$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6335333a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6335333a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: XlFjiMGdniXiBH8ber/zerQJr2bnSRJJJo5igygAomc= Subject key identifier: 7F:99:1A:5F:E7:7C:2A:CC:69:47:58:3E:F8:24:53:2D:CB:21:AA:38 Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 5CB97D3828B4411F444349B2E44758F7341876CF Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6335333a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:41 +0000 ROA not before: Fri 04 Jul 2025 22:29:41 +0000 ROA not after: Fri 03 Jul 2026 22:34:41 +0000 asID: 216107 IP address blocks: 2a05:dfc1:c53::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 00:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b9:7d:38:28:b4:41:1f:44:43:49:b2:e4:47:58:f7:34:18:76:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:41 2025 GMT Not After : Jul 3 22:34:41 2026 GMT Subject: CN=7F991A5FE77C2ACC6947583EF824532DCB21AA38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:27:89:9e:0f:f4:ed:6d:c4:46:05:47:f3:e5: a4:7a:20:6d:27:ec:28:77:b6:70:aa:6c:37:3a:97: 1a:da:d5:9f:37:e3:4d:64:7a:9f:18:1d:76:ba:ab: 02:a2:e3:15:94:91:e5:08:55:d8:50:79:d3:56:c7: f5:ac:3e:59:88:12:68:8b:c2:00:10:35:f6:31:7a: 87:aa:75:71:d8:21:bb:23:49:ed:71:b0:07:33:40: f4:20:43:9a:d7:e8:85:d3:ff:55:ba:54:e4:c1:84: c4:c6:f6:17:d5:22:26:b5:e0:a6:90:5c:44:22:f4: 3c:96:e5:1e:7d:7b:ba:65:f2:4c:0c:0e:be:61:63: 0e:21:b9:da:ab:cf:73:a3:59:ae:47:f9:17:31:b4: 39:fa:05:90:1e:f8:98:64:c5:8a:c3:f3:a2:ef:7b: 45:ed:cf:65:d0:9b:d2:8f:8a:91:32:40:57:ec:24: 4c:84:cb:a5:ec:9e:29:21:b4:18:1d:24:a1:31:0f: 6a:4a:de:bd:68:8a:f4:06:78:d0:52:09:06:00:d1: 15:01:95:e1:4e:5a:e7:b1:62:26:b4:4b:c6:cf:73: eb:14:6f:2e:1c:8d:47:2d:23:2c:fb:66:fa:05:49: 6c:94:db:5b:e6:80:c1:7e:14:7f:68:7a:4d:fa:95: 4f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:99:1A:5F:E7:7C:2A:CC:69:47:58:3E:F8:24:53:2D:CB:21:AA:38 X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6335333a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c53::/48 Signature Algorithm: sha256WithRSAEncryption 99:75:35:10:9f:95:f8:fc:58:91:61:a3:b3:24:25:7a:dd:85: 40:18:13:34:94:a5:af:27:fa:00:c3:4e:96:17:9c:2f:9d:5b: f8:74:1f:7d:3b:ac:c1:34:e4:87:3a:2b:62:f9:ae:58:63:a5: 19:df:32:3c:17:50:d1:da:34:80:98:b5:4d:0c:c3:7c:c7:71: 4d:17:20:86:b9:f7:96:5a:a5:8e:9c:0d:00:db:b8:d6:3e:6b: 4b:ca:62:39:a9:cc:f1:60:18:8d:ad:33:02:8c:0b:3d:6a:d2: 70:a0:91:ec:84:14:02:57:6d:0a:64:7e:31:95:43:75:4f:f9: 4d:d7:a9:e2:ef:55:5d:9e:2b:eb:fe:28:02:61:3f:3f:32:c7: 4e:d4:dc:0d:18:b6:ab:c9:bf:ae:e6:62:a7:60:9c:4b:2d:44: fd:9c:4b:49:7c:d9:8d:18:31:78:bc:e4:f8:52:82:56:6a:be: 9b:c9:6d:ee:06:c5:45:88:8d:af:e9:0c:ad:ae:35:c4:16:dd: 6d:be:3a:ba:31:0d:29:7e:0d:0f:ea:b1:17:91:c4:d9:40:14: fa:0a:47:1a:c1:8c:19:37:c1:a1:ca:a0:81:65:40:39:09:66: 60:87:5a:25:4c:82:96:17:39:1c:32:16:45:c8:d7:25:2a:48: 8a:2b:d1:0f -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUXLl9OCi0QR9EQ0my5EdY9zQYds8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDFaFw0yNjA3MDMyMjM0NDFaMDMxMTAvBgNV BAMTKDdGOTkxQTVGRTc3QzJBQ0M2OTQ3NTgzRUY4MjQ1MzJEQ0IyMUFBMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClJ4meD/TtbcRGBUfz5aR6IG0n 7Ch3tnCqbDc6lxra1Z83401kep8YHXa6qwKi4xWUkeUIVdhQedNWx/WsPlmIEmiL wgAQNfYxeoeqdXHYIbsjSe1xsAczQPQgQ5rX6IXT/1W6VOTBhMTG9hfVIia14KaQ XEQi9DyW5R59e7pl8kwMDr5hYw4hudqrz3OjWa5H+RcxtDn6BZAe+JhkxYrD86Lv e0Xtz2XQm9KPipEyQFfsJEyEy6XsnikhtBgdJKExD2pK3r1oivQGeNBSCQYA0RUB leFOWuexYia0S8bPc+sUby4cjUctIyz7ZvoFSWyU21vmgMF+FH9oek36lU9tAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUf5kaX+d8KsxpR1g++CRTLcshqjgwHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzNTMzM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQxTMA0GCSqGSIb3DQEB CwUAA4IBAQCZdTUQn5X4/FiRYaOzJCV63YVAGBM0lKWvJ/oAw06WF5wvnVv4dB99 O6zBNOSHOiti+a5YY6UZ3zI8F1DR2jSAmLVNDMN8x3FNFyCGufeWWqWOnA0A27jW PmtLymI5qczxYBiNrTMCjAs9atJwoJHshBQCV20KZH4xlUN1T/lN16ni71Vdnivr /igCYT8/MsdO1NwNGLaryb+u5mKnYJxLLUT9nEtJfNmNGDF4vOT4UoJWar6byW3u BsVFiI2v6QytrjXEFt1tvjq6MQ0pfg0P6rEXkcTZQBT6CkcawYwZN8GhyqCBZUA5 CWZgh1olTIKWFzkcMhZFyNclKkiKK9EP -----END CERTIFICATE-----Generated at Sat Jul 5 10:44:28 2025 by rpki-client