$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393137343a3a2f34382d3438203d3e203537343833.roa File: 326130353a646663313a393137343a3a2f34382d3438203d3e203537343833.roa (raw, json) Hash identifier: zO988fyeNKZ76AEYuT5xrsQzKmssPbE9H2nU7AKIujk= Subject key identifier: D9:E6:44:E0:6F:8A:7B:F9:63:97:76:20:4F:2E:F6:CA:1D:67:28:F1 Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76 Certificate serial: 422872B746008D93679D9BBCA2DD9D1837C87A48 Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393137343a3a2f34382d3438203d3e203537343833.roa Signing time: Tue 30 Jan 2024 18:31:58 +0000 ROA not before: Tue 30 Jan 2024 18:26:58 +0000 ROA not after: Tue 28 Jan 2025 18:31:58 +0000 asID: 57483 IP address blocks: 2a05:dfc1:9174::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 04:19:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:28:72:b7:46:00:8d:93:67:9d:9b:bc:a2:dd:9d:18:37:c8:7a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76 Validity Not Before: Jan 30 18:26:58 2024 GMT Not After : Jan 28 18:31:58 2025 GMT Subject: CN=D9E644E06F8A7BF9639776204F2EF6CA1D6728F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d4:14:f4:14:73:d5:c3:1c:7a:45:61:ed:0e: 0d:5c:2b:ca:4d:95:c0:70:14:03:5c:cc:56:15:44: 6d:4c:f1:a9:8b:92:77:8c:9a:e6:17:51:32:22:db: 46:fb:84:13:47:f3:cf:ec:d6:e4:aa:29:2d:15:76: 3c:e3:bb:74:12:2e:a4:1d:b8:59:61:f7:c3:f7:69: ea:ea:28:2b:c7:a3:48:d7:45:f8:30:fc:e4:be:8e: 97:7d:31:ac:1f:62:a6:76:68:b5:fe:8e:f1:aa:be: 72:eb:30:0d:29:41:9b:aa:fb:83:60:b8:74:06:85: e0:54:4b:3a:33:9a:a6:c1:84:90:ca:f4:48:31:22: b8:02:87:43:36:82:a8:51:1c:63:59:e8:9f:8c:63: 1b:ea:65:c0:cf:03:cd:b8:8d:af:ee:06:a8:ac:fd: 95:90:f6:03:bc:b3:4d:23:3a:23:80:d9:70:09:74: d7:36:62:82:b1:30:7d:8d:00:5a:30:61:12:63:68: d1:5b:03:1a:ca:81:a5:01:e4:80:e2:70:10:ca:33: ff:2e:9e:79:7b:f9:6a:f6:85:5c:71:44:03:94:47: 73:3f:ac:53:66:17:9e:48:f2:f2:fd:b5:f4:d6:36: d8:c5:0e:c7:a0:9d:b8:37:79:14:c8:b6:09:d7:8c: 94:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E6:44:E0:6F:8A:7B:F9:63:97:76:20:4F:2E:F6:CA:1D:67:28:F1 X509v3 Authority Key Identifier: keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393137343a3a2f34382d3438203d3e203537343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9174::/48 Signature Algorithm: sha256WithRSAEncryption 02:30:51:19:37:03:92:47:b0:32:5f:9e:4c:de:5d:83:39:94: 19:f2:e3:39:88:71:e6:41:c8:d3:c9:33:9b:6b:74:cf:aa:4d: bf:e4:a9:59:03:84:1a:b3:2a:48:78:48:1a:88:f1:d5:d2:ff: 83:36:55:c0:6e:1d:47:47:0e:12:c3:a0:cc:99:fd:d8:63:f2: 29:0b:f2:90:77:f4:2a:68:14:4f:38:47:7d:da:b2:a7:87:8f: a7:75:f6:0d:a1:ef:e2:28:b1:11:5f:9e:a0:2d:01:13:3a:4d: ca:51:e6:d3:77:3e:9e:9d:b5:f5:c4:4c:4e:cd:4a:cf:51:ed: 50:5a:0d:ea:c1:a2:ad:99:70:e0:ad:05:04:a9:09:79:b7:6f: c2:f9:3c:61:1d:e7:b4:61:c4:a6:1f:b5:db:b7:b1:15:cf:42: 7e:6d:93:1d:d2:d7:da:67:5f:6b:aa:39:8c:5e:d1:be:e9:5b: 62:e9:73:70:3d:b3:2e:f8:f4:7b:e0:34:0c:a7:91:e1:8a:03: d2:b6:73:1d:17:8e:53:9b:06:f0:d0:3d:37:e7:eb:1f:c3:c3: ff:42:77:6a:ad:3b:8d:71:34:69:1b:17:7f:9a:ac:ba:c1:62: 24:0c:22:91:a3:f1:53:4d:b3:ae:6f:5f:28:8c:03:e6:1e:e8: 7e:ff:e7:eb -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUQihyt0YAjZNnnZu8ot2dGDfIekgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRF MDVFN0I3NjAeFw0yNDAxMzAxODI2NThaFw0yNTAxMjgxODMxNThaMDMxMTAvBgNV BAMTKEQ5RTY0NEUwNkY4QTdCRjk2Mzk3NzYyMDRGMkVGNkNBMUQ2NzI4RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB1BT0FHPVwxx6RWHtDg1cK8pN lcBwFANczFYVRG1M8amLkneMmuYXUTIi20b7hBNH88/s1uSqKS0Vdjzju3QSLqQd uFlh98P3aerqKCvHo0jXRfgw/OS+jpd9MawfYqZ2aLX+jvGqvnLrMA0pQZuq+4Ng uHQGheBUSzozmqbBhJDK9EgxIrgCh0M2gqhRHGNZ6J+MYxvqZcDPA824ja/uBqis /ZWQ9gO8s00jOiOA2XAJdNc2YoKxMH2NAFowYRJjaNFbAxrKgaUB5IDicBDKM/8u nnl7+Wr2hVxxRAOUR3M/rFNmF55I8vL9tfTWNtjFDsegnbg3eRTItgnXjJSRAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU2eZE4G+Ke/ljl3YgTy72yh1nKPEwHwYDVR0j BBgwFoAU9zfYG/vv/e7J7DK3uGQRLeBee3YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzEvRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRFMDVFN0I3Ni5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0Y3MzdEODFCRkJFRkZE RUVDOUVDMzJCN0I4NjQxMTJERTA1RTdCNzYuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYtNDU0MS1iY2MxLTI3NjU0M2EyNWM3 ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzMTM3MzQzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM3MzQzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwZF0MA0GCSqGSIb3DQEB CwUAA4IBAQACMFEZNwOSR7AyX55M3l2DOZQZ8uM5iHHmQcjTyTOba3TPqk2/5KlZ A4QasypIeEgaiPHV0v+DNlXAbh1HRw4Sw6DMmf3YY/IpC/KQd/QqaBRPOEd92rKn h4+ndfYNoe/iKLERX56gLQETOk3KUebTdz6enbX1xExOzUrPUe1QWg3qwaKtmXDg rQUEqQl5t2/C+TxhHee0YcSmH7Xbt7EVz0J+bZMd0tfaZ19rqjmMXtG+6Vti6XNw PbMu+PR74DQMp5HhigPStnMdF45Tmwbw0D035+sfw8P/QndqrTuNcTRpGxd/mqy6 wWIkDCKRo/FTTbOub18ojAPmHuh+/+fr -----END CERTIFICATE-----Generated at Sun Nov 24 18:39:44 2024 by rpki-client on console-ams.rpki-client.org