$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a393330303a3a2f34302d3430203d3e20323136313037.roa File: 326130353a646663313a393330303a3a2f34302d3430203d3e20323136313037.roa (raw, json) Hash identifier: O9HdFgkDLSDurxDqFkNzKefyLVSHYP5RZwYF9ccBE70= Subject key identifier: B6:4B:C5:F1:8E:C6:01:5E:F9:37:42:F7:DB:D5:04:94:35:31:95:5A Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 227B7F47A83EF90754884D5497E79C958938845F Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a393330303a3a2f34302d3430203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:44 +0000 ROA not before: Fri 04 Jul 2025 22:29:44 +0000 ROA not after: Fri 03 Jul 2026 22:34:44 +0000 asID: 216107 IP address blocks: 2a05:dfc1:9300::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 00:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:7b:7f:47:a8:3e:f9:07:54:88:4d:54:97:e7:9c:95:89:38:84:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:44 2025 GMT Not After : Jul 3 22:34:44 2026 GMT Subject: CN=B64BC5F18EC6015EF93742F7DBD504943531955A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:23:3d:0c:6a:59:9e:fa:3d:64:70:d2:f5:9c: 4f:e7:da:c9:82:ba:89:cb:78:29:22:7d:28:b3:6a: 2e:3a:6d:ca:cf:05:ce:28:e3:4f:e9:62:07:1d:cb: 54:b8:2a:d9:23:8a:b6:b3:97:3d:24:ff:86:88:9a: 84:e4:4e:d3:c6:77:7b:3e:e3:75:1f:32:aa:5f:5f: 76:22:c2:ac:61:15:05:6f:e6:08:5d:1f:55:bf:45: 7d:44:be:26:df:d5:67:bc:ba:40:ff:26:75:2e:b5: 72:be:58:ee:88:64:b9:4a:01:d3:4f:ff:80:d2:f7: 26:87:40:ca:86:21:18:3c:c2:53:32:ee:6a:6a:7f: cd:0a:ff:d3:e2:10:03:6c:de:19:5b:89:db:2c:c5: f2:a6:4e:00:e1:ac:73:9b:bb:d5:36:86:6f:25:fa: fd:be:9b:a0:ba:52:2c:22:44:62:ca:0e:b6:82:68: 12:c9:47:c5:43:91:42:63:e8:12:04:53:e5:1a:7c: aa:66:45:7a:23:80:02:70:d7:0e:ea:6f:f3:86:36: 63:6c:d7:f3:39:b3:88:8b:17:27:2a:45:2b:11:1f: 6c:17:7e:c1:bd:02:6c:5a:03:58:c6:9e:f6:a0:93: d3:4a:df:3a:74:f5:ce:1c:85:2f:22:3e:7a:0f:8f: 89:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:4B:C5:F1:8E:C6:01:5E:F9:37:42:F7:DB:D5:04:94:35:31:95:5A X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a393330303a3a2f34302d3430203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9300::/40 Signature Algorithm: sha256WithRSAEncryption d4:f9:f8:58:31:70:fc:42:3f:e4:2d:5c:2e:22:ae:e4:f7:7f: 18:1a:29:e0:93:8f:7d:f9:7c:9d:35:fb:19:c7:dc:b7:46:64: c4:93:c6:74:c1:07:2f:27:81:34:6a:7a:ec:ff:a1:88:8a:0b: 74:95:e1:c3:dc:7f:f9:c7:91:35:d6:89:89:a7:d7:1e:f7:ef: 8c:00:f1:13:fb:ea:fa:65:b1:58:df:68:b7:1f:aa:4f:eb:d0: e9:56:36:f2:7a:55:86:6b:40:4b:da:d4:e6:07:3c:13:40:bf: fe:95:69:be:9e:08:52:8d:8a:76:ac:77:ef:cd:d9:c3:e7:7f: 29:5e:ac:01:9d:ea:ff:3f:6d:67:d9:5c:32:66:d4:b5:8e:f2: 9d:07:12:36:4f:c1:77:df:e2:f8:1f:37:5a:fb:6b:a6:c3:1a: 9d:85:62:2a:3e:0a:4b:c2:a7:62:36:ee:91:15:6e:c9:97:d6: 03:75:ab:94:11:87:d9:73:58:d9:34:16:05:7a:96:cc:57:0a: d2:14:74:ab:dc:e3:e0:0b:7a:42:55:90:83:0b:f4:68:ef:04: 5a:9b:62:37:1a:30:8d:c9:2c:3a:c1:80:6c:36:10:40:bf:d6: 39:05:25:f6:d4:b7:0a:a3:fd:41:2f:5b:38:68:8f:30:f5:77: 43:8e:28:00 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIUInt/R6g++QdUiE1Ul+eclYk4hF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDRaFw0yNjA3MDMyMjM0NDRaMDMxMTAvBgNV BAMTKEI2NEJDNUYxOEVDNjAxNUVGOTM3NDJGN0RCRDUwNDk0MzUzMTk1NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWIz0Malme+j1kcNL1nE/n2smC uonLeCkifSizai46bcrPBc4o40/pYgcdy1S4Ktkjirazlz0k/4aImoTkTtPGd3s+ 43UfMqpfX3YiwqxhFQVv5ghdH1W/RX1Evibf1We8ukD/JnUutXK+WO6IZLlKAdNP /4DS9yaHQMqGIRg8wlMy7mpqf80K/9PiEANs3hlbidssxfKmTgDhrHObu9U2hm8l +v2+m6C6UiwiRGLKDraCaBLJR8VDkUJj6BIEU+UafKpmRXojgAJw1w7qb/OGNmNs 1/M5s4iLFycqRSsRH2wXfsG9AmxaA1jGnvagk9NK3zp09c4chS8iPnoPj4m1AgMB AAGjggJfMIICWzAdBgNVHQ4EFgQUtkvF8Y7GAV75N0L329UElDUxlVowHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzMzMwMzAzYTNhMmYzNDMwMmQzNDMw MjAzZDNlMjAzMjMxMzYzMTMwMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BkzANBgkqhkiG9w0B AQsFAAOCAQEA1Pn4WDFw/EI/5C1cLiKu5Pd/GBop4JOPffl8nTX7Gcfct0ZkxJPG dMEHLyeBNGp67P+hiIoLdJXhw9x/+ceRNdaJiafXHvfvjADxE/vq+mWxWN9otx+q T+vQ6VY28npVhmtAS9rU5gc8E0C//pVpvp4IUo2Kdqx3783Zw+d/KV6sAZ3q/z9t Z9lcMmbUtY7ynQcSNk/Bd9/i+B83WvtrpsManYViKj4KS8KnYjbukRVuyZfWA3Wr lBGH2XNY2TQWBXqWzFcK0hR0q9zj4At6QlWQgwv0aO8EWptiNxowjcksOsGAbDYQ QL/WOQUl9tS3CqP9QS9bOGiPMPV3Q44oAA== -----END CERTIFICATE-----Generated at Sat Jul 5 10:47:14 2025 by rpki-client