$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633433303a3a2f34382d3438203d3e203437343936.roa File: 326130353a646663313a633433303a3a2f34382d3438203d3e203437343936.roa (raw, json) Hash identifier: IJr5CBZ4iO0h6IlIR+qADhOt/NMtQJ1etkNPbekFk9g= Subject key identifier: 4B:72:08:84:EF:97:15:96:AB:75:DD:DD:ED:26:62:4D:9F:A3:2A:CE Certificate issuer: /CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Certificate serial: 7C5BD3D717A3B522CEA889FB03804E24B4AF9B84 Authority key identifier: 8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633433303a3a2f34382d3438203d3e203437343936.roa Signing time: Wed 18 Dec 2024 13:58:14 +0000 ROA not before: Wed 18 Dec 2024 13:53:14 +0000 ROA not after: Wed 17 Dec 2025 13:58:14 +0000 asID: 47496 IP address blocks: 2a05:dfc1:c430::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 14:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:5b:d3:d7:17:a3:b5:22:ce:a8:89:fb:03:80:4e:24:b4:af:9b:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Validity Not Before: Dec 18 13:53:14 2024 GMT Not After : Dec 17 13:58:14 2025 GMT Subject: CN=4B720884EF971596AB75DDDDED26624D9FA32ACE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:00:70:1f:5d:73:d2:36:1f:3b:36:26:1a:97: 00:dc:88:c9:0b:21:f2:80:86:1e:9f:48:b1:94:3f: f4:48:92:f8:7c:75:f4:17:8d:7f:40:5c:78:1d:f7: cf:d6:30:09:42:5e:b0:0c:bb:71:1f:9d:f5:13:a2: 7a:28:7c:ab:47:dd:38:cf:db:c7:3a:35:10:a8:bb: 43:8e:f2:87:4b:82:f5:77:41:da:19:59:85:1f:26: a9:a3:9b:b1:0f:a6:94:1d:48:c9:3e:93:58:07:cd: e3:07:12:58:e6:4b:4f:38:4b:3f:df:5d:b2:1b:50: d8:65:bb:c6:f9:8c:1d:d0:c1:8f:32:8c:57:8e:45: 4b:13:03:cf:bf:a7:d4:88:42:ee:a8:20:59:98:d5: 20:ab:1d:80:ab:ab:25:2e:d6:66:a7:3e:cb:d4:53: 1f:80:76:cf:e2:b7:eb:f8:9d:42:9a:ad:0f:19:8b: 78:0d:00:34:c5:d0:54:9a:3a:08:56:e1:be:32:66: 5e:01:b7:a6:b1:e8:00:2e:da:9f:a0:80:ad:d5:80: fa:3b:65:ed:fb:f5:6e:64:38:56:15:3a:99:a8:e8: 44:8e:64:44:0e:7e:8f:ba:a9:0f:81:e1:20:5b:05: 55:87:3d:b4:b0:4d:a3:c5:f8:7a:24:f3:05:d0:f7: 36:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:72:08:84:EF:97:15:96:AB:75:DD:DD:ED:26:62:4D:9F:A3:2A:CE X509v3 Authority Key Identifier: keyid:8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633433303a3a2f34382d3438203d3e203437343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c430::/48 Signature Algorithm: sha256WithRSAEncryption 6b:a3:6d:af:b3:9d:ec:b5:59:63:e7:96:17:6b:66:87:2f:b6: 42:1c:f8:b5:40:0f:3a:5b:cc:00:b3:fb:80:4b:88:b4:30:83: