$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356630303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356630303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: /tn8i7wEkEOzbAqHJOn2RhZmbStoiILXALsLYxchS5U= Subject key identifier: 57:4B:6A:2C:E4:62:0A:C7:34:EC:C6:FB:D5:37:E4:58:7C:22:03:EA Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 439712486BDB37B572C7EFFC8C833085F75B8AB3 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356630303a3a2f34382d3438203d3e203538333339.roa Signing time: Fri 05 Jun 2026 19:58:11 +0000 ROA not before: Fri 05 Jun 2026 19:53:11 +0000 ROA not after: Fri 04 Jun 2027 19:58:11 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:97:12:48:6b:db:37:b5:72:c7:ef:fc:8c:83:30:85:f7:5b:8a:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:11 2026 GMT Not After : Jun 4 19:58:11 2027 GMT Subject: CN=574B6A2CE4620AC734ECC6FBD537E4587C2203EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:88:88:75:d9:c9:f1:9e:e7:72:4a:e0:a0:9d: 3e:9c:b5:ab:25:0e:49:a6:f5:51:2a:d4:ff:a0:97: 36:2e:25:33:66:47:4b:4c:4c:da:67:b6:cc:b2:ca: d6:4a:91:48:f8:c3:6c:0c:ef:a1:6e:8d:84:8e:fd: d5:22:d8:0c:7b:57:fa:df:18:a7:96:0e:bf:ec:15: 87:bd:b0:7d:46:02:26:8b:ac:00:ed:e5:f5:f2:f6: 19:bf:e4:5f:ca:9a:41:91:ca:17:e2:36:58:42:08: 66:bf:80:cb:81:27:fc:1f:77:7a:e7:bd:6b:df:ee: d5:14:8d:aa:17:27:02:d0:22:7f:92:5a:86:c2:de: 32:d1:ba:fd:56:b0:88:e2:a6:3f:18:85:0c:b6:c7: 21:0c:6d:97:53:22:00:29:c8:04:17:63:12:40:cb: ff:a7:16:88:0a:9b:f0:b6:f4:be:59:87:af:c2:60: 88:d9:01:2e:b5:a9:af:79:56:ee:c8:d2:e1:dd:4d: e9:4d:e5:b0:b4:6c:ff:6f:ea:33:b1:75:75:70:b3: 5c:1a:6e:bb:fb:53:8e:29:32:13:24:47:a7:f2:3e: 5a:c6:93:51:29:17:47:29:2a:54:4e:d8:f4:a0:4f: f3:2d:49:e6:eb:6c:42:7f:97:8b:a7:b8:a2:36:c3: 5a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4B:6A:2C:E4:62:0A:C7:34:EC:C6:FB:D5:37:E4:58:7C:22:03:EA X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356630303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f00::/48 Signature Algorithm: sha256WithRSAEncryption 5d:0d:1f:1b:36:71:9d:ab:89:2b:29:e7:d8:cb:72:2c:4d:e5: 1e:ea:5f:43:78:c4:fa:9c:5f:96:7b:0a:93:97:4e:72:af:95: 04:6d:40:ee:28:0c:69:34:34:40:81:fa:ed:8e:8d:23:39:ed: 2d:f5:e0:0d:61:ac:d7:a2:27:67:b6:77:db:ea:2a:e2:df:bc: f9:61:df:15:e2:75:8c:5f:55:30:2e:5d:4f:a9:ac:aa:02:99: 35:0e:30:53:81:88:8e:fa:d4:05:77:f8:8a:17:9d:a6:62:b5: 02:d1:d1:5b:f0:68:14:dc:52:d8:20:77:8a:43:90:75:a2:3e: 99:87:e9:52:e5:6a:65:35:a5:a6:1a:db:8c:97:ee:3e:7e:48: ff:a4:0b:cb:08:53:05:13:29:3e:27:06:12:29:3d:3d:3a:7f: f9:4c:07:49:4d:70:be:f8:03:08:1b:6a:7d:3a:50:9a:6d:b2: 6a:5c:89:71:9c:ea:e8:cb:f6:b4:60:1e:47:63:9a:eb:f1:a2: cb:b8:7d:98:ae:8b:73:31:cd:b7:cc:20:af:63:f1:b1:54:40: 87:e1:38:91:de:6b:7e:a1:18:cb:16:e2:18:91:90:78:d4:56: 3e:d7:9a:fa:f8:8e:b9:08:60:c3:48:57:e3:ca:8e:d2:ab:7c: 91:51:b9:c2 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUQ5cSSGvbN7Vyx+/8jIMwhfdbirMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA2MDUxOTUzMTFaFw0yNzA2MDQxOTU4MTFaMDMxMTAvBgNV BAMTKDU3NEI2QTJDRTQ2MjBBQzczNEVDQzZGQkQ1MzdFNDU4N0MyMjAzRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYiIh12cnxnudySuCgnT6ctasl Dkmm9VEq1P+glzYuJTNmR0tMTNpntsyyytZKkUj4w2wM76FujYSO/dUi2Ax7V/rf GKeWDr/sFYe9sH1GAiaLrADt5fXy9hm/5F/KmkGRyhfiNlhCCGa/gMuBJ/wfd3rn vWvf7tUUjaoXJwLQIn+SWobC3jLRuv1WsIjipj8YhQy2xyEMbZdTIgApyAQXYxJA y/+nFogKm/C29L5Zh6/CYIjZAS61qa95Vu7I0uHdTelN5bC0bP9v6jOxdXVws1wa brv7U44pMhMkR6fyPlrGk1EpF0cpKlRO2PSgT/MtSebrbEJ/l4unuKI2w1obAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUV0tqLORiCsc07Mb71TfkWHwiA+owHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMwMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8AMA0GCSqGSIb3DQEB CwUAA4IBAQBdDR8bNnGdq4krKefYy3IsTeUe6l9DeMT6nF+WewqTl05yr5UEbUDu KAxpNDRAgfrtjo0jOe0t9eANYazXoidntnfb6iri37z5Yd8V4nWMX1UwLl1Pqayq Apk1DjBTgYiO+tQFd/iKF52mYrUC0dFb8GgU3FLYIHeKQ5B1oj6Zh+lS5WplNaWm GtuMl+4+fkj/pAvLCFMFEyk+JwYSKT09On/5TAdJTXC++AMIG2p9OlCabbJqXIlx nOroy/a0YB5HY5rr8aLLuH2YrotzMc23zCCvY/GxVECH4TiR3mt+oRjLFuIYkZB4 1FY+15r6+I65CGDDSFfjyo7Sq3yRUbnC -----END CERTIFICATE-----Generated at Fri Jun 12 01:10:41 2026 by rpki-client