$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633433303a3a2f34382d3438203d3e203437343936.roa File: 326130353a646663313a633433303a3a2f34382d3438203d3e203437343936.roa (raw, json) Hash identifier: SOtjosbyzJvnJEbai8k+flHVtWLBScZMEmsxJ58Fjng= Subject key identifier: 0D:1E:D2:CC:4E:F9:EB:49:5A:94:A5:E4:B2:E3:91:3C:69:A9:D5:D1 Certificate issuer: /CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Certificate serial: 44974F136ECC9E316B8E45833C24E7A1547A9A78 Authority key identifier: 8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633433303a3a2f34382d3438203d3e203437343936.roa Signing time: Wed 17 Jan 2024 13:55:01 +0000 ROA not before: Wed 17 Jan 2024 13:50:01 +0000 ROA not after: Wed 15 Jan 2025 13:55:01 +0000 asID: 47496 IP address blocks: 2a05:dfc1:c430::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 12:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:97:4f:13:6e:cc:9e:31:6b:8e:45:83:3c:24:e7:a1:54:7a:9a:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A89E0DB89531F723E42C7509282CC5496FEA4F0 Validity Not Before: Jan 17 13:50:01 2024 GMT Not After : Jan 15 13:55:01 2025 GMT Subject: CN=0D1ED2CC4EF9EB495A94A5E4B2E3913C69A9D5D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:21:2e:79:d4:2b:e8:a9:dd:95:dc:43:09:d2: a8:42:70:95:c8:08:78:c5:6a:be:c2:21:ba:14:2a: 6b:10:a1:40:44:22:c3:95:42:3d:de:36:b9:59:b5: 1e:ba:44:d0:b2:57:30:64:10:8b:8a:66:e5:74:b4: c4:06:2c:6f:a9:16:c7:02:6a:8a:df:8c:c2:46:9e: e3:d9:5b:f3:92:95:ba:dd:57:6f:b7:32:71:ef:2c: 21:14:62:a2:21:22:7b:02:7a:84:f1:4c:89:4e:35: cc:b8:61:d6:f7:01:cc:9b:93:c0:65:ae:6f:40:7d: d6:d8:00:13:77:fe:ce:98:69:9e:0b:fe:d0:1a:e4: ad:4a:ae:da:fa:6e:b9:a3:64:0b:1d:fe:ea:23:ec: 74:59:42:fc:a9:ac:c4:e1:25:05:79:44:59:ee:a9: d7:09:e3:dc:23:00:a2:44:6e:a7:1d:e7:86:0b:ea: 79:b1:f1:d2:ee:78:6c:be:7e:25:f3:13:93:54:89: f2:bb:46:07:cd:4c:6c:05:e0:9e:69:47:a5:98:f6: 41:68:55:3a:fe:72:93:fa:81:74:b9:0d:d0:1b:94: d4:da:5f:77:08:f7:ee:7c:a6:05:26:6a:7f:f4:4a: a4:d0:b0:d9:b6:a4:ee:34:e5:be:02:a6:d6:49:4a: be:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:1E:D2:CC:4E:F9:EB:49:5A:94:A5:E4:B2:E3:91:3C:69:A9:D5:D1 X509v3 Authority Key Identifier: keyid:8A:89:E0:DB:89:53:1F:72:3E:42:C7:50:92:82:CC:54:96:FE:A4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/8A89E0DB89531F723E42C7509282CC5496FEA4F0.