$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: JONv6weNpLYIoVclohZCDU/ZppdNC1Kw68H19t2Odek= Subject key identifier: 78:92:03:94:B3:DC:14:E1:6F:D9:B5:3D:F8:5C:33:66:83:F9:2D:9A Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 782DEFCCD28982CC85357686A8996E3AEE6ACB68 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:54 +0000 ROA not before: Fri 04 Jul 2025 19:47:54 +0000 ROA not after: Fri 03 Jul 2026 19:52:54 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e20::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:2d:ef:cc:d2:89:82:cc:85:35:76:86:a8:99:6e:3a:ee:6a:cb:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:54 2025 GMT Not After : Jul 3 19:52:54 2026 GMT Subject: CN=78920394B3DC14E16FD9B53DF85C336683F92D9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:90:c6:36:b3:b1:46:5d:90:62:c3:3b:23:33: 4d:9c:a2:fd:f6:28:42:44:ed:13:c6:2a:c4:ec:8c: cb:53:f5:43:9d:26:cb:1e:63:51:51:5b:7f:bf:c5: 75:75:0a:78:74:3d:2b:f1:9b:54:b4:85:62:d1:5b: 14:99:fe:c5:79:7f:e7:50:5a:b5:fb:9f:b8:ac:c7: 74:5e:b8:cc:5c:d4:fb:de:03:03:cf:b1:8d:77:a0: f6:72:b3:f5:39:02:28:74:d5:8f:05:f7:4b:a4:28: ae:d3:dc:7d:20:06:86:88:1b:29:a1:19:50:18:0d: a4:a0:db:c2:77:30:c1:d4:9d:f2:a8:1c:75:56:79: bf:83:70:4d:ff:ab:73:29:11:14:51:55:46:e9:ee: a3:a4:e6:d1:38:a0:19:72:c7:90:e4:47:d6:e2:0f: c4:7f:b5:82:6b:9f:98:6a:f2:f8:63:3a:d1:85:45: f4:28:b1:6e:3b:b9:69:8d:a3:8c:54:62:d3:9d:1c: 1d:4e:a6:23:c9:04:fc:0e:e4:a7:54:fe:1e:b4:77: 46:3c:33:b9:ab:66:fb:5d:a7:b4:8d:96:54:cc:fa: 2b:a0:b2:79:23:a6:9d:96:4b:11:bf:0e:40:83:03: 5f:25:2f:eb:2e:43:bf:43:86:21:87:8e:7b:70:21: 77:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:92:03:94:B3:DC:14:E1:6F:D9:B5:3D:F8:5C:33:66:83:F9:2D:9A X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e20::/44 Signature Algorithm: sha256WithRSAEncryption 92:da:6e:50:26:22:00:35:e2:74:d6:d6:2a:51:12:1b:a6:8d: 52:54:72:3d:82:9d:7f:d9:35:44:be:e7:e7:a4:9b:0e:eb:e9: 63:a3:2a:fb:61:13:7c:9e:1e:95:d3:67:8f:c4:7c:12:8a:55: 1a:52:36:be:a8:54:18:b7:44:69:fe:b2:29:4b:9f:7a:8d:22: 44:50:cf:97:84:21:55:7b:0c:95:78:20:64:7c:f1:56:12:6e: 31:44:bd:25:59:f1:71:a8:a8:6e:ca:c9:34:e2:c4:2d:14:48: 51:5e:23:21:3d:83:d6:c5:83:17:fd:f4:3b:ed:da:a5:0a:b5: c0:d3:45:3b:13:bc:89:c7:fd:33:f9:c7:b4:12:af:c3:43:42: 6e:05:96:03:42:13:dc:f5:1f:0a:70:b3:0d:96:eb:5f:bf:ae: 33:09:9e:92:9a:c6:ef:7f:e9:b5:f1:03:a4:aa:17:90:d6:8c: b3:81:04:ea:4b:6d:03:ec:2d:c5:33:64:02:0d:a4:2e:c8:d5: 48:d4:4c:70:05:9d:e4:e1:20:81:e5:c0:1f:b0:a0:79:d0:0d: d5:db:77:e1:21:54:02:93:aa:21:64:c8:e3:20:77:3f:44:c7: ce:98:0d:43:98:5a:27:4c:f1:0c:49:98:8e:16:b0:ff:0f:6f: 8d:05:18:1e -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUeC3vzNKJgsyFNXaGqJluOu5qy2gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTRaFw0yNjA3MDMxOTUyNTRaMDMxMTAvBgNV BAMTKDc4OTIwMzk0QjNEQzE0RTE2RkQ5QjUzREY4NUMzMzY2ODNGOTJEOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTkMY2s7FGXZBiwzsjM02cov32 KEJE7RPGKsTsjMtT9UOdJsseY1FRW3+/xXV1Cnh0PSvxm1S0hWLRWxSZ/sV5f+dQ WrX7n7isx3ReuMxc1PveAwPPsY13oPZys/U5Aih01Y8F90ukKK7T3H0gBoaIGymh GVAYDaSg28J3MMHUnfKoHHVWeb+DcE3/q3MpERRRVUbp7qOk5tE4oBlyx5DkR9bi D8R/tYJrn5hq8vhjOtGFRfQosW47uWmNo4xUYtOdHB1OpiPJBPwO5KdU/h60d0Y8 M7mrZvtdp7SNllTM+iugsnkjpp2WSxG/DkCDA18lL+suQ79DhiGHjntwIXdTAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUeJIDlLPcFOFv2bU9+FwzZoP5LZowHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTMyMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY4gMA0GCSqGSIb3DQEB CwUAA4IBAQCS2m5QJiIANeJ01tYqURIbpo1SVHI9gp1/2TVEvufnpJsO6+ljoyr7 YRN8nh6V02ePxHwSilUaUja+qFQYt0Rp/rIpS596jSJEUM+XhCFVewyVeCBkfPFW Em4xRL0lWfFxqKhuysk04sQtFEhRXiMhPYPWxYMX/fQ77dqlCrXA00U7E7yJx/0z +ce0Eq/DQ0JuBZYDQhPc9R8KcLMNlutfv64zCZ6Smsbvf+m18QOkqheQ1oyzgQTq S20D7C3FM2QCDaQuyNVI1ExwBZ3k4SCB5cAfsKB50A3V23fhIVQCk6ohZMjjIHc/ RMfOmA1DmFonTPEMSZiOFrD/D2+NBRge -----END CERTIFICATE-----Generated at Sat Jul 5 12:56:15 2025 by rpki-client