$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356630303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356630303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: AH6fqe4qZiPv/gSh+4dRRGDFVLAJqVrKbZlihrh7FUo= Subject key identifier: 5B:9E:6D:C4:AA:07:A8:37:36:0F:DE:47:BE:4B:F7:02:60:5E:D7:68 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 6E4AEFB4DDA60A384788683FC1663DF410EAA88C Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356630303a3a2f34382d3438203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:54 +0000 ROA not before: Fri 04 Jul 2025 19:47:54 +0000 ROA not after: Fri 03 Jul 2026 19:52:54 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:4a:ef:b4:dd:a6:0a:38:47:88:68:3f:c1:66:3d:f4:10:ea:a8:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:54 2025 GMT Not After : Jul 3 19:52:54 2026 GMT Subject: CN=5B9E6DC4AA07A837360FDE47BE4BF702605ED768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:e1:3f:ae:34:2e:e8:72:21:48:af:24:1c: 91:d2:42:13:e2:eb:b0:8e:ba:ff:37:0d:dc:3d:5c: a7:85:1d:be:13:d8:1c:ae:fc:2b:6d:3a:45:08:5c: 06:2b:6c:1e:8b:74:7c:08:0c:a8:c9:69:d7:1a:0a: dd:b4:51:61:96:ec:8d:c4:84:fe:9d:b5:4e:e0:fe: 90:23:13:46:33:16:2c:a0:17:ae:bc:a2:a9:c6:15: 43:23:11:0c:e3:b4:51:58:e2:60:fa:7c:56:cc:c4: 0d:b7:59:1f:8c:68:c2:7e:9e:16:4d:ea:ec:c9:6c: 06:14:1d:42:2b:d9:bf:48:80:62:6e:44:56:e9:d0: bd:25:32:df:4f:d8:02:cc:7a:36:ad:7d:e9:f5:3f: 23:31:3c:38:9d:3c:87:b1:36:5b:15:77:13:67:ff: 57:db:04:12:5a:f9:da:d8:32:6b:83:68:e7:db:b6: 69:4c:9f:89:0b:77:15:1f:23:c3:2a:77:ba:b1:f8: d2:6a:4a:c3:ab:ac:1b:56:33:b5:dd:1c:13:b7:33: 4b:02:e6:fd:f9:e4:54:97:b0:db:2e:46:94:b4:17: 3b:df:20:5f:da:ea:25:6c:08:27:f4:81:73:89:74: c2:6c:f5:01:54:d5:fa:90:83:b0:63:ee:29:5b:28: 3c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9E:6D:C4:AA:07:A8:37:36:0F:DE:47:BE:4B:F7:02:60:5E:D7:68 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356630303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f00::/48 Signature Algorithm: sha256WithRSAEncryption 9b:e3:90:14:b5:45:fb:38:04:30:5d:70:d5:c2:9e:0f:bb:69: e2:b5:c4:1f:61:04:8e:51:6e:1d:5d:ad:5b:58:a8:93:15:b1: e1:74:f4:82:67:11:2c:a5:64:a2:6e:4d:e7:d8:5e:58:56:fc: 48:35:3d:3d:15:ce:38:65:f5:8f:58:46:11:e1:ed:a9:4c:f8: 57:7f:d0:6d:58:94:95:65:21:4f:08:b5:28:04:1c:3c:1b:35: bb:95:e0:94:df:b7:a6:cb:aa:8f:ad:ae:40:c7:f5:92:27:a6: 7f:97:fc:d9:1b:18:a9:d7:4c:7c:e3:ec:46:03:1b:bc:3a:9f: e1:f1:1d:b9:ec:c2:e8:73:2c:6b:ba:db:24:fc:5d:41:48:17: 17:9f:2d:48:a1:f4:b5:ad:ea:13:d8:f0:c3:5b:27:10:7d:74: da:4f:4a:6d:f7:4b:b7:48:e8:3c:d6:32:f0:fc:d4:69:d3:b6: 80:14:f2:74:7c:36:3e:37:45:5a:94:55:bf:65:dd:00:42:d3: 40:2d:66:0c:99:1a:c3:fb:60:9a:ab:10:04:a3:c9:f7:2d:1a: 32:32:b6:95:68:97:02:23:28:4a:d8:56:e1:3d:47:72:3d:75: 8f:da:19:60:3f:4b:3a:96:84:a0:23:0b:0a:3e:5f:35:86:d9: 77:1a:30:ab -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUbkrvtN2mCjhHiGg/wWY99BDqqIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTRaFw0yNjA3MDMxOTUyNTRaMDMxMTAvBgNV BAMTKDVCOUU2REM0QUEwN0E4MzczNjBGREU0N0JFNEJGNzAyNjA1RUQ3NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAN+E/rjQu6HIhSK8kHJHSQhPi 67COuv83Ddw9XKeFHb4T2Byu/CttOkUIXAYrbB6LdHwIDKjJadcaCt20UWGW7I3E hP6dtU7g/pAjE0YzFiygF668oqnGFUMjEQzjtFFY4mD6fFbMxA23WR+MaMJ+nhZN 6uzJbAYUHUIr2b9IgGJuRFbp0L0lMt9P2ALMejatfen1PyMxPDidPIexNlsVdxNn /1fbBBJa+drYMmuDaOfbtmlMn4kLdxUfI8Mqd7qx+NJqSsOrrBtWM7XdHBO3M0sC 5v355FSXsNsuRpS0FzvfIF/a6iVsCCf0gXOJdMJs9QFU1fqQg7Bj7ilbKDw3AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUW55txKoHqDc2D95Hvkv3AmBe12gwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMwMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8AMA0GCSqGSIb3DQEB CwUAA4IBAQCb45AUtUX7OAQwXXDVwp4Pu2nitcQfYQSOUW4dXa1bWKiTFbHhdPSC ZxEspWSibk3n2F5YVvxINT09Fc44ZfWPWEYR4e2pTPhXf9BtWJSVZSFPCLUoBBw8 GzW7leCU37emy6qPra5Ax/WSJ6Z/l/zZGxip10x84+xGAxu8Op/h8R257MLocyxr utsk/F1BSBcXny1IofS1reoT2PDDWycQfXTaT0pt90u3SOg81jLw/NRp07aAFPJ0 fDY+N0ValFW/Zd0AQtNALWYMmRrD+2CaqxAEo8n3LRoyMraVaJcCIyhK2FbhPUdy PXWP2hlgP0s6loSgIwsKPl81htl3GjCr -----END CERTIFICATE-----Generated at Sat Jul 5 13:01:22 2025 by rpki-client