$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/326130613a363034303a656430303a3a2f34302d3430203d3e2030.roa File: 326130613a363034303a656430303a3a2f34302d3430203d3e2030.roa (raw, json) Hash identifier: uqRsJY7KhhwwPaijQCvC3gE+TqC4+OLuBx54eDmXu1Q= Subject key identifier: 13:D1:0C:B5:6A:F6:B7:77:7B:91:07:A1:BC:EE:52:49:EF:D5:E7:E1 Certificate issuer: /CN=4FDC571A5CDA13958BCE475F0E5D9101DB812057 Certificate serial: 178D5B1F0F36489FD1F87EC4FFB4F26EB7E2D151 Authority key identifier: 4F:DC:57:1A:5C:DA:13:95:8B:CE:47:5F:0E:5D:91:01:DB:81:20:57 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/4FDC571A5CDA13958BCE475F0E5D9101DB812057.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/326130613a363034303a656430303a3a2f34302d3430203d3e2030.roa Signing time: Fri 04 Jul 2025 10:47:30 +0000 ROA not before: Fri 04 Jul 2025 10:42:30 +0000 ROA not after: Fri 03 Jul 2026 10:47:30 +0000 asID: 0 IP address blocks: 2a0a:6040:ed00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/4FDC571A5CDA13958BCE475F0E5D9101DB812057.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/4FDC571A5CDA13958BCE475F0E5D9101DB812057.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/4FDC571A5CDA13958BCE475F0E5D9101DB812057.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:8d:5b:1f:0f:36:48:9f:d1:f8:7e:c4:ff:b4:f2:6e:b7:e2:d1:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FDC571A5CDA13958BCE475F0E5D9101DB812057 Validity Not Before: Jul 4 10:42:30 2025 GMT Not After : Jul 3 10:47:30 2026 GMT Subject: CN=13D10CB56AF6B7777B9107A1BCEE5249EFD5E7E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:eb:a0:f7:f4:bb:15:08:fd:a7:5b:33:48:d0: ef:72:79:de:03:f4:5e:a6:38:42:73:57:49:33:36: 17:0c:09:ed:41:08:f6:c3:91:2d:b8:69:02:da:ee: 8b:02:b3:66:be:9b:d5:87:e9:ec:f8:ca:2d:85:3b: 03:cc:19:68:df:14:00:72:99:f8:4f:85:9a:49:b3: cb:09:b4:4c:4b:4c:50:bb:75:84:f3:86:f5:16:f8: 4a:7d:69:e2:49:63:29:d5:37:9b:e3:15:c7:ab:31: 89:de:9f:5f:3d:f2:72:47:13:34:b7:6b:fd:1a:22: a2:31:1a:8d:0d:1a:e8:37:01:05:27:54:b0:c5:ed: dc:8e:51:1d:8f:cc:76:9c:0c:25:ca:b4:95:1c:ee: 88:da:f7:6f:c6:95:61:d1:f4:d5:ca:47:85:a0:3e: 38:84:7e:bc:f4:c8:5f:70:23:83:3c:8d:59:0e:2c: 16:e2:98:e3:b0:91:fb:fa:d0:6a:a6:1b:5f:3c:a3: 51:5e:13:50:aa:a5:3f:2c:9f:ae:d3:a2:e5:57:75: 01:4e:37:09:67:fe:90:2a:54:f1:30:5c:47:2b:13: 6c:46:8b:43:18:34:79:34:39:15:38:77:28:31:ab: e1:0f:e6:c5:bb:a6:28:5e:7d:d1:79:b8:2d:7d:78: 55:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D1:0C:B5:6A:F6:B7:77:7B:91:07:A1:BC:EE:52:49:EF:D5:E7:E1 X509v3 Authority Key Identifier: keyid:4F:DC:57:1A:5C:DA:13:95:8B:CE:47:5F:0E:5D:91:01:DB:81:20:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/4FDC571A5CDA13958BCE475F0E5D9101DB812057.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/4FDC571A5CDA13958BCE475F0E5D9101DB812057.