$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: EUOP8eM/Y9wBfRMTnSjJD7YUR6SIMWxLcr70HcPzdxg= Subject key identifier: FE:3A:16:B1:EB:12:74:F4:C8:FB:1F:D6:48:B3:78:B5:09:85:4A:6B Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 30DD259D9FD1E5DC8CEB9B90DDC1060C7C2BF885 Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa Signing time: Tue 06 May 2025 08:50:50 +0000 ROA not before: Tue 06 May 2025 08:45:50 +0000 ROA not after: Tue 05 May 2026 08:50:50 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f70::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 21:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:dd:25:9d:9f:d1:e5:dc:8c:eb:9b:90:dd:c1:06:0c:7c:2b:f8:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: May 6 08:45:50 2025 GMT Not After : May 5 08:50:50 2026 GMT Subject: CN=FE3A16B1EB1274F4C8FB1FD648B378B509854A6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f6:09:6f:ab:86:3f:75:92:1e:e0:82:ad:02: 11:42:ec:67:e0:a9:a3:6e:f3:2e:59:36:61:3f:1b: 6a:63:fc:4f:42:c5:7b:d2:18:77:fd:57:53:05:1d: bd:80:0d:ce:c2:39:aa:2c:94:d3:de:70:e3:22:22: d5:46:f8:c0:1e:0f:c6:c2:0f:8c:ee:60:98:5e:71: d3:1e:6d:df:5b:fe:02:3b:a9:b5:38:2e:9c:3f:57: 9a:e2:f1:ad:3b:5e:4a:c9:ab:d1:a4:0d:75:7e:25: 77:59:11:d7:4c:6a:e0:87:15:93:1f:41:2e:ec:02: a0:b0:88:05:a0:cc:7c:bd:45:ac:95:7c:d8:de:9f: f0:bd:3a:0b:73:da:a2:3d:0c:80:6a:61:07:44:3f: ab:ae:89:31:23:72:61:db:b9:05:83:41:1e:61:8a: 83:b4:19:e8:20:9b:e5:d0:11:46:c3:c1:cd:a5:57: a3:6f:8b:c4:34:46:1f:92:3e:80:f4:ef:02:0c:dd: 08:1c:18:e5:43:53:09:33:d3:60:fc:79:7b:e7:90: 3e:20:b5:7c:3e:5d:1a:60:5c:ab:b9:a6:32:60:a0: 63:22:4d:17:e7:2c:75:c4:e5:99:80:35:6d:3e:2d: e0:45:60:83:49:39:36:77:21:af:b1:57:2e:14:d8: 82:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3A:16:B1:EB:12:74:F4:C8:FB:1F:D6:48:B3:78:B5:09:85:4A:6B X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f70::/48 Signature Algorithm: sha256WithRSAEncryption 35:41:87:ec:ca:7f:08:17:76:46:59:0d:16:86:64:12:59:00: 54:a2:fe:0b:18:b9:3b:20:76:58:37:80:0a:13:2e:90:dc:7c: c0:94:56:51:9c:34:87:33:63:82:e4:6e:7b:ce:af:ce:fe:11: 25:74:aa:d2:6b:d1:3a:a4:27:4a:8f:c3:52:f1:2a:20:6f:c8: 34:60:60:b2:b3:5d:7a:2e:ae:62:b5:f9:5e:21:7e:2c:cf:a2: b0:33:81:41:6d:1d:c9:db:9d:b8:f2:c5:61:b6:08:97:64:3d: 88:bb:67:da:77:4c:23:33:50:79:e5:e3:9d:27:01:d5:20:f2: 03:c9:04:fc:c5:f8:fd:77:db:2c:cc:b5:1b:d0:3b:d9:3d:d4: 66:ba:9b:d3:6c:c9:c4:ab:82:75:dd:e0:95:24:c3:e8:52:98: 8b:dd:b4:b7:dd:46:be:60:90:38:f1:8f:fe:7f:98:fe:ca:24: b2:bf:1b:cf:60:2e:38:93:55:a5:94:37:90:49:62:68:7e:95: 0f:84:f4:d6:55:fa:e2:e0:82:32:c1:aa:73:0f:65:70:a2:00: 2d:60:00:72:be:57:0c:ea:44:e4:75:9d:c1:43:28:94:91:dd: c8:dc:a3:8c:f8:3d:ca:93:8c:61:68:dd:f6:44:0e:68:50:d3: 0a:8e:d6:9a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUMN0lnZ/R5dyM65uQ3cEGDHwr+IUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNTA1MDYwODQ1NTBaFw0yNjA1MDUwODUwNTBaMDMxMTAvBgNV BAMTKEZFM0ExNkIxRUIxMjc0RjRDOEZCMUZENjQ4QjM3OEI1MDk4NTRBNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv9glvq4Y/dZIe4IKtAhFC7Gfg qaNu8y5ZNmE/G2pj/E9CxXvSGHf9V1MFHb2ADc7COaoslNPecOMiItVG+MAeD8bC D4zuYJhecdMebd9b/gI7qbU4Lpw/V5ri8a07XkrJq9GkDXV+JXdZEddMauCHFZMf QS7sAqCwiAWgzHy9RayVfNjen/C9Ogtz2qI9DIBqYQdEP6uuiTEjcmHbuQWDQR5h ioO0Geggm+XQEUbDwc2lV6Nvi8Q0Rh+SPoD07wIM3QgcGOVDUwkz02D8eXvnkD4g tXw+XRpgXKu5pjJgoGMiTRfnLHXE5ZmANW0+LeBFYINJOTZ3Ia+xVy4U2IL9AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU/joWsesSdPTI+x/WSLN4tQmFSmswHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjM3MzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV9wMA0GCSqGSIb3DQEB CwUAA4IBAQA1QYfsyn8IF3ZGWQ0WhmQSWQBUov4LGLk7IHZYN4AKEy6Q3HzAlFZR nDSHM2OC5G57zq/O/hEldKrSa9E6pCdKj8NS8Sogb8g0YGCys116Lq5itfleIX4s z6KwM4FBbR3J25248sVhtgiXZD2Iu2fad0wjM1B55eOdJwHVIPIDyQT8xfj9d9ss zLUb0DvZPdRmupvTbMnEq4J13eCVJMPoUpiL3bS33Ua+YJA48Y/+f5j+yiSyvxvP YC44k1WllDeQSWJofpUPhPTWVfri4IIywapzD2VwogAtYAByvlcM6kTkdZ3BQyiU kd3I3KOM+D3Kk4xhaN32RA5oUNMKjtaa -----END CERTIFICATE-----Generated at Sat Jun 7 09:16:35 2025 by rpki-client