3uTkoL3u98= Subject key identifier: A8:C0:CB:E8:E0:AE:46:BF:E0:1D:F7:C8:8A:63:B3:22:47:AC:83:4D Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Certificate serial: 3087980BB44674824699D9C855B99B75FA6CB4AD Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364343a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 20 Dec 2024 19:58:50 +0000 ROA not before: Fri 20 Dec 2024 19:53:50 +0000 ROA not after: Fri 19 Dec 2025 19:58:50 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cd4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:87:98:0b:b4:46:74:82:46:99:d9:c8:55:b9:9b:75:fa:6c:b4:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Validity Not Before: Dec 20 19:53:50 2024 GMT Not After : Dec 19 19:58:50 2025 GMT Subject: CN=A8C0CBE8E0AE46BFE01DF7C88A63B32247AC834D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8f:03:d9:53:fe:e8:f0:71:d4:05:dd:c8:8a: 9d:87:0d:63:e1:0b:33:0a:9a:ad:6c:65:b5:2c:d5: b4:a6:4b:25:b8:58:e8:76:74:8a:4a:17:7f:5d:a3: 1c:15:a8:59:e9:c8:fa:04:16:f9:4a:dd:b2:4b:5c: 94:f3:06:bd:15:75:70:21:5c:62:52:ae:54:9b:8a: 61:6e:19:11:d3:50:92:f0:17:e9:70:76:e9:fc:35: fa:6c:78:cf:d1:7b:29:cb:2b:75:c7:be:a8:42:25: 00:69:d8:e9:40:6a:68:97:fd:95:66:b1:06:5c:2f: 19:53:6d:ba:e2:90:a7:af:02:b4:61:b9:29:1d:a4: 6c:13:ff:f6:49:95:23:cd:f7:f6:85:72:eb:ce:87: d6:0b:5d:36:b4:1c:cc:be:7d:ac:81:1a:71:86:71: 23:e8:66:e5:40:b3:07:31:5b:e3:b4:97:c0:ae:1a: 5a:39:a7:39:08:60:68:bf:00:af:4e:f0:e5:86:a9: fb:68:c3:fa:91:82:7b:8a:44:0e:99:d8:43:da:5f: 8f:e6:3d:b5:75:85:7a:b6:f7:11:a5:b6:8e:e0:38: 29:78:b1:ff:f2:49:1f:e8:69:96:6c:4e:49:d6:37: 22:78:45:bc:1d:b8:08:cd:d3:ed:d8:20:ab:22:41: a3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C0:CB:E8:E0:AE:46:BF:E0:1D:F7:C8:8A:63:B3:22:47:AC:83:4D X509v3 Authority Key Identifier: keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6364343a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cd4::/48 Signature Algorithm: sha256WithRSAEncryption 85:03:f6:c3:dd:38:09:49:64:9f:48:b6:64:90:a9:69:9b:d9: 78:a8:ac:05:0f:b0:4a:da:0e:c5:2c:89:5d:62:99:85:fb:59: cb:c3:cd:25:21:ab:58:53:8a:d3:cd:51:f0:b5:cf:e6:07:7a: f3:6b:41:01:68:d5:af:9d:e1:26:50:c8:0b:a6:c8:6d:ad:98: 6d:ac:8f:a8:95:6e:2f:bc:cc:99:5c:31:65:73:69:14:49:87: 81:91:f1:5a:a8:ff:20:01:d1:9d:d9:54:fc:9d:c4:ad:14:8e: 11:3b:d7:c8:c1:94:2d:1b:43:72:79:d0:2d:65:00:ab:47:41: a2:7b:43:45:d6:7c:de:81:0d:7b:fb:ba:53:46:09:ee:05:26: 59:fd:88:12:f0:e1:4b:ae:03:85:42:06:11:26:37:42:70:32: 06:16:00:94:b5:69:75:12:69:d0:c4:71:05:f0:08:c2:8b:d5: 46:09:13:3c:c2:fd:f2:5b:80:c2:bd:70:81:bd:cb:eb:ca:25: 10:2f:10:14:73:61:ce:3f:34:15:ff:ea:b7:41:f5:2c:4c:49: 16:8d:36:b5:04:54:ae:a0:33:4e:73:ae:d8:d3:75:68:69:dc: 89:87:28:91:6b:66:ea:7f:92:12:ba:cb:66:0e:f9:b2:de:ca: cc:ff:4f:1d -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUMIeYC7RGdIJGmdnIVbmbdfpstK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5 NzE5OEJGRDAeFw0yNDEyMjAxOTUzNTBaFw0yNTEyMTkxOTU4NTBaMDMxMTAvBgNV BAMTKEE4QzBDQkU4RTBBRTQ2QkZFMDFERjdDODhBNjNCMzIyNDdBQzgzNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnjwPZU/7o8HHUBd3Iip2HDWPh CzMKmq1sZbUs1bSmSyW4WOh2dIpKF39doxwVqFnpyPoEFvlK3bJLXJTzBr0VdXAh XGJSrlSbimFuGRHTUJLwF+lwdun8NfpseM/ReynLK3XHvqhCJQBp2OlAamiX/ZVm sQZcLxlTbbrikKevArRhuSkdpGwT//ZJlSPN9/aFcuvOh9YLXTa0HMy+fayBGnGG cSPoZuVAswcxW+O0l8CuGlo5pzkIYGi/AK9O8OWGqftow/qRgnuKRA6Z2EPaX4/m PbV1hXq29xGlto7gOCl4sf/ySR/oaZZsTknWNyJ4RbwduAjN0+3YIKsiQaPzAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUqMDL6OCuRr/gHffIimOzIkesg00wHwYDVR0j BBgwFoAUoL3NTO8Cuao8vQqDdmZxY5cZi/0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzEvQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5NzE5OEJGRC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0EwQkRDRDRDRUYwMkI5 QUEzQ0JEMEE4Mzc2NjY3MTYzOTcxOThCRkQuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NDM0M2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzUMA0GCSqGSIb3DQEB CwUAA4IBAQCFA/bD3TgJSWSfSLZkkKlpm9l4qKwFD7BK2g7FLIldYpmF+1nLw80l IatYU4rTzVHwtc/mB3rza0EBaNWvneEmUMgLpshtrZhtrI+olW4vvMyZXDFlc2kU SYeBkfFaqP8gAdGd2VT8ncStFI4RO9fIwZQtG0NyedAtZQCrR0Gie0NF1nzegQ17 +7pTRgnuBSZZ/YgS8OFLrgOFQgYRJjdCcDIGFgCUtWl1EmnQxHEF8AjCi9VGCRM8 wv3yW4DCvXCBvcvryiUQLxAUc2HOPzQV/+q3QfUsTEkWjTa1BFSuoDNOc67Y03Vo adyJhyiRa2bqf5ISustmDvmy3srM/08d -----END CERTIFICATE-----Generated at Thu Apr 3 07:09:29 2025 by rpki-client