$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631353a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356631353a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: /I+5TP0tSyTXT9Qc0lW2Q4AAWH6SHd1TRBofLkv784s= Subject key identifier: 35:15:D6:71:99:63:70:F0:48:B8:66:33:61:E1:7B:69:36:45:57:88 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 3D426F3EA51A8FC3A677579F92A3C45233BBAFDD Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631353a3a2f34382d3438203d3e203538333339.roa Signing time: Fri 05 Jun 2026 19:58:11 +0000 ROA not before: Fri 05 Jun 2026 19:53:11 +0000 ROA not after: Fri 04 Jun 2027 19:58:11 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f15::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:42:6f:3e:a5:1a:8f:c3:a6:77:57:9f:92:a3:c4:52:33:bb:af:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:11 2026 GMT Not After : Jun 4 19:58:11 2027 GMT Subject: CN=3515D671996370F048B8663361E17B6936455788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d6:75:08:f0:55:eb:cb:2a:f0:e7:fd:3a:3d: e3:09:e6:10:af:00:e3:87:bd:59:e4:3f:7e:c6:6c: e5:c9:3c:6a:b9:a0:c4:00:96:dc:4e:3f:44:fb:10: 26:1f:ef:88:bf:89:3b:4f:ca:0a:ae:dd:7e:02:cf: be:ae:f9:2a:4b:ef:1c:28:ea:e7:e7:e8:77:32:ed: e3:ce:ed:c9:55:1f:8d:0e:58:64:9e:49:64:74:66: a7:9b:e7:17:c9:8b:84:22:41:b6:dd:20:5b:b3:86: b8:8e:22:45:47:1b:7c:4c:20:c7:e2:d7:45:2d:79: 5b:ce:c5:0e:11:cf:1b:6b:f7:43:cb:3f:85:b8:c5: 0e:59:03:ca:f5:a4:0d:70:3a:48:a5:2f:66:f1:ce: fd:95:cf:79:64:4c:a9:fb:20:c8:59:8d:99:4f:9c: d3:71:3b:33:61:79:e6:6b:67:5e:37:52:15:69:91: a3:af:dc:f5:29:80:8a:b1:31:93:7f:e7:ad:f8:32: 63:8e:ec:b0:b5:a7:9c:98:36:9a:0a:5b:07:1f:45: f1:7c:cc:46:12:25:f2:b8:ab:56:39:9b:ab:f9:f1: 30:20:32:1e:98:92:78:7c:b0:4c:46:b6:8b:ab:6f: 18:2b:80:91:16:37:49:e5:72:40:23:03:6b:46:b3: f1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:15:D6:71:99:63:70:F0:48:B8:66:33:61:E1:7B:69:36:45:57:88 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631353a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f15::/48 Signature Algorithm: sha256WithRSAEncryption 1f:3c:1d:f1:47:37:04:6f:c1:0c:a3:64:99:46:48:ac:6b:70: 1a:b7:37:70:4a:c8:11:2a:2e:b1:bb:24:e1:05:22:01:30:3a: ed:77:03:cc:ab:a5:54:7e:d0:cf:ad:e5:9d:e7:b9:c7:b6:7b: 69:60:6c:c5:13:cc:5a:5a:5a:75:20:42:45:75:98:95:1c:d2: 6f:85:c6:f4:19:85:03:d3:c4:77:95:7e:18:2f:da:8d:dc:4a: d2:68:f8:9a:ba:6a:9d:7e:3c:c8:ce:a4:13:82:04:69:89:35: 5a:f5:a1:c4:3e:d5:eb:fc:66:5a:d1:a9:40:61:4f:39:46:8e: 36:e0:0e:54:9f:3e:b0:98:e5:2f:27:39:d5:82:8c:e3:21:2a: 9a:15:88:cc:4d:90:12:1c:3e:e3:89:7e:6c:85:d1:4c:8b:45: e4:5e:1c:0e:9a:7d:30:f2:2c:33:e8:1d:34:2b:80:c9:32:23: e2:27:b1:5d:64:69:ca:5c:cc:5e:3f:9e:3b:72:37:73:45:15: 86:51:ce:aa:13:d2:a6:cf:6f:87:39:4e:41:30:4a:d5:d7:01: a3:dd:81:9f:38:0f:46:ce:17:74:1c:b9:68:c6:d3:fc:09:c3: 8b:42:2a:9e:89:88:ad:13:60:b1:c6:b8:a0:c6:ab:2f:12:ce: 91:15:03:34 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUPUJvPqUaj8Omd1efkqPEUjO7r90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA2MDUxOTUzMTFaFw0yNzA2MDQxOTU4MTFaMDMxMTAvBgNV BAMTKDM1MTVENjcxOTk2MzcwRjA0OEI4NjYzMzYxRTE3QjY5MzY0NTU3ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC61nUI8FXryyrw5/06PeMJ5hCv AOOHvVnkP37GbOXJPGq5oMQAltxOP0T7ECYf74i/iTtPygqu3X4Cz76u+SpL7xwo 6ufn6Hcy7ePO7clVH40OWGSeSWR0Zqeb5xfJi4QiQbbdIFuzhriOIkVHG3xMIMfi 10UteVvOxQ4Rzxtr90PLP4W4xQ5ZA8r1pA1wOkilL2bxzv2Vz3lkTKn7IMhZjZlP nNNxOzNheeZrZ143UhVpkaOv3PUpgIqxMZN/5634MmOO7LC1p5yYNpoKWwcfRfF8 zEYSJfK4q1Y5m6v58TAgMh6Yknh8sExGtourbxgrgJEWN0nlckAjA2tGs/FFAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUNRXWcZljcPBIuGYzYeF7aTZFV4gwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMxMzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8VMA0GCSqGSIb3DQEB CwUAA4IBAQAfPB3xRzcEb8EMo2SZRkisa3AatzdwSsgRKi6xuyThBSIBMDrtdwPM q6VUftDPreWd57nHtntpYGzFE8xaWlp1IEJFdZiVHNJvhcb0GYUD08R3lX4YL9qN 3ErSaPiaumqdfjzIzqQTggRpiTVa9aHEPtXr/GZa0alAYU85Ro424A5Unz6wmOUv JznVgozjISqaFYjMTZASHD7jiX5shdFMi0XkXhwOmn0w8iwz6B00K4DJMiPiJ7Fd ZGnKXMxeP547cjdzRRWGUc6qE9Kmz2+HOU5BMErV1wGj3YGfOA9Gzhd0HLloxtP8 CcOLQiqeiYitE2CxxrigxqsvEs6RFQM0 -----END CERTIFICATE-----Generated at Fri Jun 12 01:10:48 2026 by rpki-client