$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386530303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386530303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: p2o1yXHsIxpnRd44bjihWHVn6MaMhtMpWjfOAyceXpY= Subject key identifier: 31:D6:67:8E:39:78:70:95:D8:01:3B:C0:B3:07:2B:4F:E0:8B:2D:BC Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 03B5257530DA5C0673650207C598AC5C85370EB2 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386530303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:53 +0000 ROA not before: Fri 04 Jul 2025 19:47:53 +0000 ROA not after: Fri 03 Jul 2026 19:52:53 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e00::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b5:25:75:30:da:5c:06:73:65:02:07:c5:98:ac:5c:85:37:0e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:53 2025 GMT Not After : Jul 3 19:52:53 2026 GMT Subject: CN=31D6678E39787095D8013BC0B3072B4FE08B2DBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c7:41:95:38:08:7a:5d:3b:8f:ec:4c:9f:fd: d5:ac:23:33:37:23:fb:b1:17:85:0c:74:49:fe:d2: 4c:1c:1b:6a:31:25:23:a9:ed:9f:6d:ba:78:55:a8: 3d:db:7f:57:b7:c0:5f:39:48:e9:6e:cf:22:50:c6: c0:e0:35:7a:d4:5d:7b:bf:31:fb:d3:03:16:a8:4c: 76:11:dc:d7:bf:69:90:38:2b:d4:55:fe:b1:f7:5f: 90:ee:10:00:8f:60:9a:13:d8:2c:e4:d1:c5:c1:d5: 15:62:13:b7:7c:da:98:e1:10:62:37:ee:63:4a:08: d4:12:e1:28:f7:02:6a:d2:07:4d:d8:4a:77:21:23: a7:96:9c:f8:b6:79:0a:e3:a7:8e:cb:17:79:24:18: 08:ba:53:03:ad:21:15:d1:45:75:47:4c:6e:a7:cc: d5:5e:3b:18:a9:a2:74:66:8e:61:df:b4:e1:1e:14: 93:7b:c8:01:01:c5:39:68:2e:8e:62:9e:ba:cb:aa: a6:ae:74:a2:3a:54:64:63:7c:f2:30:ad:67:ec:c1: 59:45:d5:12:18:f6:7e:ec:1a:04:35:0d:aa:6a:d5: 9e:d3:be:7a:f3:cb:02:cb:d1:44:b0:7a:de:f0:83: 5f:10:3d:9b:f5:50:e8:f4:da:45:57:1e:b4:a5:a1: 8c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D6:67:8E:39:78:70:95:D8:01:3B:C0:B3:07:2B:4F:E0:8B:2D:BC X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386530303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e00::/44 Signature Algorithm: sha256WithRSAEncryption 2f:43:82:f3:57:61:35:94:4f:43:8d:33:2b:4d:07:12:e9:b4: d7:af:04:9a:d9:22:b1:d0:18:07:93:64:c9:83:50:98:0c:d5: 4e:c4:5d:17:3f:53:93:ef:da:79:f1:ec:b1:cb:92:a4:45:2d: 98:30:fa:09:15:93:7c:81:e7:4a:38:1c:24:8c:a3:2c:0f:4c: e3:26:a9:d8:30:fc:34:67:48:37:28:12:34:3b:37:aa:10:78: be:5a:01:09:3d:f5:df:d7:52:de:84:22:2b:f8:ac:fe:c2:58: 35:8e:20:3b:39:08:93:95:57:62:e5:98:32:96:56:88:c5:15: 46:d9:da:dc:c3:a7:54:30:69:97:bb:94:5e:4b:2d:e5:8b:02: de:5d:9f:90:64:29:e0:16:e1:3c:1d:00:c7:01:ce:c6:8a:bb: fa:a5:9c:98:13:5b:1b:26:3e:a6:81:ff:4d:76:06:00:21:a3: f1:17:fc:7b:d8:58:b7:5f:ff:04:55:1b:68:c1:93:2b:ee:37: 97:59:db:62:6a:15:74:53:08:b6:ce:df:2c:f5:53:4f:23:8c: fa:35:88:cc:bf:1a:b0:41:2d:26:0a:e6:7d:d5:77:b6:63:04: 1b:23:1e:f9:04:44:40:09:0e:37:a3:86:cd:ae:15:9c:18:6b: 34:0b:56:6b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUA7UldTDaXAZzZQIHxZisXIU3DrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTNaFw0yNjA3MDMxOTUyNTNaMDMxMTAvBgNV BAMTKDMxRDY2NzhFMzk3ODcwOTVEODAxM0JDMEIzMDcyQjRGRTA4QjJEQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvx0GVOAh6XTuP7Eyf/dWsIzM3 I/uxF4UMdEn+0kwcG2oxJSOp7Z9tunhVqD3bf1e3wF85SOluzyJQxsDgNXrUXXu/ MfvTAxaoTHYR3Ne/aZA4K9RV/rH3X5DuEACPYJoT2Czk0cXB1RViE7d82pjhEGI3 7mNKCNQS4Sj3AmrSB03YSnchI6eWnPi2eQrjp47LF3kkGAi6UwOtIRXRRXVHTG6n zNVeOxiponRmjmHftOEeFJN7yAEBxTloLo5inrrLqqaudKI6VGRjfPIwrWfswVlF 1RIY9n7sGgQ1Dapq1Z7TvnrzywLL0USwet7wg18QPZv1UOj02kVXHrSloYwZAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUMdZnjjl4cJXYATvAswcrT+CLLbwwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTMwMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY4AMA0GCSqGSIb3DQEB CwUAA4IBAQAvQ4LzV2E1lE9DjTMrTQcS6bTXrwSa2SKx0BgHk2TJg1CYDNVOxF0X P1OT79p58eyxy5KkRS2YMPoJFZN8gedKOBwkjKMsD0zjJqnYMPw0Z0g3KBI0Ozeq EHi+WgEJPfXf11LehCIr+Kz+wlg1jiA7OQiTlVdi5ZgyllaIxRVG2drcw6dUMGmX u5ReSy3liwLeXZ+QZCngFuE8HQDHAc7Girv6pZyYE1sbJj6mgf9NdgYAIaPxF/x7 2Fi3X/8EVRtowZMr7jeXWdtiahV0Uwi2zt8s9VNPI4z6NYjMvxqwQS0mCuZ91Xe2 YwQbIx75BERACQ43o4bNrhWcGGs0C1Zr -----END CERTIFICATE-----Generated at Sat Jul 5 12:58:18 2025 by rpki-client