b8:c4:6d:7c:de:e1:b7:61:b2:03:86:93:56:2d:4a:e4:2e:39: 31:d9:8e:fe:7f:d4:a1:fa:ef:b4:c6:2c:fc:df:30:f3:50:a1: 03:f5:d7:04:db:6f:0c:f7:1b:a6:2a:86:47:90:dd:91:a8:02: f5:2e:fc:02:66:f1:1d:77:f6:43:2e:f4:6e:49:4e:81:ae:cc: 54:64:8a:a3:a7:33:25:86:63:46:01:c6:22:55:ff:b8:b0:6b: ba:02:f5:98:14:ca:9f:6f:0b:d2:52:04:c3:85:ff:fb:3e:97: d1:a3:18:4c:e4:02:ff:ea:23:4a:e4:53:0b:b4:45:d6:93:1b: 11:e2:19:41:d9:f6:b5:72:75:49:4d:0c:25:fd:2c:26:65:32: 20:59:9b:a7:f9:50:64:88:93:69:5c:28:42:70:67:ce:d1:5f: 5e:b0:cf:3c:89:f0:9c:25:54:18:ef:af:80:9f:ab:37:90:c1: 00:29:a7:ee:d5:ad:90:5d:1c:70:07:e3:96:cb:c3:99:f4:37: ed:5c:89:d0:36:ea:4b:8e:85:d3:5e:ba:7e:9e:c9:97:48:7a: 99:39:a2:10 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUfFvT1xejtSLOqIn7A4BOJLSvm4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5 NkZFQTRGMDAeFw0yNDEyMTgxMzUzMTRaFw0yNTEyMTcxMzU4MTRaMDMxMTAvBgNV BAMTKDRCNzIwODg0RUY5NzE1OTZBQjc1REREREVEMjY2MjREOUZBMzJBQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWAHAfXXPSNh87NiYalwDciMkL IfKAhh6fSLGUP/RIkvh8dfQXjX9AXHgd98/WMAlCXrAMu3EfnfUTonoofKtH3TjP 28c6NRCou0OO8odLgvV3QdoZWYUfJqmjm7EPppQdSMk+k1gHzeMHEljmS084Sz/f XbIbUNhlu8b5jB3QwY8yjFeORUsTA8+/p9SIQu6oIFmY1SCrHYCrqyUu1manPsvU Ux+Ads/it+v4nUKarQ8Zi3gNADTF0FSaOghW4b4yZl4Bt6ax6AAu2p+ggK3VgPo7 Ze379W5kOFYVOpmo6ESOZEQOfo+6qQ+B4SBbBVWHPbSwTaPF+Hok8wXQ9zZdAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUS3IIhO+XFZardd3d7SZiTZ+jKs4wHwYDVR0j BBgwFoAUiong24lTH3I+QsdQkoLMVJb+pPAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2RhNGQ4YjQtYTE1Ny00NjM0LWFiMTgtM2VmOWQwOTgy MzUyLzIvOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5NkZFQTRGMC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzhBODlFMERCODk1MzFG NzIzRTQyQzc1MDkyODJDQzU0OTZGRUE0RjAuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzNkYTRkOGI0LWExNTctNDYzNC1hYjE4LTNlZjlkMDk4MjM1 Mi8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzNDMzMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNDM3MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwcQwMA0GCSqGSIb3DQEB CwUAA4IBAQBro22vs53stVlj55YXa2aHL7ZCHPi1QA86W8wAs/uAS4i0MIO4xG18 3uG3YbIDhpNWLUrkLjkx2Y7+f9Sh+u+0xiz83zDzUKED9dcE228M9xumKoZHkN2R qAL1LvwCZvEdd/ZDLvRuSU6BrsxUZIqjpzMlhmNGAcYiVf+4sGu6AvWYFMqfbwvS UgTDhf/7PpfRoxhM5AL/6iNK5FMLtEXWkxsR4hlB2fa1cnVJTQwl/SwmZTIgWZun +VBkiJNpXChCcGfO0V9esM88ifCcJVQY76+An6s3kMEAKafu1a2QXRxwB+OWy8OZ 9DftXInQNupLjoXTXrp+nsmXSHqZOaIQ -----END CERTIFICATE-----Generated at Sun Apr 6 04:34:48 2025 by rpki-client