$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: UOKbBIiyEWlauUpIniKm9AIr9odgq6vWH5bxOmL8Z2k= Subject key identifier: F3:4C:94:95:42:4D:0E:A5:68:D1:C2:C8:7C:F0:3A:ED:0A:E4:A7:49 Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 10816F977E94F6AE59082826E28E96FB7E336368 Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa Signing time: Tue 04 Jun 2024 08:06:24 +0000 ROA not before: Tue 04 Jun 2024 08:01:24 +0000 ROA not after: Tue 03 Jun 2025 08:06:24 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f70::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:81:6f:97:7e:94:f6:ae:59:08:28:26:e2:8e:96:fb:7e:33:63:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: Jun 4 08:01:24 2024 GMT Not After : Jun 3 08:06:24 2025 GMT Subject: CN=F34C9495424D0EA568D1C2C87CF03AED0AE4A749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3d:09:9c:32:56:c5:02:dd:14:c2:b6:73:87: 98:51:3b:d4:67:62:db:06:95:12:65:15:e2:af:db: 0c:91:4b:09:65:01:fc:cf:e7:99:e0:84:11:96:b2: af:ff:20:1d:7c:a4:10:e4:c5:7f:07:12:2d:3d:66: 45:63:2d:85:43:fa:f5:75:54:fd:c2:c8:37:0b:4c: eb:10:5f:3c:46:d4:df:72:ea:48:0f:f3:f1:15:b7: 26:d7:28:8d:1f:fb:c4:e0:96:5f:70:46:87:41:50: 4f:e5:a8:00:74:36:cd:46:5e:c9:fe:a4:ac:ad:8d: 8f:ff:ce:6e:94:77:70:db:75:33:64:09:b8:ef:ec: d7:5b:25:51:6a:c8:24:82:f2:a9:cc:2d:07:07:7b: 82:3b:58:4d:be:b0:2b:0f:1b:48:40:88:04:16:ac: 8d:39:12:cc:88:0d:4b:d8:c7:ef:59:09:33:8d:07: 5d:54:4c:73:be:e4:df:24:9a:87:04:d8:80:00:1f: 3e:1b:1e:fe:45:b2:e4:f8:9e:58:8a:c8:95:63:87: da:d9:b0:ef:a8:ab:84:30:7f:b2:40:7c:f0:45:3e: 25:7a:af:06:f4:3a:9a:67:8d:ab:b3:d8:89:91:b5: 56:9c:2c:67:ef:29:71:4b:7b:5b:53:bf:5b:5a:3a: f3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:4C:94:95:42:4D:0E:A5:68:D1:C2:C8:7C:F0:3A:ED:0A:E4:A7:49 X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f70::/48 Signature Algorithm: sha256WithRSAEncryption 52:7c:69:a0:22:ad:d3:0c:1a:f4:db:2f:79:e0:a8:fd:64:de: 9a:db:ac:61:11:a9:8f:7b:a6:22:88:cb:76:ec:10:5e:f7:8d: 4f:77:fd:42:47:34:46:b7:db:3f:65:01:fe:98:4f:21:7e:6f: 38:f3:1a:35:c1:3c:19:5b:aa:c7:bc:97:5f:74:57:e5:8d:05: 1e:fd:65:38:e2:d9:5b:f0:be:f8:c9:93:b1:d6:aa:ff:5a:6b: 64:e9:bf:79:44:8b:e3:cb:62:40:d2:a6:35:21:f5:c3:1f:2e: c2:32:42:ea:ef:fe:e5:85:d2:7a:f9:35:76:d1:5d:44:37:35: dd:96:e5:ec:65:f1:cb:f1:b1:57:63:c9:7c:d3:fe:0b:d0:95: da:d5:45:98:20:6c:2d:82:7c:26:76:ce:3e:9e:de:42:2b:3c: 06:b2:3c:62:ac:aa:1c:92:69:a0:fa:6d:49:7e:cc:af:6d:dc: 72:eb:9a:d9:95:05:3d:f2:bf:08:2b:fc:a3:24:f6:52:7b:14: 28:13:09:b9:b9:3d:28:60:70:e7:36:9b:ab:17:00:60:0b:07: 41:72:b6:8e:56:11:c7:95:f1:67:d7:4c:0a:de:7d:97:00:b2: 40:a9:1a:57:04:48:9a:69:42:3c:79:85:86:2a:99:eb:23:de: cb:f0:9f:3b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUEIFvl36U9q5ZCCgm4o6W+34zY2gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNDA2MDQwODAxMjRaFw0yNTA2MDMwODA2MjRaMDMxMTAvBgNV BAMTKEYzNEM5NDk1NDI0RDBFQTU2OEQxQzJDODdDRjAzQUVEMEFFNEE3NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9PQmcMlbFAt0UwrZzh5hRO9Rn YtsGlRJlFeKv2wyRSwllAfzP55nghBGWsq//IB18pBDkxX8HEi09ZkVjLYVD+vV1 VP3CyDcLTOsQXzxG1N9y6kgP8/EVtybXKI0f+8Tgll9wRodBUE/lqAB0Ns1GXsn+ pKytjY//zm6Ud3DbdTNkCbjv7NdbJVFqyCSC8qnMLQcHe4I7WE2+sCsPG0hAiAQW rI05EsyIDUvYx+9ZCTONB11UTHO+5N8kmocE2IAAHz4bHv5FsuT4nliKyJVjh9rZ sO+oq4Qwf7JAfPBFPiV6rwb0Oppnjauz2ImRtVacLGfvKXFLe1tTv1taOvOZAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU80yUlUJNDqVo0cLIfPA67Qrkp0kwHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjM3MzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV9wMA0GCSqGSIb3DQEB CwUAA4IBAQBSfGmgIq3TDBr02y954Kj9ZN6a26xhEamPe6YiiMt27BBe941Pd/1C RzRGt9s/ZQH+mE8hfm848xo1wTwZW6rHvJdfdFfljQUe/WU44tlb8L74yZOx1qr/ Wmtk6b95RIvjy2JA0qY1IfXDHy7CMkLq7/7lhdJ6+TV20V1ENzXdluXsZfHL8bFX Y8l80/4L0JXa1UWYIGwtgnwmds4+nt5CKzwGsjxirKockmmg+m1Jfsyvbdxy65rZ lQU98r8IK/yjJPZSexQoEwm5uT0oYHDnNpurFwBgCwdBcraOVhHHlfFn10wK3n2X ALJAqRpXBEiaaUI8eYWGKpnrI97L8J87 -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org