$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/326130613a363034303a623166663a3a2f34382d3438203d3e2030.roa File: 326130613a363034303a623166663a3a2f34382d3438203d3e2030.roa (raw, json) Hash identifier: sgKT96rKThQB6ppVhmCDbggp5qDvA2cp3RmFQMzSxHo= Subject key identifier: 0D:67:36:23:1D:66:07:32:43:FD:37:0B:51:95:54:0C:BD:9C:9A:25 Certificate issuer: /CN=4FDC571A5CDA13958BCE475F0E5D9101DB812057 Certificate serial: 75C48E1D624F721368CD6364F5EF703B683D06DB Authority key identifier: 4F:DC:57:1A:5C:DA:13:95:8B:CE:47:5F:0E:5D:91:01:DB:81:20:57 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/4FDC571A5CDA13958BCE475F0E5D9101DB812057.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/326130613a363034303a623166663a3a2f34382d3438203d3e2030.roa Signing time: Fri 04 Jul 2025 10:47:29 +0000 ROA not before: Fri 04 Jul 2025 10:42:29 +0000 ROA not after: Fri 03 Jul 2026 10:47:29 +0000 asID: 0 IP address blocks: 2a0a:6040:b1ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/4FDC571A5CDA13958BCE475F0E5D9101DB812057.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/4FDC571A5CDA13958BCE475F0E5D9101DB812057.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/4FDC571A5CDA13958BCE475F0E5D9101DB812057.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 03:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:c4:8e:1d:62:4f:72:13:68:cd:63:64:f5:ef:70:3b:68:3d:06:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FDC571A5CDA13958BCE475F0E5D9101DB812057 Validity Not Before: Jul 4 10:42:29 2025 GMT Not After : Jul 3 10:47:29 2026 GMT Subject: CN=0D6736231D66073243FD370B5195540CBD9C9A25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:80:7a:bf:03:c0:57:8d:30:d9:bc:cc:88:75: c6:60:8f:23:9d:c7:45:6a:23:98:49:3c:16:64:2a: e4:05:a8:53:7a:21:b9:39:b2:45:df:57:fa:92:b4: e4:ac:5f:29:b8:d0:9f:f4:eb:6a:d8:54:e4:bc:6c: 3a:a2:55:70:15:30:04:9a:63:9f:43:ed:b3:f2:99: 98:f7:26:5c:8e:f4:75:49:f0:a0:c1:92:17:81:36: 9a:79:a5:d7:cd:e1:ff:3e:df:ea:6e:97:28:f9:46: c0:98:c7:2b:10:da:54:23:a6:92:61:26:a7:be:8a: d0:e7:7f:9d:63:5d:15:ec:b9:04:5b:cf:33:a3:dd: 9a:fe:72:42:45:d4:1f:aa:a7:89:75:55:8d:78:c0: 56:15:67:5b:46:3c:1e:d5:06:7e:0c:87:a4:f2:d8: 0d:06:af:f1:31:9b:d6:49:12:a4:b9:c2:71:69:81: 2b:26:1b:3b:a9:c5:a3:79:b8:d0:f1:ca:9b:fb:d1: 72:cf:c0:6b:3d:4c:84:64:de:82:04:52:74:e8:36: 5c:6a:00:17:8d:4d:98:21:2a:23:45:01:72:16:56: e9:4a:02:c7:6e:d5:89:5b:56:c9:cf:22:ed:4e:fb: cc:7d:11:1b:9f:13:8d:05:27:b1:b4:68:03:1d:3e: c0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:67:36:23:1D:66:07:32:43:FD:37:0B:51:95:54:0C:BD:9C:9A:25 X509v3 Authority Key Identifier: keyid:4F:DC:57:1A:5C:DA:13:95:8B:CE:47:5F:0E:5D:91:01:DB:81:20:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/4FDC571A5CDA13958BCE475F0E5D9101DB812057.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/4FDC571A5CDA13958BCE475F0E5D9101DB812057.