$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364343a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6364343a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: 2ES+J57q5FxV7Pycn6PA/TfkwXqGSDCB0siCI9Kqtao= Subject key identifier: 74:2A:83:59:04:63:AD:CC:25:08:EC:26:9E:29:19:01:27:B1:C8:1B Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 0D6F6DA639D66A4D069E11D91E5B90498CEA9D1D Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364343a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:44 +0000 ROA not before: Fri 04 Jul 2025 22:29:44 +0000 ROA not after: Fri 03 Jul 2026 22:34:44 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cd4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 00:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:6f:6d:a6:39:d6:6a:4d:06:9e:11:d9:1e:5b:90:49:8c:ea:9d:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:44 2025 GMT Not After : Jul 3 22:34:44 2026 GMT Subject: CN=742A83590463ADCC2508EC269E29190127B1C81B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:65:6f:27:d9:32:0c:bd:9c:3a:31:84:41:0a: a1:33:df:43:fa:ce:77:6c:e3:eb:39:4f:0e:f6:82: 0f:3b:6b:ca:b9:7f:5a:1a:a0:5a:59:a1:36:a2:a9: 70:57:41:b2:8b:fc:3c:d8:37:ba:b5:dc:31:b5:4c: 0a:93:df:ff:6d:a1:9f:a5:23:30:6a:88:61:fd:1e: ad:b2:4f:22:7b:f3:7d:03:b3:9f:f9:88:2b:15:68: e3:60:70:5a:cc:0d:25:d6:66:93:72:10:ec:c6:78: 6f:78:76:ba:b6:f0:6b:c5:cf:2c:ba:24:26:43:ec: 29:31:d5:de:f5:9e:f4:1e:c3:3d:66:63:44:c7:e4: 64:84:b2:50:5e:0d:93:56:43:75:79:53:71:c5:78: fb:9f:3e:2a:31:c2:d3:3a:6d:16:da:31:ee:3a:23: e8:b2:9c:44:9e:93:3c:58:35:99:ba:44:86:a3:19: 92:29:2e:c4:e1:2e:a4:66:24:4a:18:97:93:f6:f5: 45:55:d8:d2:e0:b7:34:62:f1:a6:85:09:ed:cb:72: 16:77:eb:6d:86:11:b9:63:77:d8:17:f6:bb:e5:aa: 49:d1:8c:61:fd:75:01:b0:a3:4d:59:5d:ac:5f:19: 12:07:fe:54:df:6e:c1:74:08:cb:a6:66:dc:af:fe: 71:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:2A:83:59:04:63:AD:CC:25:08:EC:26:9E:29:19:01:27:B1:C8:1B X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364343a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cd4::/48 Signature Algorithm: sha256WithRSAEncryption 85:8e:e4:02:ad:f8:af:1b:f0:65:b5:d9:fa:04:94:ca:6b:b2: c2:ad:ed:bb:7f:5f:60:c7:eb:ca:2b:0b:ff:83:70:62:93:50: 1a:e0:5f:c2:89:f8:f7:0d:9a:cb:26:d8:e3:7b:d0:17:f2:39: a7:44:fa:4b:71:0c:87:ea:4d:1b:ed:ac:df:43:ba:2e:d9:48: ce:23:96:26:41:2f:1e:60:47:cd:38:85:c9:47:78:97:d3:89: c3:a4:c6:65:87:e9:70:d8:ff:09:51:a1:68:08:4c:1d:7e:41: 6b:e8:d2:c4:03:0c:39:65:d1:d9:9f:22:53:08:da:ce:03:d1: 62:fc:94:17:03:d1:73:5b:06:e4:5d:c6:24:f8:26:1f:56:fd: ba:1c:3d:f0:a4:ba:23:58:1b:58:b0:8b:f9:28:0c:9b:ca:ad: 01:0e:99:56:55:a4:fe:b0:5b:4a:20:eb:96:fa:9c:04:d9:95: 83:2b:4d:2f:f0:b8:49:80:10:39:2e:87:bf:97:a0:78:c7:21: 73:c9:bc:e2:ae:6a:07:1c:53:cf:94:b6:ac:73:07:b8:04:b4: 1f:9f:9a:75:87:10:c7:85:e4:3f:e9:9b:6f:b1:4f:0f:43:67: 31:6d:52:33:60:d9:8c:0a:e1:67:ab:a9:54:fa:61:79:b7:1c: f6:92:e2:a5 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUDW9tpjnWak0GnhHZHluQSYzqnR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDRaFw0yNjA3MDMyMjM0NDRaMDMxMTAvBgNV BAMTKDc0MkE4MzU5MDQ2M0FEQ0MyNTA4RUMyNjlFMjkxOTAxMjdCMUM4MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZW8n2TIMvZw6MYRBCqEz30P6 znds4+s5Tw72gg87a8q5f1oaoFpZoTaiqXBXQbKL/DzYN7q13DG1TAqT3/9toZ+l IzBqiGH9Hq2yTyJ7830Ds5/5iCsVaONgcFrMDSXWZpNyEOzGeG94drq28GvFzyy6 JCZD7Ckx1d71nvQewz1mY0TH5GSEslBeDZNWQ3V5U3HFePufPioxwtM6bRbaMe46 I+iynESekzxYNZm6RIajGZIpLsThLqRmJEoYl5P29UVV2NLgtzRi8aaFCe3LchZ3 622GEbljd9gX9rvlqknRjGH9dQGwo01ZXaxfGRIH/lTfbsF0CMumZtyv/nEDAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUdCqDWQRjrcwlCOwmnikZASexyBswHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NDM0M2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzUMA0GCSqGSIb3DQEB CwUAA4IBAQCFjuQCrfivG/Bltdn6BJTKa7LCre27f19gx+vKKwv/g3Bik1Aa4F/C ifj3DZrLJtjje9AX8jmnRPpLcQyH6k0b7azfQ7ou2UjOI5YmQS8eYEfNOIXJR3iX 04nDpMZlh+lw2P8JUaFoCEwdfkFr6NLEAww5ZdHZnyJTCNrOA9Fi/JQXA9FzWwbk XcYk+CYfVv26HD3wpLojWBtYsIv5KAybyq0BDplWVaT+sFtKIOuW+pwE2ZWDK00v 8LhJgBA5Loe/l6B4xyFzybzirmoHHFPPlLascwe4BLQfn5p1hxDHheQ/6ZtvsU8P Q2cxbVIzYNmMCuFnq6lU+mF5txz2kuKl -----END CERTIFICATE-----Generated at Sat Jul 5 10:45:16 2025 by rpki-client