$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a656430303a3a2f34302d3430203d3e2030.roa File: 326130613a363034303a656430303a3a2f34302d3430203d3e2030.roa (raw, json) Hash identifier: vmCZ6eOm5tS7bNiPnlTdd4xzZjSjYpY8TXILOA0OmSc= Subject key identifier: EA:B0:A3:E5:FC:3E:36:5D:39:4F:DF:47:23:53:AC:B7:86:61:A8:CB Certificate issuer: /CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Certificate serial: 17D14D2EC12B49D6098D53CBF5D2498CC61EE525 Authority key identifier: 30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a656430303a3a2f34302d3430203d3e2030.roa Signing time: Tue 10 Sep 2024 19:15:18 +0000 ROA not before: Tue 10 Sep 2024 19:10:18 +0000 ROA not after: Tue 09 Sep 2025 19:15:18 +0000 asID: 0 IP address blocks: 2a0a:6040:ed00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Oct 2024 08:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d1:4d:2e:c1:2b:49:d6:09:8d:53:cb:f5:d2:49:8c:c6:1e:e5:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=309C25E7B18FF28A60B96B25572F8A9E3104FE76 Validity Not Before: Sep 10 19:10:18 2024 GMT Not After : Sep 9 19:15:18 2025 GMT Subject: CN=EAB0A3E5FC3E365D394FDF472353ACB78661A8CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0f:8b:c5:87:d8:e6:c0:2b:8c:a8:11:5a:94: ae:9e:76:00:3d:b5:8f:84:c5:0a:bc:1c:be:50:9c: 7a:2e:29:13:4f:f1:89:76:cc:4e:9f:ec:27:5b:a0: e2:bc:bf:ee:50:ff:d6:6d:84:b4:1d:bb:2e:9e:76: 29:76:b2:12:a6:9e:3c:61:f0:54:07:70:e2:ec:d2: 20:e5:37:ea:26:91:e9:df:33:ee:4c:bf:77:39:c8: a2:7e:0c:92:79:d9:68:42:47:81:34:70:8b:ab:9e: 74:2a:25:25:97:aa:38:4e:a5:bf:03:33:e4:42:83: 4e:a7:62:f5:3a:38:23:36:9a:a6:b2:f1:65:08:17: a3:02:ad:ec:45:2c:b7:ef:50:ab:46:5b:15:33:24: 2c:fb:1f:d8:90:d1:0d:18:6f:82:9e:41:14:97:c0: 53:a3:7c:c9:46:ba:dd:83:cc:8a:87:3c:9f:cc:4c: 15:52:cf:7d:c9:07:c5:8c:fb:0a:8a:ee:9a:1f:a4: 03:72:7d:60:0e:4b:e4:28:fd:41:6e:40:45:7c:a8: b9:82:7b:a2:ca:92:c1:df:d0:c6:c1:d8:c4:85:25: 52:30:1b:81:c3:21:68:c9:9f:1b:b4:8b:db:b1:b8: cf:cc:3c:97:b8:17:2a:bc:f5:60:ce:b1:d2:33:47: 46:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B0:A3:E5:FC:3E:36:5D:39:4F:DF:47:23:53:AC:B7:86:61:A8:CB X509v3 Authority Key Identifier: keyid:30:9C:25:E7:B1:8F:F2:8A:60:B9:6B:25:57:2F:8A:9E:31:04:FE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/309C25E7B18FF28A60B96B25572F8A9E3104FE76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/0/326130613a363034303a656430303a3a2f34302d3430203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ed00::/40 Signature Algorithm: sha256WithRSAEncryption 09:04:05:66:c6:fc:55:fd:e4:6a:31:c1:9c:af:e6:cb:e7:72: 