$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6362323a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6362323a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: mOPodk1SWfoVUqjkHG3wmAu+HNRka8LJZu4TU08ixz0= Subject key identifier: 22:90:BC:19:83:E9:0B:4B:B5:9D:1F:C0:F3:4B:9E:45:01:9A:0B:02 Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 726F9A8824BBC8306819B7ADE3455B4E6325F5C3 Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6362323a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:40 +0000 ROA not before: Fri 04 Jul 2025 22:29:40 +0000 ROA not after: Fri 03 Jul 2026 22:34:40 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cb2::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 00:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:6f:9a:88:24:bb:c8:30:68:19:b7:ad:e3:45:5b:4e:63:25:f5:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:40 2025 GMT Not After : Jul 3 22:34:40 2026 GMT Subject: CN=2290BC1983E90B4BB59D1FC0F34B9E45019A0B02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1a:04:53:1d:6b:3e:e7:c1:49:52:42:b4:f3: 07:d1:5c:e3:ba:42:d4:22:3c:2f:0a:49:f2:42:ed: 86:d8:2c:d2:44:45:df:dc:26:b9:27:17:d9:80:c0: e2:6c:39:d3:04:1c:20:00:d1:f9:1a:ae:61:41:fe: 32:55:1f:f9:76:00:9f:76:3c:d0:ce:b5:8f:2b:ad: d3:8f:d0:5c:fb:a7:dd:72:b7:6e:9a:67:32:c8:54: 88:1e:c9:5d:64:b2:7e:84:a6:d3:8f:3d:f8:04:4c: fc:66:cd:85:a1:4f:9f:eb:8d:31:85:fd:ce:3e:55: ad:3c:f5:96:84:f4:ab:78:15:b5:a5:48:45:1b:49: 35:1c:ab:0b:f6:c4:af:cb:27:9e:e2:95:a3:8b:16: 9a:01:22:0d:a7:00:4a:eb:9b:00:a9:eb:cf:a2:38: 3b:c5:5c:0c:f3:2a:cc:0c:02:fc:31:ce:75:c8:e6: 07:7c:20:2d:b9:e4:e5:58:b2:4d:1e:d7:c2:84:cf: 0e:10:bd:27:93:03:59:fd:f4:58:11:38:89:55:8b: ba:6a:2c:88:16:a9:21:9c:fd:d3:c4:f9:4c:fd:af: c2:17:2d:43:2c:96:9f:85:e3:b2:73:ce:9a:fa:b6: df:15:2c:97:67:48:88:89:1d:39:b4:73:0a:95:50: 4c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:90:BC:19:83:E9:0B:4B:B5:9D:1F:C0:F3:4B:9E:45:01:9A:0B:02 X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6362323a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cb2::/48 Signature Algorithm: sha256WithRSAEncryption da:f4:4b:0d:d6:88:d9:dd:08:1d:a4:d4:81:72:6d:6e:ed:15: cf:c7:ba:c8:e2:25:6a:8f:17:d2:4c:94:6d:e5:2c:ff:25:18: 4c:5d:f3:9d:c4:c5:62:bd:54:89:58:bc:87:9e:88:dd:67:99: e9:0d:b8:37:02:83:f0:f4:66:6d:00:c9:7d:51:5a:73:fb:e7: 19:89:81:05:2f:f9:32:b0:4f:20:0e:c1:a9:05:1d:dc:77:5f: ad:26:0f:b5:f8:00:ba:c8:33:c6:32:4b:3a:d6:70:82:17:a8: c5:44:90:93:bd:ed:71:de:9f:e0:c1:d5:fc:5e:d9:22:4c:26: eb:9f:46:27:6d:e2:7b:74:34:45:06:e2:57:79:63:6b:b4:e4: a9:25:2f:fa:f4:57:c4:04:10:a2:cd:b5:7b:6a:5d:95:23:82: 35:34:ad:c7:a5:be:c3:31:88:dc:12:d8:f8:1a:e9:49:9a:45: ba:17:61:27:68:0d:50:e1:68:f5:58:42:a1:5d:d9:ae:ec:3c: 1c:2e:02:33:cd:c0:80:d4:89:50:1b:1c:82:1e:aa:d8:40:9d: 4d:39:56:0e:92:e3:12:fd:e5:4d:75:69:10:59:19:cf:f4:fc: da:32:16:3f:d0:0b:bb:4c:fb:40:ee:81:4d:db:8e:d3:01:99: 0b:4d:d0:82 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUcm+aiCS7yDBoGbet40VbTmMl9cMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDBaFw0yNjA3MDMyMjM0NDBaMDMxMTAvBgNV BAMTKDIyOTBCQzE5ODNFOTBCNEJCNTlEMUZDMEYzNEI5RTQ1MDE5QTBCMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaGgRTHWs+58FJUkK08wfRXOO6 QtQiPC8KSfJC7YbYLNJERd/cJrknF9mAwOJsOdMEHCAA0fkarmFB/jJVH/l2AJ92 PNDOtY8rrdOP0Fz7p91yt26aZzLIVIgeyV1ksn6EptOPPfgETPxmzYWhT5/rjTGF /c4+Va089ZaE9Kt4FbWlSEUbSTUcqwv2xK/LJ57ilaOLFpoBIg2nAErrmwCp68+i ODvFXAzzKswMAvwxznXI5gd8IC255OVYsk0e18KEzw4QvSeTA1n99FgROIlVi7pq LIgWqSGc/dPE+Uz9r8IXLUMslp+F47Jzzpr6tt8VLJdnSIiJHTm0cwqVUExnAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUIpC8GYPpC0u1nR/A80ueRQGaCwIwHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2MjMyM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQyyMA0GCSqGSIb3DQEB CwUAA4IBAQDa9EsN1ojZ3QgdpNSBcm1u7RXPx7rI4iVqjxfSTJRt5Sz/JRhMXfOd xMVivVSJWLyHnojdZ5npDbg3AoPw9GZtAMl9UVpz++cZiYEFL/kysE8gDsGpBR3c d1+tJg+1+AC6yDPGMks61nCCF6jFRJCTve1x3p/gwdX8XtkiTCbrn0YnbeJ7dDRF BuJXeWNrtOSpJS/69FfEBBCizbV7al2VI4I1NK3Hpb7DMYjcEtj4GulJmkW6F2En aA1Q4Wj1WEKhXdmu7DwcLgIzzcCA1IlQGxyCHqrYQJ1NOVYOkuMS/eVNdWkQWRnP 9PzaMhY/0Au7TPtA7oFN247TAZkLTdCC -----END CERTIFICATE-----Generated at Sat Jul 5 10:43:39 2025 by rpki-client