$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: wOFC9QI8GelsG8geVBZYw7NXSrIqNI+SPY2auPGgaCQ= Subject key identifier: A5:C1:44:88:49:E3:7B:1B:45:51:9F:FF:60:F4:05:E2:4A:60:25:EA Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 3C843279ED966DC6C5221842D635D027A9A4087B Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:41 +0000 ROA not before: Fri 04 Jul 2025 22:29:41 +0000 ROA not after: Fri 03 Jul 2026 22:34:41 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cd1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 00:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:84:32:79:ed:96:6d:c6:c5:22:18:42:d6:35:d0:27:a9:a4:08:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:41 2025 GMT Not After : Jul 3 22:34:41 2026 GMT Subject: CN=A5C1448849E37B1B45519FFF60F405E24A6025EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:e3:06:56:f6:fd:ba:33:a2:68:48:81:75:f5: 4f:28:d7:b3:24:96:1b:73:4b:51:56:73:5e:e3:9e: a8:8c:ee:1f:e6:58:99:7c:0b:c5:d1:71:93:22:49: 6c:98:3e:1a:2e:b7:a8:16:a1:ec:5c:0f:f1:8f:28: fb:a7:58:fd:10:ba:a0:e7:05:e2:fb:63:24:5e:9c: 12:59:99:5d:8c:75:b3:3d:06:b6:11:4f:fc:eb:0f: 42:c1:4f:76:aa:5f:e8:92:3f:34:bd:c5:f8:57:e8: c7:52:66:bf:65:59:97:68:22:f0:12:a1:64:7f:b4: c9:fe:b8:a0:37:08:da:41:0b:c4:03:9b:d0:99:f5: df:56:3f:c1:6c:86:33:f9:6f:4c:1f:d3:cc:5f:b5: 6e:2f:9b:be:02:4c:e1:50:e6:98:c9:85:48:19:91: 93:fd:d2:e7:cc:98:11:37:cd:7b:b9:a7:8c:65:a9: 2f:9f:00:8d:3a:c5:e6:eb:c4:c5:91:f4:38:ac:6f: ce:72:f1:6b:d1:0a:b8:87:6d:06:48:f7:eb:5d:3c: 9a:ec:b2:6a:56:31:9b:fe:d6:d9:2d:17:57:45:27: 72:ef:f0:3b:ff:d9:9a:b7:2b:86:b0:b2:66:55:ab: 68:89:29:36:95:91:66:ff:01:3f:70:cd:0a:78:6a: 62:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C1:44:88:49:E3:7B:1B:45:51:9F:FF:60:F4:05:E2:4A:60:25:EA X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364313a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cd1::/48 Signature Algorithm: sha256WithRSAEncryption d4:38:75:36:57:a7:a1:c4:4a:8a:e3:7a:f6:a0:4e:49:f8:4e: 41:91:e6:7d:40:36:84:62:50:a5:e4:3b:83:b2:f8:6d:4b:27: 93:1b:30:86:21:fb:e6:08:2d:f5:83:0a:81:78:93:dd:ab:00: bf:4c:e4:7b:02:f2:16:b0:bc:3d:09:fc:42:74:56:50:56:74: 93:f1:ae:8d:63:93:66:b4:87:8e:93:84:de:37:0c:51:b8:be: 1c:78:5d:86:15:d0:49:8a:5d:07:e0:fc:ca:c6:32:78:bb:e1: e5:bc:ea:af:d3:b8:7f:58:cc:f7:b7:2f:ce:f2:ba:52:e9:a7: 31:b3:45:6a:51:a1:20:a9:20:5e:db:ec:f2:ac:a1:95:64:3b: 98:3b:94:1d:0f:db:af:db:3f:85:49:93:0a:2b:63:00:a8:47: 5f:15:c8:34:a9:78:a6:0a:9f:53:40:c0:df:1b:6f:17:2b:fa: e1:ab:fe:e6:aa:28:92:b4:ba:8a:93:7d:80:66:9f:ca:d8:71: f7:10:c8:e7:1f:43:8c:29:4f:af:7b:0f:f1:da:44:c7:ff:35: 02:2b:9e:55:91:02:67:80:f0:9e:48:e2:23:d8:5a:fd:27:df: 06:be:1d:ae:59:7d:60:1e:5c:b2:41:ba:43:4c:13:2d:f1:20: 27:6b:a1:60 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUPIQyee2WbcbFIhhC1jXQJ6mkCHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDFaFw0yNjA3MDMyMjM0NDFaMDMxMTAvBgNV BAMTKEE1QzE0NDg4NDlFMzdCMUI0NTUxOUZGRjYwRjQwNUUyNEE2MDI1RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCR4wZW9v26M6JoSIF19U8o17Mk lhtzS1FWc17jnqiM7h/mWJl8C8XRcZMiSWyYPhout6gWoexcD/GPKPunWP0QuqDn BeL7YyRenBJZmV2MdbM9BrYRT/zrD0LBT3aqX+iSPzS9xfhX6MdSZr9lWZdoIvAS oWR/tMn+uKA3CNpBC8QDm9CZ9d9WP8FshjP5b0wf08xftW4vm74CTOFQ5pjJhUgZ kZP90ufMmBE3zXu5p4xlqS+fAI06xebrxMWR9Disb85y8WvRCriHbQZI9+tdPJrs smpWMZv+1tktF1dFJ3Lv8Dv/2Zq3K4awsmZVq2iJKTaVkWb/AT9wzQp4amItAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUpcFEiEnjextFUZ//YPQF4kpgJeowHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NDMxM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzRMA0GCSqGSIb3DQEB CwUAA4IBAQDUOHU2V6ehxEqK43r2oE5J+E5BkeZ9QDaEYlCl5DuDsvhtSyeTGzCG IfvmCC31gwqBeJPdqwC/TOR7AvIWsLw9CfxCdFZQVnST8a6NY5NmtIeOk4TeNwxR uL4ceF2GFdBJil0H4PzKxjJ4u+HlvOqv07h/WMz3ty/O8rpS6acxs0VqUaEgqSBe 2+zyrKGVZDuYO5QdD9uv2z+FSZMKK2MAqEdfFcg0qXimCp9TQMDfG28XK/rhq/7m qiiStLqKk32AZp/K2HH3EMjnH0OMKU+vew/x2kTH/zUCK55VkQJngPCeSOIj2Fr9 J98Gvh2uWX1gHlyyQbpDTBMt8SAna6Fg -----END CERTIFICATE-----Generated at Sat Jul 5 10:44:29 2025 by rpki-client