$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/326130613a363034303a623166383a3a2f34382d3438203d3e203530373535.roa File: 326130613a363034303a623166383a3a2f34382d3438203d3e203530373535.roa (raw, json) Hash identifier: NCGL0xwyR9g2r6A71GgXDrp+Nhm2k3T8HoQFr0k0das= Subject key identifier: 22:2D:15:A1:64:2F:08:6B:84:A5:A5:02:67:81:CF:94:00:DA:C2:0F Certificate issuer: /CN=4FDC571A5CDA13958BCE475F0E5D9101DB812057 Certificate serial: 4BBF94AB5384395D2A141ED0B56011C0377BDDF9 Authority key identifier: 4F:DC:57:1A:5C:DA:13:95:8B:CE:47:5F:0E:5D:91:01:DB:81:20:57 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/4FDC571A5CDA13958BCE475F0E5D9101DB812057.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/326130613a363034303a623166383a3a2f34382d3438203d3e203530373535.roa Signing time: Fri 04 Jul 2025 10:47:29 +0000 ROA not before: Fri 04 Jul 2025 10:42:29 +0000 ROA not after: Fri 03 Jul 2026 10:47:29 +0000 asID: 50755 IP address blocks: 2a0a:6040:b1f8::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/4FDC571A5CDA13958BCE475F0E5D9101DB812057.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/4FDC571A5CDA13958BCE475F0E5D9101DB812057.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/4FDC571A5CDA13958BCE475F0E5D9101DB812057.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:bf:94:ab:53:84:39:5d:2a:14:1e:d0:b5:60:11:c0:37:7b:dd:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FDC571A5CDA13958BCE475F0E5D9101DB812057 Validity Not Before: Jul 4 10:42:29 2025 GMT Not After : Jul 3 10:47:29 2026 GMT Subject: CN=222D15A1642F086B84A5A5026781CF9400DAC20F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:15:4c:bc:89:80:3d:79:e4:b7:31:dc:2f:3b: 01:64:02:78:fa:58:69:6f:3d:2d:53:bb:5a:73:48: 71:34:d6:6b:09:1c:38:33:0f:79:ab:75:12:a3:5d: 3f:5b:70:44:64:42:c3:e8:52:5a:88:9d:78:67:59: 78:23:05:b2:a9:09:ad:b3:03:25:aa:ba:78:d6:b7: 2d:3e:4a:ea:4e:81:a8:3c:7d:9b:58:79:1e:82:fa: b7:48:01:ce:b4:b9:ca:58:e8:7e:b0:2e:43:f3:bd: 15:01:23:28:94:88:a4:37:2b:f9:2a:74:15:28:8e: 1f:45:4e:b8:11:0b:b3:1e:55:03:3e:2a:88:dc:72: cd:b2:20:39:95:02:3d:99:a8:b9:de:6e:66:19:8f: 56:1b:7e:53:54:19:56:99:ee:e5:5c:4e:48:d6:98: af:2b:21:77:07:e9:9e:33:ad:3e:07:fa:2b:85:cf: 81:2c:08:43:26:ad:c2:a4:96:f3:04:e5:50:6a:b9: 7c:dd:e5:b5:6b:e0:9a:b9:df:d0:3c:fb:ac:f4:2b: 47:cc:ca:fd:5a:c5:cb:9e:fb:30:65:44:17:6b:39: 30:b7:d6:1c:86:04:f8:f7:6a:43:13:0d:84:1e:2e: 2a:70:44:c7:40:c4:6b:60:31:75:66:f7:73:c1:e7: d4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2D:15:A1:64:2F:08:6B:84:A5:A5:02:67:81:CF:94:00:DA:C2:0F X509v3 Authority Key Identifier: keyid:4F:DC:57:1A:5C:DA:13:95:8B:CE:47:5F:0E:5D:91:01:DB:81:20:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/4FDC571A5CDA13958BCE475F0E5D9101DB812057.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/4FDC571A5CDA13958BCE475F0E5D9101DB812057.