$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa File: 326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa (raw, json) Hash identifier: ELo1ezAtz7dNP9k5vw3qjH3GZwVtqPryJWwIEQjfN9k= Subject key identifier: 12:A1:40:7F:31:B9:89:04:B2:00:DF:A8:FD:3C:83:25:3E:A1:8F:0B Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 784EB63DDDF7D6C1858CC092C22706B5968EAC34 Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa Signing time: Tue 06 May 2025 08:50:50 +0000 ROA not before: Tue 06 May 2025 08:45:50 +0000 ROA not after: Tue 05 May 2026 08:50:50 +0000 asID: 138190 IP address blocks: 2a05:dfc1:5f25::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 21:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:4e:b6:3d:dd:f7:d6:c1:85:8c:c0:92:c2:27:06:b5:96:8e:ac:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: May 6 08:45:50 2025 GMT Not After : May 5 08:50:50 2026 GMT Subject: CN=12A1407F31B98904B200DFA8FD3C83253EA18F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a6:e0:d8:e2:fc:57:7c:68:ec:47:b4:a5:e7: 37:33:2d:e4:32:44:74:1a:22:e8:89:37:ba:d4:49: f5:45:59:66:6a:ed:48:27:4d:52:3d:25:26:e3:73: 42:91:67:8c:e1:10:b9:c4:fc:aa:a7:a3:c8:bc:e4: be:ec:11:93:f0:04:0d:46:84:6d:35:89:86:bc:06: 40:0c:9f:73:32:f0:8d:7f:3f:5e:22:95:f1:70:e5: 9a:c9:79:dc:c2:3b:73:94:7b:ef:1a:76:5a:c4:c1: 54:70:89:a3:0d:d5:c6:8d:fc:1b:b5:5c:13:1f:c4: 25:5a:d1:11:2c:5e:e5:6d:5c:50:5e:50:77:80:52: de:b8:b3:a9:2d:02:41:1f:9f:59:4e:35:6d:3c:ed: 28:2f:e3:d2:2e:ba:29:17:e3:c2:ef:99:dd:38:43: f9:49:45:29:2a:82:1f:3f:98:f2:e7:1c:43:ea:25: df:9c:dc:89:b7:60:c1:44:61:20:4c:72:64:e3:7d: 80:dc:a6:42:02:79:dc:79:5a:6a:ee:bc:64:63:4a: d3:7b:b9:7e:c7:c7:1c:aa:58:12:2c:00:2a:93:0b: 12:af:7d:f5:e6:02:cf:67:3d:1e:97:fc:1a:23:1b: a6:64:1a:8a:77:5c:61:fb:7b:b0:54:b3:14:52:b6: 24:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A1:40:7F:31:B9:89:04:B2:00:DF:A8:FD:3C:83:25:3E:A1:8F:0B X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f25::/48 Signature Algorithm: sha256WithRSAEncryption 85:c7:37:30:6a:c4:26:f1:1e:08:c1:c8:de:90:d1:08:51:21: 66:9a:b3:53:90:89:cb:93:83:ac:76:d2:ce:c3:f0:4c:35:c6: d7:b9:a5:ce:8e:99:74:97:33:8d:53:e6:cd:57:56:54:70:70: 53:53:eb:0e:5a:8b:eb:ab:e4:9e:1e:b4:b1:f8:99:a0:40:ae: 6c:3e:6a:0a:0c:7f:bc:fa:ea:f1:45:b0:fa:cd:8e:e1:ca:8a: 47:a3:4e:bc:2a:eb:a3:69:2c:60:69:f5:9e:ab:3a:0c:47:d5: 7c:02:ae:80:e1:e2:63:33:9c:b9:63:aa:18:af:ec:b8:f6:66: 85:a4:83:b3:12:72:3a:dc:40:8f:9d:8f:e3:6a:54:7f:86:44: 24:a6:85:a8:cc:db:3d:83:e0:d5:c0:78:56:bb:9a:54:86:ab: ea:52:ba:d2:36:25:77:1d:c8:20:08:6c:66:57:6a:a5:b0:47: 61:de:67:3f:be:29:7f:dd:a3:d2:81:e1:9f:c7:83:db:79:e5: 15:ac:57:ab:eb:e2:65:69:22:e1:eb:6d:60:66:fa:ff:cb:e5: db:9d:bf:9e:80:af:7a:5f:88:49:5f:e9:b9:8c:60:1b:34:af: b3:6b:5e:92:54:70:11:aa:32:c9:39:db:b4:8c:ea:20:54:fe: 58:2f:29:c9 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUeE62Pd331sGFjMCSwicGtZaOrDQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNTA1MDYwODQ1NTBaFw0yNjA1MDUwODUwNTBaMDMxMTAvBgNV BAMTKDEyQTE0MDdGMzFCOTg5MDRCMjAwREZBOEZEM0M4MzI1M0VBMThGMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDapuDY4vxXfGjsR7Sl5zczLeQy RHQaIuiJN7rUSfVFWWZq7UgnTVI9JSbjc0KRZ4zhELnE/Kqno8i85L7sEZPwBA1G hG01iYa8BkAMn3My8I1/P14ilfFw5ZrJedzCO3OUe+8adlrEwVRwiaMN1caN/Bu1 XBMfxCVa0REsXuVtXFBeUHeAUt64s6ktAkEfn1lONW087Sgv49IuuikX48Lvmd04 Q/lJRSkqgh8/mPLnHEPqJd+c3Im3YMFEYSBMcmTjfYDcpkICedx5WmruvGRjStN7 uX7HxxyqWBIsACqTCxKvffXmAs9nPR6X/BojG6ZkGop3XGH7e7BUsxRStiRhAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUEqFAfzG5iQSyAN+o/TyDJT6hjwswHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMyMzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BXyUwDQYJKoZIhvcN AQELBQADggEBAIXHNzBqxCbxHgjByN6Q0QhRIWaas1OQicuTg6x20s7D8Ew1xte5 pc6OmXSXM41T5s1XVlRwcFNT6w5ai+ur5J4etLH4maBArmw+agoMf7z66vFFsPrN juHKikejTrwq66NpLGBp9Z6rOgxH1XwCroDh4mMznLljqhiv7Lj2ZoWkg7MScjrc QI+dj+NqVH+GRCSmhajM2z2D4NXAeFa7mlSGq+pSutI2JXcdyCAIbGZXaqWwR2He Zz++KX/do9KB4Z/Hg9t55RWsV6vr4mVpIuHrbWBm+v/L5dudv56Ar3pfiElf6bmM YBs0r7NrXpJUcBGqMsk527SM6iBU/lgvKck= -----END CERTIFICATE-----Generated at Sat Jun 7 14:29:09 2025 by rpki-client