$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: aCR7Djf6F7ot6IGv4qJolckB6Hwdtt9rLMj/LBxcfS8= Subject key identifier: 48:7D:38:72:A1:A4:60:CA:5B:B3:CF:4B:57:EC:F5:65:A6:E2:1D:38 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 4777128F66A6E604A159EF63B23F4AC31E688002 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:53 +0000 ROA not before: Fri 04 Jul 2025 19:47:53 +0000 ROA not after: Fri 03 Jul 2026 19:52:53 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f10::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:77:12:8f:66:a6:e6:04:a1:59:ef:63:b2:3f:4a:c3:1e:68:80:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:53 2025 GMT Not After : Jul 3 19:52:53 2026 GMT Subject: CN=487D3872A1A460CA5BB3CF4B57ECF565A6E21D38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6f:9c:00:f0:2d:a2:96:6d:12:c2:cc:19:0b: 5b:03:16:c0:07:97:25:5a:fb:dc:ff:05:0b:ec:23: 8c:a6:7e:11:d9:38:e8:83:83:89:40:9e:1d:71:ef: e0:88:6a:71:27:8a:c2:37:17:fb:04:45:d7:2e:d8: 17:29:ba:8b:80:8c:d7:b4:4b:df:d0:03:7d:04:fd: ce:0c:39:94:71:58:e0:b0:a9:be:a0:d9:27:4a:b2: fe:b8:d8:12:77:ee:f7:93:b9:42:09:0d:84:a3:67: 00:a8:57:c5:bc:4e:c1:b5:16:04:35:4f:0c:ac:fe: 5a:88:ff:96:40:12:2f:4a:a1:c5:2f:21:0e:c8:a5: a7:67:24:03:f9:fb:15:a3:06:6e:2a:36:50:29:a4: 8b:30:ef:ce:9f:7a:f7:24:be:3d:13:c8:73:24:ff: 48:fc:64:23:b6:2b:98:f3:2a:14:f4:48:8a:cf:5e: d6:2b:08:56:92:80:54:98:bf:8e:8f:b1:91:08:62: 1b:d5:cc:4f:f8:4a:52:45:52:be:ab:87:02:25:b3: 72:4b:2c:b5:ba:13:d6:f7:cb:d7:f9:55:d5:d8:7a: d3:e6:06:98:5d:6d:25:d9:08:26:ef:01:24:47:af: 11:d2:52:c6:85:c7:b5:a9:77:01:8b:3d:b2:16:ae: 82:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7D:38:72:A1:A4:60:CA:5B:B3:CF:4B:57:EC:F5:65:A6:E2:1D:38 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f10::/48 Signature Algorithm: sha256WithRSAEncryption 48:f9:32:4a:f5:f7:0a:9b:8f:d9:69:f7:ec:a5:89:04:21:8b: bb:a0:fc:c4:d8:cb:36:55:2f:79:02:44:9d:34:77:de:8f:3d: 22:ce:39:e3:0a:8e:9c:d1:fc:b9:0e:1e:3a:9f:26:10:90:05: 87:12:1f:cc:63:49:c9:6c:c6:a8:2b:b3:b7:80:95:34:64:3f: e0:bf:03:90:00:e5:a4:ff:9a:e9:57:be:06:47:34:83:2c:02: ab:94:35:be:8c:9f:20:e6:9c:b2:52:3d:7d:fa:d1:63:3e:90: f8:bb:19:c6:33:f3:99:5b:14:7a:4c:a5:50:3e:0d:a0:98:6d: 6a:47:d9:ec:9b:da:91:fe:6d:27:50:fa:20:a1:5d:45:8f:95: 77:9d:c0:c1:68:c9:5d:39:b8:5a:da:b1:e7:fa:1e:13:df:bd: c4:b2:3d:8c:21:cb:19:7d:e0:80:e7:4c:47:eb:9e:bf:b3:ae: bb:89:ef:1c:a0:17:fb:2f:7b:58:3a:56:51:95:f1:94:3f:b5: 51:9b:d4:4a:a5:ad:5d:0a:a3:c9:95:5f:7b:75:3b:52:66:e1: c7:ac:25:71:57:a1:f3:d7:26:a5:ca:3a:07:de:f3:a2:c3:f8: a6:bd:29:40:55:6f:d2:1c:ae:2d:56:ae:bf:02:1d:dd:a6:8f: 44:5d:ba:02 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUR3cSj2am5gShWe9jsj9Kwx5ogAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTNaFw0yNjA3MDMxOTUyNTNaMDMxMTAvBgNV BAMTKDQ4N0QzODcyQTFBNDYwQ0E1QkIzQ0Y0QjU3RUNGNTY1QTZFMjFEMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfb5wA8C2ilm0SwswZC1sDFsAH lyVa+9z/BQvsI4ymfhHZOOiDg4lAnh1x7+CIanEnisI3F/sERdcu2BcpuouAjNe0 S9/QA30E/c4MOZRxWOCwqb6g2SdKsv642BJ37veTuUIJDYSjZwCoV8W8TsG1FgQ1 Twys/lqI/5ZAEi9KocUvIQ7IpadnJAP5+xWjBm4qNlAppIsw786fevckvj0TyHMk /0j8ZCO2K5jzKhT0SIrPXtYrCFaSgFSYv46PsZEIYhvVzE/4SlJFUr6rhwIls3JL LLW6E9b3y9f5VdXYetPmBphdbSXZCCbvASRHrxHSUsaFx7WpdwGLPbIWroLlAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUSH04cqGkYMpbs89LV+z1ZabiHTgwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMxMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8QMA0GCSqGSIb3DQEB CwUAA4IBAQBI+TJK9fcKm4/ZaffspYkEIYu7oPzE2Ms2VS95AkSdNHfejz0izjnj Co6c0fy5Dh46nyYQkAWHEh/MY0nJbMaoK7O3gJU0ZD/gvwOQAOWk/5rpV74GRzSD LAKrlDW+jJ8g5pyyUj19+tFjPpD4uxnGM/OZWxR6TKVQPg2gmG1qR9nsm9qR/m0n UPogoV1Fj5V3ncDBaMldObha2rHn+h4T373Esj2MIcsZfeCA50xH656/s667ie8c oBf7L3tYOlZRlfGUP7VRm9RKpa1dCqPJlV97dTtSZuHHrCVxV6Hz1yalyjoH3vOi w/imvSlAVW/SHK4tVq6/Ah3dpo9EXboC -----END CERTIFICATE-----Generated at Sat Jul 5 13:04:38 2025 by rpki-client