$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa File: 326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa (raw, json) Hash identifier: wFHjDppU21KpYB0MQC+P4HaWY+nixTppfOIHRKlrDCg= Subject key identifier: 8D:8A:71:69:5D:B3:4E:F7:30:83:86:5C:7B:CE:E4:0C:05:15:25:0E Certificate issuer: /CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Certificate serial: 34E2FB74819584EF492C4154D1132A1605C758D0 Authority key identifier: 8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa Signing time: Wed 17 Jan 2024 09:58:49 +0000 ROA not before: Wed 17 Jan 2024 09:53:49 +0000 ROA not after: Wed 15 Jan 2025 09:58:49 +0000 asID: 47496 IP address blocks: 2a05:dfc1:c421::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 08:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:e2:fb:74:81:95:84:ef:49:2c:41:54:d1:13:2a:16:05:c7:58:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Validity Not Before: Jan 17 09:53:49 2024 GMT Not After : Jan 15 09:58:49 2025 GMT Subject: CN=8D8A71695DB34EF73083865C7BCEE40C0515250E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:88:01:82:79:cb:96:b3:df:98:c3:5a:38:98: 7f:c2:b1:d7:44:f9:4e:f1:dc:9e:6a:a3:03:e7:33: 69:12:14:0f:e8:9f:3b:d3:19:c7:79:27:e8:54:ae: de:e6:66:ae:f5:47:25:8f:e0:b7:26:1a:2f:3b:d7: 2d:c5:01:01:f1:7c:c3:8b:32:d3:7a:2e:46:72:e5: 92:f7:ab:9b:af:16:2d:72:e3:01:a7:2c:7d:13:bd: f5:c1:d3:50:c7:6a:da:6f:9b:98:9f:c1:43:e3:1e: b2:47:f1:1a:df:f9:e4:a1:cb:2e:81:00:5c:f7:9e: 17:96:ce:8a:c0:5e:f6:c5:4f:f9:d3:e7:4e:7a:66: 09:9e:8b:5e:b5:4f:0a:df:2d:33:61:a8:98:41:a7: c6:a7:c5:61:6a:17:0f:f1:e6:b7:b9:ee:bb:c5:80: 6f:b9:c9:4c:65:d7:9f:5b:ee:5c:83:87:61:b4:aa: 6f:b1:7c:f1:a0:97:6d:0d:cb:01:46:d9:7f:d3:44: 62:d0:db:a3:bf:66:c1:7e:b1:70:18:95:60:ab:64: 06:be:3c:a8:d7:72:c2:12:4e:eb:07:e5:de:25:9b: 94:48:5d:c8:cf:80:f8:69:98:c1:bb:a1:69:65:19: b0:c9:87:b0:29:03:c0:a0:7c:a5:ac:22:ab:52:b9: 27:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8A:71:69:5D:B3:4E:F7:30:83:86:5C:7B:CE:E4:0C:05:15:25:0E X509v3 Authority Key Identifier: keyid:8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c421::/48 Signature Algorithm: sha256WithRSAEncryption 3b:f2:36:e0:23:93:d2:99:93:61:f6:bb:01:a8:4e:5f:5c:15: 33:56:71:12:87:a7:0f:f7:49:1e:23:c5:9c:6e:ef:d4:5c:62: 8f:f1:15:c5:f1:4a:90:d3:fc:60:56:9b:05:fd:ba:ab:41:ee: 2a:3b:39:e1:40:69:80:80:a5:d7:5f:01:ae:42:26:1a:4e:ad: 52:a0:49:43:09:6b:6e:7e:88:aa:56:75:66:42:c2:18:98:a4: 77:89:9a:3e:86:c0:84:a5:4b:fe:0c:65:18:5d:c3:45:d2:81: 8f:e9:67:8e:44:ae:80:7e:e7:3e:98:cf:0a:04:38:d0:26:d4: 9e:c1:5d:c4:62:39:5f:50:de:62:31:3b:f5:3f:31:44:51:91: 17:8c:0a:03:14:20:70:86:6d:a2:36:69:cc:21:8e:b0:ad:7a: e0:b4:b7:84:c4:7d:5b:c0:58:aa:9d:1d:d8:39:1b:21:15:a0: c0:87:eb:9e:6e:68:7e:9a:9c:e9:67:6f:d1:ef:fb:9b:6f:27: ee:74:24:fa:ab:f6:00:80:4a:02:37:a5:91:aa:0b:04:46:5c: f2:ce:d9:91:2e:44:c0:b1:02:bf:84:d2:86:88:5b:cf:d7:68: f6:80:26:41:79:21:df:0a:e8:1d:30:5a:ea:07:94:16:bb:33: 95:f8:01:47 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUNOL7dIGVhO9JLEFU0RMqFgXHWNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5 NkZFQTRGMDAeFw0yNDAxMTcwOTUzNDlaFw0yNTAxMTUwOTU4NDlaMDMxMTAvBgNV BAMTKDhEOEE3MTY5NURCMzRFRjczMDgzODY1QzdCQ0VFNDBDMDUxNTI1MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2iAGCecuWs9+Yw1o4mH/CsddE +U7x3J5qowPnM2kSFA/onzvTGcd5J+hUrt7mZq71RyWP4LcmGi871y3FAQHxfMOL MtN6LkZy5ZL3q5uvFi1y4wGnLH0TvfXB01DHatpvm5ifwUPjHrJH8Rrf+eShyy6B AFz3nheWzorAXvbFT/nT5056Zgmei161TwrfLTNhqJhBp8anxWFqFw/x5re57rvF gG+5yUxl159b7lyDh2G0qm+xfPGgl20NywFG2X/TRGLQ26O/ZsF+sXAYlWCrZAa+ PKjXcsISTusH5d4lm5RIXcjPgPhpmMG7oWllGbDJh7ApA8CgfKWsIqtSuSePAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUjYpxaV2zTvcwg4Zce87kDAUVJQ4wHwYDVR0j BBgwFoAUiong24lTH3I+QsdQkoLMVJb+pPAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2RhNGQ4YjQtYTE1Ny00NjM0LWFiMTgtM2VmOWQwOTgy MzUyLzIvOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5NkZFQTRGMC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzhBODlFMERCODk1MzFG NzIzRTQyQzc1MDkyODJDQzU0OTZGRUE0RjAuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzNkYTRkOGI0LWExNTctNDYzNC1hYjE4LTNlZjlkMDk4MjM1 Mi8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzNDMyMzEzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNDM3MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwcQhMA0GCSqGSIb3DQEB CwUAA4IBAQA78jbgI5PSmZNh9rsBqE5fXBUzVnESh6cP90keI8Wcbu/UXGKP8RXF 8UqQ0/xgVpsF/bqrQe4qOznhQGmAgKXXXwGuQiYaTq1SoElDCWtufoiqVnVmQsIY mKR3iZo+hsCEpUv+DGUYXcNF0oGP6WeORK6Afuc+mM8KBDjQJtSewV3EYjlfUN5i MTv1PzFEUZEXjAoDFCBwhm2iNmnMIY6wrXrgtLeExH1bwFiqnR3YORshFaDAh+ue bmh+mpzpZ2/R7/ubbyfudCT6q/YAgEoCN6WRqgsERlzyztmRLkTAsQK/hNKGiFvP 12j2gCZBeSHfCugdMFrqB5QWuzOV+AFH -----END CERTIFICATE-----Generated at Fri Nov 22 16:40:24 2024 by rpki-client on console-fra.rpki-client.org