$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393161663a3a2f34382d3438203d3e20323033363836.roa File: 326130353a646663313a393161663a3a2f34382d3438203d3e20323033363836.roa (raw, json) Hash identifier: YQo0TjcPu+Em3BVoDjLJhW1AEQJ1FP5qfZ9t5gA0Dqs= Subject key identifier: 11:90:F3:A9:D0:A5:0D:4F:0D:50:6E:1E:E6:E1:C1:9C:6E:A2:42:B7 Certificate issuer: /CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76 Certificate serial: 60B671D39553B9398FF339941D0AE8BD924533D8 Authority key identifier: F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393161663a3a2f34382d3438203d3e20323033363836.roa Signing time: Wed 30 Oct 2024 14:19:55 +0000 ROA not before: Wed 30 Oct 2024 14:14:55 +0000 ROA not after: Wed 29 Oct 2025 14:19:55 +0000 asID: 203686 IP address blocks: 2a05:dfc1:91af::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b6:71:d3:95:53:b9:39:8f:f3:39:94:1d:0a:e8:bd:92:45:33:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76 Validity Not Before: Oct 30 14:14:55 2024 GMT Not After : Oct 29 14:19:55 2025 GMT Subject: CN=1190F3A9D0A50D4F0D506E1EE6E1C19C6EA242B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fe:9d:a7:88:0b:cf:eb:54:e9:22:50:26:67: 19:33:09:cf:aa:20:e3:df:bb:c2:4c:21:52:3a:e6: 4b:ec:3b:92:71:37:c6:31:15:8f:12:56:5b:3a:a8: 62:9d:d2:22:4d:08:e1:c9:f4:a8:e2:d9:75:7e:f8: b3:2d:09:a5:47:ca:b6:ca:40:e3:d1:f9:f7:8f:ce: 7c:cb:d7:02:8c:b9:4a:08:99:cc:b5:d9:1e:bd:c7: 1d:54:00:40:4b:ad:7d:be:45:c3:e6:98:b7:39:cb: 77:f3:3c:39:f4:59:11:25:22:85:b9:ca:1d:74:16: ba:a2:96:31:64:2a:87:1a:db:68:35:1b:8e:ae:97: cf:95:c2:d5:b2:ba:b5:a5:6a:b9:dc:a2:fc:b3:65: 1f:14:3c:95:ca:bb:fb:7d:ac:85:71:65:eb:51:da: e7:36:6c:d2:78:1c:c4:be:9a:45:76:c9:23:8c:4b: 7c:6e:3f:6d:f1:be:bf:8e:9c:e9:49:aa:ed:36:d8: 34:6e:83:32:94:2a:e0:50:bc:84:37:68:48:67:eb: cf:f9:de:a5:03:4c:d3:53:97:a1:30:d2:31:53:c5: b8:bf:66:87:7f:e5:7b:dd:49:f3:70:b3:8e:67:f7: 9b:de:1f:ca:f7:27:ca:4d:24:d4:45:7a:e3:3d:94: f9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:90:F3:A9:D0:A5:0D:4F:0D:50:6E:1E:E6:E1:C1:9C:6E:A2:42:B7 X509v3 Authority Key Identifier: keyid:F7:37:D8:1B:FB:EF:FD:EE:C9:EC:32:B7:B8:64:11:2D:E0:5E:7B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F737D81BFBEFFDEEC9EC32B7B864112DE05E7B76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/1/326130353a646663313a393161663a3a2f34382d3438203d3e20323033363836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:91af::/48 Signature Algorithm: sha256WithRSAEncryption 0e:2a:cf:c8:97:d7:33:5a:17:cc:66:a4:37:a3:52:a8:a8:2d: 