$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166663a3a2f34382d3438203d3e2030.roa File: 326130613a363034303a623166663a3a2f34382d3438203d3e2030.roa (raw, json) Hash identifier: cwd5LxUfGqT7a9/Pajk8lfNPUrL3p3IC+JEphw9tMJU= Subject key identifier: 38:92:6E:FD:82:F0:4C:69:C2:8E:E9:01:C4:79:D2:35:6B:AA:FD:2C Certificate issuer: /CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Certificate serial: 4D8D170AF1F6A56A79AD067CD27FACF431855435 Authority key identifier: 30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166663a3a2f34382d3438203d3e2030.roa Signing time: Tue 10 Sep 2024 19:15:16 +0000 ROA not before: Tue 10 Sep 2024 19:10:16 +0000 ROA not after: Tue 09 Sep 2025 19:15:16 +0000 asID: 0 IP address blocks: 2a0a:6040:b1ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Oct 2024 08:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:8d:17:0a:f1:f6:a5:6a:79:ad:06:7c:d2:7f:ac:f4:31:85:54:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Validity Not Before: Sep 10 19:10:16 2024 GMT Not After : Sep 9 19:15:16 2025 GMT Subject: CN=38926EFD82F04C69C28EE901C479D2356BAAFD2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f2:33:a3:6a:37:c3:3f:db:a9:22:89:da:10: 2c:85:ac:c3:f4:47:a2:d8:ee:d4:e0:a9:e4:97:b8: f4:99:c4:d2:2f:6a:83:90:e0:ec:8a:ee:eb:31:4d: b1:57:29:3b:b6:33:94:fb:4e:c2:d4:15:6c:5b:c9: 88:8e:f7:d3:2f:dc:b7:67:bf:14:d2:03:d4:1b:b6: 6b:a6:9e:a4:07:25:3e:cf:dd:fd:44:9c:69:80:bb: 22:4a:1d:e1:ec:61:ad:c3:e4:77:da:87:50:88:42: c7:ed:b2:9a:13:0b:fd:e4:34:78:dc:35:00:07:77: cd:fb:59:6c:a6:0d:14:1a:0d:d8:b0:b6:84:54:0a: 43:60:29:b9:82:10:ad:1c:a7:5a:9c:33:64:ae:9a: ff:ce:ac:84:79:b5:b1:64:93:24:ca:c4:db:b0:88: fd:92:e9:c9:ad:fd:f7:0c:d0:fa:bf:93:89:3b:16: 7a:31:7d:21:ff:2c:0f:37:84:0f:15:66:13:31:a3: 27:94:f9:ea:76:d2:65:4f:01:ed:fa:92:ac:08:51: f2:c7:cb:ed:8d:78:e5:73:87:f2:04:15:f1:18:a7: 61:e3:4f:84:12:0f:41:4d:60:d5:87:e4:00:94:0c: 90:76:de:0f:0d:bf:ba:ac:b0:5f:d9:d7:0c:4b:53: 41:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:92:6E:FD:82:F0:4C:69:C2:8E:E9:01:C4:79:D2:35:6B:AA:FD:2C X509v3 Authority Key Identifier: keyid:30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a623166663a3a2f34382d3438203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b1ff::/48 Signature Algorithm: sha256WithRSAEncryption 8c:df:1c:02:48:e4:2f:f8:a6:65:38:6c:1b:5e:bd:57:c5:8b: 9f:dd:a1:d2:7e:c2:86:04:14:8d:dc:17:b2:6a:de:01:94:87: de:c1:cd:1a:66:77:af:2b:3e:d4:3d:87:ee:c2:76:09:b1:4e: 