$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa File: 326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa (raw, json) Hash identifier: vS0GQq7LeCQaEWtgeZTgP+9+Js4+r94N+RkWS9Q6TTo= Subject key identifier: CD:4A:C1:61:2B:3C:06:DF:AF:F2:B0:AA:F1:83:BF:BA:53:82:08:32 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 646A122B27C32D706F60C7C7131747CD2D5C21EA Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa Signing time: Fri 05 Jun 2026 19:58:11 +0000 ROA not before: Fri 05 Jun 2026 19:53:11 +0000 ROA not after: Fri 04 Jun 2027 19:58:11 +0000 asID: 138190 IP address blocks: 2a05:dfc1:5f85::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:6a:12:2b:27:c3:2d:70:6f:60:c7:c7:13:17:47:cd:2d:5c:21:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:11 2026 GMT Not After : Jun 4 19:58:11 2027 GMT Subject: CN=CD4AC1612B3C06DFAFF2B0AAF183BFBA53820832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:da:7c:16:1b:81:4b:89:14:bf:da:c1:32:8f: 10:b8:fb:22:93:d3:57:28:19:db:32:d4:66:76:b2: c4:24:ec:dc:11:a4:d6:37:a9:ca:17:ad:6d:37:eb: 06:76:cc:3c:3d:51:f8:5f:0e:ef:f7:9a:1c:66:ef: fa:31:20:54:91:1b:1e:b1:5e:fc:03:d8:c2:37:a1: c5:f2:65:75:79:b6:fb:91:6e:56:c2:c3:ab:b2:aa: 0f:d7:a3:82:0f:dc:fc:8c:1f:bc:6f:c2:7c:46:d1: 3f:bf:ce:55:9b:23:08:da:2e:db:b9:51:51:a3:3a: 77:bf:3c:88:f9:7c:fa:d7:95:36:6e:2e:4f:95:e9: 66:64:3d:e8:38:c1:0c:54:fa:09:02:4d:79:26:91: d3:b3:d3:c2:69:ca:ce:97:84:1a:33:b7:cb:4a:92: 7c:f4:b0:1f:94:6a:80:0c:26:5a:79:c6:e9:c1:71: 0e:2d:0c:f2:ff:12:f6:dd:b9:34:96:41:bc:f4:d6: 93:f1:f6:d0:29:fd:48:96:6a:4a:a4:42:08:bb:13: ec:ce:e6:59:1c:5e:c5:a7:c9:81:1b:79:d6:89:92: 94:b6:73:7a:49:42:c7:b2:08:9b:c4:d6:0c:f0:be: 10:cf:48:6f:55:61:0a:bb:37:05:93:27:c4:83:6b: a4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:4A:C1:61:2B:3C:06:DF:AF:F2:B0:AA:F1:83:BF:BA:53:82:08:32 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f85::/48 Signature Algorithm: sha256WithRSAEncryption 14:29:82:10:30:ce:5b:af:6f:60:64:d6:49:f0:29:15:72:bc: 31:2b:0d:1e:f2:bb:6d:ea:10:85:ad:c9:0a:45:84:a8:ae:5b: 57:21:98:b5:6c:08:aa:02:af:68:b0:42:80:a2:a9:8d:78:7d: 8a:e9:dd:88:d6:eb:8b:5f:79:4e:5a:c5:cb:29:5a:68:19:a6: 56:18:56:a4:39:73:ab:84:fb:db:d7:ea:75:29:b2:bb:f2:a1: a6:af:8a:5a:8b:d9:33:2d:aa:4f:75:3a:07:00:41:8c:94:0e: 05:89:95:d2:8f:df:32:db:f0:b6:3c:6d:af:bb:37:be:f3:5d: d3:0d:89:ff:7f:14:2f:0a:70:93:88:14:8e:fa:ee:95:13:61: e4:ce:97:5c:5f:7f:83:08:1a:7c:b8:df:52:50:56:75:36:22: fb:e2:8b:39:10:e4:ef:bb:d1:b8:07:b1:c2:bf:db:ea:f8:c3: aa:1e:42:f6:05:36:f5:dc:b3:ed:b7:94:93:3c:72:25:9e:3b: 23:40:a0:cb:27:bf:ea:6a:1c:34:33:4d:c5:04:8b:13:2c:64: 82:7c:d1:62:bd:d3:64:35:a9:f8:b4:7a:c3:5f:7f:66:a1:68: e3:29:e6:00:31:17:67:96:8e:1b:ed:8a:12:1b:25:47:d9:9f: fb:94:69:b8 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUZGoSKyfDLXBvYMfHExdHzS1cIeowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA2MDUxOTUzMTFaFw0yNzA2MDQxOTU4MTFaMDMxMTAvBgNV BAMTKENENEFDMTYxMkIzQzA2REZBRkYyQjBBQUYxODNCRkJBNTM4MjA4MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD22nwWG4FLiRS/2sEyjxC4+yKT 01coGdsy1GZ2ssQk7NwRpNY3qcoXrW036wZ2zDw9UfhfDu/3mhxm7/oxIFSRGx6x XvwD2MI3ocXyZXV5tvuRblbCw6uyqg/Xo4IP3PyMH7xvwnxG0T+/zlWbIwjaLtu5 UVGjOne/PIj5fPrXlTZuLk+V6WZkPeg4wQxU+gkCTXkmkdOz08Jpys6XhBozt8tK knz0sB+UaoAMJlp5xunBcQ4tDPL/EvbduTSWQbz01pPx9tAp/UiWakqkQgi7E+zO 5lkcXsWnyYEbedaJkpS2c3pJQseyCJvE1gzwvhDPSG9VYQq7NwWTJ8SDa6RhAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUzUrBYSs8Bt+v8rCq8YO/ulOCCDIwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjM4MzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BX4UwDQYJKoZIhvcN AQELBQADggEBABQpghAwzluvb2Bk1knwKRVyvDErDR7yu23qEIWtyQpFhKiuW1ch mLVsCKoCr2iwQoCiqY14fYrp3YjW64tfeU5axcspWmgZplYYVqQ5c6uE+9vX6nUp srvyoaavilqL2TMtqk91OgcAQYyUDgWJldKP3zLb8LY8ba+7N77zXdMNif9/FC8K cJOIFI767pUTYeTOl1xff4MIGny431JQVnU2IvviizkQ5O+70bgHscK/2+r4w6oe QvYFNvXcs+23lJM8ciWeOyNAoMsnv+pqHDQzTcUEixMsZIJ80WK902Q1qfi0esNf f2ahaOMp5gAxF2eWjhvtihIbJUfZn/uUabg= -----END CERTIFICATE-----Generated at Thu Jun 11 21:23:36 2026 by rpki-client