$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356632303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: RUMv0kcTTWoqijirdoCpPlZOtzq2fgOKwUO9nzC4YiM= Subject key identifier: 58:55:13:0A:65:15:1F:B3:B7:8C:D3:51:F5:0D:67:C9:74:6A:9D:A5 Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 0F8F558F82298A35055963EED06D994C7147F458 Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632303a3a2f34382d3438203d3e203538333339.roa Signing time: Tue 06 May 2025 08:50:50 +0000 ROA not before: Tue 06 May 2025 08:45:50 +0000 ROA not after: Tue 05 May 2026 08:50:50 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f20::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 21:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:8f:55:8f:82:29:8a:35:05:59:63:ee:d0:6d:99:4c:71:47:f4:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: May 6 08:45:50 2025 GMT Not After : May 5 08:50:50 2026 GMT Subject: CN=5855130A65151FB3B78CD351F50D67C9746A9DA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ec:eb:8a:f1:1f:1c:42:d7:28:20:78:07:b5: 9c:6d:82:ba:a8:3f:42:4a:ca:2d:e4:f5:11:b1:1f: c2:ee:90:9f:2f:17:2e:d4:03:ca:8c:f7:3e:cf:8a: fc:02:1c:ed:d5:98:8f:be:d5:a4:33:52:c6:77:38: 3d:bf:45:f1:fd:f9:92:5d:7b:74:a9:a9:e9:e0:49: a6:f0:f3:7c:45:bf:b2:fb:e8:16:ec:57:14:54:11: 0d:68:df:0e:ac:b8:9b:40:40:e0:d4:8d:61:2c:8c: a7:1a:3c:76:dc:12:08:d0:6e:58:3c:13:3a:00:30: b2:0a:82:60:f5:f7:96:de:36:c3:45:b7:ec:3b:db: 23:43:25:00:a4:31:bd:9b:fa:56:bb:d4:ad:bf:0c: 40:e7:f9:42:ed:32:78:7e:46:70:02:45:66:30:f9: bb:73:c4:62:ec:ff:15:6f:f2:64:ad:1e:69:49:d6: 69:08:14:89:91:88:9f:2d:8e:8f:a5:46:7a:fd:81: 0c:70:66:b6:5d:82:30:35:97:4d:86:31:fb:be:19: c3:3a:c6:2b:a5:1c:14:85:46:7b:70:26:15:66:c2: 01:2d:64:77:d6:20:77:84:a0:c1:18:af:69:08:85: 5b:a0:89:c5:76:15:ab:09:04:39:6d:5e:bf:9c:db: da:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:55:13:0A:65:15:1F:B3:B7:8C:D3:51:F5:0D:67:C9:74:6A:9D:A5 X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f20::/48 Signature Algorithm: sha256WithRSAEncryption 0c:e1:3c:10:84:39:00:8d:f3:80:69:35:97:55:3f:10:3a:c0: c0:b9:46:ce:9d:9b:b8:15:9a:76:9f:cb:31:7c:af:1a:ee:83: 8c:59:b0:b1:32:99:a4:63:ed:96:52:d1:e0:89:6c:cd:9d:a4: 39:9b:ae:9b:84:2a:3f:f7:f9:1a:53:0e:80:51:a5:a2:58:b7: f9:29:fe:bf:2f:bf:49:06:91:43:6d:7e:a3:7e:41:d0:9e:75: 95:9e:33:8b:6e:a7:8d:b8:21:36:36:d6:1d:37:d7:e8:04:f3: 15:d1:a0:04:0c:fe:7e:1b:1a:7c:d9:d3:49:85:49:7c:5b:81: 1f:82:df:5b:30:f2:d2:02:e6:a1:db:74:ab:96:78:e6:82:1f: f4:93:3d:16:5a:20:28:4e:91:4f:21:28:54:f1:51:8a:ed:91: 75:ef:50:df:2b:a4:a7:98:ac:ba:54:d6:13:5f:5c:f1:9f:89: f4:5a:5d:ca:e6:fa:8c:61:f7:96:f6:c5:ed:d9:55:26:dc:0f: 52:7a:93:9f:a8:3b:70:77:a0:fa:a5:8e:f8:7b:69:2d:c7:8d: ad:45:db:30:9e:bb:0d:8e:f2:23:64:8f:b4:48:c6:cd:05:cb: 8e:e4:90:6e:8e:53:0c:39:1a:6b:2e:fd:0a:37:a2:23:7b:01: 25:2a:cd:d2 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUD49Vj4IpijUFWWPu0G2ZTHFH9FgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNTA1MDYwODQ1NTBaFw0yNjA1MDUwODUwNTBaMDMxMTAvBgNV BAMTKDU4NTUxMzBBNjUxNTFGQjNCNzhDRDM1MUY1MEQ2N0M5NzQ2QTlEQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo7OuK8R8cQtcoIHgHtZxtgrqo P0JKyi3k9RGxH8LukJ8vFy7UA8qM9z7PivwCHO3VmI++1aQzUsZ3OD2/RfH9+ZJd e3SpqengSabw83xFv7L76BbsVxRUEQ1o3w6suJtAQODUjWEsjKcaPHbcEgjQblg8 EzoAMLIKgmD195beNsNFt+w72yNDJQCkMb2b+la71K2/DEDn+ULtMnh+RnACRWYw +btzxGLs/xVv8mStHmlJ1mkIFImRiJ8tjo+lRnr9gQxwZrZdgjA1l02GMfu+GcM6 xiulHBSFRntwJhVmwgEtZHfWIHeEoMEYr2kIhVugicV2FasJBDltXr+c29qtAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUWFUTCmUVH7O3jNNR9Q1nyXRqnaUwHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMyMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8gMA0GCSqGSIb3DQEB CwUAA4IBAQAM4TwQhDkAjfOAaTWXVT8QOsDAuUbOnZu4FZp2n8sxfK8a7oOMWbCx MpmkY+2WUtHgiWzNnaQ5m66bhCo/9/kaUw6AUaWiWLf5Kf6/L79JBpFDbX6jfkHQ nnWVnjOLbqeNuCE2NtYdN9foBPMV0aAEDP5+Gxp82dNJhUl8W4Efgt9bMPLSAuah 23Srlnjmgh/0kz0WWiAoTpFPIShU8VGK7ZF171DfK6SnmKy6VNYTX1zxn4n0Wl3K 5vqMYfeW9sXt2VUm3A9SepOfqDtwd6D6pY74e2ktx42tRdswnrsNjvIjZI+0SMbN BcuO5JBujlMMORprLv0KN6IjewElKs3S -----END CERTIFICATE-----Generated at Sat Jun 7 09:15:30 2025 by rpki-client