$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632353a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356632353a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: Ynwjfj/qdHRIDVGR9tQC0e9OU+RdKrZq0/rZlWxmaLk= Subject key identifier: 64:6F:49:23:ED:3D:3B:72:6E:ED:39:7E:A9:E2:BF:9C:DE:85:CD:B2 Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 45F7AB247807B2D8177EB1218E4FA3659A2A003B Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632353a3a2f34382d3438203d3e203538333339.roa Signing time: Tue 04 Jun 2024 08:06:26 +0000 ROA not before: Tue 04 Jun 2024 08:01:26 +0000 ROA not after: Tue 03 Jun 2025 08:06:26 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f25::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:f7:ab:24:78:07:b2:d8:17:7e:b1:21:8e:4f:a3:65:9a:2a:00:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: Jun 4 08:01:26 2024 GMT Not After : Jun 3 08:06:26 2025 GMT Subject: CN=646F4923ED3D3B726EED397EA9E2BF9CDE85CDB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7c:ca:67:59:3c:a4:92:7d:6f:e0:4f:f5:90: 5a:0a:61:2c:0a:91:98:12:43:69:ef:18:7a:77:e6: 56:f3:a7:d2:9b:02:81:74:e7:0b:94:d9:80:d2:bb: 51:82:18:bf:fc:34:73:fd:fe:75:cf:c3:9a:7b:c4: 28:a6:3b:de:32:c1:e7:20:56:2e:85:28:c6:13:bc: 7f:ed:7f:62:e8:01:01:e2:a9:b3:6b:a5:84:31:be: c7:bd:da:f9:a9:6b:00:61:d7:65:88:fb:c6:68:a0: 20:48:79:65:d5:44:21:2f:2e:f3:da:87:44:6d:d8: 25:98:b2:15:09:83:4e:8e:9d:c0:83:7e:71:65:88: d7:5d:60:0d:23:5b:88:c3:9a:cf:ba:57:6b:03:8b: 32:cb:30:8b:8f:84:1c:58:78:4b:93:65:f7:28:2d: 29:93:e8:c2:51:d9:c0:8d:1f:ff:89:92:41:a9:d3: 7b:a9:65:c0:b8:a1:99:f2:ff:5e:20:20:52:0e:7c: 31:24:30:af:8f:bf:1a:16:fa:f0:08:d0:84:31:cc: ad:e9:c7:ca:64:c6:0d:73:e2:52:25:5e:96:96:0c: c3:fa:be:b8:3e:5d:ee:60:d8:d9:3b:95:89:0b:b1: 3a:55:fb:28:54:bc:bb:1e:25:3f:cb:0e:2a:de:98: 80:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:6F:49:23:ED:3D:3B:72:6E:ED:39:7E:A9:E2:BF:9C:DE:85:CD:B2 X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356632353a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f25::/48 Signature Algorithm: sha256WithRSAEncryption 4e:43:20:a9:71:9b:bd:82:dd:f7:52:d6:4c:6f:e8:53:f3:0c: 1f:47:32:56:6a:10:14:c8:69:3a:09:7c:aa:bb:78:7e:d7:96: 87:26:d4:2c:b8:d1:c2:b7:fb:f4:07:53:a9:88:9f:3b:66:08: 3b:0b:f1:db:be:5e:83:c9:4c:b4:ef:61:0e:be:5f:77:ca:64: 9c:be:d6:45:b0:f3:07:3b:c4:71:4e:1e:2a:45:6e:a9:c6:94: b3:3a:d0:16:84:b5:4b:ce:e8:7d:bb:67:71:ae:24:8f:60:16: be:b0:3d:ec:87:14:da:13:bc:24:6f:b6:8c:1f:95:00:d7:61: b7:21:88:52:db:ab:3f:55:0a:43:27:bb:62:30:95:f1:96:81: b7:7f:08:63:b2:90:be:be:fd:16:cb:56:93:1e:8a:1b:da:95: 4e:bd:5c:88:30:53:3b:1f:e6:26:65:0e:d0:a5:45:1d:61:14: 27:44:fd:56:a3:42:6e:d3:18:e1:c0:25:75:f0:6c:0c:98:53: 94:1b:e4:8b:43:0f:cf:eb:d1:99:46:f1:7f:7e:69:4f:69:57: ff:d2:10:96:4b:ae:7a:34:3e:3f:fa:8b:a9:84:f8:35:cc:7b: 1c:9b:89:ed:3a:b4:06:06:c1:0f:23:2d:dd:e2:ef:3c:9d:9f: 66:1b:69:52 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIURferJHgHstgXfrEhjk+jZZoqADswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNDA2MDQwODAxMjZaFw0yNTA2MDMwODA2MjZaMDMxMTAvBgNV BAMTKDY0NkY0OTIzRUQzRDNCNzI2RUVEMzk3RUE5RTJCRjlDREU4NUNEQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzfMpnWTykkn1v4E/1kFoKYSwK kZgSQ2nvGHp35lbzp9KbAoF05wuU2YDSu1GCGL/8NHP9/nXPw5p7xCimO94ywecg Vi6FKMYTvH/tf2LoAQHiqbNrpYQxvse92vmpawBh12WI+8ZooCBIeWXVRCEvLvPa h0Rt2CWYshUJg06OncCDfnFliNddYA0jW4jDms+6V2sDizLLMIuPhBxYeEuTZfco LSmT6MJR2cCNH/+JkkGp03upZcC4oZny/14gIFIOfDEkMK+PvxoW+vAI0IQxzK3p x8pkxg1z4lIlXpaWDMP6vrg+Xe5g2Nk7lYkLsTpV+yhUvLseJT/LDiremID3AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUZG9JI+09O3Ju7Tl+qeK/nN6FzbIwHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMyMzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8lMA0GCSqGSIb3DQEB CwUAA4IBAQBOQyCpcZu9gt33UtZMb+hT8wwfRzJWahAUyGk6CXyqu3h+15aHJtQs uNHCt/v0B1OpiJ87Zgg7C/Hbvl6DyUy072EOvl93ymScvtZFsPMHO8RxTh4qRW6p xpSzOtAWhLVLzuh9u2dxriSPYBa+sD3shxTaE7wkb7aMH5UA12G3IYhS26s/VQpD J7tiMJXxloG3fwhjspC+vv0Wy1aTHoob2pVOvVyIMFM7H+YmZQ7QpUUdYRQnRP1W o0Ju0xjhwCV18GwMmFOUG+SLQw/P69GZRvF/fmlPaVf/0hCWS656ND4/+ouphPg1 zHscm4ntOrQGBsEPIy3d4u88nZ9mG2lS -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org