$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: zhTMqHT9k7jUYRrHYp50z209XEnwWLBT4JJ4e/BZSXk= Subject key identifier: 91:76:4D:1B:B0:22:F4:B7:1D:93:72:92:35:1E:12:E1:FC:34:25:F5 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 7E8CF573A52D531C7687866D225D777C627BB8BC Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:54 +0000 ROA not before: Fri 04 Jul 2025 19:47:54 +0000 ROA not after: Fri 03 Jul 2026 19:52:54 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f70::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:8c:f5:73:a5:2d:53:1c:76:87:86:6d:22:5d:77:7c:62:7b:b8:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:54 2025 GMT Not After : Jul 3 19:52:54 2026 GMT Subject: CN=91764D1BB022F4B71D937292351E12E1FC3425F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8f:4a:b6:dd:e6:b5:c9:a0:c9:a5:13:0d:f5: 80:d2:44:57:56:91:6f:6b:c8:f4:8a:45:7d:48:ac: 9f:c1:61:4c:02:ad:b0:bc:ad:fe:f5:38:2d:c4:a4: 57:da:d8:53:34:2a:0f:ee:09:54:e5:cb:8f:1a:5c: 5d:c3:fb:3b:7c:5c:8a:86:ab:9e:ed:f0:e9:2d:18: 01:bd:8d:82:a6:0b:d3:fa:5d:c4:a2:a4:6c:cd:0d: fa:93:16:43:7b:e5:e5:bd:72:63:d8:8b:07:3e:46: 4c:4a:ac:62:bd:a0:31:c6:e1:9c:15:26:ad:43:f0: 45:2c:b9:e6:fe:92:95:56:0d:30:ad:45:28:66:7b: fd:65:d5:3b:59:86:62:92:34:ba:fc:5a:c9:d5:14: dc:15:65:ac:d9:66:42:47:15:65:55:a5:3d:91:8b: f2:b0:a6:8d:58:64:c9:5a:c8:19:c0:c3:9c:c1:a3: 06:1d:1f:9d:0b:26:72:59:b8:11:ac:8c:3a:66:1b: 71:b7:3d:aa:bf:ed:37:a4:94:eb:25:50:59:46:19: 61:b5:7b:43:a6:0a:77:2f:6c:87:06:fe:0e:ec:88: 2d:ad:03:83:14:03:0d:7c:ee:40:86:17:44:06:02: e1:e6:07:1f:cd:4e:0f:08:a7:c0:86:ab:f8:01:7d: 8b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:76:4D:1B:B0:22:F4:B7:1D:93:72:92:35:1E:12:E1:FC:34:25:F5 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356637303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f70::/48 Signature Algorithm: sha256WithRSAEncryption 21:c7:48:8f:48:3e:35:cb:d3:fb:57:dd:bb:4d:72:9c:9b:e5: 68:10:cf:e1:e7:c4:a2:14:7d:20:48:1d:27:ca:08:a9:4b:26: 97:33:9b:52:6a:81:be:66:7c:bf:c3:82:2c:2c:d5:ed:33:08: 11:1b:d3:0b:2b:26:b8:9b:99:a5:f1:ae:79:81:26:1a:c1:d4: d7:81:86:ba:49:a8:d7:fb:2a:15:ae:c4:24:25:a1:4d:1c:75: 6a:31:42:21:c9:d6:0e:b2:50:54:00:fc:50:4a:41:c2:fd:8e: 19:fe:94:c9:36:84:f4:77:e0:54:8c:71:b0:b8:34:59:ae:43: 17:2e:83:4b:cf:06:74:78:01:f5:7e:a5:ef:84:48:f3:e7:08: b1:86:87:5a:11:32:b2:14:74:3d:3f:d3:35:16:76:da:62:71: 31:db:91:ee:5f:a2:ff:c1:97:29:c3:d6:42:e2:b2:e8:14:06: c1:0c:b9:aa:c4:32:78:6b:46:90:96:32:bd:62:3c:2f:45:13: fc:b6:bf:ee:3c:82:e8:38:53:a7:91:1a:70:e6:8a:14:a7:56: 97:59:d0:91:48:d3:0a:3d:e5:92:ca:d8:bb:1d:3e:af:c3:bd: 6b:5c:08:a8:9c:da:c6:ce:92:ce:38:41:11:5e:5d:a5:da:09: e0:f5:06:0d -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUfoz1c6UtUxx2h4ZtIl13fGJ7uLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTRaFw0yNjA3MDMxOTUyNTRaMDMxMTAvBgNV BAMTKDkxNzY0RDFCQjAyMkY0QjcxRDkzNzI5MjM1MUUxMkUxRkMzNDI1RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxj0q23ea1yaDJpRMN9YDSRFdW kW9ryPSKRX1IrJ/BYUwCrbC8rf71OC3EpFfa2FM0Kg/uCVTly48aXF3D+zt8XIqG q57t8OktGAG9jYKmC9P6XcSipGzNDfqTFkN75eW9cmPYiwc+RkxKrGK9oDHG4ZwV Jq1D8EUsueb+kpVWDTCtRShme/1l1TtZhmKSNLr8WsnVFNwVZazZZkJHFWVVpT2R i/Kwpo1YZMlayBnAw5zBowYdH50LJnJZuBGsjDpmG3G3Paq/7TeklOslUFlGGWG1 e0OmCncvbIcG/g7siC2tA4MUAw187kCGF0QGAuHmBx/NTg8Ip8CGq/gBfYvbAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUkXZNG7Ai9Lcdk3KSNR4S4fw0JfUwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjM3MzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV9wMA0GCSqGSIb3DQEB CwUAA4IBAQAhx0iPSD41y9P7V927TXKcm+VoEM/h58SiFH0gSB0nygipSyaXM5tS aoG+Zny/w4IsLNXtMwgRG9MLKya4m5ml8a55gSYawdTXgYa6SajX+yoVrsQkJaFN HHVqMUIhydYOslBUAPxQSkHC/Y4Z/pTJNoT0d+BUjHGwuDRZrkMXLoNLzwZ0eAH1 fqXvhEjz5wixhodaETKyFHQ9P9M1FnbaYnEx25HuX6L/wZcpw9ZC4rLoFAbBDLmq xDJ4a0aQljK9YjwvRRP8tr/uPILoOFOnkRpw5ooUp1aXWdCRSNMKPeWSyti7HT6v w71rXAionNrGzpLOOEERXl2l2gng9QYN -----END CERTIFICATE-----Generated at Sat Jul 5 13:03:09 2025 by rpki-client