$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364303a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6364303a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: cn9YZ8FYaC+Hri9dzrV5iV712LMhxO/a5ltgIPBkcMo= Subject key identifier: 30:3F:AD:DF:BA:3F:81:F8:13:E0:EE:92:6E:C4:66:FA:F7:0D:0C:15 Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 6FFC01A318F1032D01D72E3840492213FEA0AA08 Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364303a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:45 +0000 ROA not before: Fri 04 Jul 2025 22:29:45 +0000 ROA not after: Fri 03 Jul 2026 22:34:45 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cd0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 00:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:fc:01:a3:18:f1:03:2d:01:d7:2e:38:40:49:22:13:fe:a0:aa:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:45 2025 GMT Not After : Jul 3 22:34:45 2026 GMT Subject: CN=303FADDFBA3F81F813E0EE926EC466FAF70D0C15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:be:f0:68:d8:0b:74:a5:5d:cb:ec:bc:e1:8d: d2:0f:79:f1:9c:6f:40:10:e9:b1:9a:1a:23:c6:2a: 4e:f5:51:12:8f:07:96:e2:a1:d5:c0:ee:44:a4:72: 12:1a:d9:25:87:67:bd:5f:dd:5e:fc:7f:f7:0a:67: b5:de:d1:a8:23:ed:cd:4a:26:db:62:df:47:cc:4f: ac:ff:67:ff:3a:7b:e4:4a:11:d0:c5:33:b4:61:c6: f5:e7:15:2e:9e:05:1e:75:b5:8d:8f:96:38:d3:ba: b2:80:ab:03:96:17:5a:3b:db:9b:f0:0f:10:bb:d3: b2:9a:99:e1:50:11:75:fe:47:cc:92:55:8b:c9:82: bb:d1:3f:84:16:f4:7b:dd:c4:cb:ef:8d:f1:94:42: 8e:d9:23:e4:df:fd:d4:a5:78:4b:a0:a8:48:7d:37: fc:81:de:81:aa:cc:0a:d0:a0:cb:aa:9f:a7:da:f8: 28:5d:2c:c1:f0:d7:79:8b:2c:d0:25:b7:83:b7:4a: 9d:50:26:eb:36:b3:8c:7a:83:7a:11:58:62:0b:17: e6:93:48:0b:a0:18:38:8b:07:30:c4:3b:e4:02:7f: 87:e6:7b:40:99:56:eb:a0:b2:2c:58:a6:2a:98:99: 56:c1:f5:82:99:11:55:c4:ad:4e:31:5f:34:e7:4d: e1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3F:AD:DF:BA:3F:81:F8:13:E0:EE:92:6E:C4:66:FA:F7:0D:0C:15 X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364303a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cd0::/48 Signature Algorithm: sha256WithRSAEncryption 4f:3e:f2:3d:df:9b:45:f2:e0:9f:04:ad:4e:5d:74:15:d9:f9: 07:d9:ce:4b:e6:1e:83:e6:b4:27:07:ba:8d:33:b1:a9:f5:f1: 58:c5:d0:d5:04:a5:53:3c:c6:af:6a:05:b9:f6:b3:4a:9b:38: 15:96:d3:35:11:5b:df:ff:86:7d:50:0a:a8:c9:b8:72:f4:09: ec:2c:61:7f:39:9d:44:55:36:3b:a3:e7:06:8a:a5:6a:af:f3: eb:15:78:6e:6f:12:37:4e:fe:9a:2e:05:70:90:f6:c7:7e:16: 46:22:6f:61:61:fd:0e:76:9b:eb:8a:27:8a:1e:cf:19:c7:35: 81:7a:f7:c3:21:ee:7f:89:1d:1c:e5:3b:1a:d7:be:91:e5:f3: 49:89:37:99:e7:f9:45:02:ec:ce:d6:73:e1:42:29:20:fd:1d: 9e:e2:56:60:62:3f:0a:09:41:7c:50:52:9b:bd:cd:16:de:18: fa:a6:b2:29:b0:39:3a:9b:38:59:34:bc:28:97:52:00:6a:a9: 70:3b:10:96:b0:3e:81:66:16:5d:e2:ef:a2:67:ea:fb:26:91: 53:d2:2c:fa:12:68:cc:cf:03:83:27:8e:2b:b9:48:83:4c:f6: 11:a9:93:4d:03:dc:55:8d:8a:aa:46:d4:20:54:42:5b:18:6f: f7:2b:61:2d -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUb/wBoxjxAy0B1y44QEkiE/6gqggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDVaFw0yNjA3MDMyMjM0NDVaMDMxMTAvBgNV BAMTKDMwM0ZBRERGQkEzRjgxRjgxM0UwRUU5MjZFQzQ2NkZBRjcwRDBDMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHvvBo2At0pV3L7LzhjdIPefGc b0AQ6bGaGiPGKk71URKPB5biodXA7kSkchIa2SWHZ71f3V78f/cKZ7Xe0agj7c1K Jtti30fMT6z/Z/86e+RKEdDFM7RhxvXnFS6eBR51tY2PljjTurKAqwOWF1o725vw DxC707KameFQEXX+R8ySVYvJgrvRP4QW9HvdxMvvjfGUQo7ZI+Tf/dSleEugqEh9 N/yB3oGqzArQoMuqn6fa+ChdLMHw13mLLNAlt4O3Sp1QJus2s4x6g3oRWGILF+aT SAugGDiLBzDEO+QCf4fme0CZVuugsixYpiqYmVbB9YKZEVXErU4xXzTnTeHLAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUMD+t37o/gfgT4O6SbsRm+vcNDBUwHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NDMwM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzQMA0GCSqGSIb3DQEB CwUAA4IBAQBPPvI935tF8uCfBK1OXXQV2fkH2c5L5h6D5rQnB7qNM7Gp9fFYxdDV BKVTPMavagW59rNKmzgVltM1EVvf/4Z9UAqoybhy9AnsLGF/OZ1EVTY7o+cGiqVq r/PrFXhubxI3Tv6aLgVwkPbHfhZGIm9hYf0OdpvriieKHs8ZxzWBevfDIe5/iR0c 5Tsa176R5fNJiTeZ5/lFAuzO1nPhQikg/R2e4lZgYj8KCUF8UFKbvc0W3hj6prIp sDk6mzhZNLwol1IAaqlwOxCWsD6BZhZd4u+iZ+r7JpFT0iz6EmjMzwODJ44ruUiD TPYRqZNNA9xVjYqqRtQgVEJbGG/3K2Et -----END CERTIFICATE-----Generated at Sat Jul 5 10:46:29 2025 by rpki-client