$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/4/326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa File: 326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa (raw, json) Hash identifier: Akh6Hk6S0OH2Z77HSUXUpo9sndUP6ZpVYbaZ0C+pMkU= Subject key identifier: 42:B0:66:9F:F2:AB:FC:24:66:7A:BE:B6:8A:6A:08:41:75:12:07:B8 Certificate issuer: /CN=D7AC0BFBDA15A7F240A1283F5649194CE8BBB801 Certificate serial: 4DC2187B589FED116C6C3ADAEC61782FB1DD7776 Authority key identifier: D7:AC:0B:FB:DA:15:A7:F2:40:A1:28:3F:56:49:19:4C:E8:BB:B8:01 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/D7AC0BFBDA15A7F240A1283F5649194CE8BBB801.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/4/326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa Signing time: Fri 04 Jul 2025 19:50:15 +0000 ROA not before: Fri 04 Jul 2025 19:45:15 +0000 ROA not after: Fri 03 Jul 2026 19:50:15 +0000 asID: 47496 IP address blocks: 2a05:dfc1:c421::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/4/D7AC0BFBDA15A7F240A1283F5649194CE8BBB801.crl rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/4/D7AC0BFBDA15A7F240A1283F5649194CE8BBB801.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/D7AC0BFBDA15A7F240A1283F5649194CE8BBB801.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 22:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c2:18:7b:58:9f:ed:11:6c:6c:3a:da:ec:61:78:2f:b1:dd:77:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7AC0BFBDA15A7F240A1283F5649194CE8BBB801 Validity Not Before: Jul 4 19:45:15 2025 GMT Not After : Jul 3 19:50:15 2026 GMT Subject: CN=42B0669FF2ABFC24667ABEB68A6A0841751207B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3b:14:90:49:07:7a:20:8e:47:e6:44:bd:c2: 9d:33:cc:b9:cd:17:79:40:33:4c:f6:46:94:2e:eb: 48:22:5c:dd:84:8e:59:2e:e2:2e:16:a0:0e:93:8d: 5f:ef:c7:45:89:45:0e:20:3e:96:1e:8a:57:f7:c8: d7:84:6a:83:28:f9:b7:01:93:29:07:8d:62:bf:72: 52:0a:e9:e1:b3:3a:13:75:b5:34:e8:26:cd:c0:d8: a8:44:2b:84:6a:ad:2b:85:87:7c:5f:be:34:a7:6e: 98:5c:d8:af:97:00:0a:21:c2:7b:90:fa:8f:7e:f5: 4b:96:a2:dd:19:57:3c:51:10:0a:4d:68:a7:6e:f4: 6d:49:0d:9b:0e:e3:bc:0e:c9:39:6c:2d:2e:45:af: 45:bf:9b:6f:15:58:26:57:04:2d:68:8b:4b:5d:c4: b3:44:f9:d8:47:9f:01:f4:54:29:81:8b:26:5b:24: a5:92:33:b4:f4:4e:3e:e4:d8:a0:ac:4d:71:b2:93: 55:0d:d3:c3:b4:02:b8:f1:a0:fc:76:3f:81:a9:fc: 63:10:b5:00:86:f5:35:91:cb:20:33:be:b0:9a:29: fc:b4:f0:6f:4e:53:04:e1:4a:1a:69:88:b7:a9:48: b1:dc:8e:27:b8:85:f2:67:ba:95:ce:7b:82:b2:0d: 31:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B0:66:9F:F2:AB:FC:24:66:7A:BE:B6:8A:6A:08:41:75:12:07:B8 X509v3 Authority Key Identifier: keyid:D7:AC:0B:FB:DA:15:A7:F2:40:A1:28:3F:56:49:19:4C:E8:BB:B8:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/4/D7AC0BFBDA15A7F240A1283F5649194CE8BBB801.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/D7AC0BFBDA15A7F240A1283F5649194CE8BBB801.