$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa File: 326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa (raw, json) Hash identifier: AHGjNaJ/WzTiVF8ARIxPxHm+eWjD34CRX2Rzq0o77Zc= Subject key identifier: E2:77:12:4C:5C:CC:20:CD:B6:2A:CF:AA:14:C1:95:FE:33:3A:10:B5 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 57AB8867C7D9E376054D7B36D46FB3C9481B1945 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa Signing time: Fri 04 Jul 2025 19:52:53 +0000 ROA not before: Fri 04 Jul 2025 19:47:53 +0000 ROA not after: Fri 03 Jul 2026 19:52:53 +0000 asID: 138190 IP address blocks: 2a05:dfc1:5f85::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ab:88:67:c7:d9:e3:76:05:4d:7b:36:d4:6f:b3:c9:48:1b:19:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:53 2025 GMT Not After : Jul 3 19:52:53 2026 GMT Subject: CN=E277124C5CCC20CDB62ACFAA14C195FE333A10B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:05:38:f6:d9:e4:90:3d:b8:20:73:63:59:33: 20:98:d9:3c:9e:84:7b:50:f7:8b:06:f8:21:ce:30: ba:5a:84:64:d1:c1:1a:b7:83:9c:b1:d3:7e:f6:a0: 6c:ed:ed:09:0f:6c:4a:80:e4:b0:71:cd:5f:c1:c2: a1:8a:32:a1:a0:6a:8e:6e:5f:20:16:c4:48:87:d7: 8f:fb:54:39:6a:16:6e:8a:0f:d1:cb:ef:fe:7a:f0: 4a:fe:f2:cc:53:ed:ef:a7:08:67:7a:df:9e:86:13: 01:39:2d:cd:73:91:d9:74:54:c7:7b:22:1c:ad:87: 85:48:4a:8a:b5:7f:1e:5e:8d:ca:64:0f:df:af:43: 7d:d4:e6:a7:34:2c:52:6e:3f:74:4d:47:db:75:f7: c7:66:38:ac:0b:f7:07:2f:56:52:d1:68:aa:80:fd: a3:3d:59:82:8f:3a:dd:5f:eb:04:c8:21:bd:17:e8: 62:bc:aa:95:ba:9d:3d:cc:2a:eb:f9:a0:ad:06:63: 11:46:93:24:3f:99:71:f4:8b:58:c8:a1:fb:a7:0d: 2f:e8:30:9a:c2:f6:7a:45:09:07:98:73:41:af:30: ba:b3:e8:14:41:85:42:a8:fa:61:7c:7a:ba:6e:30: 6f:56:be:69:e1:da:06:bf:a2:fe:30:5e:5b:86:5e: e5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:77:12:4C:5C:CC:20:CD:B6:2A:CF:AA:14:C1:95:FE:33:3A:10:B5 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f85::/48 Signature Algorithm: sha256WithRSAEncryption 7e:79:2c:34:0d:5b:47:fd:92:c5:fa:3a:ee:3c:4b:4f:7e:1d: 5c:a2:07:e4:bc:bc:84:02:91:42:dc:fe:cd:60:6a:de:f6:c5: 50:ea:34:9b:d0:7f:9d:7a:64:50:f8:f8:70:ef:78:c2:1f:02: 85:76:a8:65:4e:92:38:c2:cc:27:53:6c:f2:52:bf:f2:c9:0f: 3f:43:f5:c6:0a:b5:f3:0c:14:31:ef:b0:2f:16:36:55:7a:95: 00:b7:1a:25:0a:ca:ea:c4:d0:f8:f4:d4:dc:fc:bc:9e:4a:ba: 62:63:60:8a:ea:8c:d4:e3:68:05:8c:bf:97:cc:0f:4a:5d:a9: 14:cb:30:ee:62:cb:d6:d8:c9:28:76:27:5e:8a:6d:4a:4f:a8: 4b:c7:6f:04:75:f7:e9:3e:6e:e4:b9:f3:6d:c6:63:21:f6:0f: c4:c4:a3:80:5e:e0:e0:83:38:ec:c6:2b:05:ae:a6:dc:33:e5: fb:83:0f:22:2f:96:f4:14:8e:6d:13:21:07:89:ff:bb:da:07: 21:87:c9:bf:94:0d:45:4b:ae:d1:f2:6f:9a:d6:a3:60:41:22: 34:76:90:00:a4:0a:f0:27:38:53:36:79:ce:1d:00:04:16:3b: f9:e1:f1:54:d7:55:5d:17:47:d2:91:ce:b6:9f:db:b7:b6:47: de:aa:7d:ef -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUV6uIZ8fZ43YFTXs21G+zyUgbGUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTNaFw0yNjA3MDMxOTUyNTNaMDMxMTAvBgNV BAMTKEUyNzcxMjRDNUNDQzIwQ0RCNjJBQ0ZBQTE0QzE5NUZFMzMzQTEwQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQBTj22eSQPbggc2NZMyCY2Tye hHtQ94sG+CHOMLpahGTRwRq3g5yx0372oGzt7QkPbEqA5LBxzV/BwqGKMqGgao5u XyAWxEiH14/7VDlqFm6KD9HL7/568Er+8sxT7e+nCGd6356GEwE5Lc1zkdl0VMd7 Ihyth4VISoq1fx5ejcpkD9+vQ33U5qc0LFJuP3RNR9t198dmOKwL9wcvVlLRaKqA /aM9WYKPOt1f6wTIIb0X6GK8qpW6nT3MKuv5oK0GYxFGkyQ/mXH0i1jIofunDS/o MJrC9npFCQeYc0GvMLqz6BRBhUKo+mF8erpuMG9Wvmnh2ga/ov4wXluGXuWjAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU4ncSTFzMIM22Ks+qFMGV/jM6ELUwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjM4MzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BX4UwDQYJKoZIhvcN AQELBQADggEBAH55LDQNW0f9ksX6Ou48S09+HVyiB+S8vIQCkULc/s1gat72xVDq NJvQf516ZFD4+HDveMIfAoV2qGVOkjjCzCdTbPJSv/LJDz9D9cYKtfMMFDHvsC8W NlV6lQC3GiUKyurE0Pj01Nz8vJ5KumJjYIrqjNTjaAWMv5fMD0pdqRTLMO5iy9bY ySh2J16KbUpPqEvHbwR19+k+buS5823GYyH2D8TEo4Be4OCDOOzGKwWuptwz5fuD DyIvlvQUjm0TIQeJ/7vaByGHyb+UDUVLrtHyb5rWo2BBIjR2kACkCvAnOFM2ec4d AAQWO/nh8VTXVV0XR9KRzraf27e2R96qfe8= -----END CERTIFICATE-----Generated at Sat Jul 5 12:57:01 2025 by rpki-client