$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356637303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a356637303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: +QZNUD43kioUfPu4uXWnclzN7ankcVpHARu0oN6+usg= Subject key identifier: 2D:F4:EF:FF:F3:E7:93:BC:C0:00:15:B2:69:C3:F1:05:8B:98:F3:C3 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 1B3FEF1DD8E95879C79B85B73B23CAA17CE540 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356637303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 05 Jun 2026 19:58:11 +0000 ROA not before: Fri 05 Jun 2026 19:53:11 +0000 ROA not after: Fri 04 Jun 2027 19:58:11 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f70::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:3f:ef:1d:d8:e9:58:79:c7:9b:85:b7:3b:23:ca:a1:7c:e5:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:11 2026 GMT Not After : Jun 4 19:58:11 2027 GMT Subject: CN=2DF4EFFFF3E793BCC00015B269C3F1058B98F3C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:40:c2:b3:60:9a:e0:63:5b:af:74:49:ab:5d: 3d:23:17:cb:a9:6a:c8:d8:b5:e4:f4:41:1d:c5:4f: f3:1f:99:d6:57:9d:c5:df:99:fc:7d:43:3f:1b:b6: 79:49:f8:76:fe:23:53:66:70:0e:40:e2:20:4e:5c: f8:64:23:32:ec:61:87:a2:dd:4d:e3:bd:46:22:c0: 70:de:30:f2:08:76:be:a9:d7:a0:b4:af:79:67:b9: 84:67:60:78:94:05:78:74:fa:f8:76:e1:0a:15:54: aa:d8:38:b3:f8:9a:2b:15:35:de:05:ff:53:92:e7: 06:3d:3f:5a:30:3f:50:64:5e:6c:b0:a8:76:68:33: 79:b5:ca:83:d5:fa:0a:9e:20:a9:b9:db:e7:76:59: 27:04:05:2e:1d:4b:2d:e6:17:f2:fc:0b:d5:60:33: 79:ee:70:ec:f1:c0:00:a9:53:be:44:d2:49:4a:42: 36:d7:bb:2a:9e:cc:bf:14:0b:cd:db:bb:9e:62:80: 99:92:15:cd:7a:23:17:db:da:f4:38:c0:5b:22:8d: cc:83:13:15:18:9f:b2:08:aa:a6:49:0e:29:1a:58: d3:da:83:38:44:9b:18:d4:ec:55:4f:f2:96:db:d2: 2a:2a:0e:48:f4:c9:69:17:f3:2f:3d:b4:ad:4c:6b: b6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F4:EF:FF:F3:E7:93:BC:C0:00:15:B2:69:C3:F1:05:8B:98:F3:C3 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356637303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f70::/44 Signature Algorithm: sha256WithRSAEncryption 49:54:5d:c5:32:b3:60:06:4b:90:5b:b5:36:38:8b:b6:48:3b: 8e:14:ce:af:a9:52:c7:8c:3f:2c:6a:be:7a:e5:d4:1b:f5:96: ba:be:6b:8c:2a:53:86:9f:82:d8:ff:0b:77:ec:6b:66:36:d3: 72:44:71:61:14:ae:90:ba:a0:e0:13:8b:bd:ce:cd:83:40:83: 5f:ed:2c:b2:40:ec:bb:49:c0:43:04:2e:b2:ba:ae:34:0e:53: a3:2f:82:c0:c5:fc:91:df:d7:a9:24:dd:72:c6:f8:4b:63:f8: 