$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386565303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386565303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: HHUg4WvLDwqjf5HszZkAEAWzJrv3p0S9EmICIOmBqTg= Subject key identifier: 18:27:E1:22:9C:47:BC:3F:D5:C8:AE:44:0D:47:A9:20:58:20:2E:FC Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 5FA8123D96FE32700B47C29942A9C676139A1BAE Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386565303a3a2f34342d3434203d3e203538333339.roa Signing time: Tue 04 Jun 2024 08:06:25 +0000 ROA not before: Tue 04 Jun 2024 08:01:25 +0000 ROA not after: Tue 03 Jun 2025 08:06:25 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8ee0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 22:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a8:12:3d:96:fe:32:70:0b:47:c2:99:42:a9:c6:76:13:9a:1b:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: Jun 4 08:01:25 2024 GMT Not After : Jun 3 08:06:25 2025 GMT Subject: CN=1827E1229C47BC3FD5C8AE440D47A92058202EFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:39:d4:41:38:ed:46:d7:b3:a7:6d:36:b2:9c: 8d:27:6e:a8:d3:2c:f6:15:85:ac:95:d0:03:38:82: 0d:47:51:c6:50:a0:64:7b:fc:f3:dd:e9:ec:76:30: eb:47:a8:7b:98:59:88:44:7f:fb:de:48:7c:19:66: f2:19:7d:b1:32:81:f9:76:5e:19:c8:88:1a:b7:8c: cb:b4:dc:ff:e9:74:fe:20:77:0a:5c:a1:a8:55:d8: 5a:84:1d:2e:63:8c:ff:e8:36:f0:2e:0a:7d:f8:72: 96:c6:e0:5a:33:ad:c0:7e:db:1f:48:90:df:47:8f: cc:03:e6:3d:0c:1d:5d:e1:84:4c:31:47:74:79:63: c3:87:4e:84:2d:06:5e:3d:3e:75:ac:16:71:ae:36: 3f:8b:38:0c:55:36:37:c9:e7:da:ff:56:b6:6f:01: 16:d1:30:ae:06:79:1d:9d:c3:c6:dc:c7:4c:64:a0: ef:f3:06:5d:c7:fe:9e:77:f4:9e:95:e2:2e:87:c7: 0c:df:b6:50:47:59:d9:59:ae:21:06:66:d6:aa:8d: 35:54:5d:a5:50:c7:5e:14:cb:02:65:a2:45:f9:04: be:6d:b2:15:ac:de:4a:25:0a:79:ac:df:ed:96:e6: b4:b1:38:a8:bc:69:ae:df:d9:91:95:aa:de:28:63: 7f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:27:E1:22:9C:47:BC:3F:D5:C8:AE:44:0D:47:A9:20:58:20:2E:FC X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386565303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8ee0::/44 Signature Algorithm: sha256WithRSAEncryption 11:9e:03:a5:14:5d:36:5d:1d:b0:53:89:14:9a:c0:e0:3b:7a: 30:11:61:3a:4b:2e:e1:71:a9:df:f0:23:bd:79:61:b7:7e:80: 43:cc:f2:67:93:f3:4e:ec:3c:b7:90:8f:0a:7d:a9:5a:94:8b: 11:06:5c:c5:63:6f:3c:24:e2:e9:09:07:0a:91:e5:5e:72:a7: 84:37:69:63:8e:53:3d:f2:cc:37:6b:7b:63:26:b0:c3:c2:ae: bb:51:93:4a:7a:a5:b5:f4:33:40:ca:81:1a:08:91:63:54:61: bf:da:46:bf:46:d6:7c:fc:f0:83:66:62:53:83:93:14:43:72: bf:23:52:be:4b:76:5e:96:03:41:61:e7:1f:c0:ad:1c:a7:d1: 6d:c5:51:ef:70:0a:ce:92:f4:d8:74:80:21:1e:bd:cf:f6:6b: 88:d6:12:ac:a9:9b:a0:08:25:ed:f5:89:f3:0d:17:20:04:f4: 39:06:f8:6a:a2:11:cd:b4:e2:0e:8b:1d:2c:d0:dd:46:c9:90: c0:be:b4:ec:97:55:d0:8f:5c:72:e6:dc:12:8c:8b:14:52:c1: 17:08:3c:90:61:0a:1e:86:a5:53:03:52:5c:99:e8:ee:13:51: 96:41:c9:01:de:44:c4:e6:1c:e3:ec:33:ab:4c:b2:5e:9f:53: 22:d3:f8:05 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUX6gSPZb+MnALR8KZQqnGdhOaG64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNDA2MDQwODAxMjVaFw0yNTA2MDMwODA2MjVaMDMxMTAvBgNV BAMTKDE4MjdFMTIyOUM0N0JDM0ZENUM4QUU0NDBENDdBOTIwNTgyMDJFRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjOdRBOO1G17OnbTaynI0nbqjT LPYVhayV0AM4gg1HUcZQoGR7/PPd6ex2MOtHqHuYWYhEf/veSHwZZvIZfbEygfl2 XhnIiBq3jMu03P/pdP4gdwpcoahV2FqEHS5jjP/oNvAuCn34cpbG4FozrcB+2x9I kN9Hj8wD5j0MHV3hhEwxR3R5Y8OHToQtBl49PnWsFnGuNj+LOAxVNjfJ59r/VrZv ARbRMK4GeR2dw8bcx0xkoO/zBl3H/p539J6V4i6HxwzftlBHWdlZriEGZtaqjTVU XaVQx14UywJlokX5BL5tshWs3kolCnms3+2W5rSxOKi8aa7f2ZGVqt4oY38/AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUGCfhIpxHvD/VyK5EDUepIFggLvwwHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTY1MzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY7gMA0GCSqGSIb3DQEB CwUAA4IBAQARngOlFF02XR2wU4kUmsDgO3owEWE6Sy7hcanf8CO9eWG3foBDzPJn k/NO7Dy3kI8KfalalIsRBlzFY288JOLpCQcKkeVecqeEN2ljjlM98sw3a3tjJrDD wq67UZNKeqW19DNAyoEaCJFjVGG/2ka/RtZ8/PCDZmJTg5MUQ3K/I1K+S3ZelgNB YecfwK0cp9FtxVHvcArOkvTYdIAhHr3P9muI1hKsqZugCCXt9YnzDRcgBPQ5Bvhq ohHNtOIOix0s0N1GyZDAvrTsl1XQj1xy5twSjIsUUsEXCDyQYQoehqVTA1Jcmeju E1GWQckB3kTE5hzj7DOrTLJen1Mi0/gF -----END CERTIFICATE-----