48:4c:4a:dc:c6:41:04:1f:87:9c:41:20:e2:91:b8:d5:db:42: cf:09:a0:b1:6c:28:2b:f0:94:a4:de:c8:d5:72:c9:5a:70:c8: dc:f8:88:49:d6:b0:da:55:31:44:e5:60:e1:f8:b3:e5:a9:7e: 71:bd:91:3e:74:f3:bd:5e:35:a0:7f:2b:11:55:65:13:70:36: cc:3f:eb:f6:e1:c3:66:23:42:da:37:81:fb:ef:d9:02:ff:46: 85:d4:bf:e2:72:b3:66:1e:b1:79:1c:cf:43:9b:b9:24:2e:df: a0:e9:17:60:c1:25:75:23:39:c1:87:7b:4d:2f:76:d7:f0:3a: 89:a0:f9:2c:38:8e:71:a7:84:85:a0:2a:25:da:66:c5:19:ee: 39:b8:17:64:a7:31:b2:7d:12:fc:ee:e4:70:e2:7e:f3:e1:66: 39:40:cd:9a:02:d0:5b:6e:fb:54:20:f5:85:cf:bf:72:df:43: 43:74:d6:b5:51:70:0c:c5:8c:bf:b8:14:2e:c0:94:49:46:d5: 97:6b:9b:bb:15:38:06:f9:01:a5:ec:8b:6f:d6:ae:66:b9:a1: 54:58:6a:35:c4:0c:59:32:8b:23:db:59:bc:9a:69:68:bb:37: 2b:59:22:f7 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUF9FNLsErSdYJjVPL9dJJjMYe5SUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUz MTA0RkU3NjAeFw0yNDA5MTAxOTEwMThaFw0yNTA5MDkxOTE1MThaMDMxMTAvBgNV BAMTKEVBQjBBM0U1RkMzRTM2NUQzOTRGREY0NzIzNTNBQ0I3ODY2MUE4Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8D4vFh9jmwCuMqBFalK6edgA9 tY+ExQq8HL5QnHouKRNP8Yl2zE6f7CdboOK8v+5Q/9ZthLQduy6edil2shKmnjxh 8FQHcOLs0iDlN+omkenfM+5Mv3c5yKJ+DJJ52WhCR4E0cIurnnQqJSWXqjhOpb8D M+RCg06nYvU6OCM2mqay8WUIF6MCrexFLLfvUKtGWxUzJCz7H9iQ0Q0Yb4KeQRSX wFOjfMlGut2DzIqHPJ/MTBVSz33JB8WM+wqK7pofpANyfWAOS+Qo/UFuQEV8qLmC e6LKksHf0MbB2MSFJVIwG4HDIWjJnxu0i9uxuM/MPJe4Fyq89WDOsdIzR0aHAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQU6rCj5fw+Nl05T99HI1Ost4ZhqMswHwYDVR0j BBgwFoAUMJwl57GP8opguWslVy+KnjEE/nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzAvMzA5QzI1RTdCMThGRjI4QTYwQjk2QjI1NTcyRjhBOUUzMTA0RkU3Ni5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzMwOUMyNUU3QjE4RkYy OEE2MEI5NkIyNTU3MkY4QTlFMzEwNEZFNzYuY2VyMIGtBggrBgEFBQcBCwSBoDCB nTCBmgYIKwYBBQUHMAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzJhY2EzY2E2LTM0Y2MtNDc3Mi1iYWMwLWEzNWRkMDE5NWNl Ny8wLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjU2NDMwMzAzYTNhMmYzNDMwMmQzNDMw MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwDgQCAAIwCAMGACoKYEDtMA0GCSqGSIb3DQEBCwUAA4IBAQAJ BAVmxvxV/eRqMcGcr+bL53JITErcxkEEH4ecQSDikbjV20LPCaCxbCgr8JSk3sjV cslacMjc+IhJ1rDaVTFE5WDh+LPlqX5xvZE+dPO9XjWgfysRVWUTcDbMP+v24cNm I0LaN4H779kC/0aF1L/icrNmHrF5HM9Dm7kkLt+g6RdgwSV1IznBh3tNL3bX8DqJ oPksOI5xp4SFoCol2mbFGe45uBdkpzGyfRL87uRw4n7z4WY5QM2aAtBbbvtUIPWF z79y30NDdNa1UXAMxYy/uBQuwJRJRtWXa5u7FTgG+QGl7Itv1q5muaFUWGo1xAxZ Mosj21m8mmlouzcrWSL3 -----END CERTIFICATE-----Generated at Tue Oct 22 20:22:08 2024 by rpki-client on console-fra.rpki-client.org