0d:ee:88:78:de:47:22:46:54:3d:33:cb:bf:2c:26:25:76:ca: 94:9a:83:b3:5d:4e:e7:5f:ce:2d:59:0c:39:ee:44:c0:e9:28: 52:6c:1f:fa:1c:6f:fd:84:e0:6b:6d:74:df:4e:d3:4a:c5:4a: 3b:8e:81:2f:4f:05:dd:cd:1f:2e:ac:33:24:ae:33:a1:c6:24: 6c:36:36:8e:fd:dd:8b:e4:8d:ba:49:d1:24:05:b4:4f:9b:a6: e4:65:25:0e:5e:74:11:f7:f7:ac:18:f1:ce:68:63:43:15:2b: 16:79:ba:39:98:95:22:a1:52:d9:1f:b0:33:88:a3:53:7a:2f: 2a:d1:7b:fc:a3:3a:fc:05:ff:20:d7:5a:e0:5c:85:d1:ec:44: c9:50:fa:02 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgITGz/vHdjpWHnHm4W3OyPKoXzlQDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhCRTNEQzY2MTRFMEEyRjNCM0Q2RjA4REMwNEExQkMzNEM4 RkJDOUMzMB4XDTI2MDYwNTE5NTMxMVoXDTI3MDYwNDE5NTgxMVowMzExMC8GA1UE AxMoMkRGNEVGRkZGM0U3OTNCQ0MwMDAxNUIyNjlDM0YxMDU4Qjk4RjNDMzCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMxAwrNgmuBjW690SatdPSMXy6lq yNi15PRBHcVP8x+Z1ledxd+Z/H1DPxu2eUn4dv4jU2ZwDkDiIE5c+GQjMuxhh6Ld TeO9RiLAcN4w8gh2vqnXoLSveWe5hGdgeJQFeHT6+HbhChVUqtg4s/iaKxU13gX/ U5LnBj0/WjA/UGRebLCodmgzebXKg9X6Cp4gqbnb53ZZJwQFLh1LLeYX8vwL1WAz ee5w7PHAAKlTvkTSSUpCNte7Kp7MvxQLzdu7nmKAmZIVzXojF9va9DjAWyKNzIMT FRifsgiqpkkOKRpY09qDOESbGNTsVU/yltvSKioOSPTJaRfzLz20rUxrtgMCAwEA AaOCAl4wggJaMB0GA1UdDgQWBBQt9O//8+eTvMAAFbJpw/EFi5jzwzAfBgNVHSME GDAWgBS+PcZhTgovOz1vCNwEobw0yPvJwzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5u ZXQvcmVwb3NpdG9yeS9hY2VjZmRjNy02ZGI5LTQyNWItYWNhZS03ZTIwZmJlNmUx MjkvMy9CRTNEQzY2MTRFMEEyRjNCM0Q2RjA4REMwNEExQkMzNEM4RkJDOUMzLmNy bDB6BggrBgEFBQcBAQRuMGwwagYIKwYBBQUHMAKGXnJzeW5jOi8vY2xvdWRpZS1y ZXBvLnJwa2kuYXBwL3JlcG8vQ0xPVURJRS1SUEtJLzQvQkUzREM2NjE0RTBBMkYz QjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5jZXIwgbUGCCsGAQUFBwELBIGoMIGl MIGiBggrBgEFBQcwC4aBlXJzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0 L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZlMTI5 LzMvMzI2MTMwMzUzYTY0NjY2MzMxM2EzNTY2MzczMDNhM2EyZjM0MzQyZDM0MzQy MDNkM2UyMDM1MzgzMzMzMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQqBd/BX3AwDQYJKoZIhvcNAQEL BQADggEBAElUXcUys2AGS5BbtTY4i7ZIO44Uzq+pUseMPyxqvnrl1Bv1lrq+a4wq U4afgtj/C3fsa2Y203JEcWEUrpC6oOATi73OzYNAg1/tLLJA7LtJwEMELrK6rjQO U6MvgsDF/JHf16kk3XLG+Etj+A3uiHjeRyJGVD0zy78sJiV2ypSag7NdTudfzi1Z DDnuRMDpKFJsH/ocb/2E4GttdN9O00rFSjuOgS9PBd3NHy6sMySuM6HGJGw2No79 3YvkjbpJ0SQFtE+bpuRlJQ5edBH396wY8c5oY0MVKxZ5ujmYlSKhUtkfsDOIo1N6 LyrRe/yjOvwF/yDXWuBchdHsRMlQ+gI= -----END CERTIFICATE-----Generated at Fri Jun 12 01:10:48 2026 by rpki-client