$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa File: 326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa (raw, json) Hash identifier: xRTmRa4Fg151cd2kccRQ5sQgGzQWFQoa/OrwB5/XWuk= Subject key identifier: 4C:4A:B0:91:FE:D2:94:8B:FB:E3:39:CE:88:56:52:97:04:86:54:12 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 03F3EE3F011FFCF5B8BDE7EA736FBCC3A40709AE Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa Signing time: Fri 05 Jun 2026 19:58:11 +0000 ROA not before: Fri 05 Jun 2026 19:53:11 +0000 ROA not after: Fri 04 Jun 2027 19:58:11 +0000 asID: 138190 IP address blocks: 2a05:dfc1:5f25::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f3:ee:3f:01:1f:fc:f5:b8:bd:e7:ea:73:6f:bc:c3:a4:07:09:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:11 2026 GMT Not After : Jun 4 19:58:11 2027 GMT Subject: CN=4C4AB091FED2948BFBE339CE8856529704865412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:20:be:49:09:0f:2c:2b:22:9d:c8:4a:39:70: 22:f3:aa:aa:8f:75:e0:85:6c:a1:da:b7:1d:ec:1f: 35:d1:58:a1:a6:c3:08:0d:3f:2b:6d:78:04:5b:82: 97:c5:e2:2f:fb:09:9c:85:4e:4e:2f:fe:14:92:45: eb:7e:81:25:b8:91:f4:d9:31:b7:a3:28:8b:0c:8d: 9f:a9:b3:bd:f2:3b:d7:36:62:33:ea:5c:e8:30:32: 0e:55:4f:3b:18:f9:82:50:a8:68:14:58:bb:38:f5: a7:76:b8:c3:28:09:84:f8:72:2d:a7:5e:60:7a:36: cd:00:6c:b8:f3:e6:a6:39:71:de:eb:cd:59:c5:d7: c0:dc:e1:3d:83:ff:62:ed:89:4d:cf:bc:a5:60:53: 7b:fb:82:8f:3a:aa:1d:31:a2:10:08:e9:26:ce:d2: fc:2c:8f:e8:d4:f8:a4:91:a5:c3:c0:11:ca:40:a5: ab:47:ab:5a:e3:c8:81:3b:64:0c:bc:b7:2b:40:a1: 83:19:65:4f:41:a3:52:dd:fc:a1:c4:e5:00:cc:b8: 81:0f:82:5a:2f:2d:84:b1:a3:3e:59:3f:9a:f3:18: e3:8c:35:fb:75:8b:b4:aa:c6:b9:e3:d4:27:a5:2d: 78:52:44:14:a6:39:37:ad:f1:80:46:c1:66:67:c9: 3e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:4A:B0:91:FE:D2:94:8B:FB:E3:39:CE:88:56:52:97:04:86:54:12 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356632353a3a2f34382d3438203d3e20313338313930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f25::/48 Signature Algorithm: sha256WithRSAEncryption 6c:f9:92:21:1f:a6:88:3e:7b:8e:7f:f3:b7:fd:cc:0e:b4:16: f2:cb:39:e1:77:ef:8c:1f:28:53:2f:a6:ad:80:1b:20:bf:7e: a8:ac:58:77:34:9e:7a:57:ad:df:f1:d4:f2:ae:bf:fe:16:6b: a3:53:13:c0:61:dc:a6:14:92:e2:6b:e1:83:23:ba:0c:43:2c: 9b:cc:82:2a:7f:19:79:11:0f:22:ec:47:60:ce:27:2c:a7:90: c6:a0:fc:b8:18:22:47:b3:a8:cc:81:b9:74:37:ab:be:e2:11: b6:89:91:1f:25:3b:55:a1:11:cf:88:c2:7e:c9:05:4c:da:29: 12:93:48:35:cb:82:2f:e7:bd:a1:30:cd:8c:59:94:46:1d:63: 19:b7:af:1b:68:7e:27:d4:56:7a:41:81:de:6b:dd:c4:04:70: cb:75:0a:da:b0:8b:0c:81:be:a8:fa:0d:0c:5d:55:91:3e:08: b4:c6:15:14:e6:f6:ce:a1:7b:cd:de:d1:f8:f5:a5:d5:26:d8: 75:02:de:b9:22:11:8b:ba:f3:9b:f0:6d:fd:0b:36:2f:1e:e2: 98:c0:34:b0:5a:eb:22:e3:ac:5a:5b:1a:3c:9c:2d:e7:34:90: f3:a3:e0:84:a5:84:7b:b1:c1:5c:44:31:a9:be:06:42:88:02: c4:85:bb:2e -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUA/PuPwEf/PW4vefqc2+8w6QHCa4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA2MDUxOTUzMTFaFw0yNzA2MDQxOTU4MTFaMDMxMTAvBgNV BAMTKDRDNEFCMDkxRkVEMjk0OEJGQkUzMzlDRTg4NTY1Mjk3MDQ4NjU0MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyIL5JCQ8sKyKdyEo5cCLzqqqP deCFbKHatx3sHzXRWKGmwwgNPytteARbgpfF4i/7CZyFTk4v/hSSRet+gSW4kfTZ MbejKIsMjZ+ps73yO9c2YjPqXOgwMg5VTzsY+YJQqGgUWLs49ad2uMMoCYT4ci2n XmB6Ns0AbLjz5qY5cd7rzVnF18Dc4T2D/2LtiU3PvKVgU3v7go86qh0xohAI6SbO 0vwsj+jU+KSRpcPAEcpApatHq1rjyIE7ZAy8tytAoYMZZU9Bo1Ld/KHE5QDMuIEP glovLYSxoz5ZP5rzGOOMNft1i7Sqxrnj1CelLXhSRBSmOTet8YBGwWZnyT7HAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUTEqwkf7SlIv74znOiFZSlwSGVBIwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMyMzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BXyUwDQYJKoZIhvcN AQELBQADggEBAGz5kiEfpog+e45/87f9zA60FvLLOeF374wfKFMvpq2AGyC/fqis WHc0nnpXrd/x1PKuv/4Wa6NTE8Bh3KYUkuJr4YMjugxDLJvMgip/GXkRDyLsR2DO JyynkMag/LgYIkezqMyBuXQ3q77iEbaJkR8lO1WhEc+Iwn7JBUzaKRKTSDXLgi/n vaEwzYxZlEYdYxm3rxtofifUVnpBgd5r3cQEcMt1CtqwiwyBvqj6DQxdVZE+CLTG FRTm9s6he83e0fj1pdUm2HUC3rkiEYu685vwbf0LNi8e4pjANLBa6yLjrFpbGjyc Lec0kPOj4ISlhHuxwVxEMam+BkKIAsSFuy4= -----END CERTIFICATE-----Generated at Thu Jun 11 21:22:57 2026 by rpki-client