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/3/326130613a363034303a656430303a3a2f34302d3430203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ed00::/40 Signature Algorithm: sha256WithRSAEncryption 3d:8e:4f:c0:31:78:bb:b7:82:97:d9:77:f6:df:4a:d9:fb:d7: 3e:0d:6c:6d:6c:19:57:0b:11:b0:56:d5:bb:34:38:af:2e:9b: 86:eb:b0:63:f6:3c:3a:2f:d7:cc:da:52:3e:b6:13:74:43:e8: d4:2f:b5:cf:7c:fe:9d:8d:95:74:8d:0d:b2:f8:ab:d3:b7:32: bb:ce:93:33:e5:90:07:73:52:3b:1a:3a:a6:6b:14:63:2b:24: 81:65:88:e2:c7:30:13:56:0a:24:98:9b:0b:99:9a:79:ec:18: 2f:1f:01:53:94:2e:18:cc:48:8c:75:1c:75:51:ad:95:dc:da: 71:d5:17:94:e6:c0:dc:76:3b:12:2e:2a:10:4f:c0:c0:05:28: b7:80:f4:72:00:22:53:1a:98:f8:be:73:4f:38:02:f3:ad:0b: 2a:b5:b6:bc:f0:b7:e5:54:c4:70:62:80:b8:d3:26:80:c3:82: dd:2a:01:7a:34:e0:57:dc:3b:29:8a:97:4e:e4:18:91:01:db: 4c:d3:b0:ca:bb:16:7a:ac:8b:4b:67:ac:9c:46:b9:8b:10:04: 9b:b3:80:1b:14:ae:ee:fe:14:f4:9b:31:d7:25:ba:7b:1c:21: 32:d0:ae:d7:7e:e9:05:8a:4d:b0:62:64:c7:d5:78:fa:60:14: 6d:67:a1:6c -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUF41bHw82SJ/R+H7E/7Tybrfi0VEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZEQzU3MUE1Q0RBMTM5NThCQ0U0NzVGMEU1RDkxMDFE QjgxMjA1NzAeFw0yNTA3MDQxMDQyMzBaFw0yNjA3MDMxMDQ3MzBaMDMxMTAvBgNV BAMTKDEzRDEwQ0I1NkFGNkI3Nzc3QjkxMDdBMUJDRUU1MjQ5RUZENUU3RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX66D39LsVCP2nWzNI0O9yed4D 9F6mOEJzV0kzNhcMCe1BCPbDkS24aQLa7osCs2a+m9WH6ez4yi2FOwPMGWjfFABy mfhPhZpJs8sJtExLTFC7dYTzhvUW+Ep9aeJJYynVN5vjFcerMYnen1898nJHEzS3 a/0aIqIxGo0NGug3AQUnVLDF7dyOUR2PzHacDCXKtJUc7oja92/GlWHR9NXKR4Wg PjiEfrz0yF9wI4M8jVkOLBbimOOwkfv60GqmG188o1FeE1CqpT8sn67TouVXdQFO Nwln/pAqVPEwXEcrE2xGi0MYNHk0ORU4dygxq+EP5sW7pihefdF5uC19eFXdAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUE9EMtWr2t3d7kQehvO5SSe/V5+EwHwYDVR0j BBgwFoAUT9xXGlzaE5WLzkdfDl2RAduBIFcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzMvNEZEQzU3MUE1Q0RBMTM5NThCQ0U0NzVGMEU1RDkxMDFEQjgxMjA1Ny5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzRGREM1NzFBNUNEQTEz OTU4QkNFNDc1RjBFNUQ5MTAxREI4MTIwNTcuY2VyMIGtBggrBgEFBQcBCwSBoDCB nTCBmgYIKwYBBQUHMAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzJhY2EzY2E2LTM0Y2MtNDc3Mi1iYWMwLWEzNWRkMDE5NWNl Ny8zLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjU2NDMwMzAzYTNhMmYzNDMwMmQzNDMw MjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwDgQCAAIwCAMGACoKYEDtMA0GCSqGSIb3DQEBCwUAA4IBAQA9 jk/AMXi7t4KX2Xf230rZ+9c+DWxtbBlXCxGwVtW7NDivLpuG67Bj9jw6L9fM2lI+ thN0Q+jUL7XPfP6djZV0jQ2y+KvTtzK7zpMz5ZAHc1I7GjqmaxRjKySBZYjixzAT VgokmJsLmZp57BgvHwFTlC4YzEiMdRx1Ua2V3Npx1ReU5sDcdjsSLioQT8DABSi3 gPRyACJTGpj4vnNPOALzrQsqtba88LflVMRwYoC40yaAw4LdKgF6NOBX3DspipdO 5BiRAdtM07DKuxZ6rItLZ6ycRrmLEASbs4AbFK7u/hT0mzHXJbp7HCEy0K7XfukF ik2wYmTH1Xj6YBRtZ6Fs -----END CERTIFICATE-----Generated at Sat Jul 5 12:47:58 2025 by rpki-client