$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/326130353a646663313a393630303a3a2f34302d3430203d3e20323136343535.roa File: 326130353a646663313a393630303a3a2f34302d3430203d3e20323136343535.roa (raw, json) Hash identifier: YFt3q+ZWZI/hR1iZR4grOc5hq2/gQVBvkRMee2ZUZhs= Subject key identifier: 6E:0D:B9:61:AB:F0:44:7E:4B:C3:59:24:FC:AD:3E:74:02:AB:1E:35 Certificate issuer: /CN=1305A50FEEC042C917D8EF2D77D1D2448848C0F9 Certificate serial: 2B84F88B5437569E5E2B94F6482ACC025355D9FF Authority key identifier: 13:05:A5:0F:EE:C0:42:C9:17:D8:EF:2D:77:D1:D2:44:88:48:C0:F9 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/326130353a646663313a393630303a3a2f34302d3430203d3e20323136343535.roa Signing time: Thu 21 Mar 2024 20:58:01 +0000 ROA not before: Thu 21 Mar 2024 20:53:01 +0000 ROA not after: Thu 20 Mar 2025 20:58:01 +0000 asID: 216455 IP address blocks: 2a05:dfc1:9600::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.crl rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:84:f8:8b:54:37:56:9e:5e:2b:94:f6:48:2a:cc:02:53:55:d9:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1305A50FEEC042C917D8EF2D77D1D2448848C0F9 Validity Not Before: Mar 21 20:53:01 2024 GMT Not After : Mar 20 20:58:01 2025 GMT Subject: CN=6E0DB961ABF0447E4BC35924FCAD3E7402AB1E35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ac:32:d7:92:15:8f:5d:dc:e3:17:7d:c8:4a: 9d:dd:0f:4e:72:25:f2:c7:94:7d:fd:1f:cd:7f:2c: d0:c2:b6:e8:39:06:cf:8e:fc:03:6d:4a:68:5c:cb: 4e:8d:fe:22:22:ce:eb:12:06:2b:cd:d3:9b:14:2e: 52:f1:3b:e1:d5:b5:d9:90:e9:01:e4:fd:2a:f6:26: 67:de:fe:2d:d2:b3:56:ae:9f:8d:c0:74:4e:3b:d7: 04:31:92:f0:d3:7d:d8:6a:88:cc:67:9d:b8:c5:35: 9f:a6:13:8b:7f:55:fb:be:4d:10:67:88:ed:65:82: 8b:f7:fa:05:e3:4d:9e:7b:ce:4d:55:bd:7f:fc:c1: f7:4c:13:dc:c3:79:a5:c2:ad:64:9a:85:8f:3f:a3: 1f:dd:4c:2a:6f:7d:cc:0f:30:ae:b5:28:a5:88:56: 53:f1:28:12:c4:92:b3:42:71:92:51:1e:f3:c4:e2: 2e:e9:4f:e6:b0:d7:ae:73:ca:9b:12:e0:d5:5c:67: 20:5e:a2:67:92:09:52:e0:07:ce:8b:e9:0d:48:30: 00:8b:09:b0:a0:f1:db:b2:7b:e3:dc:42:8d:27:70: d1:a8:c5:01:11:4c:c2:b1:ae:89:9e:04:85:37:00: 6d:ca:b8:06:ba:0a:e4:9e:34:e2:3c:e1:93:1b:93: 04:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0D:B9:61:AB:F0:44:7E:4B:C3:59:24:FC:AD:3E:74:02:AB:1E:35 X509v3 Authority Key Identifier: keyid:13:05:A5:0F:EE:C0:42:C9:17:D8:EF:2D:77:D1:D2:44:88:48:C0:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/326130353a646663313a393630303a3a2f34302d3430203d3e20323136343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9600::/40 Signature Algorithm: sha256WithRSAEncryption b6:70:b6:bd:55:ff:1c:4c:ad:e4:91:44:0d:34:fd:5d:d0:b6: 