$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6362303a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6362303a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: HPSZ8Ao1IB3lH1ZuFzdnyKg2mh86+6wWsN1VfrbgtjA= Subject key identifier: CA:20:D1:E7:D6:1E:6C:47:A5:B5:00:09:55:1D:F2:F4:36:06:47:BA Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 110DECF6C35F3C9AC0801913135F0A9D72DBC6B7 Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6362303a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:43 +0000 ROA not before: Fri 04 Jul 2025 22:29:43 +0000 ROA not after: Fri 03 Jul 2026 22:34:43 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cb0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 00:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:0d:ec:f6:c3:5f:3c:9a:c0:80:19:13:13:5f:0a:9d:72:db:c6:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:43 2025 GMT Not After : Jul 3 22:34:43 2026 GMT Subject: CN=CA20D1E7D61E6C47A5B50009551DF2F4360647BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:48:bb:fc:00:31:43:67:cf:78:bd:a0:30:62: 34:5a:07:83:47:0c:d4:a8:c7:4b:a1:28:8d:d6:50: fc:54:3f:6d:d8:6d:3e:12:29:1b:07:87:58:6c:50: 91:27:4f:30:09:51:a8:4b:a6:25:66:17:0f:22:5e: 56:1b:a8:02:41:19:ef:18:ae:de:ec:48:52:0f:6a: f4:0f:79:15:45:47:6c:10:f3:7b:5f:d5:90:7f:44: 3d:68:80:fc:b7:0f:ae:ef:58:83:ba:d4:46:eb:51: 86:38:c9:a6:42:a0:16:57:c5:96:32:0e:f7:85:cb: b8:9d:e3:d9:fb:61:5b:ac:76:cb:ff:d0:9a:ba:b5: 4f:a3:fa:1b:3a:a1:7a:15:04:02:d2:16:80:5f:57: 3b:86:e9:a6:f0:ad:cc:a3:7f:d6:8e:b7:4b:c6:70: 2e:b1:d5:4a:43:f7:44:9f:65:58:26:f3:bc:b3:7b: b4:ab:45:81:01:db:16:b2:8c:0b:6a:50:38:ca:b8: a5:80:c8:5b:ef:1b:e0:b5:f9:3f:a2:33:78:4d:6a: 6e:6f:33:c5:1b:a8:5d:92:df:e0:72:fe:ee:ad:d6: 9a:e7:ae:b9:99:70:f1:ab:c5:00:47:80:37:c7:da: 62:c2:57:87:00:85:82:96:0e:b4:08:7e:92:34:3b: f4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:20:D1:E7:D6:1E:6C:47:A5:B5:00:09:55:1D:F2:F4:36:06:47:BA X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6362303a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cb0::/48 Signature Algorithm: sha256WithRSAEncryption 98:e6:70:9d:6e:5b:57:ad:78:4a:41:1d:10:a8:db:af:f6:59: cc:a5:0f:dd:0b:0b:e4:89:4e:a4:f7:11:54:6e:3f:a5:a9:c0: a9:e4:c4:90:bf:59:0f:ed:c8:ae:f5:8a:42:7a:a1:2f:d6:8a: df:77:53:29:f0:61:5a:eb:d3:62:c6:65:94:2b:86:5c:5c:68: cf:2d:00:65:f5:a3:14:dc:5d:7e:52:a6:41:05:81:0b:ab:99: 2c:39:e0:73:fd:8f:e7:d4:03:f5:d7:da:6b:4f:9f:9f:12:9c: 8c:e0:90:df:32:06:7b:2c:4f:ed:e8:76:1c:26:09:5e:2c:d4: 49:05:57:ad:7c:01:16:69:51:e0:c0:7d:68:43:70:38:64:b9: 79:eb:da:bb:44:c8:34:7f:1e:ee:c6:de:9a:81:63:fb:2e:0f: 5f:20:84:52:32:fa:04:0b:35:9b:0d:00:3a:5c:ef:d4:65:2c: c8:52:f4:fe:b6:8f:67:19:4d:5a:4b:5c:c7:23:1a:7c:67:ed: e2:3b:c0:92:06:74:1b:e4:b7:8d:01:ae:26:56:f9:66:9d:03: 93:b4:9a:8f:aa:1e:e7:50:10:0c:56:dc:65:fb:b2:99:d2:44: 04:69:21:8c:1a:1d:1b:60:3f:97:0d:e6:0c:70:53:de:dd:3b: 7e:7a:ff:31 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUEQ3s9sNfPJrAgBkTE18KnXLbxrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDNaFw0yNjA3MDMyMjM0NDNaMDMxMTAvBgNV BAMTKENBMjBEMUU3RDYxRTZDNDdBNUI1MDAwOTU1MURGMkY0MzYwNjQ3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGSLv8ADFDZ894vaAwYjRaB4NH DNSox0uhKI3WUPxUP23YbT4SKRsHh1hsUJEnTzAJUahLpiVmFw8iXlYbqAJBGe8Y rt7sSFIPavQPeRVFR2wQ83tf1ZB/RD1ogPy3D67vWIO61EbrUYY4yaZCoBZXxZYy DveFy7id49n7YVusdsv/0Jq6tU+j+hs6oXoVBALSFoBfVzuG6abwrcyjf9aOt0vG cC6x1UpD90SfZVgm87yze7SrRYEB2xayjAtqUDjKuKWAyFvvG+C1+T+iM3hNam5v M8UbqF2S3+By/u6t1prnrrmZcPGrxQBHgDfH2mLCV4cAhYKWDrQIfpI0O/RdAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUyiDR59YebEeltQAJVR3y9DYGR7owHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2MjMwM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQywMA0GCSqGSIb3DQEB CwUAA4IBAQCY5nCdbltXrXhKQR0QqNuv9lnMpQ/dCwvkiU6k9xFUbj+lqcCp5MSQ v1kP7ciu9YpCeqEv1orfd1Mp8GFa69NixmWUK4ZcXGjPLQBl9aMU3F1+UqZBBYEL q5ksOeBz/Y/n1AP119prT5+fEpyM4JDfMgZ7LE/t6HYcJgleLNRJBVetfAEWaVHg wH1oQ3A4ZLl569q7RMg0fx7uxt6agWP7Lg9fIIRSMvoECzWbDQA6XO/UZSzIUvT+ to9nGU1aS1zHIxp8Z+3iO8CSBnQb5LeNAa4mVvlmnQOTtJqPqh7nUBAMVtxl+7KZ 0kQEaSGMGh0bYD+XDeYMcFPe3Tt+ev8x -----END CERTIFICATE-----Generated at Sat Jul 5 10:45:17 2025 by rpki-client