$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386533303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386533303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: hYi+hhHjwGCkmO0X7KADZcFu1u0xzn4wmtuD1vEoPpo= Subject key identifier: B4:E5:0D:ED:DA:1B:40:1D:4F:41:B3:6C:24:19:B7:26:C8:11:BC:46 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 5B4F79EC06BD4D2B686333FB72F730E6E2CD4451 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386533303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:54 +0000 ROA not before: Fri 04 Jul 2025 19:47:54 +0000 ROA not after: Fri 03 Jul 2026 19:52:54 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e30::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:4f:79:ec:06:bd:4d:2b:68:63:33:fb:72:f7:30:e6:e2:cd:44:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:54 2025 GMT Not After : Jul 3 19:52:54 2026 GMT Subject: CN=B4E50DEDDA1B401D4F41B36C2419B726C811BC46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f6:9a:6d:96:d8:e9:43:d1:24:78:e6:d7:c0: 17:a7:4c:ef:f1:fa:0d:7c:53:3b:e9:9a:f3:9f:1e: 4a:2c:c2:b7:f6:44:2a:86:1e:e2:27:58:ca:7d:42: 2c:4a:73:c1:1b:08:d6:56:22:02:c6:0d:d2:0e:83: 13:84:af:9e:8c:b3:a2:61:78:ea:6e:e5:25:53:f4: 81:eb:d8:cf:ba:4d:ce:f2:2f:c8:33:39:77:08:5c: 1b:8a:ce:5a:c6:89:85:08:45:25:7f:04:8e:ec:83: 48:35:d2:47:62:9a:b0:5e:26:51:2d:7a:c4:f3:8e: 9d:cb:1f:0f:cb:76:d6:02:14:46:35:a2:87:c7:cc: f4:19:81:e4:06:7b:3c:08:cb:8d:7c:91:5a:e6:b0: a9:4d:7e:88:12:a9:31:cb:fd:9a:3c:ba:dd:c3:13: ce:2c:94:de:69:9f:db:6e:ec:76:0e:e4:21:b4:09: 29:70:a0:b8:a0:90:11:e6:fe:87:14:fc:79:40:a4: c4:8c:55:46:ca:46:5f:8b:6d:3d:a2:fb:4a:68:2b: 6a:51:59:1b:c6:aa:cc:69:62:47:8f:16:1e:d1:9c: 72:9f:13:a2:56:65:98:83:ae:69:08:c4:16:9e:e2: 28:84:95:70:f0:c3:52:57:ea:fb:92:dd:d8:7f:bf: ae:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E5:0D:ED:DA:1B:40:1D:4F:41:B3:6C:24:19:B7:26:C8:11:BC:46 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386533303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e30::/44 Signature Algorithm: sha256WithRSAEncryption a0:4a:b4:bf:a1:49:9a:48:7e:50:a5:f7:31:6c:4a:5b:e8:e0: fb:b5:e5:27:8d:3f:f9:3d:c6:8c:04:b4:1a:c5:c9:92:2e:3a: 18:25:18:05:19:4a:0c:bd:db:1d:f8:81:0a:75:ef:f1:74:8d: 98:fd:d2:04:4c:80:aa:ef:fe:b3:38:41:62:9d:50:61:d4:c4: 63:0e:1f:f3:72:77:f6:dd:85:47:0f:bc:15:4c:70:3e:7b:3f: ea:64:64:4e:48:2a:46:35:26:1c:4f:83:a7:2c:98:dd:76:6b: 29:5a:0c:e6:96:0e:68:f7:08:40:8a:4d:dd:91:37:2f:a6:ed: a5:9a:ef:61:14:da:91:d8:24:08:28:be:16:4a:7f:f0:15:ae: 15:fa:0f:91:e5:81:fa:5e:ae:d5:00:2a:77:ce:22:d1:ae:8e: 67:da:f8:12:8f:be:f0:04:ab:6d:33:e6:27:5b:e2:40:67:8a: 5f:8c:6f:a7:9d:f7:5a:28:f8:25:11:a7:86:97:89:98:ed:50: 41:2c:12:68:42:b1:5c:bd:d8:5d:a6:73:de:03:45:6b:74:04: 4e:66:37:85:d8:5f:58:71:47:b5:a6:86:3f:2a:35:61:e6:88: 62:1d:8b:3f:ea:79:95:62:64:79:15:f4:93:0d:2f:3a:0b:da: e7:57:c0:c6 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUW0957Aa9TStoYzP7cvcw5uLNRFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTRaFw0yNjA3MDMxOTUyNTRaMDMxMTAvBgNV BAMTKEI0RTUwREVEREExQjQwMUQ0RjQxQjM2QzI0MTlCNzI2QzgxMUJDNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT9pptltjpQ9EkeObXwBenTO/x +g18UzvpmvOfHkoswrf2RCqGHuInWMp9QixKc8EbCNZWIgLGDdIOgxOEr56Ms6Jh eOpu5SVT9IHr2M+6Tc7yL8gzOXcIXBuKzlrGiYUIRSV/BI7sg0g10kdimrBeJlEt esTzjp3LHw/LdtYCFEY1oofHzPQZgeQGezwIy418kVrmsKlNfogSqTHL/Zo8ut3D E84slN5pn9tu7HYO5CG0CSlwoLigkBHm/ocU/HlApMSMVUbKRl+LbT2i+0poK2pR WRvGqsxpYkePFh7RnHKfE6JWZZiDrmkIxBae4iiElXDww1JX6vuS3dh/v67rAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUtOUN7dobQB1PQbNsJBm3JsgRvEYwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTMzMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY4wMA0GCSqGSIb3DQEB CwUAA4IBAQCgSrS/oUmaSH5QpfcxbEpb6OD7teUnjT/5PcaMBLQaxcmSLjoYJRgF GUoMvdsd+IEKde/xdI2Y/dIETICq7/6zOEFinVBh1MRjDh/zcnf23YVHD7wVTHA+ ez/qZGROSCpGNSYcT4OnLJjddmspWgzmlg5o9whAik3dkTcvpu2lmu9hFNqR2CQI KL4WSn/wFa4V+g+R5YH6Xq7VACp3ziLRro5n2vgSj77wBKttM+YnW+JAZ4pfjG+n nfdaKPglEaeGl4mY7VBBLBJoQrFcvdhdpnPeA0VrdAROZjeF2F9YcUe1poY/KjVh 5ohiHYs/6nmVYmR5FfSTDS86C9rnV8DG -----END CERTIFICATE-----Generated at Sat Jul 5 12:59:08 2025 by rpki-client