$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: ObqGWvqg9GJxfKt+XEFUjK5qAKH2uuG4nf/6ArxJHW8= Subject key identifier: 09:9A:3B:C6:7D:2E:20:29:B1:07:28:E5:46:8E:21:91:94:76:D4:CA Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 4D56E1F4D30C0D8C5B97206A8903F240B1BA4F80 Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa Signing time: Tue 04 Jun 2024 08:06:25 +0000 ROA not before: Tue 04 Jun 2024 08:01:25 +0000 ROA not after: Tue 03 Jun 2025 08:06:25 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8ed0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 22:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:56:e1:f4:d3:0c:0d:8c:5b:97:20:6a:89:03:f2:40:b1:ba:4f:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: Jun 4 08:01:25 2024 GMT Not After : Jun 3 08:06:25 2025 GMT Subject: CN=099A3BC67D2E2029B10728E5468E21919476D4CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:11:2a:d0:c9:20:3a:9c:09:4f:43:30:30:7c: cc:71:da:f9:30:c4:f1:d6:78:78:88:e7:df:ab:5f: 96:59:92:e4:0c:b4:f4:ae:94:ac:21:b6:0c:ee:ed: b9:0e:9b:af:ae:03:7e:bb:38:cb:9a:06:93:9c:e0: 38:81:9a:4d:97:3f:f0:59:e7:48:32:9e:50:2f:e1: 10:b4:64:c2:da:8b:14:56:c5:23:68:44:1a:13:f8: 52:62:75:bb:64:03:90:08:84:ec:9f:f5:c1:89:80: b0:89:b6:85:1a:4c:3d:d8:df:f1:c1:47:17:91:f9: 5b:ad:17:32:50:5c:0b:97:0e:ba:a1:82:52:0f:0d: 85:7f:72:af:c8:ed:e1:af:fa:28:c4:fb:55:3d:e5: 72:58:3a:bb:85:e8:aa:f4:19:88:8e:b5:0e:df:47: 5d:75:98:4c:09:7d:4f:87:2a:3f:1a:68:6b:a9:dd: 43:12:23:50:12:48:8e:6c:65:ac:5a:c3:e2:9c:4a: e9:21:03:7d:85:1c:0a:9e:15:81:ed:b1:bc:ee:94: a5:ef:30:60:6d:cd:36:ca:fc:54:23:b1:29:37:7f: 02:d3:0b:d4:12:81:7f:f7:9a:c0:2c:da:dd:90:d9: 1f:66:92:5a:52:93:7b:af:81:fc:cb:a5:21:15:2e: 93:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9A:3B:C6:7D:2E:20:29:B1:07:28:E5:46:8E:21:91:94:76:D4:CA X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8ed0::/44 Signature Algorithm: sha256WithRSAEncryption b8:2f:3a:13:51:b3:de:38:96:ec:7b:93:84:cd:53:07:bc:f2: bb:7c:b8:4f:ee:3b:15:57:35:df:2b:0d:14:0b:1e:de:99:d1: aa:e8:6c:23:c4:d0:34:56:80:16:27:48:a2:ba:e6:f8:29:de: ca:99:ed:e1:79:07:cc:5b:0b:99:e6:9c:77:38:ce:67:a3:3a: 31:da:a4:23:f8:73:d9:17:bd:6f:45:95:01:db:0e:08:aa:d2: e5:35:1c:96:3b:c4:b7:0b:22:0f:b6:31:d3:c7:47:4d:34:83: bb:4f:29:e8:6a:c5:fc:3a:75:ee:27:c8:7b:fe:fa:d9:5f:44: f8:d1:fd:76:27:81:ec:10:34:ad:31:ad:0b:a8:ed:a6:57:dd: ff:58:02:f4:40:50:99:3b:4a:c6:0e:26:59:c2:e1:5c:7c:3f: b5:b7:f4:ef:01:9a:d4:81:d2:c0:b8:33:65:fb:de:fa:dd:05: 55:e4:b6:f3:f4:16:eb:57:f8:85:f9:ef:28:45:aa:ef:4d:2e: 52:e3:70:5d:5e:88:74:ec:58:5e:11:f4:77:79:3c:d1:77:67: 8f:b9:d1:53:9b:bb:03:f6:d9:3a:22:ef:a0:3c:ba:c1:1e:72: a4:5e:a8:3b:02:6e:6c:81:c6:74:ec:0b:7b:5a:ba:d1:d8:2e: b0:93:95:60 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUTVbh9NMMDYxblyBqiQPyQLG6T4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNDA2MDQwODAxMjVaFw0yNTA2MDMwODA2MjVaMDMxMTAvBgNV BAMTKDA5OUEzQkM2N0QyRTIwMjlCMTA3MjhFNTQ2OEUyMTkxOTQ3NkQ0Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClESrQySA6nAlPQzAwfMxx2vkw xPHWeHiI59+rX5ZZkuQMtPSulKwhtgzu7bkOm6+uA367OMuaBpOc4DiBmk2XP/BZ 50gynlAv4RC0ZMLaixRWxSNoRBoT+FJidbtkA5AIhOyf9cGJgLCJtoUaTD3Y3/HB RxeR+VutFzJQXAuXDrqhglIPDYV/cq/I7eGv+ijE+1U95XJYOruF6Kr0GYiOtQ7f R111mEwJfU+HKj8aaGup3UMSI1ASSI5sZaxaw+KcSukhA32FHAqeFYHtsbzulKXv MGBtzTbK/FQjsSk3fwLTC9QSgX/3msAs2t2Q2R9mklpSk3uvgfzLpSEVLpONAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUCZo7xn0uICmxByjlRo4hkZR21MowHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTY0MzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY7QMA0GCSqGSIb3DQEB CwUAA4IBAQC4LzoTUbPeOJbse5OEzVMHvPK7fLhP7jsVVzXfKw0UCx7emdGq6Gwj xNA0VoAWJ0iiuub4Kd7Kme3heQfMWwuZ5px3OM5nozox2qQj+HPZF71vRZUB2w4I qtLlNRyWO8S3CyIPtjHTx0dNNIO7TynoasX8OnXuJ8h7/vrZX0T40f12J4HsEDSt Ma0LqO2mV93/WAL0QFCZO0rGDiZZwuFcfD+1t/TvAZrUgdLAuDNl+9763QVV5Lbz 9BbrV/iF+e8oRarvTS5S43BdXoh07FheEfR3eTzRd2ePudFTm7sD9tk6Iu+gPLrB HnKkXqg7Am5sgcZ07At7WrrR2C6wk5Vg -----END CERTIFICATE-----Generated at Fri Sep 20 09:06:54 2024 by rpki-client on console-ams.rpki-client.org