$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa File: 326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa (raw, json) Hash identifier: ahHELRULgHjri55ivlXp7deB4HheB+T1e3Rbjf2ZRlc= Subject key identifier: A6:4A:ED:A1:52:A4:2A:75:71:34:48:A7:5F:83:51:C1:31:41:B5:25 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 524DE8856A8CED45799CAF2492767FCEAA731792 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa Signing time: Fri 04 Jul 2025 19:52:54 +0000 ROA not before: Fri 04 Jul 2025 19:47:54 +0000 ROA not after: Fri 03 Jul 2026 19:52:54 +0000 asID: 138190 IP address blocks: 2a05:dfc1:5f25::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:4d:e8:85:6a:8c:ed:45:79:9c:af:24:92:76:7f:ce:aa:73:17:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:54 2025 GMT Not After : Jul 3 19:52:54 2026 GMT Subject: CN=A64AEDA152A42A75713448A75F8351C13141B525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a1:b4:e6:26:a3:7c:e6:74:c4:f0:6f:58:6b: fe:97:6b:60:18:0b:4e:6a:8e:40:0a:2d:af:6d:d2: ad:14:9c:cc:d4:c5:b0:ea:7a:45:5d:0c:4b:13:37: fc:8c:1f:57:55:0d:95:41:be:dc:f8:09:c2:0b:13: 7f:df:92:6f:b2:d9:3a:59:79:ab:7f:ea:29:e7:8f: ec:d3:4b:00:8e:0c:bc:cf:81:3e:3c:fe:26:f1:c1: a0:cc:a4:06:29:9e:12:21:74:cd:4a:e9:78:0d:f4: dc:37:c0:d5:37:87:47:1a:8e:cb:e5:47:cc:2a:d7: 7c:b5:67:4a:35:0e:d1:4f:b6:1b:21:6a:78:ca:5c: 9e:ab:69:71:3e:54:b6:e6:6b:9e:86:7c:1c:ba:e4: 43:7e:ec:ba:8b:b1:ad:af:4d:95:ad:26:af:5e:bf: 42:31:39:2c:a6:5e:d9:8b:b1:a5:60:9e:0e:06:e0: 37:65:76:1d:da:68:40:35:22:32:3b:ca:1c:56:e8: fc:81:6c:ad:aa:1c:4f:4f:21:e0:e7:6b:24:b2:d4: b3:7c:2b:d3:69:b2:96:36:99:70:1e:bf:d8:a5:fb: 5c:c4:84:e1:7e:21:ec:40:9d:6c:d9:e9:30:58:50: 69:a8:d9:c8:3a:a5:d2:15:d2:de:f0:f2:d5:52:6a: da:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:4A:ED:A1:52:A4:2A:75:71:34:48:A7:5F:83:51:C1:31:41:B5:25 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f25::/48 Signature Algorithm: sha256WithRSAEncryption 79:08:26:61:95:20:fb:6b:be:1e:1a:4a:0e:71:3b:01:d8:20: 3a:7c:b4:0e:57:e8:bb:ca:62:c7:37:c3:bd:c1:63:b9:74:9b: 0e:c9:9f:a7:eb:c7:e8:91:47:38:82:58:e4:e4:51:04:16:02: 84:2e:2c:04:87:eb:4a:80:54:2d:0f:4f:36:da:fb:4f:0d:d1: c2:76:da:da:fb:86:7e:75:8e:5c:50:0f:66:46:6d:f5:84:18: 28:8e:06:18:60:99:ee:76:87:21:8c:32:e7:4a:1b:0f:6c:91: 67:0b:fd:f7:35:1d:f1:8e:fc:38:78:d0:1b:0c:a7:d2:9a:5e: 62:aa:2f:e9:41:63:75:14:ca:cc:f6:e2:41:5a:a2:c6:f5:7d: 71:d4:93:cc:df:e9:9c:a5:52:db:9e:41:47:9e:01:e7:0b:f4: a2:c9:b9:60:92:57:5a:94:f3:91:63:bf:d8:84:a4:d2:67:6b: 30:4a:24:d6:9d:fe:17:2a:93:7c:35:90:6e:f0:2d:02:85:3c: ec:b2:32:42:53:95:d2:15:7c:c8:88:2b:4a:23:07:2f:72:c0: 3b:d1:44:31:83:e2:71:7a:18:f4:0c:63:ee:30:4b:02:8f:c2: ff:eb:68:b6:85:64:d6:a9:67:cf:0d:82:c7:f9:7b:58:86:2a: c5:bb:a1:e7 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUUk3ohWqM7UV5nK8kknZ/zqpzF5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTRaFw0yNjA3MDMxOTUyNTRaMDMxMTAvBgNV BAMTKEE2NEFFREExNTJBNDJBNzU3MTM0NDhBNzVGODM1MUMxMzE0MUI1MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/obTmJqN85nTE8G9Ya/6Xa2AY C05qjkAKLa9t0q0UnMzUxbDqekVdDEsTN/yMH1dVDZVBvtz4CcILE3/fkm+y2TpZ eat/6innj+zTSwCODLzPgT48/ibxwaDMpAYpnhIhdM1K6XgN9Nw3wNU3h0cajsvl R8wq13y1Z0o1DtFPthshanjKXJ6raXE+VLbma56GfBy65EN+7LqLsa2vTZWtJq9e v0IxOSymXtmLsaVgng4G4Ddldh3aaEA1IjI7yhxW6PyBbK2qHE9PIeDnaySy1LN8 K9NpspY2mXAev9il+1zEhOF+IexAnWzZ6TBYUGmo2cg6pdIV0t7w8tVSatoZAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUpkrtoVKkKnVxNEinX4NRwTFBtSUwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMyMzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BXyUwDQYJKoZIhvcN AQELBQADggEBAHkIJmGVIPtrvh4aSg5xOwHYIDp8tA5X6LvKYsc3w73BY7l0mw7J n6frx+iRRziCWOTkUQQWAoQuLASH60qAVC0PTzba+08N0cJ22tr7hn51jlxQD2ZG bfWEGCiOBhhgme52hyGMMudKGw9skWcL/fc1HfGO/Dh40BsMp9KaXmKqL+lBY3UU ysz24kFaosb1fXHUk8zf6ZylUtueQUeeAecL9KLJuWCSV1qU85Fjv9iEpNJnazBK JNad/hcqk3w1kG7wLQKFPOyyMkJTldIVfMiIK0ojBy9ywDvRRDGD4nF6GPQMY+4w SwKPwv/raLaFZNapZ88Ngsf5e1iGKsW7oec= -----END CERTIFICATE-----Generated at Sat Jul 5 13:00:00 2025 by rpki-client