$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393161303a3a2f34382d3438203d3e20323030323436.roa File: 326130353a646663313a393161303a3a2f34382d3438203d3e20323030323436.roa (raw, json) Hash identifier: Fqfb2rBJMD6Q69G0R/3ria7ckhlk5qxOnkkuYg56aXo= Subject key identifier: 07:2E:8D:9E:F0:61:14:1E:43:87:2A:C9:DE:FC:70:48:CC:59:73:AC Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76 Certificate serial: 5EFBE2D4FA1F2B0268D9402396367B4A4EEE529C Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393161303a3a2f34382d3438203d3e20323030323436.roa Signing time: Mon 01 Apr 2024 12:13:47 +0000 ROA not before: Mon 01 Apr 2024 12:08:47 +0000 ROA not after: Mon 31 Mar 2025 12:13:47 +0000 asID: 200246 IP address blocks: 2a05:dfc1:91a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 20:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:fb:e2:d4:fa:1f:2b:02:68:d9:40:23:96:36:7b:4a:4e:ee:52:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76 Validity Not Before: Apr 1 12:08:47 2024 GMT Not After : Mar 31 12:13:47 2025 GMT Subject: CN=072E8D9EF061141E43872AC9DEFC7048CC5973AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:da:57:36:89:1e:47:f1:59:64:00:62:cc:bc: b4:5f:93:5f:39:eb:a3:af:cb:c1:24:54:d4:5f:73: c4:69:1a:1e:9e:61:4d:88:91:c7:0c:9c:46:aa:04: 05:91:c3:2e:1c:da:63:8a:95:77:80:9f:f2:c4:54: 18:39:fd:2e:3b:ea:99:b6:e8:97:b2:12:d7:fd:60: ea:19:33:70:15:0d:a8:56:fe:09:a5:fb:56:51:e9: 32:68:8a:75:fd:7e:d8:14:e8:61:2d:3c:5a:db:69: 2f:e2:5d:b1:c9:03:54:a3:fa:6d:e0:66:27:99:62: 19:53:9a:4e:f9:fe:ab:f6:4b:7d:36:50:e2:be:de: 88:b0:99:6d:b8:c8:9f:81:41:47:86:d8:90:c5:55: 1e:70:e1:8c:c2:d6:59:34:93:70:f0:d6:f4:ca:be: 1d:34:3b:32:9d:81:86:a1:1a:41:95:04:5f:5a:49: f8:1b:00:76:42:08:ae:1c:1b:c4:18:1e:e2:0c:a0: 78:fd:c8:ca:5b:09:d5:64:bd:81:54:57:90:a9:3c: 92:90:8c:21:92:4f:f4:8a:4d:10:af:a3:25:28:72: 3d:8a:4f:7d:43:5f:31:7a:f4:7c:9e:cb:b3:39:ee: 08:18:2c:17:df:e1:ab:26:ec:51:42:fd:49:38:48: 6b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:2E:8D:9E:F0:61:14:1E:43:87:2A:C9:DE:FC:70:48:CC:59:73:AC X509v3 Authority Key Identifier: keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393161303a3a2f34382d3438203d3e20323030323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:91a0::/48 Signature Algorithm: sha256WithRSAEncryption 71:97:7b:e0:26:b8:c3:a1:a6:7e:6e:18:6d:90:b3:37:ae:d4: 7e:0a:e6:a8:6b:47:04:e5:e1:09:b7:5d:68:85:8d:fa:0d:94: 77:7d:9a:a8:58:1f:8d:6c:20:fd:02:81:7c:78:82:2a:eb:01: 2b:86:75:d4:3a:1b:78:47:02:4d:ce:95:b2:58:13:cd:26:b4: 8f:cd:1b:70:00:db:85:3b:7e:e0:3e:38:16:00:8b:9b:60:03: ea:d3:d4:7d:47:32:cf:74:5a:83:9d:09:4c:d8:d0:c7:a3:4a: dc:7b:98:97:9c:18:f1:13:0e:fe:75:cc:ef:f0:4c:e3:7b:f4: 28:2c:83:3a:72:97:90:e3:42:88:3e:4f:57:17:3e:a6:55:f6: f5:2e:88:9c:f6:4c:2f:7c:b3:0f:a4:46:ed:31:4c:b9:20:c7: a8:c9:51:8b:7a:62:72:5b:bb:0b:d3:19:93:e8:28:2f:35:0a: b4:0f:57:c7:3e:25:35:0f:24:0d:68:6d:3e:d1:a9:8b:62:4f: 1c:cc:db:aa:bc:1e:78:c3:f5:f2:6e:61:b2:b8:95:c9:31:24: dd:fb:d0:b0:f3:37:3d:af:cb:d4:2b:87:da:ed:70:51:61:82: a4:0f:58:32:54:1d:b2:df:43:da:9e:a2:d1:c4:f5:8c:21:90: d4:d2:43:29 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUXvvi1PofKwJo2UAjljZ7Sk7uUpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRF MDVFN0I3NjAeFw0yNDA0MDExMjA4NDdaFw0yNTAzMzExMjEzNDdaMDMxMTAvBgNV BAMTKDA3MkU4RDlFRjA2MTE0MUU0Mzg3MkFDOURFRkM3MDQ4Q0M1OTczQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI2lc2iR5H8VlkAGLMvLRfk185 66Ovy8EkVNRfc8RpGh6eYU2IkccMnEaqBAWRwy4c2mOKlXeAn/LEVBg5/S476pm2 6JeyEtf9YOoZM3AVDahW/gml+1ZR6TJoinX9ftgU6GEtPFrbaS/iXbHJA1Sj+m3g ZieZYhlTmk75/qv2S302UOK+3oiwmW24yJ+BQUeG2JDFVR5w4YzC1lk0k3Dw1vTK vh00OzKdgYahGkGVBF9aSfgbAHZCCK4cG8QYHuIMoHj9yMpbCdVkvYFUV5CpPJKQ jCGST/SKTRCvoyUocj2KT31DXzF69Hyey7M57ggYLBff4asm7FFC/Uk4SGtVAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUBy6NnvBhFB5DhyrJ3vxwSMxZc6wwHwYDVR0j BBgwFoAU9zfYG/vv/e7J7DK3uGQRLeBee3YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzEvRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRFMDVFN0I3Ni5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0Y3MzdEODFCRkJFRkZE RUVDOUVDMzJCN0I4NjQxMTJERTA1RTdCNzYuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYtNDU0MS1iY2MxLTI3NjU0M2EyNWM3 ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzMTYxMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMjMwMzAzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BkaAwDQYJKoZIhvcN AQELBQADggEBAHGXe+AmuMOhpn5uGG2Qszeu1H4K5qhrRwTl4Qm3XWiFjfoNlHd9 mqhYH41sIP0CgXx4girrASuGddQ6G3hHAk3OlbJYE80mtI/NG3AA24U7fuA+OBYA i5tgA+rT1H1HMs90WoOdCUzY0MejStx7mJecGPETDv51zO/wTON79Cgsgzpyl5Dj Qog+T1cXPqZV9vUuiJz2TC98sw+kRu0xTLkgx6jJUYt6YnJbuwvTGZPoKC81CrQP V8c+JTUPJA1obT7RqYtiTxzM26q8HnjD9fJuYbK4lckxJN370LDzNz2vy9Qrh9rt cFFhgqQPWDJUHbLfQ9qeotHE9YwhkNTSQyk= -----END CERTIFICATE-----Generated at Wed Feb 5 09:49:58 2025 by rpki-client