$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386539303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386539303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: lY8kUvqiJ+AriOnYIKK6OftdT6Hb+ovgk/JosC0yv60= Subject key identifier: C1:B0:25:1C:3E:9B:DA:35:D1:DB:CE:8A:BE:C7:66:7D:D6:6E:D9:85 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 1382069E384F7605FE326133543F1F95610652B9 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386539303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:53 +0000 ROA not before: Fri 04 Jul 2025 19:47:53 +0000 ROA not after: Fri 03 Jul 2026 19:52:53 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e90::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:82:06:9e:38:4f:76:05:fe:32:61:33:54:3f:1f:95:61:06:52:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:53 2025 GMT Not After : Jul 3 19:52:53 2026 GMT Subject: CN=C1B0251C3E9BDA35D1DBCE8ABEC7667DD66ED985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:93:ee:45:c4:33:83:fb:6f:32:2a:c7:48:7f: 27:4a:2f:cf:6f:a5:14:8c:42:87:d7:32:24:b3:64: cb:6f:c8:44:da:2f:ad:39:1e:25:1e:36:fe:61:0d: 27:c4:f7:74:cd:50:2d:e6:64:ce:45:26:85:50:6b: e4:a5:77:ad:e3:27:80:b7:da:b8:8e:ec:f2:35:fe: e2:a9:5d:d8:16:c7:50:94:9c:4d:85:80:dc:a3:ce: d3:1a:79:77:42:1f:e5:58:bd:c0:7d:b3:33:0d:3b: 9c:03:c8:27:c1:25:69:c1:12:7d:0e:6a:96:2b:43: 0a:4f:5e:0f:56:ac:79:2a:39:e7:3e:a7:51:1c:be: de:5d:a5:2c:94:a8:a4:a3:0b:c1:9e:3c:df:66:f2: 7f:b5:7f:c3:c9:fc:af:c9:12:c7:6f:1d:99:f8:5d: 23:69:3e:cf:c4:a7:09:12:69:78:78:28:0e:52:d6: 17:d7:07:8a:a1:89:d0:c6:7e:2a:44:53:d6:50:4e: 32:6d:b1:30:f0:99:3c:40:cd:1c:c7:51:c1:d9:2d: b0:df:56:0a:af:14:07:8f:50:8d:c6:99:34:58:0b: e4:1c:59:89:bd:e9:0d:e1:ea:6a:81:00:08:36:ad: d1:19:46:44:5e:36:94:93:1b:5f:02:d4:58:12:1a: 7f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B0:25:1C:3E:9B:DA:35:D1:DB:CE:8A:BE:C7:66:7D:D6:6E:D9:85 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386539303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e90::/44 Signature Algorithm: sha256WithRSAEncryption 03:40:5f:69:5a:06:03:ae:41:b2:90:87:1e:0f:d7:6f:0f:f2: 55:6e:3c:01:94:d6:e1:2d:6b:30:02:8a:5f:7a:d4:c5:25:99: bd:00:fe:3b:60:e0:88:d5:61:f9:8a:e0:db:da:cf:4e:89:3a: 5d:14:be:89:fb:ee:a0:b3:8b:54:3a:36:d9:d3:e2:3f:18:6d: fa:74:58:1b:e3:eb:dd:8e:03:d4:05:31:86:f7:8f:d4:15:e2: 91:25:e1:29:b2:0d:ba:5d:a4:01:81:9a:23:19:c8:b3:6f:ac: ec:9e:48:9c:91:27:ec:8d:92:bb:df:ed:ae:1a:fb:f5:f7:5e: a6:c3:4b:cf:1b:fd:35:dc:58:39:3e:5c:d9:72:63:be:10:f0: 8c:86:f6:24:62:15:c9:21:7c:75:41:c4:e6:a0:17:c0:9a:d6: 9a:3c:8a:95:93:fe:b4:c8:c0:58:41:b7:c1:ed:07:77:b2:61: de:d4:a3:57:06:2a:00:63:33:bf:46:bf:36:44:e0:02:06:92: 2f:0e:f6:1b:c6:f8:55:79:d7:c5:91:24:73:11:2e:74:a3:52: 11:ad:27:b5:03:b7:07:49:83:1b:c5:cd:5e:6a:69:8f:41:5a: f1:f1:a6:35:1f:63:ba:7d:1d:35:ed:e6:75:b9:ff:b3:c6:0f: d0:a6:e6:45 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUE4IGnjhPdgX+MmEzVD8flWEGUrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTNaFw0yNjA3MDMxOTUyNTNaMDMxMTAvBgNV BAMTKEMxQjAyNTFDM0U5QkRBMzVEMURCQ0U4QUJFQzc2NjdERDY2RUQ5ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdk+5FxDOD+28yKsdIfydKL89v pRSMQofXMiSzZMtvyETaL605HiUeNv5hDSfE93TNUC3mZM5FJoVQa+Sld63jJ4C3 2riO7PI1/uKpXdgWx1CUnE2FgNyjztMaeXdCH+VYvcB9szMNO5wDyCfBJWnBEn0O apYrQwpPXg9WrHkqOec+p1Ecvt5dpSyUqKSjC8GePN9m8n+1f8PJ/K/JEsdvHZn4 XSNpPs/EpwkSaXh4KA5S1hfXB4qhidDGfipEU9ZQTjJtsTDwmTxAzRzHUcHZLbDf VgqvFAePUI3GmTRYC+QcWYm96Q3h6mqBAAg2rdEZRkReNpSTG18C1FgSGn9bAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUwbAlHD6b2jXR286KvsdmfdZu2YUwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTM5MzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY6QMA0GCSqGSIb3DQEB CwUAA4IBAQADQF9pWgYDrkGykIceD9dvD/JVbjwBlNbhLWswAopfetTFJZm9AP47 YOCI1WH5iuDb2s9OiTpdFL6J++6gs4tUOjbZ0+I/GG36dFgb4+vdjgPUBTGG94/U FeKRJeEpsg26XaQBgZojGcizb6zsnkickSfsjZK73+2uGvv1916mw0vPG/013Fg5 PlzZcmO+EPCMhvYkYhXJIXx1QcTmoBfAmtaaPIqVk/60yMBYQbfB7Qd3smHe1KNX BioAYzO/Rr82ROACBpIvDvYbxvhVedfFkSRzES50o1IRrSe1A7cHSYMbxc1eammP QVrx8aY1H2O6fR017eZ1uf+zxg/QpuZF -----END CERTIFICATE-----Generated at Sat Jul 5 12:58:18 2025 by rpki-client