$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631353a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356631353a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: Xnx5m7unbJgIPHX0j6zUTmlD5uCIhAffrL8uNA2ETSg= Subject key identifier: 14:85:97:C9:86:AE:3D:62:AC:ED:EB:88:B6:20:B2:94:DB:60:EB:F3 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 0BE797D05C1FA7F13607686597639F00F3360402 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631353a3a2f34382d3438203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:55 +0000 ROA not before: Fri 04 Jul 2025 19:47:55 +0000 ROA not after: Fri 03 Jul 2026 19:52:55 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f15::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:e7:97:d0:5c:1f:a7:f1:36:07:68:65:97:63:9f:00:f3:36:04:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:55 2025 GMT Not After : Jul 3 19:52:55 2026 GMT Subject: CN=148597C986AE3D62ACEDEB88B620B294DB60EBF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ec:f7:83:b1:84:b5:f3:c8:10:ea:e9:b7:2c: e1:b1:2b:45:80:19:37:e3:e0:fe:79:e3:36:de:5b: eb:e8:77:05:67:c4:9f:c2:7d:18:ba:a8:4e:b5:62: f9:7a:8d:43:62:c8:3b:28:bb:0c:f6:90:94:ba:fe: 27:1d:15:d3:57:61:97:1c:89:2f:ee:ff:43:f9:c1: 3f:77:68:14:24:d3:1f:03:da:43:b1:e5:5c:26:12: 0e:73:86:84:b6:a4:41:63:8c:aa:d0:a5:27:d2:a1: af:e3:b5:14:ce:f8:06:2c:d8:e2:4b:2e:88:7e:5a: 28:71:91:9a:b4:9e:ad:c6:18:07:b1:d2:04:42:c4: 40:0d:9e:47:43:46:a3:5a:54:42:2d:70:d9:35:27: ef:d9:cb:f2:d5:99:1c:57:0c:97:0e:5d:60:c8:3e: 9e:13:2b:5d:8f:e4:53:b9:51:eb:83:be:b4:5f:24: 1e:30:6a:38:bf:a7:fb:79:e3:fb:80:8c:e9:87:75: 20:b3:fc:66:ba:70:a1:26:1b:86:c2:a8:d9:67:72: 18:21:a8:53:b3:88:03:39:fa:9b:e9:53:ba:9e:10: 64:aa:ec:29:b1:15:de:81:4c:45:f7:ab:ed:11:83: 8e:0e:84:2a:e7:cc:a6:a1:06:7c:6a:6f:c7:7f:ef: 67:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:85:97:C9:86:AE:3D:62:AC:ED:EB:88:B6:20:B2:94:DB:60:EB:F3 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356631353a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f15::/48 Signature Algorithm: sha256WithRSAEncryption 1d:00:68:21:5b:ba:26:43:08:de:e3:34:f4:75:06:1f:eb:5f: 75:ba:e6:25:ba:6d:24:b5:0e:ae:a5:b1:4f:c7:2b:2c:57:13: 7f:ce:0c:25:23:5c:8c:a0:99:11:27:6d:c0:b4:04:99:ef:d8: ef:f1:f9:8f:6b:42:1a:ca:6b:79:1a:26:02:d8:7e:9f:13:98: 75:64:f8:7a:17:d6:23:97:1b:89:f9:03:93:95:b5:b3:a0:98: 48:19:e4:be:1c:03:ea:14:89:88:77:63:dc:45:bf:51:f1:38: 98:6d:5a:23:d7:55:fe:05:da:d7:ca:eb:cb:5c:ef:22:9f:e7: de:57:a5:eb:57:40:92:c9:76:bc:b4:12:93:39:e9:68:4e:8d: a9:58:1a:3f:11:6c:e7:ba:d6:a7:6f:2d:25:65:f2:c4:af:42: f8:81:6a:b9:50:09:52:de:d6:28:dd:5e:72:d6:11:00:9c:bc: bf:0b:03:15:ac:4e:ed:06:bd:66:cf:8e:57:6b:15:7c:c3:71: ce:2a:c7:e3:a6:73:57:90:38:4b:9e:6f:85:19:74:94:75:62: 82:de:c5:04:d0:69:c3:1f:f6:38:d1:6e:f2:d6:be:65:f1:43: 3e:04:eb:c8:36:5a:54:a3:76:f6:0b:e4:75:80:60:06:e3:57: fc:0c:b9:0d -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUC+eX0Fwfp/E2B2hll2OfAPM2BAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTVaFw0yNjA3MDMxOTUyNTVaMDMxMTAvBgNV BAMTKDE0ODU5N0M5ODZBRTNENjJBQ0VERUI4OEI2MjBCMjk0REI2MEVCRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP7PeDsYS188gQ6um3LOGxK0WA GTfj4P554zbeW+vodwVnxJ/CfRi6qE61Yvl6jUNiyDsouwz2kJS6/icdFdNXYZcc iS/u/0P5wT93aBQk0x8D2kOx5VwmEg5zhoS2pEFjjKrQpSfSoa/jtRTO+AYs2OJL Loh+WihxkZq0nq3GGAex0gRCxEANnkdDRqNaVEItcNk1J+/Zy/LVmRxXDJcOXWDI Pp4TK12P5FO5UeuDvrRfJB4waji/p/t54/uAjOmHdSCz/Ga6cKEmG4bCqNlnchgh qFOziAM5+pvpU7qeEGSq7CmxFd6BTEX3q+0Rg44OhCrnzKahBnxqb8d/72dLAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUFIWXyYauPWKs7euItiCylNtg6/MwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMxMzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8VMA0GCSqGSIb3DQEB CwUAA4IBAQAdAGghW7omQwje4zT0dQYf6191uuYlum0ktQ6upbFPxyssVxN/zgwl I1yMoJkRJ23AtASZ79jv8fmPa0Iaymt5GiYC2H6fE5h1ZPh6F9YjlxuJ+QOTlbWz oJhIGeS+HAPqFImId2PcRb9R8TiYbVoj11X+BdrXyuvLXO8in+feV6XrV0CSyXa8 tBKTOeloTo2pWBo/EWznutanby0lZfLEr0L4gWq5UAlS3tYo3V5y1hEAnLy/CwMV rE7tBr1mz45XaxV8w3HOKsfjpnNXkDhLnm+FGXSUdWKC3sUE0GnDH/Y40W7y1r5l 8UM+BOvINlpUo3b2C+R1gGAG41f8DLkN -----END CERTIFICATE-----Generated at Sat Jul 5 12:59:09 2025 by rpki-client