$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386539323a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a386539323a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: gj0Gzfks/cPBdYB3/pnBBK2j+ZpCfM6Bu3K1bjoU4UA= Subject key identifier: 57:DB:FB:6F:40:7C:BC:C6:48:D0:48:D1:23:E1:8A:11:E4:FC:CE:58 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 5F6AB2C0DD7BD564DAB227CD586CBE49C70DDDEE Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386539323a3a2f34382d3438203d3e203538333339.roa Signing time: Sun 29 Mar 2026 05:33:09 +0000 ROA not before: Sun 29 Mar 2026 05:28:09 +0000 ROA not after: Sun 28 Mar 2027 05:33:09 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e92::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 11 Apr 2026 22:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:6a:b2:c0:dd:7b:d5:64:da:b2:27:cd:58:6c:be:49:c7:0d:dd:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Mar 29 05:28:09 2026 GMT Not After : Mar 28 05:33:09 2027 GMT Subject: CN=57DBFB6F407CBCC648D048D123E18A11E4FCCE58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1f:72:9d:6f:03:30:fb:d6:1d:f2:27:84:51: 83:9d:05:5d:3c:b7:90:83:8d:c1:b6:a9:84:e3:85: 1a:c5:06:90:b5:e7:d1:61:47:e9:14:e8:ec:78:c3: ba:38:b5:f9:3e:50:4e:e5:f9:f0:da:fd:0d:74:3a: 10:f3:56:a6:4c:73:c1:5d:30:1e:28:cc:27:70:09: e9:d7:b6:f1:af:af:29:d6:d6:5a:2b:58:7f:46:96: 40:c2:5b:81:87:88:1b:08:b7:3b:c4:04:0e:02:cf: b2:53:85:37:4e:7d:f7:39:a3:3d:66:0c:b6:9c:0d: b0:51:51:61:d3:b9:07:33:88:0f:d6:fd:07:cb:49: ed:03:fc:a0:8a:4f:c3:40:42:99:fb:d2:83:86:69: 0d:53:d5:69:d8:ec:1e:88:7b:03:fa:da:2d:a0:af: f3:aa:8a:5b:ab:a0:92:93:28:95:a7:b0:7f:54:b5: a2:53:81:be:41:1d:b5:d8:87:17:d0:e7:77:b2:ee: 80:70:9a:23:f4:5d:59:cf:43:85:0c:3f:7e:f9:16: 9b:e4:9d:d3:66:fc:13:e8:7e:00:fe:63:af:64:0f: c8:aa:b9:31:73:2c:5a:8a:14:56:da:20:ee:5a:c5: 31:33:e1:88:43:8d:87:ed:a0:98:ef:38:54:1d:7f: 7e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:DB:FB:6F:40:7C:BC:C6:48:D0:48:D1:23:E1:8A:11:E4:FC:CE:58 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386539323a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e92::/48 Signature Algorithm: sha256WithRSAEncryption 28:4c:fb:e0:db:47:89:39:1a:43:15:04:99:1b:ef:e9:44:df: 38:9b:0a:1c:55:b9:8c:c8:43:0d:3a:1d:3c:de:29:5c:16:c6: 6e:1d:43:c2:f8:77:52:89:b7:27:3a:8c:8c:ae:60:21:f3:00: ba:74:33:23:d2:87:74:e7:97:2b:f6:64:2c:3d:ff:8f:ad:64: 42:9d:33:bb:4d:e0:bf:89:02:bd:20:e0:07:b2:79:5b:ca:02: ac:76:6c:26:31:02:c0:77:14:4f:45:6a:87:53:84:93:cc:7e: 85:cd:7b:18:a9:dc:c8:28:2f:5f:16:18:10:92:a8:11:c9:54: 8a:30:ef:17:93:f9:b7:18:f5:9f:99:63:6b:e8:e7:9a:32:b7: 47:b0:23:63:5c:a0:03:29:4e:52:b6:13:2d:a1:63:e4:da:30: 0d:80:ef:52:4e:26:33:36:8f:53:f9:b3:f9:50:9a:a4:ee:65: 5b:10:f6:96:a7:e6:c0:d7:4d:31:31:8d:ba:af:ad:b9:c6:ff: 00:1c:dd:ca:58:0f:3a:c2:7e:34:24:de:b3:ad:46:ff:79:e2: 55:64:9b:f9:85:d5:9e:dd:9a:5d:79:85:a2:58:70:de:8d:c4: e6:42:37:d0:d5:8b:b3:58:fc:94:a5:01:ec:77:95:37:23:ee: 48:bf:6a:93 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUX2qywN171WTasifNWGy+SccN3e4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjAzMjkwNTI4MDlaFw0yNzAzMjgwNTMzMDlaMDMxMTAvBgNV BAMTKDU3REJGQjZGNDA3Q0JDQzY0OEQwNDhEMTIzRTE4QTExRTRGQ0NFNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTH3KdbwMw+9Yd8ieEUYOdBV08 t5CDjcG2qYTjhRrFBpC159FhR+kU6Ox4w7o4tfk+UE7l+fDa/Q10OhDzVqZMc8Fd MB4ozCdwCenXtvGvrynW1lorWH9GlkDCW4GHiBsItzvEBA4Cz7JThTdOffc5oz1m DLacDbBRUWHTuQcziA/W/QfLSe0D/KCKT8NAQpn70oOGaQ1T1WnY7B6IewP62i2g r/OqiluroJKTKJWnsH9UtaJTgb5BHbXYhxfQ53ey7oBwmiP0XVnPQ4UMP375Fpvk ndNm/BPofgD+Y69kD8iquTFzLFqKFFbaIO5axTEz4YhDjYftoJjvOFQdf35HAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUV9v7b0B8vMZI0EjRI+GKEeT8zlgwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTM5MzIzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwY6SMA0GCSqGSIb3DQEB CwUAA4IBAQAoTPvg20eJORpDFQSZG+/pRN84mwocVbmMyEMNOh083ilcFsZuHUPC +HdSibcnOoyMrmAh8wC6dDMj0od055cr9mQsPf+PrWRCnTO7TeC/iQK9IOAHsnlb ygKsdmwmMQLAdxRPRWqHU4STzH6FzXsYqdzIKC9fFhgQkqgRyVSKMO8Xk/m3GPWf mWNr6OeaMrdHsCNjXKADKU5SthMtoWPk2jANgO9STiYzNo9T+bP5UJqk7mVbEPaW p+bA100xMY26r625xv8AHN3KWA86wn40JN6zrUb/eeJVZJv5hdWe3ZpdeYWiWHDe jcTmQjfQ1YuzWPyUpQHsd5U3I+5Iv2qT -----END CERTIFICATE-----Generated at Sat Apr 11 11:45:24 2026 by rpki-client