$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa File: 326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa (raw, json) Hash identifier: WZdnhsf1tbcSVNSrkJIR05RIfLe917aOhwfRnEAl4rg= Subject key identifier: 3F:8D:77:16:DB:BA:D4:89:3F:B2:80:46:4B:F1:DD:D0:E1:C8:81:19 Certificate issuer: /CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Certificate serial: 6F58EF65CC3F660AF9FE20A4DB461BE902D0140B Authority key identifier: 8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa Signing time: Wed 18 Dec 2024 10:58:12 +0000 ROA not before: Wed 18 Dec 2024 10:53:12 +0000 ROA not after: Wed 17 Dec 2025 10:58:12 +0000 asID: 47496 IP address blocks: 2a05:dfc1:c421::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 14:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:58:ef:65:cc:3f:66:0a:f9:fe:20:a4:db:46:1b:e9:02:d0:14:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Validity Not Before: Dec 18 10:53:12 2024 GMT Not After : Dec 17 10:58:12 2025 GMT Subject: CN=3F8D7716DBBAD4893FB280464BF1DDD0E1C88119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:15:f6:6f:5b:3c:51:a5:80:db:ae:e3:a6:19: b2:be:90:a4:41:96:83:98:a8:10:fc:a0:e0:f2:0b: 51:43:50:b2:4d:83:72:5e:63:e4:6a:bb:f4:4e:10: 30:b0:0a:43:6c:be:29:59:2a:e1:94:84:9a:d2:46: ec:ef:29:0b:c1:48:78:84:3b:25:c0:bf:16:aa:81: af:46:ab:dd:54:97:1f:59:8d:10:8d:cd:07:70:19: 01:4e:3d:f7:5f:69:f2:36:85:f6:94:dc:47:39:9b: 76:97:55:cb:c9:e0:19:ed:e7:da:e4:31:bc:1d:18: 93:a5:2c:8e:0b:9c:35:83:47:eb:7a:a9:1d:ad:90: d1:55:18:fc:88:85:5a:52:57:95:f2:6f:2d:f3:1c: e9:fc:19:6f:f1:b8:f7:ef:03:03:ca:67:47:66:94: 56:82:f6:cc:b0:3a:1e:af:27:fe:25:ee:2b:3a:96: 02:14:08:22:dd:52:70:e2:ac:1c:d9:d3:18:dd:45: 12:08:f6:04:3c:0b:9c:b8:99:08:06:1d:6d:41:74: 89:fb:0f:62:65:97:fe:54:77:38:27:c2:c8:4d:bc: 9c:11:90:98:56:f1:e8:f6:c9:43:c0:ae:17:3c:17: 1f:99:4d:ce:77:55:f0:2e:fa:72:d4:81:73:ea:96: ba:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:8D:77:16:DB:BA:D4:89:3F:B2:80:46:4B:F1:DD:D0:E1:C8:81:19 X509v3 Authority Key Identifier: keyid:8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c421::/48 Signature Algorithm: sha256WithRSAEncryption 7c:68:a2:32:30:ef:99:67:b4:52:6d:9c:44:94:40:e3:28:64: 97:fe:5e:c9:23:14:01:61:00:de:e3:28:15:b2:0b:b2:c6:b1: 7c:04:38:14:b4:3d:b5:c9:cb:a0:1a:72:13:7d:af:e6:33:6e: 40:09:68:f3:a6:54:81:92:14:10:cb:b7:77:1c:ad:27:fc:16: c7:49:00:cd:43:9e:3a:38:f0:f2:05:96:fd:18:08:cc:d3:75: ce:83:92:e0:5e:66:ab:d7:29:71:97:7c:41:4a:0c:70:2a:8c: c8:cf:cb:84:71:89:42:2c:eb:1d:5b:2d:18:b8:42:55:49:ec: 9e:56:e4:28:2a:ec:db:ff:d5:ce:aa:7b:c5:e3:cb:e7:9f:23: 44:b0:85:7f:e8:7e:ee:76:2e:e8:c7:a9:2d:c6:95:63:73:30: 62:36:83:73:d0:ad:9a:8c:1c:b0:ae:47:fd:42:60:e8:ae:98: 48:aa:e2:08:25:28:62:39:a0:9e:b6:da:da:d1:1c:78:2e:d8: ac:03:89:5b:89:dd:9d:d0:ba:97:e9:5f:a3:53:75:5d:46:40: 3a:b2:fb:df:6f:a2:b3:fc:3e:f1:6e:ac:37:f4:40:95:68:7e: f6:52:3e:49:c2:ea:3e:a1:07:1d:1f:90:81:0a:a1:91:56:65: 4b:62:de:5d -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUb1jvZcw/Zgr5/iCk20Yb6QLQFAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5 NkZFQTRGMDAeFw0yNDEyMTgxMDUzMTJaFw0yNTEyMTcxMDU4MTJaMDMxMTAvBgNV BAMTKDNGOEQ3NzE2REJCQUQ0ODkzRkIyODA0NjRCRjFEREQwRTFDODgxMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkFfZvWzxRpYDbruOmGbK+kKRB loOYqBD8oODyC1FDULJNg3JeY+Rqu/ROEDCwCkNsvilZKuGUhJrSRuzvKQvBSHiE OyXAvxaqga9Gq91Ulx9ZjRCNzQdwGQFOPfdfafI2hfaU3Ec5m3aXVcvJ4Bnt59rk MbwdGJOlLI4LnDWDR+t6qR2tkNFVGPyIhVpSV5Xyby3zHOn8GW/xuPfvAwPKZ0dm lFaC9sywOh6vJ/4l7is6lgIUCCLdUnDirBzZ0xjdRRII9gQ8C5y4mQgGHW1BdIn7 D2Jll/5UdzgnwshNvJwRkJhW8ej2yUPArhc8Fx+ZTc53VfAu+nLUgXPqlrpTAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUP413Ftu61Ik/soBGS/Hd0OHIgRkwHwYDVR0j BBgwFoAUiong24lTH3I+QsdQkoLMVJb+pPAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2RhNGQ4YjQtYTE1Ny00NjM0LWFiMTgtM2VmOWQwOTgy MzUyLzIvOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5NkZFQTRGMC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzhBODlFMERCODk1MzFG NzIzRTQyQzc1MDkyODJDQzU0OTZGRUE0RjAuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzNkYTRkOGI0LWExNTctNDYzNC1hYjE4LTNlZjlkMDk4MjM1 Mi8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzNDMyMzEzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNDM3MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwcQhMA0GCSqGSIb3DQEB CwUAA4IBAQB8aKIyMO+ZZ7RSbZxElEDjKGSX/l7JIxQBYQDe4ygVsguyxrF8BDgU tD21ycugGnITfa/mM25ACWjzplSBkhQQy7d3HK0n/BbHSQDNQ546OPDyBZb9GAjM 03XOg5LgXmar1ylxl3xBSgxwKozIz8uEcYlCLOsdWy0YuEJVSeyeVuQoKuzb/9XO qnvF48vnnyNEsIV/6H7udi7ox6ktxpVjczBiNoNz0K2ajBywrkf9QmDorphIquII JShiOaCettra0Rx4LtisA4lbid2d0LqX6V+jU3VdRkA6svvfb6Kz/D7xbqw39ECV aH72Uj5Jwuo+oQcdH5CBCqGRVmVLYt5d -----END CERTIFICATE-----Generated at Sun Apr 6 04:35:01 2025 by rpki-client