$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/326130353a646663313a393630303a3a2f34302d3430203d3e20323136343535.roa File: 326130353a646663313a393630303a3a2f34302d3430203d3e20323136343535.roa (raw, json) Hash identifier: R8rTJIYEOHmNtQ+W65HlVcJr9EAiC7WNdRoszOqVDfk= Subject key identifier: 82:28:45:D1:5B:C4:68:9C:8C:9E:9E:40:CE:70:36:D6:25:BA:D1:DA Certificate issuer: /CN=1305A50FEEC042C917D8EF2D77D1D2448848C0F9 Certificate serial: 7C7B2D196B7A47703D4E78FC053EDBD6FD816889 Authority key identifier: 13:05:A5:0F:EE:C0:42:C9:17:D8:EF:2D:77:D1:D2:44:88:48:C0:F9 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/326130353a646663313a393630303a3a2f34302d3430203d3e20323136343535.roa Signing time: Thu 20 Feb 2025 21:39:29 +0000 ROA not before: Thu 20 Feb 2025 21:34:29 +0000 ROA not after: Thu 19 Feb 2026 21:39:29 +0000 asID: 216455 IP address blocks: 2a05:dfc1:9600::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.crl rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 21:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:7b:2d:19:6b:7a:47:70:3d:4e:78:fc:05:3e:db:d6:fd:81:68:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1305A50FEEC042C917D8EF2D77D1D2448848C0F9 Validity Not Before: Feb 20 21:34:29 2025 GMT Not After : Feb 19 21:39:29 2026 GMT Subject: CN=822845D15BC4689C8C9E9E40CE7036D625BAD1DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:29:9e:e0:32:b8:83:a4:5c:86:77:01:c1:5e: b6:10:d4:5f:d9:25:a0:ce:fc:c0:ca:cd:c8:d9:f5: f2:21:35:e1:6b:10:c7:48:13:d9:6c:da:b6:c4:b1: e4:e4:78:2a:a5:ee:3d:ae:16:53:2c:7d:92:52:cc: dc:cc:63:f3:66:be:56:3c:fa:27:90:90:16:54:b9: 19:d9:97:f1:87:07:40:d2:ed:57:68:47:6f:e5:d2: 4e:2e:77:c0:61:c5:88:4f:a0:8a:98:78:9b:97:98: 71:cd:a2:5f:cf:92:5b:1a:a2:8f:0b:d5:9e:0a:33: 56:47:bf:0a:1d:63:df:15:ca:1a:f0:f4:e3:ea:56: f0:d0:6a:c1:a1:57:ba:e1:c1:ca:64:b0:40:2e:b6: 9e:cf:71:3e:65:3a:5b:e8:01:98:25:0d:7e:e2:4c: 7b:b2:57:73:5a:0e:d8:99:af:83:54:a4:a1:7e:e3: e5:8d:74:99:5f:1e:3c:91:f8:79:8a:35:34:7d:3d: 21:0d:fb:ae:6e:b3:80:99:79:1b:0f:83:d8:f5:19: c7:0e:e1:28:85:b1:d9:41:cd:d8:c9:f5:df:f2:69: 6f:fe:3d:fc:38:4e:01:c8:a7:c9:0b:e4:2e:94:75: b7:e7:8c:c4:9e:21:ee:b6:82:72:4c:be:3a:2d:53: a9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:28:45:D1:5B:C4:68:9C:8C:9E:9E:40:CE:70:36:D6:25:BA:D1:DA X509v3 Authority Key Identifier: keyid:13:05:A5:0F:EE:C0:42:C9:17:D8:EF:2D:77:D1:D2:44:88:48:C0:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/1305A50FEEC042C917D8EF2D77D1D2448848C0F9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/1/326130353a646663313a393630303a3a2f34302d3430203d3e20323136343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9600::/40 