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/4/326130353a646663313a633432313a3a2f34382d3438203d3e203437343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c421::/48 Signature Algorithm: sha256WithRSAEncryption 84:c5:74:b0:85:51:12:66:a1:17:db:31:4d:8b:f1:71:a7:05: 3e:4f:2a:12:d4:8b:0a:be:e8:c2:ce:63:73:80:e4:5e:c6:85: e1:89:70:71:01:d6:f3:d8:a7:8e:26:ad:11:fe:19:c3:a6:67: c7:3b:65:70:27:d8:38:7b:37:87:10:03:72:f6:6e:00:f8:cd: 58:4a:9d:8d:63:0a:35:41:b4:92:5c:d7:65:fd:b2:6a:9e:4f: 72:b9:30:9b:08:83:15:59:b7:c1:33:e9:97:26:e7:02:62:f0: aa:f4:e9:2e:0e:3d:f6:10:1d:b8:84:9d:d1:54:7b:22:65:0f: 35:d6:05:2f:ad:97:a5:5a:a3:cc:69:1f:08:bb:d0:b7:3a:5e: 9a:f2:00:9e:2d:17:f5:cc:98:a6:e8:06:41:50:aa:22:d5:8e: 6a:11:19:6a:2e:fa:be:61:07:96:b7:ad:14:55:95:62:cc:90: 06:25:2c:86:89:7d:1f:fa:9a:39:06:d4:12:ab:36:d4:ed:d7: 41:d3:78:11:c3:ba:5b:55:ef:3c:e2:0a:3f:33:76:4b:1d:bb: 56:a5:9a:ce:b5:1c:e8:2a:9b:2a:c1:a2:ed:33:97:71:7e:d5: 1b:00:e2:a6:f1:95:cc:2b:67:25:47:6f:32:34:a7:64:d2:14: 0b:d1:e5:9a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUTcIYe1if7RFsbDra7GF4L7Hdd3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdBQzBCRkJEQTE1QTdGMjQwQTEyODNGNTY0OTE5NENF OEJCQjgwMTAeFw0yNTA3MDQxOTQ1MTVaFw0yNjA3MDMxOTUwMTVaMDMxMTAvBgNV BAMTKDQyQjA2NjlGRjJBQkZDMjQ2NjdBQkVCNjhBNkEwODQxNzUxMjA3QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrOxSQSQd6II5H5kS9wp0zzLnN F3lAM0z2RpQu60giXN2Ejlku4i4WoA6TjV/vx0WJRQ4gPpYeilf3yNeEaoMo+bcB kykHjWK/clIK6eGzOhN1tTToJs3A2KhEK4RqrSuFh3xfvjSnbphc2K+XAAohwnuQ +o9+9UuWot0ZVzxREApNaKdu9G1JDZsO47wOyTlsLS5Fr0W/m28VWCZXBC1oi0td xLNE+dhHnwH0VCmBiyZbJKWSM7T0Tj7k2KCsTXGyk1UN08O0ArjxoPx2P4Gp/GMQ tQCG9TWRyyAzvrCaKfy08G9OUwThShppiLepSLHcjie4hfJnupXOe4KyDTFfAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUQrBmn/Kr/CRmer62imoIQXUSB7gwHwYDVR0j BBgwFoAU16wL+9oVp/JAoSg/VkkZTOi7uAEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2RhNGQ4YjQtYTE1Ny00NjM0LWFiMTgtM2VmOWQwOTgy MzUyLzQvRDdBQzBCRkJEQTE1QTdGMjQwQTEyODNGNTY0OTE5NENFOEJCQjgwMS5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0Q3QUMwQkZCREExNUE3 RjI0MEExMjgzRjU2NDkxOTRDRThCQkI4MDEuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzNkYTRkOGI0LWExNTctNDYzNC1hYjE4LTNlZjlkMDk4MjM1 Mi80LzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzNDMyMzEzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNDM3MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwcQhMA0GCSqGSIb3DQEB CwUAA4IBAQCExXSwhVESZqEX2zFNi/FxpwU+TyoS1IsKvujCzmNzgORexoXhiXBx Adbz2KeOJq0R/hnDpmfHO2VwJ9g4ezeHEANy9m4A+M1YSp2NYwo1QbSSXNdl/bJq nk9yuTCbCIMVWbfBM+mXJucCYvCq9OkuDj32EB24hJ3RVHsiZQ811gUvrZelWqPM aR8Iu9C3Ol6a8gCeLRf1zJim6AZBUKoi1Y5qERlqLvq+YQeWt60UVZVizJAGJSyG iX0f+po5BtQSqzbU7ddB03gRw7pbVe884go/M3ZLHbtWpZrOtRzoKpsqwaLtM5dx ftUbAOKm8ZXMK2clR28yNKdk0hQL0eWa -----END CERTIFICATE-----Generated at Sat Jul 5 12:49:26 2025 by rpki-client