$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432653a3a2f34382d3438203d3e203437343936.roa File: 326130353a646663313a633432653a3a2f34382d3438203d3e203437343936.roa (raw, json) Hash identifier: yY/lRzl5gnRHqPDCI9XTmjkP/VSTS3sUgvtQRFCF6ig= Subject key identifier: F1:00:44:8E:00:4B:8B:18:BD:1B:27:6A:BF:0C:CA:C7:2C:28:73:3C Certificate issuer: /CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Certificate serial: 318015CF706A5373B0D2768D47E6FE6263032297 Authority key identifier: 8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432653a3a2f34382d3438203d3e203437343936.roa Signing time: Wed 18 Dec 2024 13:58:14 +0000 ROA not before: Wed 18 Dec 2024 13:53:14 +0000 ROA not after: Wed 17 Dec 2025 13:58:14 +0000 asID: 47496 IP address blocks: 2a05:dfc1:c42e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 07:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:80:15:cf:70:6a:53:73:b0:d2:76:8d:47:e6:fe:62:63:03:22:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Validity Not Before: Dec 18 13:53:14 2024 GMT Not After : Dec 17 13:58:14 2025 GMT Subject: CN=F100448E004B8B18BD1B276ABF0CCAC72C28733C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:5d:28:c6:ef:17:2b:0b:a9:2d:44:45:10: 09:10:89:79:4a:3f:92:4d:20:cb:ac:b7:50:53:5a: 57:83:80:c8:a5:d5:be:9e:d9:c7:49:6d:52:5f:6b: e3:3e:29:d4:ce:2b:24:d1:86:d1:5e:8c:0f:57:96: f8:73:cf:27:4c:64:8d:b1:b8:55:d0:2b:3f:e8:3c: 2c:cb:d8:a4:f5:f4:68:a7:50:6d:54:e6:44:ea:a5: 4b:68:56:7d:eb:63:54:94:c1:c8:33:fe:b8:7d:03: 63:ea:fa:af:4b:00:27:a9:58:ac:9a:d4:c5:a9:d9: 4c:55:13:76:c8:3a:d0:c5:e4:78:72:d4:0d:ba:c6: d0:d7:a7:95:70:1f:be:89:fc:7b:1b:b3:c6:e2:29: 2c:d1:2c:9f:9d:de:15:39:a1:95:9b:1a:91:fa:46: 25:93:27:dc:aa:d4:7f:0c:c3:c8:78:47:cf:82:cd: 8c:63:af:bb:41:a8:cf:1e:85:36:16:73:35:b0:67: ea:81:2f:9d:c5:43:86:9d:58:9b:19:46:3a:56:e7: 03:4f:94:52:1e:3b:bb:7d:69:d9:2c:de:a2:2c:27: 7e:82:e1:18:c4:16:f3:99:84:f0:2a:66:5e:68:eb: 48:82:78:52:f4:8e:0c:f4:5a:35:e3:fa:9f:95:35: 13:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:00:44:8E:00:4B:8B:18:BD:1B:27:6A:BF:0C:CA:C7:2C:28:73:3C X509v3 Authority Key Identifier: keyid:8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633432653a3a2f34382d3438203d3e203437343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c42e::/48 Signature Algorithm: sha256WithRSAEncryption b0:d5:90:4b:fc:71:0e:5f:c2:8b:4e:7a:cd:33:93:6b:26:9a: a7:52:e4:ec:a1:c6:79:ff:d0:19:57:ed:ba:a8:b0:96:e1:c1: