$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393137303a3a2f34382d3438203d3e203531323534.roa File: 326130353a646663313a393137303a3a2f34382d3438203d3e203531323534.roa (raw, json) Hash identifier: XLa8qxUgGW9W3cd6AIRDZHFMJVifLUOaYODXQjnuRgk= Subject key identifier: 8A:8F:7A:24:6E:C7:9B:0E:2A:9C:17:FA:3E:A8:43:68:B5:9A:95:91 Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76 Certificate serial: DC86B6A02C2C97AA1C26A008B512E3D5A0AFAD Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393137303a3a2f34382d3438203d3e203531323534.roa Signing time: Wed 24 Jan 2024 21:22:51 +0000 ROA not before: Wed 24 Jan 2024 21:17:51 +0000 ROA not after: Wed 22 Jan 2025 21:22:51 +0000 asID: 51254 IP address blocks: 2a05:dfc1:9170::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 24 Jun 2024 09:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: dc:86:b6:a0:2c:2c:97:aa:1c:26:a0:08:b5:12:e3:d5:a0:af:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76 Validity Not Before: Jan 24 21:17:51 2024 GMT Not After : Jan 22 21:22:51 2025 GMT Subject: CN=8A8F7A246EC79B0E2A9C17FA3EA84368B59A9591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0b:7d:76:06:e9:c1:7c:e8:b1:a0:c1:55:8f: 3e:26:a8:87:d8:e6:73:33:bd:ae:85:47:61:c3:c6: 70:d5:e5:51:af:81:3c:0b:29:ec:57:0e:33:65:a7: 01:cf:3e:3e:a9:f7:59:f2:84:cb:a4:63:c9:85:12: fb:4e:e3:e3:4c:71:1b:08:fe:d5:b6:bd:04:57:8a: fe:b7:fe:0f:a1:42:67:63:87:51:59:7d:ea:33:3f: 19:6b:8f:a6:de:8c:fd:4d:3e:46:d2:02:80:11:59: bb:bf:21:19:b6:48:61:23:6b:6f:a5:7c:31:b2:20: e0:aa:fd:a1:11:4d:29:0c:b9:47:d5:f8:c6:8d:a9: 38:3f:1e:06:37:7f:95:7e:8c:8d:8a:78:c8:b1:f5: 3d:fd:af:53:14:91:3d:57:40:2c:de:5e:90:db:f7: 4b:77:df:15:7e:ca:9d:2e:ae:dd:12:f1:41:69:c8: 77:88:78:07:e7:e1:01:93:ce:d8:c7:c3:c4:2e:7e: b7:58:a1:8d:ae:80:8b:b0:aa:fd:47:87:d0:38:8a: 0b:c4:32:88:fa:77:09:18:3a:b1:9f:35:0a:4b:61: 35:db:cb:25:08:91:3d:80:46:01:89:60:d2:79:a7: 55:3c:11:6d:90:ce:4a:2c:ac:af:ec:25:c6:ee:4b: fe:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:8F:7A:24:6E:C7:9B:0E:2A:9C:17:FA:3E:A8:43:68:B5:9A:95:91 X509v3 Authority Key Identifier: keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393137303a3a2f34382d3438203d3e203531323534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9170::/48 Signature Algorithm: sha256WithRSAEncryption 5e:33:80:62:be:1e:9a:88:f7:d2:83:69:6a:2d:5f:47:96:bf: 44:46:b5:c7:8b:eb:97:06:ff:bf:2f:34:3d:bb:0a:37:43:55: c2:24:24:64:bf:1d:09:49:66:68:8e:48:fb:44:41:9c:0a:44: 1f:ea:77:fd:7f:68:d0:b5:f4:f7:cc:d0:f9:96:2d:42:9f:d0: d4:5c:21:b4:8b:03:df:a9:03:37:00:e0:bf:c6:56:c2:5f:ab: 00:a8:b4:0f:89:72:f0:77:8f:32:36:69:d4:62:82:99:62:34: a2:2f:73:8c:e2:c6:3c:8a:7b:2b:14:a1:aa:0c:98:1d:14:9f: 18:4f:a9:26:41:69:3f:14:27:81:96:f4:cc:89:3a:2f:83:0a: 9f:d5:c8:61:54:6d:18:4c:0a:10:8c:fa:0a:34:ac:06:f2:4b: 59:ef:26:2e:68:d8:42:b1:6c:d9:66:db:96:37:14:9e:53:1f: 21:ed:d1:04:48:13:6c:77:b3:95:37:d3:29:3e:bf:da:65:ca: 25:a2:ee:e9:98:d3:5b:63:4b:a2:c3:d7:b4:d7:8d:18:45:0b: 14:cd:76:a8:f2:b6:9d:ff:3b:f4:90:63:10:70:29:90:25:71: d8:ff:14:ed:61:f6:8c:0d:93:80:3d:08:2e:d3:76:66:62:b1: a3:b9:ef:d7 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUANyGtqAsLJeqHCagCLUS49Wgr60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRF MDVFN0I3NjAeFw0yNDAxMjQyMTE3NTFaFw0yNTAxMjIyMTIyNTFaMDMxMTAvBgNV BAMTKDhBOEY3QTI0NkVDNzlCMEUyQTlDMTdGQTNFQTg0MzY4QjU5QTk1OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBC312BunBfOixoMFVjz4mqIfY 5nMzva6FR2HDxnDV5VGvgTwLKexXDjNlpwHPPj6p91nyhMukY8mFEvtO4+NMcRsI /tW2vQRXiv63/g+hQmdjh1FZfeozPxlrj6bejP1NPkbSAoARWbu/IRm2SGEja2+l fDGyIOCq/aERTSkMuUfV+MaNqTg/HgY3f5V+jI2KeMix9T39r1MUkT1XQCzeXpDb 90t33xV+yp0urt0S8UFpyHeIeAfn4QGTztjHw8QufrdYoY2ugIuwqv1Hh9A4igvE Moj6dwkYOrGfNQpLYTXbyyUIkT2ARgGJYNJ5p1U8EW2QzkosrK/sJcbuS/6nAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUio96JG7Hmw4qnBf6PqhDaLWalZEwHwYDVR0j BBgwFoAU9zfYG/vv/e7J7DK3uGQRLeBee3YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzEvRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRFMDVFN0I3Ni5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0Y3MzdEODFCRkJFRkZE RUVDOUVDMzJCN0I4NjQxMTJERTA1RTdCNzYuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYtNDU0MS1iY2MxLTI3NjU0M2EyNWM3 ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzMTM3MzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTMxMzIzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwZFwMA0GCSqGSIb3DQEB CwUAA4IBAQBeM4Bivh6aiPfSg2lqLV9Hlr9ERrXHi+uXBv+/LzQ9uwo3Q1XCJCRk vx0JSWZojkj7REGcCkQf6nf9f2jQtfT3zND5li1Cn9DUXCG0iwPfqQM3AOC/xlbC X6sAqLQPiXLwd48yNmnUYoKZYjSiL3OM4sY8insrFKGqDJgdFJ8YT6kmQWk/FCeB lvTMiTovgwqf1chhVG0YTAoQjPoKNKwG8ktZ7yYuaNhCsWzZZtuWNxSeUx8h7dEE SBNsd7OVN9MpPr/aZcolou7pmNNbY0uiw9e0140YRQsUzXao8rad/zv0kGMQcCmQ JXHY/xTtYfaMDZOAPQgu03ZmYrGjue/X -----END CERTIFICATE-----Generated at Sun Jun 23 23:18:18 2024 by rpki-client on console-fra.rpki-client.org