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/326130613a363034303a623166663a3a2f34382d3438203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b1ff::/48 Signature Algorithm: sha256WithRSAEncryption 3e:31:0e:55:1f:7d:66:73:ed:82:9a:d7:fd:a5:d4:65:ad:73: 99:bc:e6:74:f4:2d:f4:4f:14:88:b4:81:c2:47:e3:f2:a5:76: b2:2c:ef:af:3b:4b:0b:0b:d1:49:8a:af:dc:8b:a9:71:dc:7f: 6b:66:3c:81:f0:62:42:ef:a3:51:08:42:fc:05:61:f3:2c:a9: 57:68:dd:82:f1:55:0c:2f:fc:9d:fa:7b:e6:e4:9e:41:a3:15: d2:9e:a6:7b:28:1b:b4:f6:a4:a6:d3:40:0e:20:14:cf:ad:c0: df:4d:bf:13:66:d4:2f:81:ce:0c:fb:7f:99:15:40:44:70:c6: 50:54:6e:16:cd:2e:88:87:b0:f0:a7:9f:86:a5:ec:e5:94:6e: 10:a3:bf:92:ac:d0:ff:93:62:ea:9c:a2:ad:b9:f4:83:9b:71: bf:e1:a3:9d:e7:64:29:08:e9:ce:aa:1a:f7:78:01:5c:d6:b0: e2:3a:90:35:c4:60:35:92:4f:a1:53:a1:73:36:3e:01:a6:51: 2d:86:8d:3e:56:b1:da:c0:50:02:55:24:ce:dc:61:3c:1f:c2: 92:66:5f:9c:42:71:c0:f0:41:de:9a:4a:73:9f:c9:15:61:71: 76:2f:19:94:ab:17:0a:bb:86:84:93:f4:fe:44:18:bf:7a:a5: 37:8f:2c:1f -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIUdcSOHWJPchNozWNk9e9wO2g9BtswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZEQzU3MUE1Q0RBMTM5NThCQ0U0NzVGMEU1RDkxMDFE QjgxMjA1NzAeFw0yNTA3MDQxMDQyMjlaFw0yNjA3MDMxMDQ3MjlaMDMxMTAvBgNV BAMTKDBENjczNjIzMUQ2NjA3MzI0M0ZEMzcwQjUxOTU1NDBDQkQ5QzlBMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBgHq/A8BXjTDZvMyIdcZgjyOd x0VqI5hJPBZkKuQFqFN6Ibk5skXfV/qStOSsXym40J/062rYVOS8bDqiVXAVMASa Y59D7bPymZj3JlyO9HVJ8KDBkheBNpp5pdfN4f8+3+pulyj5RsCYxysQ2lQjppJh Jqe+itDnf51jXRXsuQRbzzOj3Zr+ckJF1B+qp4l1VY14wFYVZ1tGPB7VBn4Mh6Ty 2A0Gr/Exm9ZJEqS5wnFpgSsmGzupxaN5uNDxypv70XLPwGs9TIRk3oIEUnToNlxq ABeNTZghKiNFAXIWVulKAsdu1YlbVsnPIu1O+8x9ERufE40FJ7G0aAMdPsD7AgMB AAGjggJWMIICUjAdBgNVHQ4EFgQUDWc2Ix1mBzJD/TcLUZVUDL2cmiUwHwYDVR0j BBgwFoAUT9xXGlzaE5WLzkdfDl2RAduBIFcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzMvNEZEQzU3MUE1Q0RBMTM5NThCQ0U0NzVGMEU1RDkxMDFEQjgxMjA1Ny5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzRGREM1NzFBNUNEQTEz OTU4QkNFNDc1RjBFNUQ5MTAxREI4MTIwNTcuY2VyMIGtBggrBgEFBQcBCwSBoDCB nTCBmgYIKwYBBQUHMAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzJhY2EzY2E2LTM0Y2MtNDc3Mi1iYWMwLWEzNWRkMDE5NWNl Ny8zLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjIzMTY2NjYzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEF BQcBBwEB/wQTMBEwDwQCAAIwCQMHACoKYECx/zANBgkqhkiG9w0BAQsFAAOCAQEA PjEOVR99ZnPtgprX/aXUZa1zmbzmdPQt9E8UiLSBwkfj8qV2sizvrztLCwvRSYqv 3Iupcdx/a2Y8gfBiQu+jUQhC/AVh8yypV2jdgvFVDC/8nfp75uSeQaMV0p6meygb tPakptNADiAUz63A302/E2bUL4HODPt/mRVARHDGUFRuFs0uiIew8KefhqXs5ZRu EKO/kqzQ/5Ni6pyirbn0g5txv+GjnedkKQjpzqoa93gBXNaw4jqQNcRgNZJPoVOh czY+AaZRLYaNPlax2sBQAlUkztxhPB/CkmZfnEJxwPBB3ppKc5/JFWFxdi8ZlKsX CruGhJP0/kQYv3qlN48sHw== -----END CERTIFICATE-----Generated at Sat Jul 5 12:45:29 2025 by rpki-client