$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386530303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386530303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: lrVtZ6px/C0OnVzcBcziaFjYWzCTxjAqxCwq9Mzfk8w= Subject key identifier: 59:3D:B1:81:7A:D8:39:56:DB:F3:AA:9B:23:70:EA:47:A5:C2:CB:C5 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 5808B6D0A77DF76E1011C157C980302F8AEBDCCF Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386530303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 05 Jun 2026 19:58:11 +0000 ROA not before: Fri 05 Jun 2026 19:53:11 +0000 ROA not after: Fri 04 Jun 2027 19:58:11 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e00::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:08:b6:d0:a7:7d:f7:6e:10:11:c1:57:c9:80:30:2f:8a:eb:dc:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:11 2026 GMT Not After : Jun 4 19:58:11 2027 GMT Subject: CN=593DB1817AD83956DBF3AA9B2370EA47A5C2CBC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:88:c9:9a:6d:d8:fa:ca:66:3f:2f:a3:34:2e: 3b:45:a9:c8:68:e3:21:df:19:58:18:cb:54:77:0a: 66:73:37:c7:6a:3b:e4:49:88:76:5e:1d:24:c2:ca: 76:8f:80:70:6d:94:76:83:cb:c2:c5:2e:61:fa:a1: b3:bc:38:d2:35:5a:15:c2:8f:49:29:80:7b:0b:30: d2:ec:65:e0:0d:67:81:f8:37:83:b4:9b:15:1e:1a: 66:1d:b3:fc:76:fe:a9:7d:aa:fa:b2:fc:2b:3d:82: 1e:27:3e:60:07:c4:1e:09:54:0a:a4:ab:2d:65:38: a0:24:14:2e:f5:e0:3f:e7:18:43:7d:eb:d2:0a:ce: ad:35:df:35:3c:4d:90:9d:00:e8:81:d8:8f:55:ca: ec:0e:cd:de:30:fc:07:29:43:3b:f1:37:43:61:32: 0e:65:06:73:46:4e:77:7b:93:28:f9:e1:17:09:09: 0b:f8:cf:dd:40:eb:43:a8:8d:90:a1:44:a4:83:22: 0e:01:70:53:2d:d6:2f:89:1b:d7:cd:11:86:09:84: 1f:fb:28:74:f6:a6:46:06:62:ad:e4:a8:df:fb:ee: 3d:5d:e2:a0:08:2d:f4:db:36:79:47:fb:48:97:66: 59:ba:f6:33:7e:ea:7e:79:65:ff:13:ff:5f:8d:42: 79:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:3D:B1:81:7A:D8:39:56:DB:F3:AA:9B:23:70:EA:47:A5:C2:CB:C5 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386530303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e00::/44 Signature Algorithm: sha256WithRSAEncryption 72:93:5d:ac:7f:08:6f:00:f8:28:a8:90:61:d4:c8:f8:3d:86: b9:e4:f6:d2:28:11:96:84:3d:92:ec:55:c1:3f:74:20:6b:22: e3:f6:d7:d8:15:f9:f9:a8:48:fb:c2:99:40:dc:66:e2:ee:e1: 9e:a8:f2:6e:ed:6e:1b:1d:26:85:2a:c6:56:ee:1a:f6:b5:63: 36:08:b8:fe:04:d5:56:0b:91:90:9d:ee:33:98:26:9b:57:78: d8:3c:13:be:8d:1d:ed:b9:d0:e1:b8:ce:bc:9f:46:09:6c:33: d9:12:b0:0c:78:2d:71:37:22:74:de:01:00:4e:6f:f5:e3:7b: 38:c5:2b:ca:d1:6e:ba:c8:df:3e:e9:d6:61:63:3c:9b:05:85: 4b:97:55:92:7d:65:35:5b:57:3b:99:90:e7:43:b8:00:21:0e: 3c:36:a8:3b:26:3f:50:29:90:c9:bd:0b:2b:25:41:7f:85:a2: 31:12:4b:0f:6e:18:68:e7:54:ca:83:b5:bf:85:41:8f:6d:8f: 0e:1e:6b:7f:20:69:d4:0b:12:92:ad:fb:05:f3:66:08:b3:5e: 57:be:08:88:5b:c5:ee:55:5c:60:91:c2:dc:c1:1b:74:a4:c1: 3a:b8:5b:c5:e1:ec:b3:a2:e1:46:03:e4:b4:36:b8:2e:b9:4e: fd:12:10:fa -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUWAi20Kd9924QEcFXyYAwL4rr3M8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA2MDUxOTUzMTFaFw0yNzA2MDQxOTU4MTFaMDMxMTAvBgNV BAMTKDU5M0RCMTgxN0FEODM5NTZEQkYzQUE5QjIzNzBFQTQ3QTVDMkNCQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDciMmabdj6ymY/L6M0LjtFqcho 4yHfGVgYy1R3CmZzN8dqO+RJiHZeHSTCynaPgHBtlHaDy8LFLmH6obO8ONI1WhXC j0kpgHsLMNLsZeANZ4H4N4O0mxUeGmYds/x2/ql9qvqy/Cs9gh4nPmAHxB4JVAqk qy1lOKAkFC714D/nGEN969IKzq013zU8TZCdAOiB2I9VyuwOzd4w/AcpQzvxN0Nh Mg5lBnNGTnd7kyj54RcJCQv4z91A60OojZChRKSDIg4BcFMt1i+JG9fNEYYJhB/7 KHT2pkYGYq3kqN/77j1d4qAILfTbNnlH+0iXZlm69jN+6n55Zf8T/1+NQnlxAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUWT2xgXrYOVbb86qbI3DqR6XCy8UwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTMwMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY4AMA0GCSqGSIb3DQEB CwUAA4IBAQByk12sfwhvAPgoqJBh1Mj4PYa55PbSKBGWhD2S7FXBP3QgayLj9tfY Ffn5qEj7wplA3Gbi7uGeqPJu7W4bHSaFKsZW7hr2tWM2CLj+BNVWC5GQne4zmCab V3jYPBO+jR3tudDhuM68n0YJbDPZErAMeC1xNyJ03gEATm/143s4xSvK0W66yN8+ 6dZhYzybBYVLl1WSfWU1W1c7mZDnQ7gAIQ48Nqg7Jj9QKZDJvQsrJUF/haIxEksP bhho51TKg7W/hUGPbY8OHmt/IGnUCxKSrfsF82YIs15XvgiIW8XuVVxgkcLcwRt0 pME6uFvF4eyzouFGA+S0NrguuU79EhD6 -----END CERTIFICATE-----Generated at Fri Jun 12 01:10:48 2026 by rpki-client