60:e7:a2:fe:92:84:e0:68:e5:1d:10:78:86:d6:f8:3f:74:ac: 70:f5:56:11:8c:ec:b8:7a:5b:7a:41:1d:87:93:b3:d7:20:23: 61:ab:62:2f:2f:88:bc:fd:54:7b:6c:cd:fa:e4:70:4f:54:e1: cc:ea:ee:9f:7b:24:34:f2:00:ad:22:35:f7:46:f2:71:f2:1a: f4:a4:61:46:89:5a:05:e8:3a:b0:52:59:9a:d1:30:c4:8d:a1: d3:84:9a:b5:76:4f:8b:8e:c6:21:75:41:1a:52:69:a2:16:fa: 9b:80:84:2d:90:51:cc:79:20:2e:65:09:9f:8b:7c:dd:92:48: f3:cf:cc:d3:0a:db:f1:b5:35:9f:33:5a:76:5a:4e:49:2c:11: af:b5:be:94:47:8f:7e:95:d1:ba:26:e1:e4:0d:44:3a:e0:32: 41:19:4d:10:4c:c8:d7:ce:8c:6c:24:82:e6:ab:7a:63:bc:58: 70:75:f9:13:52:f9:ed:41:b3:32:56:a1:03:80:7a:0d:17:33: 64:2c:c2:85:73:bb:97:aa:f9:e2:86:e7:2d:71:01:42:e1:2a: 58:2f:0a:d6:d0:80:e6:e5:87:8a:7a:f5:3d:8e:61:16:31:aa: d2:f6:23:57 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUYLZx05VTuTmP8zmUHQrovZJFM9gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRF MDVFN0I3NjAeFw0yNDEwMzAxNDE0NTVaFw0yNTEwMjkxNDE5NTVaMDMxMTAvBgNV BAMTKDExOTBGM0E5RDBBNTBENEYwRDUwNkUxRUU2RTFDMTlDNkVBMjQyQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6/p2niAvP61TpIlAmZxkzCc+q IOPfu8JMIVI65kvsO5JxN8YxFY8SVls6qGKd0iJNCOHJ9Kji2XV++LMtCaVHyrbK QOPR+fePznzL1wKMuUoImcy12R69xx1UAEBLrX2+RcPmmLc5y3fzPDn0WRElIoW5 yh10FrqiljFkKoca22g1G46ul8+VwtWyurWlarncovyzZR8UPJXKu/t9rIVxZetR 2uc2bNJ4HMS+mkV2ySOMS3xuP23xvr+OnOlJqu022DRugzKUKuBQvIQ3aEhn68/5 3qUDTNNTl6Ew0jFTxbi/Zod/5XvdSfNws45n95veH8r3J8pNJNRFeuM9lPl9AgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUEZDzqdClDU8NUG4e5uHBnG6iQrcwHwYDVR0j BBgwFoAU9zfYG/vv/e7J7DK3uGQRLeBee3YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzEvRjczN0Q4MUJGQkVGRkRFRUM5RUMzMkI3Qjg2NDExMkRFMDVFN0I3Ni5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0Y3MzdEODFCRkJFRkZE RUVDOUVDMzJCN0I4NjQxMTJERTA1RTdCNzYuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYtNDU0MS1iY2MxLTI3NjU0M2EyNWM3 ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzMTYxNjYzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMjMwMzMzNjM4MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/Bka8wDQYJKoZIhvcN AQELBQADggEBAA4qz8iX1zNaF8xmpDejUqioLWDnov6ShOBo5R0QeIbW+D90rHD1 VhGM7Lh6W3pBHYeTs9cgI2GrYi8viLz9VHtszfrkcE9U4czq7p97JDTyAK0iNfdG 8nHyGvSkYUaJWgXoOrBSWZrRMMSNodOEmrV2T4uOxiF1QRpSaaIW+puAhC2QUcx5 IC5lCZ+LfN2SSPPPzNMK2/G1NZ8zWnZaTkksEa+1vpRHj36V0bom4eQNRDrgMkEZ TRBMyNfOjGwkguaremO8WHB1+RNS+e1BszJWoQOAeg0XM2QswoVzu5eq+eKG5y1x AULhKlgvCtbQgOblh4p69T2OYRYxqtL2I1c= -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:16 2024 by rpki-client on console-ams.rpki-client.org