51:15:20:fe:7f:8b:51:77:09:ee:80:ea:46:83:e1:b3:b2:a5: 9e:fa:ab:46:cd:f3:56:de:4f:a6:f3:19:21:9f:7f:5c:40:d4: 9c:e7:85:3d:0d:4e:9a:99:1d:6d:18:95:c0:ec:98:b6:de:2f: f5:60:f3:19:c2:47:d7:8e:88:dc:c0:35:00:0e:c1:30:42:7b: 27:f1:95:77:be:9e:52:10:54:cf:43:90:fe:81:c0:90:35:58: e4:c3:31:5c:76:bd:6f:4c:15:d5:4f:45:7b:f9:f8:4d:5b:b3: bd:14:5f:93:5c:ea:c5:65:25:aa:0a:cb:d2:0c:bd:7f:8d:89: 2f:74:54:20:bd:b6:59:5e:f2:c1:ee:be:44:b1:9c:44:a8:cc: 11:ec:89:27:db:0d:4e:57:e0:4e:d9:4e:4b:68:69:68:62:aa: ca:c6:d5:b0:b7:cb:11:25:59:17:9d:c0:92:76:27:03:26:59: c7:c8:88:c4:68:32:e5:cc:cf:ef:e6:0f:3b:cb:29:8a:20:46: cf:e5:35:25:29:64:18:11:4e:11:4b:f7:46:ac:b5:82:fc:fb: ef:39:37:bf:66:53:62:e0:b2:8d:37:b9:22:f7:06:74:dd:ff: 1d:d2:f9:85 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIUK4T4i1Q3Vp5eK5T2SCrMAlNV2f8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTMwNUE1MEZFRUMwNDJDOTE3RDhFRjJENzdEMUQyNDQ4 ODQ4QzBGOTAeFw0yNDAzMjEyMDUzMDFaFw0yNTAzMjAyMDU4MDFaMDMxMTAvBgNV BAMTKDZFMERCOTYxQUJGMDQ0N0U0QkMzNTkyNEZDQUQzRTc0MDJBQjFFMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWrDLXkhWPXdzjF33ISp3dD05y JfLHlH39H81/LNDCtug5Bs+O/ANtSmhcy06N/iIizusSBivN05sULlLxO+HVtdmQ 6QHk/Sr2Jmfe/i3Ss1aun43AdE471wQxkvDTfdhqiMxnnbjFNZ+mE4t/Vfu+TRBn iO1lgov3+gXjTZ57zk1VvX/8wfdME9zDeaXCrWSahY8/ox/dTCpvfcwPMK61KKWI VlPxKBLEkrNCcZJRHvPE4i7pT+aw165zypsS4NVcZyBeomeSCVLgB86L6Q1IMACL CbCg8duye+PcQo0ncNGoxQERTMKxromeBIU3AG3KuAa6CuSeNOI84ZMbkwQxAgMB AAGjggJfMIICWzAdBgNVHQ4EFgQUbg25YavwRH5Lw1kk/K0+dAKrHjUwHwYDVR0j BBgwFoAUEwWlD+7AQskX2O8td9HSRIhIwPkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTgyMWM0N2UtZTgxNS00MmRlLWJkNmItMTlhMmUxYWU1 NjRhLzEvMTMwNUE1MEZFRUMwNDJDOTE3RDhFRjJENzdEMUQyNDQ4ODQ4QzBGOS5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzEzMDVBNTBGRUVDMDQy QzkxN0Q4RUYyRDc3RDFEMjQ0ODg0OEMwRjkuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzU4MjFjNDdlLWU4MTUtNDJkZS1iZDZiLTE5YTJlMWFlNTY0 YS8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzNjMwMzAzYTNhMmYzNDMwMmQzNDMw MjAzZDNlMjAzMjMxMzYzNDM1MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BljANBgkqhkiG9w0B AQsFAAOCAQEAtnC2vVX/HEyt5JFEDTT9XdC2URUg/n+LUXcJ7oDqRoPhs7Klnvqr Rs3zVt5PpvMZIZ9/XEDUnOeFPQ1OmpkdbRiVwOyYtt4v9WDzGcJH146I3MA1AA7B MEJ7J/GVd76eUhBUz0OQ/oHAkDVY5MMxXHa9b0wV1U9Fe/n4TVuzvRRfk1zqxWUl qgrL0gy9f42JL3RUIL22WV7ywe6+RLGcRKjMEeyJJ9sNTlfgTtlOS2hpaGKqysbV sLfLESVZF53AknYnAyZZx8iIxGgy5czP7+YPO8spiiBGz+U1JSlkGBFOEUv3Rqy1 gvz77zk3v2ZTYuCyjTe5IvcGdN3/HdL5hQ== -----END CERTIFICATE-----Generated at Thu Nov 21 16:17:59 2024 by rpki-client on console-fra.rpki-client.org