54:32:2d:b7:f8:4d:a9:ef:e2:87:1d:70:ff:7e:57:f6:6c:88: d7:5f:2b:7b:17:ba:9d:73:ca:87:e3:07:c7:32:38:f0:ad:73: 0d:83:45:47:0e:d7:15:c6:7d:d3:99:e1:47:a5:d2:c0:1e:16: 01:7f:b6:4b:09:8a:e4:bb:9d:d7:c8:34:cf:6a:66:3b:aa:9b: 97:5e:af:c5:2c:7e:e7:d5:6e:83:22:ee:02:3e:21:26:e3:7f: be:15:d2:9e:fb:54:8f:29:fd:4c:98:93:89:3c:a5:23:97:74: 11:15:68:77:89:56:3b:49:20:59:99:4e:15:7d:ad:cf:08:dc: 3d:6d:d6:50:52:34:b0:9c:e5:1e:36:49:71:bc:fc:9f:c0:86: cb:05:f6:0a:e8:af:fc:ea:08:53:04:ae:55:25:02:81:b6:5b: 22:18:b9:22:f0:b4:8a:84:ca:06:2d:68:bf:ff:98:10:4b:39: bf:7a:71:69:04:5f:7d:e7:2d:3d:58:72:49:23:d0:0a:50:e3: d9:b4:aa:65 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIUTY0XCvH2pWp5rQZ80n+s9DGFVDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUz MTA0RkU3NjAeFw0yNDA5MTAxOTEwMTZaFw0yNTA5MDkxOTE1MTZaMDMxMTAvBgNV BAMTKDM4OTI2RUZEODJGMDRDNjlDMjhFRTkwMUM0NzlEMjM1NkJBQUZEMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP8jOjajfDP9upIonaECyFrMP0 R6LY7tTgqeSXuPSZxNIvaoOQ4OyK7usxTbFXKTu2M5T7TsLUFWxbyYiO99Mv3Ldn vxTSA9QbtmumnqQHJT7P3f1EnGmAuyJKHeHsYa3D5Hfah1CIQsftspoTC/3kNHjc NQAHd837WWymDRQaDdiwtoRUCkNgKbmCEK0cp1qcM2Sumv/OrIR5tbFkkyTKxNuw iP2S6cmt/fcM0Pq/k4k7FnoxfSH/LA83hA8VZhMxoyeU+ep20mVPAe36kqwIUfLH y+2NeOVzh/IEFfEYp2HjT4QSD0FNYNWH5ACUDJB23g8Nv7qssF/Z1wxLU0HPAgMB AAGjggJWMIICUjAdBgNVHQ4EFgQUOJJu/YLwTGnCjukBxHnSNWuq/SwwHwYDVR0j BBgwFoAUMJwl57GP8opguWslVy+KnjEE/nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzAvMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUzMTA0RkU3Ni5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzMwOUMyNUU3QjE4RkYy OEE2MEI5NkIyNTU3MkY4QTlFMzEwNEZFNzYuY2VyMIGtBggrBgEFBQcBCwSBoDCB nTCBmgYIKwYBBQUHMAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzJhY2EzY2E2LTM0Y2MtNDc3Mi1iYWMwLWEzNWRkMDE5NWNl Ny8wLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjIzMTY2NjYzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEF BQcBBwEB/wQTMBEwDwQCAAIwCQMHACoKYECx/zANBgkqhkiG9w0BAQsFAAOCAQEA jN8cAkjkL/imZThsG169V8WLn92h0n7ChgQUjdwXsmreAZSH3sHNGmZ3rys+1D2H 7sJ2CbFOVDItt/hNqe/ihx1w/35X9myI118rexe6nXPKh+MHxzI48K1zDYNFRw7X FcZ905nhR6XSwB4WAX+2SwmK5Lud18g0z2pmO6qbl16vxSx+59VugyLuAj4hJuN/ vhXSnvtUjyn9TJiTiTylI5d0ERVod4lWO0kgWZlOFX2tzwjcPW3WUFI0sJzlHjZJ cbz8n8CGywX2Cuiv/OoIUwSuVSUCgbZbIhi5IvC0ioTKBi1ov/+YEEs5v3pxaQRf fectPVhySSPQClDj2bSqZQ== -----END CERTIFICATE-----Generated at Tue Oct 22 20:22:08 2024 by rpki-client on console-fra.rpki-client.org