$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356633303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356633303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: 3wYYmRTJXmIU3AyHzpI78JR3BNL4Rog9KhzaLzdhWig= Subject key identifier: 41:4C:FF:FA:4A:EC:F1:81:81:49:D0:47:8E:9C:A1:75:A5:25:2C:8B Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 13F67D43979B7381E49E0D8B67E4AC2C557EB2D1 Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356633303a3a2f34382d3438203d3e203538333339.roa Signing time: Tue 04 Jun 2024 08:06:23 +0000 ROA not before: Tue 04 Jun 2024 08:01:23 +0000 ROA not after: Tue 03 Jun 2025 08:06:23 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f30::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:f6:7d:43:97:9b:73:81:e4:9e:0d:8b:67:e4:ac:2c:55:7e:b2:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: Jun 4 08:01:23 2024 GMT Not After : Jun 3 08:06:23 2025 GMT Subject: CN=414CFFFA4AECF1818149D0478E9CA175A5252C8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:88:19:40:1e:8e:d7:53:b9:46:cb:5e:d9:d2: aa:7b:9f:f5:34:ba:0b:b0:dc:fe:93:32:e8:d9:bb: 2a:c0:d1:35:2c:7a:d5:2a:b0:71:99:e2:22:24:37: 5b:77:b6:74:57:63:dc:27:5b:6b:e9:a3:8a:c2:86: 2f:b9:8b:70:c1:bd:65:30:0c:97:da:f4:cc:b2:30: 54:14:7d:9e:98:42:b9:64:c4:b8:60:92:3d:e2:cb: 5c:f9:5e:21:62:57:5c:59:22:6f:41:f2:91:e8:a3: bf:ce:c9:64:41:71:44:ed:c7:de:8b:a9:ce:8e:78: c8:86:35:03:1f:c2:60:89:86:80:a7:bc:d2:6b:f1: 1a:1e:09:0c:64:c9:a1:74:57:30:85:9a:60:07:5c: e0:39:61:1f:a6:64:17:b7:8d:c1:75:b4:c8:d0:e6: 91:0c:ad:45:8a:fb:09:53:f9:a6:f4:82:0c:ec:11: 92:52:0f:4e:3a:ce:60:3c:40:71:4a:db:af:f5:de: 47:5c:3f:14:9c:71:4b:30:67:ce:63:6d:ac:c0:ba: 6b:1a:c8:47:98:46:8b:b6:13:23:8a:6c:53:49:08: be:23:3a:5f:f9:d0:9f:f7:d4:f4:84:d8:16:43:f8: f9:d9:75:3a:a3:32:76:97:4d:15:1d:88:a4:07:cf: 41:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:4C:FF:FA:4A:EC:F1:81:81:49:D0:47:8E:9C:A1:75:A5:25:2C:8B X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356633303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f30::/48 Signature Algorithm: sha256WithRSAEncryption 1e:41:b9:03:53:11:ae:e6:0d:2b:61:b0:63:1f:58:16:58:44: 6e:d2:d5:60:1e:36:3b:80:5c:f0:28:5c:cb:ce:e1:ba:70:3e: 7d:1e:17:b9:05:da:2c:dc:dc:f2:f2:ee:6d:e7:94:b1:9c:37: 67:39:9d:7a:6c:13:70:df:d3:df:7a:22:1f:05:78:ac:78:fa: d1:13:f9:a3:86:60:a9:30:62:24:21:d6:9c:d7:c9:f3:6d:97: cf:39:b4:ad:21:dc:9a:27:24:9d:aa:84:a8:7c:cd:d5:8c:67: e7:c1:de:82:80:84:c0:b3:7a:95:be:bc:47:5a:1e:44:e3:52: 2e:90:7c:17:d9:fe:9d:4c:9b:87:6d:a4:75:ce:10:85:b7:ce: 0c:a1:45:80:df:e1:bf:43:e7:62:18:dc:16:d1:86:81:ff:77: 2c:41:6f:b8:c9:37:85:f3:14:14:3f:48:bc:d9:58:7b:17:bc: 23:d6:c6:00:f9:6b:d5:78:20:88:fb:77:8b:5b:25:10:46:1a: ac:59:58:09:32:7d:de:61:c3:dc:11:6d:c2:b7:2b:7a:e3:15: 08:c1:f4:cd:d3:92:0d:8c:1d:8d:be:69:1b:36:b9:5d:cd:8f: 1e:eb:12:7c:f6:9d:79:09:67:e2:34:e2:29:0d:11:ad:68:dc: 7f:8b:1c:05 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUE/Z9Q5ebc4Hkng2LZ+SsLFV+stEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNDA2MDQwODAxMjNaFw0yNTA2MDMwODA2MjNaMDMxMTAvBgNV BAMTKDQxNENGRkZBNEFFQ0YxODE4MTQ5RDA0NzhFOUNBMTc1QTUyNTJDOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyiBlAHo7XU7lGy17Z0qp7n/U0 uguw3P6TMujZuyrA0TUsetUqsHGZ4iIkN1t3tnRXY9wnW2vpo4rChi+5i3DBvWUw DJfa9MyyMFQUfZ6YQrlkxLhgkj3iy1z5XiFiV1xZIm9B8pHoo7/OyWRBcUTtx96L qc6OeMiGNQMfwmCJhoCnvNJr8RoeCQxkyaF0VzCFmmAHXOA5YR+mZBe3jcF1tMjQ 5pEMrUWK+wlT+ab0ggzsEZJSD046zmA8QHFK26/13kdcPxSccUswZ85jbazAumsa yEeYRou2EyOKbFNJCL4jOl/50J/31PSE2BZD+PnZdTqjMnaXTRUdiKQHz0GDAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUQUz/+krs8YGBSdBHjpyhdaUlLIswHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMzMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8wMA0GCSqGSIb3DQEB CwUAA4IBAQAeQbkDUxGu5g0rYbBjH1gWWERu0tVgHjY7gFzwKFzLzuG6cD59Hhe5 Bdos3Nzy8u5t55SxnDdnOZ16bBNw39PfeiIfBXisePrRE/mjhmCpMGIkIdac18nz bZfPObStIdyaJySdqoSofM3VjGfnwd6CgITAs3qVvrxHWh5E41IukHwX2f6dTJuH baR1zhCFt84MoUWA3+G/Q+diGNwW0YaB/3csQW+4yTeF8xQUP0i82Vh7F7wj1sYA +WvVeCCI+3eLWyUQRhqsWVgJMn3eYcPcEW3Ctyt64xUIwfTN05INjB2NvmkbNrld zY8e6xJ89p15CWfiNOIpDRGtaNx/ixwF -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org