$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166333a3a2f34382d3438203d3e20323030363736.roa File: 326130613a363034303a623166333a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: w5dnEiDx5goNVTXWdKgSFg9sD6RUplNurP3xamwPNaQ= Subject key identifier: 64:67:9B:B9:0E:4A:D9:90:D5:BA:7C:AF:F6:A4:80:E5:80:06:96:C8 Certificate issuer: /CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Certificate serial: 66FDFDE4D0F8878649026AAC38E2B9B5136BB95C Authority key identifier: 30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166333a3a2f34382d3438203d3e20323030363736.roa Signing time: Tue 10 Sep 2024 19:15:19 +0000 ROA not before: Tue 10 Sep 2024 19:10:19 +0000 ROA not after: Tue 09 Sep 2025 19:15:19 +0000 asID: 200676 IP address blocks: 2a0a:6040:b1f3::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Oct 2024 08:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:fd:fd:e4:d0:f8:87:86:49:02:6a:ac:38:e2:b9:b5:13:6b:b9:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Validity Not Before: Sep 10 19:10:19 2024 GMT Not After : Sep 9 19:15:19 2025 GMT Subject: CN=64679BB90E4AD990D5BA7CAFF6A480E5800696C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a4:3a:1e:8d:07:28:b7:51:38:50:6d:e5:e7: 25:1e:c3:68:16:ef:4a:e2:f1:d3:11:bc:2b:63:d8: 4a:54:bd:8c:76:0d:ae:02:c7:e2:74:19:8d:05:e3: de:58:e2:7f:0d:24:97:ef:5b:e9:63:61:c7:9d:3f: 26:2c:4c:7a:ca:2b:5a:88:cb:96:3b:de:42:c9:0c: 4d:f1:38:e8:94:b5:45:f8:85:f2:0e:a5:85:1c:dc: 36:1f:d9:c0:ba:59:a8:fa:22:2d:a4:2c:ee:40:40: 5f:42:bc:f3:a6:fb:d8:f2:39:51:a4:3c:9a:b2:05: a5:fe:c0:57:d3:43:e6:8f:07:7e:81:bd:2a:0c:01: 7d:7c:64:43:4c:34:aa:ef:7d:cf:3b:b2:df:52:d1: 69:81:6d:91:32:a9:10:fe:a0:c2:02:b6:f4:ae:22: ff:fe:a5:23:65:b0:1e:60:51:62:0f:10:ef:26:d6: 14:59:65:bd:fb:1e:e2:07:09:78:2d:c9:5a:c1:5b: b0:f0:b6:3d:37:17:16:e9:2f:01:48:21:c9:ba:1c: 16:b5:1d:e5:e5:41:f8:1b:65:90:25:32:26:79:3e: 0a:fd:e4:50:73:6e:84:21:5d:a7:9f:50:94:13:0d: 79:81:13:7f:a4:d0:a1:64:1b:f2:72:f5:09:bb:9f: 14:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:67:9B:B9:0E:4A:D9:90:D5:BA:7C:AF:F6:A4:80:E5:80:06:96:C8 X509v3 Authority Key Identifier: keyid:30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166333a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b1f3::/48 Signature Algorithm: sha256WithRSAEncryption 1d:a8:ad:22:1d:35:9d:c5:88:df:61:b3:c4:42:b1:36:5a:56: 31:74:7c:07:3b:21:0e:56:f2:f9:ea:d1:23:a0:da:22:28:0d: 85:21:18:33:50:aa:ad:76:9a:02:2a:78:78:18:dc:da:69:c4: b1:ac:1c:3a:af:47:d4:e8:b5:96:6f:2c:46:58:32:a7:aa:ab: 5a:74:9e:f4:f4:48:f0:c5:58:81:35:59:be:f4:3d:f0:98:9d: e2:4b:15:44:7a:06:12:07:b1:a9:1b:3e:4e:50:b7:88:06:28: c3:d7:96:c4:e9:e2:60:f7:37:ab:60:51:e3:00:ca:60:5a:7e: 56:3c:0b:e8:68:c2:7a:37:3d:a6:4a:c2:91:18:93:34:b9:2c: 2f:dc:b9:01:de:8d:12:16:6f:4a:43:ad:8b:89:67:54:07:02: 18:79:be:8e:d6:d9:41:89:29:55:1f:58:7b:d1:61:40:2c:f9: 15:08:99:b8:7f:b3:0f:ac:ae:2f:42:f1:10:0f:0a:e0:b0:4e: b5:59:70:e7:9b:14:13:06:50:3e:55:f9:6c:ec:0e:97:81:06: bc:d5:08:62:5b:a0:4d:62:e3:53:97:be:f8:33:d9:fb:bb:a9: 60:ad:26:95:66:77:98:8c:db:b4:c5:4f:2c:41:29:d4:65:a1: e9:d8:9e:00 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUZv395ND4h4ZJAmqsOOK5tRNruVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUz MTA0RkU3NjAeFw0yNDA5MTAxOTEwMTlaFw0yNTA5MDkxOTE1MTlaMDMxMTAvBgNV BAMTKDY0Njc5QkI5MEU0QUQ5OTBENUJBN0NBRkY2QTQ4MEU1ODAwNjk2QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvpDoejQcot1E4UG3l5yUew2gW 70ri8dMRvCtj2EpUvYx2Da4Cx+J0GY0F495Y4n8NJJfvW+ljYcedPyYsTHrKK1qI y5Y73kLJDE3xOOiUtUX4hfIOpYUc3DYf2cC6Waj6Ii2kLO5AQF9CvPOm+9jyOVGk PJqyBaX+wFfTQ+aPB36BvSoMAX18ZENMNKrvfc87st9S0WmBbZEyqRD+oMICtvSu Iv/+pSNlsB5gUWIPEO8m1hRZZb37HuIHCXgtyVrBW7Dwtj03FxbpLwFIIcm6HBa1 HeXlQfgbZZAlMiZ5Pgr95FBzboQhXaefUJQTDXmBE3+k0KFkG/Jy9Qm7nxTfAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUZGebuQ5K2ZDVunyv9qSA5YAGlsgwHwYDVR0j BBgwFoAUMJwl57GP8opguWslVy+KnjEE/nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzAvMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUzMTA0RkU3Ni5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzMwOUMyNUU3QjE4RkYy OEE2MEI5NkIyNTU3MkY4QTlFMzEwNEZFNzYuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzJhY2EzY2E2LTM0Y2MtNDc3Mi1iYWMwLWEzNWRkMDE5NWNl Ny8wLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjIzMTY2MzMzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMjMwMzAzNjM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqCmBAsfMwDQYJKoZIhvcN AQELBQADggEBAB2orSIdNZ3FiN9hs8RCsTZaVjF0fAc7IQ5W8vnq0SOg2iIoDYUh GDNQqq12mgIqeHgY3NppxLGsHDqvR9TotZZvLEZYMqeqq1p0nvT0SPDFWIE1Wb70 PfCYneJLFUR6BhIHsakbPk5Qt4gGKMPXlsTp4mD3N6tgUeMAymBaflY8C+howno3 PaZKwpEYkzS5LC/cuQHejRIWb0pDrYuJZ1QHAhh5vo7W2UGJKVUfWHvRYUAs+RUI mbh/sw+sri9C8RAPCuCwTrVZcOebFBMGUD5V+WzsDpeBBrzVCGJboE1i41OXvvgz 2fu7qWCtJpVmd5iM27TFTyxBKdRloenYngA= -----END CERTIFICATE-----Generated at Tue Oct 22 20:22:08 2024 by rpki-client on console-fra.rpki-client.org