Signature Algorithm: sha256WithRSAEncryption 65:a2:59:fe:23:48:43:85:e3:3f:1f:e3:4e:ba:76:c7:ed:65: 37:01:73:06:05:c5:4c:82:fe:80:f9:45:02:d9:2e:66:4f:ed: 6d:92:0e:3b:4d:92:a0:68:63:fb:96:90:ac:22:02:f8:e6:59: 24:8b:d4:c3:cd:1f:87:fe:72:4c:4d:dc:16:85:a5:3a:e6:74: 1d:b1:4f:1d:95:77:88:6a:e3:bd:6a:77:0a:45:f4:db:fe:da: bd:be:99:5f:ef:fb:75:4c:fe:9c:92:55:27:87:46:5f:99:ef: 31:8c:ae:05:fe:83:27:95:a7:77:6a:f9:44:6b:5e:97:c7:3b: 4f:51:f6:3e:70:db:7a:32:c2:64:b3:3f:19:0c:67:eb:5a:99: c4:e0:01:b1:d1:fe:15:88:50:0d:90:0b:27:1a:45:b3:50:eb: 47:b6:38:27:23:43:f5:c1:e7:5b:20:89:20:b4:6c:13:78:0a: da:d2:4e:8e:2c:58:85:0a:ef:02:f9:d1:11:12:db:83:46:e0: 11:f8:30:27:fa:2b:40:ab:12:35:db:a7:04:f4:1d:2a:e6:06: 0d:37:3b:36:d1:73:03:09:3c:73:82:d4:28:6d:fb:89:bc:4e: 91:57:43:9a:b3:0f:bb:56:c6:ab:22:b0:f3:41:ac:67:d8:b1: 56:c8:d5:69 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIUfHstGWt6R3A9Tnj8BT7b1v2BaIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTMwNUE1MEZFRUMwNDJDOTE3RDhFRjJENzdEMUQyNDQ4 ODQ4QzBGOTAeFw0yNTAyMjAyMTM0MjlaFw0yNjAyMTkyMTM5MjlaMDMxMTAvBgNV BAMTKDgyMjg0NUQxNUJDNDY4OUM4QzlFOUU0MENFNzAzNkQ2MjVCQUQxREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1KZ7gMriDpFyGdwHBXrYQ1F/Z JaDO/MDKzcjZ9fIhNeFrEMdIE9ls2rbEseTkeCql7j2uFlMsfZJSzNzMY/NmvlY8 +ieQkBZUuRnZl/GHB0DS7VdoR2/l0k4ud8BhxYhPoIqYeJuXmHHNol/Pklsaoo8L 1Z4KM1ZHvwodY98Vyhrw9OPqVvDQasGhV7rhwcpksEAutp7PcT5lOlvoAZglDX7i THuyV3NaDtiZr4NUpKF+4+WNdJlfHjyR+HmKNTR9PSEN+65us4CZeRsPg9j1GccO 4SiFsdlBzdjJ9d/yaW/+Pfw4TgHIp8kL5C6UdbfnjMSeIe62gnJMvjotU6kTAgMB AAGjggJfMIICWzAdBgNVHQ4EFgQUgihF0VvEaJyMnp5AznA21iW60dowHwYDVR0j BBgwFoAUEwWlD+7AQskX2O8td9HSRIhIwPkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTgyMWM0N2UtZTgxNS00MmRlLWJkNmItMTlhMmUxYWU1 NjRhLzEvMTMwNUE1MEZFRUMwNDJDOTE3RDhFRjJENzdEMUQyNDQ4ODQ4QzBGOS5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzEzMDVBNTBGRUVDMDQy QzkxN0Q4RUYyRDc3RDFEMjQ0ODg0OEMwRjkuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzU4MjFjNDdlLWU4MTUtNDJkZS1iZDZiLTE5YTJlMWFlNTY0 YS8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzNjMwMzAzYTNhMmYzNDMwMmQzNDMw MjAzZDNlMjAzMjMxMzYzNDM1MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BljANBgkqhkiG9w0B AQsFAAOCAQEAZaJZ/iNIQ4XjPx/jTrp2x+1lNwFzBgXFTIL+gPlFAtkuZk/tbZIO O02SoGhj+5aQrCIC+OZZJIvUw80fh/5yTE3cFoWlOuZ0HbFPHZV3iGrjvWp3CkX0 2/7avb6ZX+/7dUz+nJJVJ4dGX5nvMYyuBf6DJ5Wnd2r5RGtel8c7T1H2PnDbejLC ZLM/GQxn61qZxOABsdH+FYhQDZALJxpFs1DrR7Y4JyND9cHnWyCJILRsE3gK2tJO jixYhQrvAvnRERLbg0bgEfgwJ/orQKsSNdunBPQdKuYGDTc7NtFzAwk8c4LUKG37 ibxOkVdDmrMPu1bGqyKw80GsZ9ixVsjVaQ== -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:15 2025 by rpki-client