$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386533303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386533303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: 2wAhM+BEq1T8mNrgHSifJtpZ/nU7E5VzJRp4/TMs7Q4= Subject key identifier: E9:99:8C:4C:80:A2:A9:22:F0:B7:67:6A:2E:87:D4:29:A5:35:CC:9D Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 26DB22977D0A0B2E8BB84FEBF334CEB0FB05BA14 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386533303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 05 Jun 2026 19:58:12 +0000 ROA not before: Fri 05 Jun 2026 19:53:12 +0000 ROA not after: Fri 04 Jun 2027 19:58:12 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e30::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:db:22:97:7d:0a:0b:2e:8b:b8:4f:eb:f3:34:ce:b0:fb:05:ba:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:12 2026 GMT Not After : Jun 4 19:58:12 2027 GMT Subject: CN=E9998C4C80A2A922F0B7676A2E87D429A535CC9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7f:9f:cc:8a:5e:44:c2:bf:f3:64:0e:09:0c: 13:0f:12:63:55:58:aa:4b:d2:6c:05:e4:cd:1a:41: 05:2c:a5:e8:bb:d2:57:1d:d4:85:91:b5:ee:9c:d4: d4:21:2a:11:7c:0d:ae:17:ae:d4:8b:12:85:9b:42: aa:b4:83:bf:cb:48:d7:76:85:f5:b7:10:e8:90:72: 80:81:08:44:55:33:b3:7d:f4:41:1c:4d:98:b4:5c: a0:e8:26:46:61:e9:c6:a3:21:30:10:7c:de:ea:3b: d0:b3:9c:fc:1f:fe:af:78:af:70:bc:93:33:23:0e: cb:f8:76:25:26:a1:d4:0e:e9:41:5c:80:7d:7e:3c: 78:ca:67:08:51:4b:22:ca:60:15:7b:25:cd:e2:9d: c3:13:13:78:93:b9:e0:cb:f8:a0:bb:0b:b8:ef:0b: ee:88:10:e4:2d:bd:4c:1a:12:b2:32:2b:42:b5:75: 6e:0d:20:f8:d9:8c:35:79:f0:3d:07:65:5c:e3:ba: af:19:14:83:8f:8e:5e:40:61:25:fc:95:e8:be:47: fb:5b:26:90:16:ea:a9:05:c0:35:ed:78:8c:14:91: 6b:cd:a1:e1:d1:ee:ab:10:d7:6a:b6:95:20:51:5d: fc:69:cd:1b:38:39:60:a3:3e:f8:84:f6:f8:ca:7d: fa:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:99:8C:4C:80:A2:A9:22:F0:B7:67:6A:2E:87:D4:29:A5:35:CC:9D X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386533303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e30::/44 Signature Algorithm: sha256WithRSAEncryption 90:17:fd:c4:fe:a8:ee:c1:87:af:df:35:a9:87:c1:78:90:f8: e9:69:71:38:28:b4:2e:5c:bf:38:8e:64:00:a0:5a:59:93:82: 4b:7d:97:68:49:30:78:e4:ec:df:df:25:84:cc:b7:d0:0f:4d: 01:66:4f:9f:80:ee:6d:b0:cc:78:cb:83:dd:ed:e8:ad:a0:1e: 75:8a:cb:a6:72:ae:ca:b4:8b:95:39:76:60:d2:c8:a0:e0:54: 77:a4:7a:09:e0:df:fb:89:59:a7:fe:88:67:a6:1c:77:70:08: dc:9a:ff:15:05:91:e2:a0:da:62:a0:3a:d7:55:02:46:f6:48: 04:57:31:e2:39:ca:86:df:a7:94:97:e9:e3:ec:e9:db:15:2e: ef:5f:f5:e0:65:57:72:19:de:dc:5c:59:3e:26:44:f3:ee:c9: 47:95:96:99:4a:46:90:c3:a8:bf:36:56:f2:6f:e9:8b:61:48: 36:bd:b5:65:39:17:ba:c7:43:a9:49:0b:48:05:b6:94:0a:4d: 14:5e:3a:7c:5e:f9:bb:9a:98:d7:37:0c:29:29:38:27:03:b9: b7:63:9d:88:13:86:16:89:60:a9:ab:c9:5b:b6:29:24:63:6d: cf:3e:c2:47:06:ce:dd:16:93:4f:79:01:fc:c8:40:62:9f:78: 40:c5:98:1a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUJtsil30KCy6LuE/r8zTOsPsFuhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA2MDUxOTUzMTJaFw0yNzA2MDQxOTU4MTJaMDMxMTAvBgNV BAMTKEU5OTk4QzRDODBBMkE5MjJGMEI3Njc2QTJFODdENDI5QTUzNUNDOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRf5/Mil5Ewr/zZA4JDBMPEmNV WKpL0mwF5M0aQQUspei70lcd1IWRte6c1NQhKhF8Da4XrtSLEoWbQqq0g7/LSNd2 hfW3EOiQcoCBCERVM7N99EEcTZi0XKDoJkZh6cajITAQfN7qO9CznPwf/q94r3C8 kzMjDsv4diUmodQO6UFcgH1+PHjKZwhRSyLKYBV7Jc3incMTE3iTueDL+KC7C7jv C+6IEOQtvUwaErIyK0K1dW4NIPjZjDV58D0HZVzjuq8ZFIOPjl5AYSX8lei+R/tb JpAW6qkFwDXteIwUkWvNoeHR7qsQ12q2lSBRXfxpzRs4OWCjPviE9vjKffp1AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU6ZmMTICiqSLwt2dqLofUKaU1zJ0wHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTMzMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY4wMA0GCSqGSIb3DQEB CwUAA4IBAQCQF/3E/qjuwYev3zWph8F4kPjpaXE4KLQuXL84jmQAoFpZk4JLfZdo STB45Ozf3yWEzLfQD00BZk+fgO5tsMx4y4Pd7eitoB51isumcq7KtIuVOXZg0sig 4FR3pHoJ4N/7iVmn/ohnphx3cAjcmv8VBZHioNpioDrXVQJG9kgEVzHiOcqG36eU l+nj7OnbFS7vX/XgZVdyGd7cXFk+JkTz7slHlZaZSkaQw6i/Nlbyb+mLYUg2vbVl ORe6x0OpSQtIBbaUCk0UXjp8Xvm7mpjXNwwpKTgnA7m3Y52IE4YWiWCpq8lbtikk Y23PPsJHBs7dFpNPeQH8yEBin3hAxZga -----END CERTIFICATE-----Generated at Fri Jun 12 01:10:50 2026 by rpki-client