$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: blTZwUn9sd7prLCUjqRLLnZ1US6D4ZlGcB6bjBXTabY= Subject key identifier: BC:7B:21:7A:D1:13:20:9B:C7:A8:68:8B:87:AA:99:77:3D:4C:A7:8A Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 13C87960CA2E3BA8F5D89AAF2120666493B77499 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 05 Jun 2026 19:58:11 +0000 ROA not before: Fri 05 Jun 2026 19:53:11 +0000 ROA not after: Fri 04 Jun 2027 19:58:11 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e20::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:c8:79:60:ca:2e:3b:a8:f5:d8:9a:af:21:20:66:64:93:b7:74:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:11 2026 GMT Not After : Jun 4 19:58:11 2027 GMT Subject: CN=BC7B217AD113209BC7A8688B87AA99773D4CA78A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ff:14:38:ed:91:c3:c5:bd:8f:47:aa:67:b7:e4: 79:76:f3:3a:0e:e0:ef:a7:94:e4:c4:2b:29:d3:f6: dd:b5:c1:b8:3d:ed:8d:8b:a4:3f:9a:3d:e6:5a:5c: 08:84:06:63:6b:08:2e:46:8c:ad:bd:4b:25:87:b7: be:e2:38:c2:84:64:c6:a0:ae:a6:26:48:2a:34:cb: b9:30:99:f6:12:af:44:1d:a7:f3:55:2a:8e:4a:75: 15:10:51:fa:9e:19:5e:9f:3a:39:42:ae:20:fa:8b: 85:b7:64:24:bb:79:de:af:30:2a:53:05:e2:9f:12: 9b:5c:f3:14:39:3d:4b:0d:96:a7:7d:f0:a6:39:70: f1:f0:84:94:a1:e6:d9:ec:6f:6e:48:90:06:00:b3: d5:38:81:4b:ab:3e:17:22:ac:10:57:e0:e0:cc:dd: f6:62:3f:7d:75:78:02:58:53:cb:b7:3c:f2:59:bf: 1d:93:f7:88:f9:76:51:26:9c:af:c4:fe:4c:6e:ef: 08:fe:b4:2f:88:d8:af:cf:cc:c5:eb:c6:16:96:69: 8e:2c:ea:f5:4d:aa:fb:33:2a:7b:65:33:23:4b:dd: ff:83:3d:0e:42:54:7b:fa:e2:65:6a:c7:3f:b8:fe: 96:e2:f3:0b:e1:52:c8:fd:9a:f1:1c:75:55:e1:d8: c3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:7B:21:7A:D1:13:20:9B:C7:A8:68:8B:87:AA:99:77:3D:4C:A7:8A X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e20::/44 Signature Algorithm: sha256WithRSAEncryption 36:98:34:65:85:a4:f3:ca:ad:a0:8f:04:c1:ca:f4:3f:8f:72: 2a:da:16:10:a9:e7:2f:91:b4:17:c9:e0:90:24:ba:28:66:33: 72:68:3d:9e:09:a8:75:15:e6:c0:d5:6c:d1:76:09:1b:d5:ae: de:9d:39:fa:e2:c8:32:21:5f:c5:4a:f5:4c:47:d6:89:4c:99: 5a:42:20:0a:b9:dc:30:bd:12:db:39:59:34:7a:80:d2:9c:81: 5d:6a:a7:af:ed:9f:56:c6:3e:17:6b:6c:3b:33:21:c5:29:c7: f6:db:09:3a:14:35:93:2e:c9:f5:49:51:1a:f4:71:e9:9d:a2: 81:f7:82:d6:59:ac:d5:48:fc:96:f6:1f:cc:5b:69:cc:0b:2b: ab:08:23:74:97:b3:26:e7:f6:36:2d:bc:4a:08:4c:66:c1:92: 62:46:1e:3c:1e:01:1b:15:82:49:55:82:17:55:7c:33:41:fe: d2:b9:01:81:7e:c9:7d:1a:e8:07:e9:b4:db:02:7a:e5:6f:64: 85:67:3e:b2:92:77:9a:5a:01:03:b3:a6:c0:c7:03:d3:d2:bd: 25:97:22:4c:2a:05:97:0c:96:13:19:18:2a:00:c8:e2:ba:e9: ff:4c:86:c3:14:3e:4b:03:ed:a5:53:71:cf:91:f0:e2:fb:08: 09:a0:cc:49 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUE8h5YMouO6j12JqvISBmZJO3dJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA2MDUxOTUzMTFaFw0yNzA2MDQxOTU4MTFaMDMxMTAvBgNV BAMTKEJDN0IyMTdBRDExMzIwOUJDN0E4Njg4Qjg3QUE5OTc3M0Q0Q0E3OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD/FDjtkcPFvY9Hqme35Hl28zoO 4O+nlOTEKynT9t21wbg97Y2LpD+aPeZaXAiEBmNrCC5GjK29SyWHt77iOMKEZMag rqYmSCo0y7kwmfYSr0Qdp/NVKo5KdRUQUfqeGV6fOjlCriD6i4W3ZCS7ed6vMCpT BeKfEptc8xQ5PUsNlqd98KY5cPHwhJSh5tnsb25IkAYAs9U4gUurPhcirBBX4ODM 3fZiP311eAJYU8u3PPJZvx2T94j5dlEmnK/E/kxu7wj+tC+I2K/PzMXrxhaWaY4s 6vVNqvszKntlMyNL3f+DPQ5CVHv64mVqxz+4/pbi8wvhUsj9mvEcdVXh2MMLAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUvHshetETIJvHqGiLh6qZdz1Mp4owHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTMyMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY4gMA0GCSqGSIb3DQEB CwUAA4IBAQA2mDRlhaTzyq2gjwTByvQ/j3Iq2hYQqecvkbQXyeCQJLooZjNyaD2e Cah1FebA1WzRdgkb1a7enTn64sgyIV/FSvVMR9aJTJlaQiAKudwwvRLbOVk0eoDS nIFdaqev7Z9Wxj4Xa2w7MyHFKcf22wk6FDWTLsn1SVEa9HHpnaKB94LWWazVSPyW 9h/MW2nMCyurCCN0l7Mm5/Y2LbxKCExmwZJiRh48HgEbFYJJVYIXVXwzQf7SuQGB fsl9GugH6bTbAnrlb2SFZz6ykneaWgEDs6bAxwPT0r0llyJMKgWXDJYTGRgqAMji uun/TIbDFD5LA+2lU3HPkfDi+wgJoMxJ -----END CERTIFICATE-----Generated at Fri Jun 12 01:10:47 2026 by rpki-client