$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166303a3a2f34382d3438203d3e20323030363736.roa File: 326130613a363034303a623166303a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: dOsy+R+Pu+oAZfnInfj1QRHz0MdLjsjFwXGn7V3VRV4= Subject key identifier: EF:1F:5B:6B:86:07:AE:ED:46:6A:6E:5A:E9:50:F7:DB:01:6F:F4:D3 Certificate issuer: /CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Certificate serial: 082544FC8CEBFA7CBF54A3F7D32A2FC5D505BB77 Authority key identifier: 30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166303a3a2f34382d3438203d3e20323030363736.roa Signing time: Tue 10 Sep 2024 19:15:19 +0000 ROA not before: Tue 10 Sep 2024 19:10:19 +0000 ROA not after: Tue 09 Sep 2025 19:15:19 +0000 asID: 200676 IP address blocks: 2a0a:6040:b1f0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:25:44:fc:8c:eb:fa:7c:bf:54:a3:f7:d3:2a:2f:c5:d5:05:bb:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Validity Not Before: Sep 10 19:10:19 2024 GMT Not After : Sep 9 19:15:19 2025 GMT Subject: CN=EF1F5B6B8607AEED466A6E5AE950F7DB016FF4D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f4:4d:fe:e7:dc:8d:e8:cc:e4:ed:8e:fc:cc: 2a:c9:68:67:95:0c:a3:96:09:60:ab:f9:6c:8b:8d: ef:2d:44:4a:40:85:b2:c4:8e:aa:d9:ad:4d:fb:14: 5d:ab:5f:83:f5:4a:f6:12:a0:00:9c:ac:81:8c:f0: 38:45:d8:fa:71:1d:b0:a5:b2:0f:f0:ea:da:93:f6: 8c:2f:79:88:36:81:55:8b:82:94:99:51:57:ae:60: b5:27:21:a1:a1:ba:bc:2f:4e:64:3b:5e:e0:27:8d: 7d:48:29:75:00:b0:38:e1:94:7c:f8:1c:f6:3b:36: b5:64:e0:c6:e7:0d:35:84:96:e8:13:c1:54:a0:7d: c7:0b:8a:e9:87:bd:77:54:7c:37:37:7b:2e:93:f3: 5d:e1:b3:32:64:5a:39:c1:1d:da:df:81:f4:d9:82: 68:f7:62:88:91:d1:61:e2:4f:b6:72:e3:96:4c:ea: 8b:f0:c4:e3:f1:7f:53:c0:4f:65:60:84:32:90:b2: 0f:7a:eb:85:d3:3c:9f:e9:ad:7c:69:54:29:9b:03: cc:99:03:47:47:20:ac:9d:73:f7:6e:2b:fc:23:7a: 80:d1:7f:ba:4e:d4:86:a7:82:5f:f4:67:96:69:9f: 62:ce:df:02:01:48:4b:ec:f4:fe:bc:f9:c8:e4:75: c7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:1F:5B:6B:86:07:AE:ED:46:6A:6E:5A:E9:50:F7:DB:01:6F:F4:D3 X509v3 Authority Key Identifier: keyid:30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166303a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b1f0::/48 Signature Algorithm: sha256WithRSAEncryption 78:26:4a:5f:a5:c3:36:7e:f1:a4:63:f0:ca:70:f5:5c:c3:3d: 61:ff:bc:4c:7a:14:a9:32:af:2d:c1:6f:6d:6a:8d:b4:c0:26: e3:36:9e:b5:a5:36:6e:50:98:36:41:cb:31:da:31:74:d8:9e: 