$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386530303a3a2f34352d3435203d3e203538333339.roa File: 326130353a646663313a386530303a3a2f34352d3435203d3e203538333339.roa (raw, json) Hash identifier: rs66C9fg1bnDZsYLXgtSQPHHFxpPbZUP2GDR2U8NPaI= Subject key identifier: 19:68:CE:3C:9D:4B:00:DF:06:99:79:A7:35:36:A5:37:31:95:5E:DD Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 3B8ED1E598D71775650ABFD55C135B4F72A98C87 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386530303a3a2f34352d3435203d3e203538333339.roa Signing time: Thu 02 Apr 2026 03:18:30 +0000 ROA not before: Thu 02 Apr 2026 03:13:30 +0000 ROA not after: Thu 01 Apr 2027 03:18:30 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e00::/45 maxlen: 45 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 11 Apr 2026 22:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:8e:d1:e5:98:d7:17:75:65:0a:bf:d5:5c:13:5b:4f:72:a9:8c:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Apr 2 03:13:30 2026 GMT Not After : Apr 1 03:18:30 2027 GMT Subject: CN=1968CE3C9D4B00DF069979A73536A53731955EDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7b:d9:78:f7:14:83:bb:cc:f8:df:bb:b1:37: 47:ff:72:19:1e:97:c4:5e:e6:fc:32:36:22:83:71: 75:6e:b5:d8:66:10:c2:49:1a:c4:e5:b2:0b:94:49: 1c:34:f6:f3:6a:99:b2:7c:31:14:77:8e:ff:50:ad: 7a:40:25:a9:e6:f3:b4:f1:1b:8f:d8:d5:5c:46:8c: 3a:e2:63:a8:98:0a:cb:3a:b9:da:41:3f:aa:8a:62: 4e:ce:65:ae:7d:b7:64:9e:8c:e2:72:7b:9d:1c:47: 47:c7:8f:9d:39:71:e6:f1:f0:91:32:ff:94:e2:a0: b3:65:aa:6a:11:96:d4:f9:44:75:a9:38:b9:51:b2: 71:cd:26:99:13:16:53:14:0b:e5:d2:0b:97:54:a9: 86:05:c7:f9:c2:2c:0e:67:90:02:f3:30:96:12:b4: 66:ec:d9:6c:7e:53:de:4c:c5:80:98:56:cb:b5:29: b3:4d:06:e4:12:76:0a:76:a9:53:a1:a8:a5:72:51: a4:13:af:94:45:91:ff:7c:2b:bf:38:62:27:d0:72: a5:58:2c:ed:3e:84:46:b6:90:0a:35:56:6d:2c:dc: 0d:87:07:bd:ff:94:4e:3f:36:e8:88:76:1a:32:ce: 7b:3f:26:46:19:f4:9c:23:6c:01:e9:31:37:69:8c: 1f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:68:CE:3C:9D:4B:00:DF:06:99:79:A7:35:36:A5:37:31:95:5E:DD X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386530303a3a2f34352d3435203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e00::/45 Signature Algorithm: sha256WithRSAEncryption 2e:ae:24:5d:c3:45:a7:eb:ca:42:2c:67:8b:92:58:28:44:5c: 65:34:6f:94:fe:f1:96:b2:30:a9:29:cd:08:ba:61:a9:ae:01: 3b:6d:df:54:19:4f:d4:be:47:76:ca:64:12:79:38:1d:b6:8d: cf:1b:37:2c:b9:5a:e8:6c:82:74:ba:e4:e4:51:92:67:32:3d: a4:dc:a9:45:04:9d:d8:a7:00:62:4b:f7:96:cf:02:0d:ad:15: 2e:eb:39:cf:68:28:8f:6c:78:f6:b3:4d:7c:28:a9:b8:8e:f5: 2e:f2:5d:54:a6:b6:16:8f:4b:3b:b3:b3:ad:24:69:10:56:4f: 7b:6d:7b:44:2a:6a:3c:61:e1:f7:64:44:3a:cc:e9:eb:7d:6f: fc:57:77:4f:ee:cd:c3:94:87:a6:cd:14:85:a7:70:68:75:28: e5:b8:44:41:ce:c1:10:75:7d:2f:5d:f6:ca:d4:a1:bb:f8:11: 3b:5d:cb:0f:08:40:89:6c:cd:1d:8a:ba:9e:ce:62:fa:22:26: cc:1a:1e:e3:bb:7a:5c:ae:b2:3f:d8:36:6d:86:38:02:3a:53: 9b:02:5c:2e:2b:d1:53:94:05:b9:f5:91:25:55:b7:82:27:26: 0d:f4:e3:a4:b3:d3:c9:4e:31:5e:3b:cc:3d:a0:1f:6e:06:db: e8:73:e0:f8 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUO47R5ZjXF3VlCr/VXBNbT3KpjIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA0MDIwMzEzMzBaFw0yNzA0MDEwMzE4MzBaMDMxMTAvBgNV BAMTKDE5NjhDRTNDOUQ0QjAwREYwNjk5NzlBNzM1MzZBNTM3MzE5NTVFREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhe9l49xSDu8z437uxN0f/chke l8Re5vwyNiKDcXVutdhmEMJJGsTlsguUSRw09vNqmbJ8MRR3jv9QrXpAJanm87Tx G4/Y1VxGjDriY6iYCss6udpBP6qKYk7OZa59t2SejOJye50cR0fHj505cebx8JEy /5TioLNlqmoRltT5RHWpOLlRsnHNJpkTFlMUC+XSC5dUqYYFx/nCLA5nkALzMJYS tGbs2Wx+U95MxYCYVsu1KbNNBuQSdgp2qVOhqKVyUaQTr5RFkf98K784YifQcqVY LO0+hEa2kAo1Vm0s3A2HB73/lE4/NuiIdhoyzns/JkYZ9JwjbAHpMTdpjB8NAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUGWjOPJ1LAN8GmXmnNTalNzGVXt0wHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTMwMzAzYTNhMmYzNDM1MmQzNDM1 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcDKgXfwY4AMA0GCSqGSIb3DQEB CwUAA4IBAQAuriRdw0Wn68pCLGeLklgoRFxlNG+U/vGWsjCpKc0IumGprgE7bd9U GU/Uvkd2ymQSeTgdto3PGzcsuVrobIJ0uuTkUZJnMj2k3KlFBJ3YpwBiS/eWzwIN rRUu6znPaCiPbHj2s018KKm4jvUu8l1UprYWj0s7s7OtJGkQVk97bXtEKmo8YeH3 ZEQ6zOnrfW/8V3dP7s3DlIemzRSFp3BodSjluERBzsEQdX0vXfbK1KG7+BE7XcsP CECJbM0dirqezmL6IibMGh7ju3pcrrI/2DZthjgCOlObAlwuK9FTlAW59ZElVbeC JyYN9OOks9PJTjFeO8w9oB9uBtvoc+D4 -----END CERTIFICATE-----Generated at Sat Apr 11 11:45:18 2026 by rpki-client