$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: fMieNuKU8D5U8gsXSf6uJXE4w/jzVEvWAyyDD8dZ5gE= Subject key identifier: 15:25:EC:6C:FC:42:69:92:35:B9:A9:60:E9:08:83:FA:06:88:3F:A6 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 35B090C06FF9E06A75C96E5F58E5242F733A629C Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa Signing time: Fri 05 Jun 2026 19:58:11 +0000 ROA not before: Fri 05 Jun 2026 19:53:11 +0000 ROA not after: Fri 04 Jun 2027 19:58:11 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f10::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b0:90:c0:6f:f9:e0:6a:75:c9:6e:5f:58:e5:24:2f:73:3a:62:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:11 2026 GMT Not After : Jun 4 19:58:11 2027 GMT Subject: CN=1525EC6CFC42699235B9A960E90883FA06883FA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1a:f8:98:4b:55:a2:8f:2a:1d:d9:f4:1d:f3: ff:08:c8:93:63:ec:9f:6b:23:8c:a6:36:60:21:11: 61:ca:8a:75:3b:1f:dd:44:e8:87:a6:1e:23:21:f7: e2:75:0b:d2:8c:f3:be:4a:fa:f7:f8:22:8b:b0:ba: 93:98:13:53:3b:03:43:f4:c3:2c:11:cc:dc:b5:d1: 69:d7:fa:ea:21:da:4b:cf:c2:e1:b0:96:1c:9c:f6: f6:46:9d:e3:0c:18:2e:bd:96:a2:71:cb:5a:31:cc: cb:8c:61:ab:76:fc:79:c3:a7:da:8f:95:fe:55:20: 05:46:a5:8b:4b:84:74:dd:6c:6f:43:a4:f3:5c:6a: ca:2d:bf:b8:e7:6f:d8:7a:86:a4:1c:a7:13:45:2f: fd:6a:1f:2d:25:36:5e:93:b3:8a:b5:a9:6b:08:69: 64:e9:0d:e8:fa:bf:6c:0b:16:25:f8:b0:2a:21:de: 4d:aa:12:3f:31:67:1e:3f:c9:6c:5d:18:a3:56:4f: 4f:50:9c:c5:77:2a:d6:a4:88:a6:d0:98:16:86:74: c5:ed:04:ee:b0:9d:5b:25:a3:ef:2e:52:d5:2f:3f: ba:84:ae:c7:05:8c:4e:a8:1a:91:3e:a7:5f:79:6e: f4:c8:f9:42:8a:3f:af:be:5a:36:61:85:7a:d8:79: 37:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:25:EC:6C:FC:42:69:92:35:B9:A9:60:E9:08:83:FA:06:88:3F:A6 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f10::/48 Signature Algorithm: sha256WithRSAEncryption 18:a5:ed:8b:15:4b:e1:cc:ae:9e:38:ad:0e:14:2c:cf:8b:27: 05:93:21:bc:9e:67:98:47:1f:7a:a9:eb:6f:12:d0:d2:4f:92: 89:95:dd:ca:bd:36:3c:ed:39:ba:f4:02:90:35:9a:0c:3d:98: 47:db:ea:f6:b5:41:b0:7b:91:f7:34:cc:a5:e6:03:64:31:db: 64:d5:21:20:4e:05:d5:b8:5b:66:53:f6:d1:6f:76:2e:6c:55: 61:eb:7f:da:04:61:45:c6:56:8e:db:ba:f7:69:4c:0b:c3:f0: d0:86:08:36:a7:e2:14:12:ec:9e:d4:ef:51:39:dc:7c:84:48: d8:12:49:51:a5:0c:3c:d6:8f:0b:46:f0:f2:06:1f:7d:97:e7: 2c:e3:6c:6b:21:dd:e3:62:9d:93:09:61:1c:78:88:92:4b:f5: 2f:ad:9a:5d:db:d2:25:37:fe:71:fd:4a:44:35:bf:b0:8e:61: 3b:80:03:fb:17:db:8a:a9:f2:79:39:b1:3c:34:44:97:56:df: c9:05:39:67:c6:02:b3:e7:44:cb:82:a9:6f:d8:1f:c0:24:1e: 93:3f:02:7c:fa:6e:62:5f:ef:eb:6e:c2:fe:35:02:fd:d1:ef: d5:1e:4d:bd:23:93:5a:aa:c8:0b:16:8a:62:03:83:a9:a3:3f: 79:f3:20:c5 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUNbCQwG/54Gp1yW5fWOUkL3M6YpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA2MDUxOTUzMTFaFw0yNzA2MDQxOTU4MTFaMDMxMTAvBgNV BAMTKDE1MjVFQzZDRkM0MjY5OTIzNUI5QTk2MEU5MDg4M0ZBMDY4ODNGQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClGviYS1Wijyod2fQd8/8IyJNj 7J9rI4ymNmAhEWHKinU7H91E6IemHiMh9+J1C9KM875K+vf4IouwupOYE1M7A0P0 wywRzNy10WnX+uoh2kvPwuGwlhyc9vZGneMMGC69lqJxy1oxzMuMYat2/HnDp9qP lf5VIAVGpYtLhHTdbG9DpPNcasotv7jnb9h6hqQcpxNFL/1qHy0lNl6Ts4q1qWsI aWTpDej6v2wLFiX4sCoh3k2qEj8xZx4/yWxdGKNWT09QnMV3KtakiKbQmBaGdMXt BO6wnVslo+8uUtUvP7qErscFjE6oGpE+p195bvTI+UKKP6++WjZhhXrYeTchAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUFSXsbPxCaZI1ualg6QiD+gaIP6YwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMxMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8QMA0GCSqGSIb3DQEB CwUAA4IBAQAYpe2LFUvhzK6eOK0OFCzPiycFkyG8nmeYRx96qetvEtDST5KJld3K vTY87Tm69AKQNZoMPZhH2+r2tUGwe5H3NMyl5gNkMdtk1SEgTgXVuFtmU/bRb3Yu bFVh63/aBGFFxlaO27r3aUwLw/DQhgg2p+IUEuye1O9ROdx8hEjYEklRpQw81o8L RvDyBh99l+cs42xrId3jYp2TCWEceIiSS/UvrZpd29IlN/5x/UpENb+wjmE7gAP7 F9uKqfJ5ObE8NESXVt/JBTlnxgKz50TLgqlv2B/AJB6TPwJ8+m5iX+/rbsL+NQL9 0e/VHk29I5NaqsgLFopiA4Opoz958yDF -----END CERTIFICATE-----Generated at Fri Jun 12 01:11:55 2026 by rpki-client