$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432303a3a2f34382d3438203d3e203437343936.roa File: 326130353a646663313a633432303a3a2f34382d3438203d3e203437343936.roa (raw, json) Hash identifier: oBNwZ9N0Etq/480Xs2Qj3MAk8/bHRU2OUtG/zB9fUdQ= Subject key identifier: D9:49:BD:06:99:58:3D:A3:9A:CF:F0:C6:BC:0E:24:39:BE:B9:E4:0F Certificate issuer: /CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Certificate serial: BD17A6676453D518E89C19C56B24BFD4F365B9 Authority key identifier: 8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432303a3a2f34382d3438203d3e203437343936.roa Signing time: Wed 17 Jan 2024 09:58:44 +0000 ROA not before: Wed 17 Jan 2024 09:53:44 +0000 ROA not after: Wed 15 Jan 2025 09:58:44 +0000 asID: 47496 IP address blocks: 2a05:dfc1:c420::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 08:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: bd:17:a6:67:64:53:d5:18:e8:9c:19:c5:6b:24:bf:d4:f3:65:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Validity Not Before: Jan 17 09:53:44 2024 GMT Not After : Jan 15 09:58:44 2025 GMT Subject: CN=D949BD0699583DA39ACFF0C6BC0E2439BEB9E40F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2a:35:84:51:44:ab:99:38:09:54:fa:f0:e6: bf:60:b8:8f:62:a6:9a:bb:e1:1d:13:81:78:fb:a5: 87:cb:73:82:60:f7:74:63:04:31:fe:aa:db:01:94: f7:bc:a2:49:3d:27:e7:f2:0b:e3:03:d7:8c:04:2c: 8c:77:3a:fc:ca:61:b7:70:d0:31:88:8a:68:26:b3: 2f:a0:d4:ed:6b:b1:f0:94:00:15:d5:33:d7:1d:95: a2:fe:21:1e:42:37:33:d0:d5:f1:da:5c:3e:5b:d3: 6a:96:b6:4c:2f:dc:ec:a5:2d:48:8e:9b:1f:5e:7e: c1:0a:c4:72:83:21:96:76:e2:2e:6b:81:1e:b1:c3: 44:50:15:f6:36:c5:91:e5:d1:88:aa:07:c2:90:36: 33:df:01:e4:9d:4e:2e:06:5d:c6:42:fa:62:ec:6c: 6e:d6:4f:62:e6:ef:3a:80:e7:67:d6:ba:f0:1a:ff: 2a:a2:19:95:f1:a5:ff:b7:2c:59:e7:26:2f:a0:98: 36:89:39:d1:29:1f:38:5c:24:d0:38:99:23:ed:44: e7:19:32:6a:f4:e8:26:7b:fd:78:87:48:d4:70:18: 89:51:ac:74:81:31:e2:8a:2c:24:bb:c4:ac:44:c8: ed:70:79:a4:3e:74:0c:c7:91:d9:ff:30:d2:d9:4e: da:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:49:BD:06:99:58:3D:A3:9A:CF:F0:C6:BC:0E:24:39:BE:B9:E4:0F X509v3 Authority Key Identifier: keyid:8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432303a3a2f34382d3438203d3e203437343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c420::/48 Signature Algorithm: sha256WithRSAEncryption 1c:66:c0:44:a4:00:07:59:f3:48:0e:ea:ea:3b:26:0b:21:bb: ee:62:70:06:90:2a:51:1c:4c:6e:85:4c:7a:8d:bf:53:41:0d: fa:ac:8f:f5:9e:60:ef:be:4d:82:5e:e6:6d:61:3d:33:bf:77: bb:ff:42:7c:1f:84:05:95:f5:46:17:2f:3a:ee:f2:e8:09:7b: 87:c6:15:b9:77:7f:e1:db:99:81:81:e4:c0:b1:d5:8d:83:3a: ce:69:22:28:21:38:d0:a6:b1:90:c4:1d:f7:6c:95:35:14:98: 58:b8:e4:65:fa:36:6d:a2:22:99:35:5f:f4:22:da:e5:c8:f7: cd:7b:9b:9b:2c:d4:c8:fa:51:d7:0c:da:ad:5b:60:0d:da:f5: 92:33:0a:62:12:cb:15:44:5a:ab:06:5d:4b:fc:27:0a:ff:ee: 39:b2:ca:73:88:eb:9a:83:32:28:ea:7c:5b:3a:85:cf:af:de: 8a:45:d2:97:06:21:e6:5c:68:13:92:7f:b4:01:27:b2:cd:d0: 3d:d8:e7:e0:d8:b1:19:b2:12:2f:1d:27:43:1d:91:c5:0e:f0: f7:4a:25:02:9e:72:c7:26:1e:f7:fe:f1:7a:7e:9c:8c:b1:f4: cb:dd:a2:20:9f:4f:4c:5f:c6:18:fa:ad:7c:63:6f:2a:cb:78: d4:82:4a:09 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUAL0XpmdkU9UY6JwZxWskv9TzZbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5 NkZFQTRGMDAeFw0yNDAxMTcwOTUzNDRaFw0yNTAxMTUwOTU4NDRaMDMxMTAvBgNV BAMTKEQ5NDlCRDA2OTk1ODNEQTM5QUNGRjBDNkJDMEUyNDM5QkVCOUU0MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXKjWEUUSrmTgJVPrw5r9guI9i ppq74R0TgXj7pYfLc4Jg93RjBDH+qtsBlPe8okk9J+fyC+MD14wELIx3OvzKYbdw 0DGIimgmsy+g1O1rsfCUABXVM9cdlaL+IR5CNzPQ1fHaXD5b02qWtkwv3OylLUiO mx9efsEKxHKDIZZ24i5rgR6xw0RQFfY2xZHl0YiqB8KQNjPfAeSdTi4GXcZC+mLs bG7WT2Lm7zqA52fWuvAa/yqiGZXxpf+3LFnnJi+gmDaJOdEpHzhcJNA4mSPtROcZ Mmr06CZ7/XiHSNRwGIlRrHSBMeKKLCS7xKxEyO1weaQ+dAzHkdn/MNLZTtqtAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU2Um9BplYPaOaz/DGvA4kOb655A8wHwYDVR0j BBgwFoAUiong24lTH3I+QsdQkoLMVJb+pPAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2RhNGQ4YjQtYTE1Ny00NjM0LWFiMTgtM2VmOWQwOTgy MzUyLzIvOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5NkZFQTRGMC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzhBODlFMERCODk1MzFG NzIzRTQyQzc1MDkyODJDQzU0OTZGRUE0RjAuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzNkYTRkOGI0LWExNTctNDYzNC1hYjE4LTNlZjlkMDk4MjM1 Mi8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzNDMyMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNDM3MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwcQgMA0GCSqGSIb3DQEB CwUAA4IBAQAcZsBEpAAHWfNIDurqOyYLIbvuYnAGkCpRHExuhUx6jb9TQQ36rI/1 nmDvvk2CXuZtYT0zv3e7/0J8H4QFlfVGFy867vLoCXuHxhW5d3/h25mBgeTAsdWN gzrOaSIoITjQprGQxB33bJU1FJhYuORl+jZtoiKZNV/0ItrlyPfNe5ubLNTI+lHX DNqtW2AN2vWSMwpiEssVRFqrBl1L/CcK/+45sspziOuagzIo6nxbOoXPr96KRdKX BiHmXGgTkn+0ASeyzdA92Ofg2LEZshIvHSdDHZHFDvD3SiUCnnLHJh73/vF6fpyM sfTL3aIgn09MX8YY+q18Y28qy3jUgkoJ -----END CERTIFICATE-----Generated at Fri Nov 22 16:40:24 2024 by rpki-client on console-fra.rpki-client.org