$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa File: 326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa (raw, json) Hash identifier: V8IPc7CzahzQBSBJjZF7w9U2AHLx+q5KGbCiSPf222I= Subject key identifier: 17:62:A9:A7:CD:C6:40:56:A6:F6:31:FF:9D:12:B6:F9:F9:3E:10:38 Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 563DA13BF4FC0029A9E3CCAC8F0BC91322A3919F Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa Signing time: Tue 04 Jun 2024 08:06:24 +0000 ROA not before: Tue 04 Jun 2024 08:01:24 +0000 ROA not after: Tue 03 Jun 2025 08:06:24 +0000 asID: 138190 IP address blocks: 2a05:dfc1:5f25::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:3d:a1:3b:f4:fc:00:29:a9:e3:cc:ac:8f:0b:c9:13:22:a3:91:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: Jun 4 08:01:24 2024 GMT Not After : Jun 3 08:06:24 2025 GMT Subject: CN=1762A9A7CDC64056A6F631FF9D12B6F9F93E1038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a2:58:6d:80:94:f6:72:f2:a1:5c:90:58:87: 70:9e:9d:15:49:46:8b:dd:e1:eb:53:ca:ff:e8:18: 93:5a:b5:a8:27:80:3e:27:29:f5:b5:2d:66:0f:a6: ce:bb:35:33:6e:80:81:d5:08:ba:59:77:15:fb:18: 9c:49:b8:65:97:65:77:31:30:4b:71:61:8b:e7:8f: 74:4e:7a:f9:da:28:45:dd:e4:8f:8d:6a:52:50:54: 9d:6e:56:74:6b:f3:11:2e:92:e0:00:1c:4d:74:7f: 2d:e2:c5:c5:b9:f6:e8:0e:f0:39:8a:95:b4:2b:69: 58:7b:eb:9a:c7:ff:b9:3d:cf:cf:4f:4f:1c:0b:47: 6e:35:fd:97:13:2c:49:68:df:3d:04:84:f6:40:d3: aa:ea:e0:72:e8:55:31:eb:be:7e:67:bc:8a:27:71: 51:05:2b:d9:1d:1e:6a:cf:f1:4a:8a:03:2c:45:3f: 2d:6c:0e:cf:a6:96:3b:49:bb:8f:5b:b8:ca:c9:f3: 14:2d:c7:d4:c3:9a:63:66:a6:8c:e1:fe:7f:1e:ab: 95:5c:c9:1f:88:40:31:65:4c:9f:74:c4:7b:66:5c: 50:c1:ab:ae:6d:65:cf:e7:3c:ee:d6:0a:66:00:e5: cb:c5:cf:6b:c0:34:0b:7c:df:35:f1:cd:e0:e9:e9: bf:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:62:A9:A7:CD:C6:40:56:A6:F6:31:FF:9D:12:B6:F9:F9:3E:10:38 X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f25::/48 Signature Algorithm: sha256WithRSAEncryption 1b:06:fb:e8:31:05:eb:d0:a8:3c:6e:7a:be:c5:65:3b:0d:b8: 5c:05:7f:52:3f:7a:17:f5:a0:ec:97:66:2e:fa:b4:08:f1:bd: 10:59:f8:07:b3:c8:24:c9:6e:5f:aa:40:26:44:04:74:45:ec: 24:ad:12:0d:6a:ea:8d:41:ea:3d:f4:46:53:dc:65:50:64:51: ab:5e:b6:bb:bd:f6:68:69:49:af:73:17:04:0c:b3:c3:37:64: 9b:62:9e:0a:ca:be:ef:b4:d4:1c:d1:bc:23:8a:da:e4:7f:be: 35:44:ac:f1:f4:ba:32:64:32:18:43:be:2b:fe:43:05:54:d0: 55:75:d4:74:61:97:12:13:a2:ff:1d:90:ab:6e:4d:e0:03:3a: ad:5c:19:af:81:b6:59:3d:e1:01:d8:d5:15:73:e7:f3:e9:df: ca:5b:41:61:0c:6c:b1:01:6d:ee:f6:f2:93:cc:25:c8:15:14: 53:53:95:18:c1:87:97:2e:b3:a0:e0:6b:82:31:be:d6:68:89: 6f:37:fc:2a:97:c2:66:55:91:40:85:01:d1:4b:52:8b:be:23: 16:2b:32:f0:e4:65:da:4e:a2:bf:06:88:aa:08:e2:20:9f:2c: b5:a3:13:f6:c1:ba:17:8d:b9:6f:b0:41:d9:de:62:16:08:69: b3:3d:2a:3a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUVj2hO/T8ACmp48ysjwvJEyKjkZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNDA2MDQwODAxMjRaFw0yNTA2MDMwODA2MjRaMDMxMTAvBgNV BAMTKDE3NjJBOUE3Q0RDNjQwNTZBNkY2MzFGRjlEMTJCNkY5RjkzRTEwMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSolhtgJT2cvKhXJBYh3CenRVJ Rovd4etTyv/oGJNatagngD4nKfW1LWYPps67NTNugIHVCLpZdxX7GJxJuGWXZXcx MEtxYYvnj3ROevnaKEXd5I+NalJQVJ1uVnRr8xEukuAAHE10fy3ixcW59ugO8DmK lbQraVh765rH/7k9z89PTxwLR241/ZcTLElo3z0EhPZA06rq4HLoVTHrvn5nvIon cVEFK9kdHmrP8UqKAyxFPy1sDs+mljtJu49buMrJ8xQtx9TDmmNmpozh/n8eq5Vc yR+IQDFlTJ90xHtmXFDBq65tZc/nPO7WCmYA5cvFz2vANAt83zXxzeDp6b9pAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUF2Kpp83GQFam9jH/nRK2+fk+EDgwHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMyMzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BXyUwDQYJKoZIhvcN AQELBQADggEBABsG++gxBevQqDxuer7FZTsNuFwFf1I/ehf1oOyXZi76tAjxvRBZ +AezyCTJbl+qQCZEBHRF7CStEg1q6o1B6j30RlPcZVBkUatetru99mhpSa9zFwQM s8M3ZJtingrKvu+01BzRvCOK2uR/vjVErPH0ujJkMhhDviv+QwVU0FV11HRhlxIT ov8dkKtuTeADOq1cGa+Btlk94QHY1RVz5/Pp38pbQWEMbLEBbe728pPMJcgVFFNT lRjBh5cus6Dga4IxvtZoiW83/CqXwmZVkUCFAdFLUou+IxYrMvDkZdpOor8GiKoI 4iCfLLWjE/bBuheNuW+wQdneYhYIabM9Kjo= -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org