$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356637303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a356637303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: k9WJ99SX7aTZwDYsUzJBYzARw8TZTM2BX3i3N+Ee6bM= Subject key identifier: F4:E2:8D:BA:52:78:56:FB:BE:D8:C2:AF:53:6C:B2:4A:D8:0D:41:6B Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 33A8CB28027B1A62B833F32F5C31B73B5DDC8706 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356637303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:55 +0000 ROA not before: Fri 04 Jul 2025 19:47:55 +0000 ROA not after: Fri 03 Jul 2026 19:52:55 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f70::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a8:cb:28:02:7b:1a:62:b8:33:f3:2f:5c:31:b7:3b:5d:dc:87:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:55 2025 GMT Not After : Jul 3 19:52:55 2026 GMT Subject: CN=F4E28DBA527856FBBED8C2AF536CB24AD80D416B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ff:83:49:c1:f6:56:e9:b0:6a:83:b0:f1:9d: 2e:f9:f3:c2:ae:ea:9f:8e:9b:8e:4c:4a:3b:08:1c: 58:2d:6c:ec:cd:63:48:62:76:e6:b9:dc:23:4f:49: 29:7e:10:76:46:7f:2d:ce:9e:32:48:2f:90:e7:84: 03:cb:88:31:f1:30:0d:ae:1f:ec:51:8c:f0:9a:ea: c9:2a:3d:f2:95:33:50:4d:92:47:b5:a1:70:f5:fb: 7d:27:3a:30:e8:4a:f3:c0:20:4b:9c:b7:c6:a9:f4: bf:2f:9f:8d:b6:55:41:3a:8f:63:b7:63:11:0b:e9: 2c:57:f1:b1:ed:b8:a2:a9:7d:d7:af:5b:93:53:48: 37:d6:d0:14:6c:eb:30:1c:e5:7c:34:e1:7c:6f:ca: a2:85:70:b7:17:41:41:1b:95:11:04:a0:c0:f2:ef: 35:f3:00:93:5c:e6:40:e4:51:b5:73:84:e3:1e:a7: ca:0d:ef:ef:6e:b9:be:7f:01:8b:9f:38:b9:df:f8: 9e:3b:f1:bc:34:3c:d5:26:2f:92:f9:46:de:0e:bf: 21:c0:b2:5d:35:49:6e:92:6a:09:45:7f:fb:24:94: 30:13:19:f4:ad:f2:84:7f:7a:af:88:76:89:3d:3d: f1:f6:f6:d0:24:31:33:a0:da:00:41:b8:9d:80:f0: 3a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E2:8D:BA:52:78:56:FB:BE:D8:C2:AF:53:6C:B2:4A:D8:0D:41:6B X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356637303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f70::/44 Signature Algorithm: sha256WithRSAEncryption 80:8d:4d:a2:f8:34:a1:a4:8f:84:1f:3e:3b:5b:2e:8f:90:27: 9d:c3:31:21:ac:9e:b9:e6:3a:2d:fa:7e:0d:6e:0c:76:39:9d: dc:fe:b9:2c:f3:17:e0:8c:c3:fb:05:fb:10:ea:1f:f8:66:fc: a7:ef:9a:ac:00:57:1a:91:1b:3d:15:eb:ac:7b:31:2f:54:22: 7e:03:97:3d:4b:d3:0f:d2:7d:90:98:0d:eb:26:fa:2f:93:2a: de:19:bc:b7:6c:5f:db:4c:bf:0d:9a:df:5f:fd:60:1d:25:59: bf:65:ac:99:a4:a3:e1:4d:77:34:ff:f6:91:f2:e0:85:a2:83: 9f:61:a9:15:d3:39:79:8a:bd:75:74:37:e1:b7:93:0b:72:0f: e8:90:4b:0e:1a:38:b4:f5:b2:fc:49:6a:27:e7:db:5c:26:be: d3:4c:11:26:f4:44:c4:d7:ea:c2:b7:28:71:36:e7:70:63:9d: 1b:be:8d:96:71:9a:95:c9:34:39:a1:d2:55:7b:dd:58:be:ba: b4:27:52:80:a0:90:00:5c:c9:1f:3f:e1:25:34:82:ac:f2:c1: 22:82:7a:51:30:03:db:dc:d4:40:20:7b:14:54:3e:38:9c:64: ae:19:92:a7:10:d7:3e:10:7a:d8:fb:9b:b7:3e:85:f1:6b:54: f0:c7:0a:5b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUM6jLKAJ7GmK4M/MvXDG3O13chwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTVaFw0yNjA3MDMxOTUyNTVaMDMxMTAvBgNV BAMTKEY0RTI4REJBNTI3ODU2RkJCRUQ4QzJBRjUzNkNCMjRBRDgwRDQxNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm/4NJwfZW6bBqg7DxnS7588Ku 6p+Om45MSjsIHFgtbOzNY0hidua53CNPSSl+EHZGfy3OnjJIL5DnhAPLiDHxMA2u H+xRjPCa6skqPfKVM1BNkke1oXD1+30nOjDoSvPAIEuct8ap9L8vn422VUE6j2O3 YxEL6SxX8bHtuKKpfdevW5NTSDfW0BRs6zAc5Xw04XxvyqKFcLcXQUEblREEoMDy 7zXzAJNc5kDkUbVzhOMep8oN7+9uub5/AYufOLnf+J478bw0PNUmL5L5Rt4OvyHA sl01SW6SaglFf/sklDATGfSt8oR/eq+Idok9PfH29tAkMTOg2gBBuJ2A8DprAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU9OKNulJ4Vvu+2MKvU2yyStgNQWswHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjM3MzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwV9wMA0GCSqGSIb3DQEB CwUAA4IBAQCAjU2i+DShpI+EHz47Wy6PkCedwzEhrJ655jot+n4Nbgx2OZ3c/rks 8xfgjMP7BfsQ6h/4Zvyn75qsAFcakRs9FeusezEvVCJ+A5c9S9MP0n2QmA3rJvov kyreGby3bF/bTL8Nmt9f/WAdJVm/ZayZpKPhTXc0//aR8uCFooOfYakV0zl5ir11 dDfht5MLcg/okEsOGji09bL8SWon59tcJr7TTBEm9ETE1+rCtyhxNudwY50bvo2W cZqVyTQ5odJVe91Yvrq0J1KAoJAAXMkfP+ElNIKs8sEignpRMAPb3NRAIHsUVD44 nGSuGZKnENc+EHrY+5u3PoXxa1Twxwpb -----END CERTIFICATE-----Generated at Sat Jul 5 13:02:10 2025 by rpki-client