$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166343a3a2f34382d3438203d3e20323030363736.roa File: 326130613a363034303a623166343a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: Nnbe/4zszjgo0YB55Fou4Wds93r5DpKEFbS0MZw1LSo= Subject key identifier: 85:D9:3A:E9:F9:34:86:DD:FB:D4:AF:1B:09:42:B9:81:5F:6E:94:45 Certificate issuer: /CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Certificate serial: 1045A8C5383AEA72DFEF7C4365691F5922A97477 Authority key identifier: 30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166343a3a2f34382d3438203d3e20323030363736.roa Signing time: Tue 10 Sep 2024 19:15:18 +0000 ROA not before: Tue 10 Sep 2024 19:10:18 +0000 ROA not after: Tue 09 Sep 2025 19:15:18 +0000 asID: 200676 IP address blocks: 2a0a:6040:b1f4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Oct 2024 08:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:45:a8:c5:38:3a:ea:72:df:ef:7c:43:65:69:1f:59:22:a9:74:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Validity Not Before: Sep 10 19:10:18 2024 GMT Not After : Sep 9 19:15:18 2025 GMT Subject: CN=85D93AE9F93486DDFBD4AF1B0942B9815F6E9445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:37:51:65:9e:81:e9:a5:b0:85:76:64:11:fc: 4c:66:f8:d5:f8:33:19:df:29:0a:22:d1:3b:23:43: 07:9a:0a:25:be:9f:8a:3e:ac:99:d5:60:a8:97:af: 5c:a5:60:91:bc:85:7c:a8:29:0d:e4:8e:fb:83:aa: 0a:28:3c:3d:b9:7f:ad:d8:2a:c6:b7:46:43:b8:2b: e9:ad:65:ad:c2:79:59:bb:6f:ca:ec:57:38:3b:0e: ad:57:f1:f8:ee:af:77:5a:61:b6:3c:8f:3a:55:a7: 3a:e8:67:b4:d2:df:ba:f2:cd:d6:08:3e:1c:bc:6c: 0c:ce:f4:9d:93:53:da:00:cb:9a:da:3c:8f:4a:14: ef:9f:c3:0a:f9:6c:7e:a7:97:7b:22:4d:95:71:63: 62:e8:b5:d1:48:47:09:01:9d:af:69:2c:18:a7:e8: 36:8c:44:23:ba:5e:7f:9e:16:fb:df:44:f9:51:02: 51:4e:47:c5:4c:db:21:c1:a6:5d:f7:00:a0:3c:bd: a7:cc:70:42:d6:83:03:3e:0e:7a:a1:5f:62:98:84: 30:91:19:f4:66:9d:af:7e:5f:73:f8:a8:c9:99:11: c2:47:40:2d:89:43:ee:c7:09:f2:c8:38:e3:0b:fe: 4b:09:13:e2:b4:77:be:b5:a6:7e:a4:fd:38:69:77: 66:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D9:3A:E9:F9:34:86:DD:FB:D4:AF:1B:09:42:B9:81:5F:6E:94:45 X509v3 Authority Key Identifier: keyid:30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166343a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b1f4::/48 Signature Algorithm: sha256WithRSAEncryption 15:bd:eb:bd:7d:42:55:51:22:0e:01:15:14:44:74:f0:e3:50: 08:f0:4e:22:71:92:32:15:94:f8:df:cf:a0:17:bc:e1:d8:d8: 01:c3:6a:57:58:b9:c0:c6:36:63:eb:6d:01:55:8c:d9:bd:eb: be:50:fd:00:d5:4d:bd:ca:5b:83:82:29:bb:17:74:0a:60:6a: 62:c1:c1:f6:18:4c:5a:1d:a2:82:f9:e4:18:71:3d:d7:6b:fb: 46:10:89:1a:c5:eb:82:9f:2b:6a:ba:a5:fc:01:6b:eb:e1:94: c0:09:78:db:54:29:75:62:5c:fd:9c:87:f6:92:d9:e0:eb:c0: 2b:d2:6a:0c:3e:83:f0:df:3e:21:a6:17:96:01:b5:c0:b7:fd: 5e:27:ff:73:a6:8c:d8:1c:8a:b2:1e:c3:26:cc:b2:ca:49:cf: 00:07:90:88:70:52:74:d6:9c:5d:16:47:f0:d3:45:d2:58:87: 33:3d:98:5a:18:b0:0a:92:ad:43:e2:2d:a6:5e:c1:35:29:e7: 7b:d4:7d:06:59:1f:21:39:64:ed:6c:f8:ab:19:59:6f:c1:3e: c7:de:9b:ff:e9:7e:04:c9:32:52:3d:db:c8:ea:5f:2e:3e:6c: ae:30:4a:f1:ba:eb:45:95:b2:8d:30:9d:bf:bf:72:d8:2f:b8: 0f:c6:ac:10 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUEEWoxTg66nLf73xDZWkfWSKpdHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUz MTA0RkU3NjAeFw0yNDA5MTAxOTEwMThaFw0yNTA5MDkxOTE1MThaMDMxMTAvBgNV BAMTKDg1RDkzQUU5RjkzNDg2RERGQkQ0QUYxQjA5NDJCOTgxNUY2RTk0NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWN1FlnoHppbCFdmQR/Exm+NX4 MxnfKQoi0TsjQweaCiW+n4o+rJnVYKiXr1ylYJG8hXyoKQ3kjvuDqgooPD25f63Y Ksa3RkO4K+mtZa3CeVm7b8rsVzg7Dq1X8fjur3daYbY8jzpVpzroZ7TS37ryzdYI Phy8bAzO9J2TU9oAy5raPI9KFO+fwwr5bH6nl3siTZVxY2LotdFIRwkBna9pLBin 6DaMRCO6Xn+eFvvfRPlRAlFOR8VM2yHBpl33AKA8vafMcELWgwM+DnqhX2KYhDCR GfRmna9+X3P4qMmZEcJHQC2JQ+7HCfLIOOML/ksJE+K0d761pn6k/Thpd2ZJAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUhdk66fk0ht371K8bCUK5gV9ulEUwHwYDVR0j BBgwFoAUMJwl57GP8opguWslVy+KnjEE/nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzAvMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUzMTA0RkU3Ni5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzMwOUMyNUU3QjE4RkYy OEE2MEI5NkIyNTU3MkY4QTlFMzEwNEZFNzYuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzJhY2EzY2E2LTM0Y2MtNDc3Mi1iYWMwLWEzNWRkMDE5NWNl Ny8wLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjIzMTY2MzQzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMjMwMzAzNjM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqCmBAsfQwDQYJKoZIhvcN AQELBQADggEBABW96719QlVRIg4BFRREdPDjUAjwTiJxkjIVlPjfz6AXvOHY2AHD aldYucDGNmPrbQFVjNm9675Q/QDVTb3KW4OCKbsXdApgamLBwfYYTFodooL55Bhx Pddr+0YQiRrF64KfK2q6pfwBa+vhlMAJeNtUKXViXP2ch/aS2eDrwCvSagw+g/Df PiGmF5YBtcC3/V4n/3OmjNgcirIewybMsspJzwAHkIhwUnTWnF0WR/DTRdJYhzM9 mFoYsAqSrUPiLaZewTUp53vUfQZZHyE5ZO1s+KsZWW/BPsfem//pfgTJMlI928jq Xy4+bK4wSvG660WVso0wnb+/ctgvuA/GrBA= -----END CERTIFICATE-----Generated at Tue Oct 22 20:22:08 2024 by rpki-client on console-fra.rpki-client.org