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/8A89E0DB89531F723E42C7509282CC5496FEA4F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/2/326130353a646663313a633433303a3a2f34382d3438203d3e203437343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c430::/48 Signature Algorithm: sha256WithRSAEncryption a4:b1:f6:82:53:9e:e2:12:88:b8:5a:94:01:58:42:89:72:ee: 12:ef:4d:92:a2:f1:63:7b:13:61:51:7b:f5:46:7c:e8:54:8a: 3b:0e:e7:3a:5d:29:05:c5:1d:24:06:82:00:5e:ae:13:a0:6d: 6b:2f:fd:6b:e9:ea:26:8b:7c:ba:94:37:b7:c9:bd:e8:16:18: 3f:1d:74:5f:96:b4:e1:a2:c1:4b:9c:d2:4a:3c:dd:2f:7e:67: 87:41:1a:60:1a:00:89:1c:87:e3:5b:9d:ec:57:d9:e6:ec:7d: 24:40:29:a8:79:70:91:81:43:b6:3b:b0:7f:53:35:06:bb:16: 3b:05:38:fb:96:4b:47:d9:38:0b:e2:99:e7:43:c3:60:e9:eb: 48:89:28:ad:83:10:a7:63:00:85:bf:07:be:98:5e:63:34:b4: 8f:59:48:33:65:2d:29:fb:87:06:07:56:50:e0:58:00:ed:8d: 26:fe:cf:6f:a0:c6:83:59:c5:55:24:2f:07:49:07:60:10:0c: 76:b8:5f:59:28:f9:e5:23:a5:6a:8a:95:b7:14:90:4e:77:8c: 42:45:ec:94:a8:f2:c8:14:83:d6:f8:7f:fd:56:81:ca:4b:8f: c8:f0:33:f3:bd:59:94:f1:27:ee:28:94:fa:ec:dd:1b:ea:e2: 89:a6:39:c6 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIURJdPE27MnjFrjkWDPCTnoVR6mngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5 NkZFQTRGMDAeFw0yNDAxMTcxMzUwMDFaFw0yNTAxMTUxMzU1MDFaMDMxMTAvBgNV BAMTKDBEMUVEMkNDNEVGOUVCNDk1QTk0QTVFNEIyRTM5MTNDNjlBOUQ1RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWIS551Cvoqd2V3EMJ0qhCcJXI CHjFar7CIboUKmsQoUBEIsOVQj3eNrlZtR66RNCyVzBkEIuKZuV0tMQGLG+pFscC aorfjMJGnuPZW/OSlbrdV2+3MnHvLCEUYqIhInsCeoTxTIlONcy4Ydb3Acybk8Bl rm9AfdbYABN3/s6YaZ4L/tAa5K1Krtr6brmjZAsd/uoj7HRZQvyprMThJQV5RFnu qdcJ49wjAKJEbqcd54YL6nmx8dLueGy+fiXzE5NUifK7RgfNTGwF4J5pR6WY9kFo VTr+cpP6gXS5DdAblNTaX3cI9+58pgUman/0SqTQsNm2pO405b4CptZJSr4DAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUDR7SzE7560lalKXksuORPGmp1dEwHwYDVR0j BBgwFoAUiong24lTH3I+QsdQkoLMVJb+pPAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2RhNGQ4YjQtYTE1Ny00NjM0LWFiMTgtM2VmOWQwOTgy MzUyLzIvOEE4OUUwREI4OTUzMUY3MjNFNDJDNzUwOTI4MkNDNTQ5NkZFQTRGMC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzhBODlFMERCODk1MzFG NzIzRTQyQzc1MDkyODJDQzU0OTZGRUE0RjAuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzNkYTRkOGI0LWExNTctNDYzNC1hYjE4LTNlZjlkMDk4MjM1 Mi8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzNDMzMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNDM3MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwcQwMA0GCSqGSIb3DQEB CwUAA4IBAQCksfaCU57iEoi4WpQBWEKJcu4S702SovFjexNhUXv1RnzoVIo7Duc6 XSkFxR0kBoIAXq4ToG1rL/1r6eomi3y6lDe3yb3oFhg/HXRflrThosFLnNJKPN0v fmeHQRpgGgCJHIfjW53sV9nm7H0kQCmoeXCRgUO2O7B/UzUGuxY7BTj7lktH2TgL 4pnnQ8Ng6etIiSitgxCnYwCFvwe+mF5jNLSPWUgzZS0p+4cGB1ZQ4FgA7Y0m/s9v oMaDWcVVJC8HSQdgEAx2uF9ZKPnlI6VqipW3FJBOd4xCReyUqPLIFIPW+H/9VoHK S4/I8DPzvVmU8SfuKJT67N0b6uKJpjnG -----END CERTIFICATE-----Generated at Fri Nov 22 18:15:30 2024 by rpki-client on console-ams.rpki-client.org