f6:e9:23:da:3b:0d:5c:27:6b:98:d1:aa:50:93:3d:49:0c:76: b9:a5:33:99:c4:e7:62:5b:9b:f5:aa:4e:8c:cf:e2:20:6e:0d: a1:5c:a9:2a:44:9f:5a:51:29:b1:54:b3:86:3d:28:1a:a3:8a: ae:6f:ca:c5:fe:8c:d1:eb:71:29:dc:09:e4:e8:27:db:98:5b: 34:51:1f:c4:b7:d7:1d:a9:f5:b8:32:44:79:1a:9c:fc:19:94: 23:49:55:52:60:db:78:ef:47:95:ec:7e:20:22:b0:51:35:49: f9:a9:95:0b:7d:7e:a2:20:c9:34:e4:07:86:d7:99:83:34:d7: de:6d:86:ba:e8:8f:72:a7:46:55:53:df:03:29:c1:d2:48:89: 70:bc:ff:a9:26:8f:aa:6e:df:b9:61:20:15:c3:b6:e4:69:39: bb:37:9c:8a:eb:ec:4b:88:75:75:38:69:09:50:37:26:a6:06: 45:9c:ac:ae:c2:22:78:6f:b7:bc:23:10:fe:2e:a6:d0:53:3a: b9:72:1e:d9:d2:9c:7f:c8:99:73:81:68:09:96:1d:ce:a8:a2: 5e:e3:e0:6b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUMYAVz3BqU3Ow0naNR+b+YmMDIpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5 NkZFQTRGMDAeFw0yNDEyMTgxMzUzMTRaFw0yNTEyMTcxMzU4MTRaMDMxMTAvBgNV BAMTKEYxMDA0NDhFMDA0QjhCMThCRDFCMjc2QUJGMENDQUM3MkMyODczM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZdV0oxu8XKwupLURFEAkQiXlK P5JNIMust1BTWleDgMil1b6e2cdJbVJfa+M+KdTOKyTRhtFejA9XlvhzzydMZI2x uFXQKz/oPCzL2KT19GinUG1U5kTqpUtoVn3rY1SUwcgz/rh9A2Pq+q9LACepWKya 1MWp2UxVE3bIOtDF5Hhy1A26xtDXp5VwH76J/Hsbs8biKSzRLJ+d3hU5oZWbGpH6 RiWTJ9yq1H8Mw8h4R8+CzYxjr7tBqM8ehTYWczWwZ+qBL53FQ4adWJsZRjpW5wNP lFIeO7t9adks3qIsJ36C4RjEFvOZhPAqZl5o60iCeFL0jgz0WjXj+p+VNRPvAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU8QBEjgBLixi9GydqvwzKxywoczwwHwYDVR0j BBgwFoAUiong24lTH3I+QsdQkoLMVJb+pPAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2RhNGQ4YjQtYTE1Ny00NjM0LWFiMTgtM2VmOWQwOTgy MzUyLzIvOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5NkZFQTRGMC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzhBODlFMERCODk1MzFG NzIzRTQyQzc1MDkyODJDQzU0OTZGRUE0RjAuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzNkYTRkOGI0LWExNTctNDYzNC1hYjE4LTNlZjlkMDk4MjM1 Mi8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzNDMyNjUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNDM3MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwcQuMA0GCSqGSIb3DQEB CwUAA4IBAQCw1ZBL/HEOX8KLTnrNM5NrJpqnUuTsocZ5/9AZV+26qLCW4cH26SPa Ow1cJ2uY0apQkz1JDHa5pTOZxOdiW5v1qk6Mz+Igbg2hXKkqRJ9aUSmxVLOGPSga o4qub8rF/ozR63Ep3Ank6CfbmFs0UR/Et9cdqfW4MkR5Gpz8GZQjSVVSYNt470eV 7H4gIrBRNUn5qZULfX6iIMk05AeG15mDNNfebYa66I9yp0ZVU98DKcHSSIlwvP+p Jo+qbt+5YSAVw7bkaTm7N5yK6+xLiHV1OGkJUDcmpgZFnKyuwiJ4b7e8IxD+LqbQ Uzq5ch7Z0px/yJlzgWgJlh3OqKJe4+Br -----END CERTIFICATE-----Generated at Sun Apr 6 00:06:33 2025 by rpki-client