7c:26:c3:d9:3c:bf:5e:56:8a:1a:3b:0c:89:3a:4c:d8:60:1d: bf:8c:bb:23:01:68:88:e9:a1:d6:7f:3e:33:4b:d6:59:89:a2: fd:99:48:a8:7f:2e:69:68:50:99:24:2a:4d:e3:c7:ca:f5:9c: d6:f4:2e:36:31:88:6e:02:a9:c8:70:c6:d6:3f:0b:81:a3:3e: 84:38:a5:e4:f3:52:65:92:76:a4:36:07:1c:0f:18:7d:1b:5a: 27:60:f2:ae:c8:d5:98:b7:9c:e5:14:c2:a8:54:66:4f:5d:bf: 1c:4d:3c:bd:58:eb:5d:17:4c:0e:b6:ee:19:c2:0c:e1:37:da: 2c:3a:10:23:e9:a5:c5:9f:5a:ba:dc:43:f8:85:0f:48:6e:aa: 9c:51:f3:ef:ec:8d:24:7c:78:91:65:11:51:8a:f0:6d:52:aa: 90:05:fc:ef:25:70:11:5e:ee:cd:df:fd:15:65:81:9f:6c:55: eb:95:d8:2b:05:46:a1:ed:2a:fe:0e:c0:a6:fe:57:3a:e6:b7: df:8a:aa:27 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUCCVE/Izr+ny/VKP30yovxdUFu3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUz MTA0RkU3NjAeFw0yNDA5MTAxOTEwMTlaFw0yNTA5MDkxOTE1MTlaMDMxMTAvBgNV BAMTKEVGMUY1QjZCODYwN0FFRUQ0NjZBNkU1QUU5NTBGN0RCMDE2RkY0RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp9E3+59yN6Mzk7Y78zCrJaGeV DKOWCWCr+WyLje8tREpAhbLEjqrZrU37FF2rX4P1SvYSoACcrIGM8DhF2PpxHbCl sg/w6tqT9owveYg2gVWLgpSZUVeuYLUnIaGhurwvTmQ7XuAnjX1IKXUAsDjhlHz4 HPY7NrVk4MbnDTWElugTwVSgfccLiumHvXdUfDc3ey6T813hszJkWjnBHdrfgfTZ gmj3YoiR0WHiT7Zy45ZM6ovwxOPxf1PAT2VghDKQsg9664XTPJ/prXxpVCmbA8yZ A0dHIKydc/duK/wjeoDRf7pO1Iangl/0Z5Zpn2LO3wIBSEvs9P68+cjkdccbAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU7x9ba4YHru1Gam5a6VD32wFv9NMwHwYDVR0j BBgwFoAUMJwl57GP8opguWslVy+KnjEE/nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzAvMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUzMTA0RkU3Ni5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzMwOUMyNUU3QjE4RkYy OEE2MEI5NkIyNTU3MkY4QTlFMzEwNEZFNzYuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzJhY2EzY2E2LTM0Y2MtNDc3Mi1iYWMwLWEzNWRkMDE5NWNl Ny8wLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjIzMTY2MzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMjMwMzAzNjM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqCmBAsfAwDQYJKoZIhvcN AQELBQADggEBAHgmSl+lwzZ+8aRj8Mpw9VzDPWH/vEx6FKkyry3Bb21qjbTAJuM2 nrWlNm5QmDZByzHaMXTYnnwmw9k8v15Wiho7DIk6TNhgHb+MuyMBaIjpodZ/PjNL 1lmJov2ZSKh/LmloUJkkKk3jx8r1nNb0LjYxiG4CqchwxtY/C4GjPoQ4peTzUmWS dqQ2BxwPGH0bWidg8q7I1Zi3nOUUwqhUZk9dvxxNPL1Y610XTA627hnCDOE32iw6 ECPppcWfWrrcQ/iFD0huqpxR8+/sjSR8eJFlEVGK8G1SqpAF/O8lcBFe7s3f/RVl gZ9sVeuV2CsFRqHtKv4OwKb+Vzrmt9+Kqic= -----END CERTIFICATE-----Generated at Thu Nov 21 06:58:16 2024 by rpki-client on console-fra.rpki-client.org