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/326130613a363034303a623166383a3a2f34382d3438203d3e203530373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b1f8::/48 Signature Algorithm: sha256WithRSAEncryption 20:52:78:07:b9:b8:13:0e:07:87:9b:36:71:1d:0d:39:bc:bc: c4:9a:a5:83:06:d9:4c:a1:c8:1e:0b:48:94:61:4b:66:39:f8: 5f:7b:66:09:c5:24:92:87:b8:1a:72:97:40:e3:79:50:d8:81: cc:6a:be:b4:18:43:f4:54:ec:12:23:7b:fc:37:46:a7:b5:b6: f2:33:b4:9f:b6:59:38:8e:8d:09:5a:91:4b:9e:b9:a6:6a:0f: 95:e9:08:da:8c:f9:08:17:01:13:fe:7a:ec:75:e8:cd:48:18: 84:c0:09:ff:47:d4:70:8a:a0:24:29:b6:20:46:cd:17:4c:6e: 53:a6:0d:d3:29:0b:71:fd:ba:5d:aa:74:17:35:ef:5b:cf:67: c7:3f:3e:fc:46:af:19:cc:11:5d:a2:50:39:41:ae:dd:be:b0: ba:aa:35:c1:fc:d4:77:47:52:42:74:9f:d3:7a:76:96:8d:dc: 12:55:8e:ed:0a:6f:22:f6:14:92:c6:26:3f:86:d9:c3:cd:eb: 02:e8:55:f4:ee:ab:4f:ae:7d:49:3c:d8:15:b9:6c:e7:26:d0: e3:73:d9:25:83:d1:49:b5:10:54:ea:ef:9b:60:7d:9e:1c:23: bd:98:0d:1b:35:60:8b:d4:60:c1:8d:9d:61:e6:15:1e:f7:4f: 0b:12:f3:48 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUS7+Uq1OEOV0qFB7QtWARwDd73fkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZEQzU3MUE1Q0RBMTM5NThCQ0U0NzVGMEU1RDkxMDFE QjgxMjA1NzAeFw0yNTA3MDQxMDQyMjlaFw0yNjA3MDMxMDQ3MjlaMDMxMTAvBgNV BAMTKDIyMkQxNUExNjQyRjA4NkI4NEE1QTUwMjY3ODFDRjk0MDBEQUMyMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChFUy8iYA9eeS3MdwvOwFkAnj6 WGlvPS1Tu1pzSHE01msJHDgzD3mrdRKjXT9bcERkQsPoUlqInXhnWXgjBbKpCa2z AyWqunjWty0+SupOgag8fZtYeR6C+rdIAc60ucpY6H6wLkPzvRUBIyiUiKQ3K/kq dBUojh9FTrgRC7MeVQM+Kojccs2yIDmVAj2ZqLnebmYZj1YbflNUGVaZ7uVcTkjW mK8rIXcH6Z4zrT4H+iuFz4EsCEMmrcKklvME5VBquXzd5bVr4Jq539A8+6z0K0fM yv1axcue+zBlRBdrOTC31hyGBPj3akMTDYQeLipwRMdAxGtgMXVm93PB59TRAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUIi0VoWQvCGuEpaUCZ4HPlADawg8wHwYDVR0j BBgwFoAUT9xXGlzaE5WLzkdfDl2RAduBIFcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzMvNEZEQzU3MUE1Q0RBMTM5NThCQ0U0NzVGMEU1RDkxMDFEQjgxMjA1Ny5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzRGREM1NzFBNUNEQTEz OTU4QkNFNDc1RjBFNUQ5MTAxREI4MTIwNTcuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzJhY2EzY2E2LTM0Y2MtNDc3Mi1iYWMwLWEzNWRkMDE5NWNl Ny8zLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjIzMTY2MzgzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTMwMzczNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgQLH4MA0GCSqGSIb3DQEB CwUAA4IBAQAgUngHubgTDgeHmzZxHQ05vLzEmqWDBtlMocgeC0iUYUtmOfhfe2YJ xSSSh7gacpdA43lQ2IHMar60GEP0VOwSI3v8N0antbbyM7Sftlk4jo0JWpFLnrmm ag+V6QjajPkIFwET/nrsdejNSBiEwAn/R9RwiqAkKbYgRs0XTG5Tpg3TKQtx/bpd qnQXNe9bz2fHPz78Rq8ZzBFdolA5Qa7dvrC6qjXB/NR3R1JCdJ/TenaWjdwSVY7t Cm8i9hSSxiY/htnDzesC6FX07qtPrn1JPNgVuWznJtDjc9klg9FJtRBU6u+bYH2e HCO9mA0bNWCL1GDBjZ1h5hUe908LEvNI -----END CERTIFICATE-----Generated at Sat Jul 5 12:52:07 2025 by rpki-client