$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6365633a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6365633a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: MFLgGeiRY5J6V0wqCJ/2rdwCHyoz1yTGoDCT9u80ZPw= Subject key identifier: 5C:E3:BE:EC:D5:33:D2:29:ED:47:22:86:14:3D:BF:F8:FD:1F:1A:43 Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 30FE6390C1877CF86789653401806EAE88EBEC5A Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6365633a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:40 +0000 ROA not before: Fri 04 Jul 2025 22:29:40 +0000 ROA not after: Fri 03 Jul 2026 22:34:40 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cec::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 00:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:fe:63:90:c1:87:7c:f8:67:89:65:34:01:80:6e:ae:88:eb:ec:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:40 2025 GMT Not After : Jul 3 22:34:40 2026 GMT Subject: CN=5CE3BEECD533D229ED472286143DBFF8FD1F1A43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7e:f2:08:ba:9f:e5:c0:a3:c2:99:f6:b9:c0: 78:c8:a1:f8:b3:47:7a:7a:f5:0a:10:16:95:a3:72: 88:9c:02:9f:7b:1b:73:e4:4e:1a:97:cd:b5:ee:14: b0:e7:59:3a:98:2f:e3:9e:58:18:8a:36:b2:f9:3d: bf:38:ac:cf:30:e7:e1:fb:a6:3b:c6:3f:b3:f6:93: 8f:3e:3f:58:bc:e4:e8:3a:17:93:73:49:d0:1b:9b: 6a:67:97:94:e4:9e:27:93:a1:ee:70:d7:b4:fd:24: 1f:97:93:21:dd:9a:10:2f:5b:f8:6c:09:8d:5f:85: 10:37:ba:b8:d2:fd:19:84:28:19:84:e1:be:75:7f: 93:19:2d:8a:fd:f0:fa:31:c1:10:a4:0d:75:87:c1: d8:42:ea:31:97:36:dc:4b:7a:e6:7c:e0:df:68:36: 5f:40:d9:f4:60:e6:d6:ad:e5:cc:b9:10:39:22:e6: 75:90:49:32:be:b6:2f:cd:65:fc:f7:10:01:50:f0: 12:62:66:98:87:2e:36:73:b5:e5:ef:3c:ea:90:66: 62:c8:2c:d1:91:14:0f:66:32:8f:a0:69:e8:85:7d: e3:1c:e2:2f:98:b8:f6:c5:72:30:cd:8d:fb:ab:1c: b8:0f:80:9c:9b:94:47:7a:37:7d:03:40:14:a8:5a: 22:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E3:BE:EC:D5:33:D2:29:ED:47:22:86:14:3D:BF:F8:FD:1F:1A:43 X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6365633a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cec::/48 Signature Algorithm: sha256WithRSAEncryption 81:a9:2c:48:c0:21:52:cf:39:fc:c8:a2:ab:5e:1b:ac:21:fa: e1:77:fa:55:62:88:fc:a7:97:df:7d:81:66:43:69:df:20:13: cc:09:36:0f:fb:b0:8e:7c:b7:fa:e8:55:58:59:a4:6f:59:eb: 13:cb:7b:32:07:c7:2e:d2:aa:41:92:00:f3:50:da:d6:5d:88: b3:ec:97:ff:3a:20:cb:3e:0c:b3:41:9e:7a:f8:79:01:86:ec: b8:4b:90:de:76:73:ed:1e:df:01:8e:30:7e:1c:e7:bb:24:81: 63:38:d7:7d:60:83:0f:03:21:28:c2:a8:b3:5f:4e:f3:1a:a5: ab:d6:a2:35:97:5a:92:6e:8c:03:dc:45:21:70:5f:e0:df:a1: c2:02:62:45:e9:e2:ce:19:a9:63:e6:ff:cd:9b:28:fb:3f:63: e0:82:cf:cd:2f:a0:d8:de:4b:f7:37:cf:82:7c:d1:ba:ce:66: 19:7f:e6:e8:6e:3a:24:42:2f:13:25:c1:14:ae:bc:da:c1:6a: fe:4d:7d:03:a9:7f:90:97:cf:e3:52:7a:31:1a:cb:17:68:b5: 64:a5:55:9a:a3:a0:d7:02:33:a6:25:71:5d:d0:5e:86:2c:8b: 39:f9:0c:f7:c8:dd:68:f4:57:44:0b:63:b4:bd:ce:74:1d:7b: ed:88:3f:d6 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUMP5jkMGHfPhniWU0AYBurojr7FowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDBaFw0yNjA3MDMyMjM0NDBaMDMxMTAvBgNV BAMTKDVDRTNCRUVDRDUzM0QyMjlFRDQ3MjI4NjE0M0RCRkY4RkQxRjFBNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqfvIIup/lwKPCmfa5wHjIofiz R3p69QoQFpWjcoicAp97G3PkThqXzbXuFLDnWTqYL+OeWBiKNrL5Pb84rM8w5+H7 pjvGP7P2k48+P1i85Og6F5NzSdAbm2pnl5TknieToe5w17T9JB+XkyHdmhAvW/hs CY1fhRA3urjS/RmEKBmE4b51f5MZLYr98PoxwRCkDXWHwdhC6jGXNtxLeuZ84N9o Nl9A2fRg5tat5cy5EDki5nWQSTK+ti/NZfz3EAFQ8BJiZpiHLjZzteXvPOqQZmLI LNGRFA9mMo+gaeiFfeMc4i+YuPbFcjDNjfurHLgPgJyblEd6N30DQBSoWiJpAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUXOO+7NUz0intRyKGFD2/+P0fGkMwHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NTYzM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzsMA0GCSqGSIb3DQEB CwUAA4IBAQCBqSxIwCFSzzn8yKKrXhusIfrhd/pVYoj8p5fffYFmQ2nfIBPMCTYP +7COfLf66FVYWaRvWesTy3syB8cu0qpBkgDzUNrWXYiz7Jf/OiDLPgyzQZ56+HkB huy4S5DednPtHt8BjjB+HOe7JIFjONd9YIMPAyEowqizX07zGqWr1qI1l1qSbowD 3EUhcF/g36HCAmJF6eLOGalj5v/Nmyj7P2Pggs/NL6DY3kv3N8+CfNG6zmYZf+bo bjokQi8TJcEUrrzawWr+TX0DqX+Ql8/jUnoxGssXaLVkpVWao6DXAjOmJXFd0F6G LIs5+Qz3yN1o9FdEC2O0vc50HXvtiD/W -----END CERTIFICATE-----Generated at Sat Jul 5 10:43:42 2025 by rpki-client