$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6330303a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6330303a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: 5amhvkzdMSmYntVfhhxA2srjGLuE63R2mmWtiqhM60M= Subject key identifier: 26:53:D0:79:76:07:B6:7C:3A:D6:11:A2:01:F7:53:5B:36:95:E4:01 Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 09AD7202043E7EE5091BB0C0AB4E0E0F5EF5D2D1 Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6330303a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:44 +0000 ROA not before: Fri 04 Jul 2025 22:29:44 +0000 ROA not after: Fri 03 Jul 2026 22:34:44 +0000 asID: 216107 IP address blocks: 2a05:dfc1:c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 00:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ad:72:02:04:3e:7e:e5:09:1b:b0:c0:ab:4e:0e:0f:5e:f5:d2:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:44 2025 GMT Not After : Jul 3 22:34:44 2026 GMT Subject: CN=2653D0797607B67C3AD611A201F7535B3695E401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:4d:59:66:f6:9c:7c:9d:72:08:6b:3f:61: 97:e1:d4:a1:05:91:91:be:f0:68:3a:96:c7:9b:e9: 87:ed:84:6b:ea:e6:fa:a2:7d:9d:7a:c3:4a:77:2f: 32:99:7e:51:0e:cd:25:23:f9:e2:4b:7e:75:2c:48: c7:67:03:55:9d:af:3f:60:84:e1:de:bb:d7:eb:2f: 08:bc:4e:ad:fc:d2:4b:81:2c:a6:d7:4b:68:4c:94: 6b:7f:1a:10:70:cf:cb:57:07:59:48:d9:96:70:c1: 57:79:37:d6:01:d7:70:47:c5:f4:bb:4a:f1:6f:b3: 92:b7:55:00:36:f6:f9:10:8b:04:73:df:57:5a:7f: 94:8b:53:1f:10:71:1f:c8:bd:aa:69:16:0e:6d:b8: e0:ba:b7:d0:a7:aa:6a:e6:1b:af:69:9f:7c:1e:8f: 39:42:a4:46:0b:83:4e:54:c7:08:9c:62:b6:35:fc: 8d:6e:e5:9e:3b:27:1e:1e:94:2b:b2:6c:9b:78:17: 48:03:85:26:52:7b:fb:c8:9f:25:75:80:55:90:07: 1f:ef:4d:58:2e:59:d8:c0:2b:50:ec:e3:fd:7d:27: 5e:92:10:74:8f:82:30:14:ba:d3:f4:2d:a3:2d:8e: b2:ed:54:29:aa:79:49:e9:1b:dd:1c:43:51:15:dd: eb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:53:D0:79:76:07:B6:7C:3A:D6:11:A2:01:F7:53:5B:36:95:E4:01 X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6330303a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c00::/48 Signature Algorithm: sha256WithRSAEncryption 17:36:d4:ca:1b:8a:7a:7e:97:56:6e:8d:c1:46:b6:0e:4a:77: d4:f9:16:7e:b9:df:0e:e5:4f:b7:15:7f:15:bb:5e:47:ef:83: c3:ef:d1:8f:f2:fd:9b:14:0b:5b:cc:19:10:2e:a4:e3:57:7c: 41:ef:dc:f6:e0:26:e8:51:0e:80:ad:3e:d1:8d:52:2b:0e:78: dd:8d:ee:4f:ce:87:12:e2:1b:bf:20:dd:b3:77:48:ed:c2:1b: a5:57:6c:ee:1f:61:2c:c0:b5:d6:4a:3f:c8:b9:f4:57:de:1c: 3f:63:45:75:fd:0e:11:9c:fe:c2:15:92:96:37:42:35:03:ba: 08:98:ca:1b:04:11:c2:98:3d:b9:4f:e3:64:41:c6:ab:c8:87: 9b:79:a3:f6:89:3a:16:06:f4:c6:ca:fb:0f:ce:9f:9a:ee:8c: 2a:71:04:24:02:81:a9:e4:f9:c9:a1:ac:fb:5e:d0:a3:10:0d: 15:57:e8:db:b9:b0:3f:af:56:99:a6:19:35:1f:e3:8b:f4:45: d4:b3:34:2e:bb:6f:21:5b:e2:57:bd:49:88:9c:cc:4a:0d:27: 76:5d:ed:f3:57:8c:44:d8:5f:a3:a0:95:98:86:8a:50:1a:22: 17:d5:8b:76:1a:a5:01:48:3d:6f:a8:5e:7e:51:e7:d2:9e:29: b4:8d:a0:69 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUCa1yAgQ+fuUJG7DAq04OD1710tEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDRaFw0yNjA3MDMyMjM0NDRaMDMxMTAvBgNV BAMTKDI2NTNEMDc5NzYwN0I2N0MzQUQ2MTFBMjAxRjc1MzVCMzY5NUU0MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5vU1ZZvacfJ1yCGs/YZfh1KEF kZG+8Gg6lseb6YfthGvq5vqifZ16w0p3LzKZflEOzSUj+eJLfnUsSMdnA1Wdrz9g hOHeu9frLwi8Tq380kuBLKbXS2hMlGt/GhBwz8tXB1lI2ZZwwVd5N9YB13BHxfS7 SvFvs5K3VQA29vkQiwRz31daf5SLUx8QcR/IvappFg5tuOC6t9CnqmrmG69pn3we jzlCpEYLg05UxwicYrY1/I1u5Z47Jx4elCuybJt4F0gDhSZSe/vInyV1gFWQBx/v TVguWdjAK1Ds4/19J16SEHSPgjAUutP0LaMtjrLtVCmqeUnpG90cQ1EV3esJAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUJlPQeXYHtnw61hGiAfdTWzaV5AEwHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzMDMwM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQwAMA0GCSqGSIb3DQEB CwUAA4IBAQAXNtTKG4p6fpdWbo3BRrYOSnfU+RZ+ud8O5U+3FX8Vu15H74PD79GP 8v2bFAtbzBkQLqTjV3xB79z24CboUQ6ArT7RjVIrDnjdje5PzocS4hu/IN2zd0jt whulV2zuH2EswLXWSj/IufRX3hw/Y0V1/Q4RnP7CFZKWN0I1A7oImMobBBHCmD25 T+NkQcaryIebeaP2iToWBvTGyvsPzp+a7owqcQQkAoGp5PnJoaz7XtCjEA0VV+jb ubA/r1aZphk1H+OL9EXUszQuu28hW+JXvUmInMxKDSd2Xe3zV4xE2F+joJWYhopQ GiIX1Yt2GqUBSD1vqF5+UefSnim0jaBp -----END CERTIFICATE-----Generated at Sat Jul 5 10:46:30 2025 by rpki-client