$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386539353a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a386539353a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: m8pc+2xCr3IVbJhvnNOCw+0x7WZfXNugvveo7JfatSY= Subject key identifier: D4:DB:D4:4D:0C:F7:8E:A1:78:DA:53:B6:B1:6A:20:E7:66:A3:14:97 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 277C0195419A9E06066469D35711B9B3074B047F Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386539353a3a2f34382d3438203d3e203538333339.roa Signing time: Sun 29 Mar 2026 05:33:52 +0000 ROA not before: Sun 29 Mar 2026 05:28:52 +0000 ROA not after: Sun 28 Mar 2027 05:33:52 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e95::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 11 Apr 2026 22:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:7c:01:95:41:9a:9e:06:06:64:69:d3:57:11:b9:b3:07:4b:04:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Mar 29 05:28:52 2026 GMT Not After : Mar 28 05:33:52 2027 GMT Subject: CN=D4DBD44D0CF78EA178DA53B6B16A20E766A31497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:84:9a:93:78:98:35:0c:0a:86:1a:ab:3f:5d: c3:66:f9:92:2e:52:99:34:2b:71:ee:de:20:73:e1: 07:b8:2c:62:d1:c8:a3:e1:c1:2a:ec:1b:f8:a8:c7: 03:75:8d:7b:b6:03:37:20:a1:73:97:65:7b:bb:37: 54:17:06:b3:e9:15:11:c8:74:1d:1c:40:d0:48:a4: d8:53:e3:af:bc:a2:9b:35:c4:8b:cb:c7:b2:54:57: 4c:70:21:57:75:d0:87:1b:36:e5:76:9a:71:d5:3f: d8:52:11:b6:cc:59:59:8e:73:15:14:a7:e8:81:15: 4f:12:c9:e8:17:50:e7:37:0d:ca:bc:ef:38:84:f0: 36:cf:8a:70:66:a3:52:f9:3a:ce:3a:4a:e8:c2:c1: a9:a6:19:d5:3f:65:8f:ba:81:2e:71:e2:d9:bf:37: b2:51:be:d6:d5:e8:53:b6:0e:e5:4c:45:61:96:cc: 0e:3b:cd:c9:a5:2a:00:4f:09:e1:35:ae:d2:68:84: 39:aa:a1:83:76:73:09:80:29:fb:a5:a8:88:bf:8f: 69:25:97:32:fd:b8:33:f4:16:95:20:5c:59:68:85: ce:1d:01:cb:e2:e3:26:70:3e:f4:bd:f2:42:43:32: 0b:b3:af:14:51:9d:5e:96:2d:fc:ba:d4:8d:65:01: 6e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DB:D4:4D:0C:F7:8E:A1:78:DA:53:B6:B1:6A:20:E7:66:A3:14:97 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386539353a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e95::/48 Signature Algorithm: sha256WithRSAEncryption 6f:f9:df:0f:81:bc:6d:e1:dd:18:83:80:fa:b6:ef:9f:60:b0: 52:5e:47:29:3a:dc:10:65:88:0d:e8:55:47:ca:1f:6f:bd:ed: 6c:8f:05:16:0e:c3:ca:f9:91:90:fa:1a:51:32:6e:5b:6f:bb: 29:00:ee:5d:d8:30:cc:35:a6:70:65:c1:d5:ee:3f:bd:15:f7: e3:ad:74:8b:8d:59:e0:5e:0f:61:13:56:57:31:f5:26:ed:2e: 61:ca:39:8a:c9:2f:e5:14:ba:32:17:90:00:3b:9d:5f:89:a4: 12:9c:32:eb:18:7f:1c:e0:a4:98:24:5d:33:91:98:55:ad:7f: 21:66:d0:b5:37:ff:0f:b1:a7:a8:ed:01:0a:5d:44:0b:1d:66: 91:db:46:0c:3a:65:88:91:5d:6a:c9:15:63:af:bf:cc:20:04: c3:f2:c8:74:4d:f4:26:10:80:ca:b6:56:6a:9f:4e:98:aa:b4: 08:c2:ad:89:99:e6:5e:53:17:68:1a:56:fc:dc:45:5b:bf:5f: a0:d5:6f:0b:b3:e3:c4:00:09:5d:89:6a:19:2b:04:09:f0:a5: 61:ff:b4:49:27:5e:c3:eb:6f:1f:b7:e1:b8:fb:b7:04:26:be: 48:d4:fe:71:b0:50:26:49:23:aa:e1:e3:46:e4:47:25:c1:db: f8:a5:b1:ef -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUJ3wBlUGangYGZGnTVxG5swdLBH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjAzMjkwNTI4NTJaFw0yNzAzMjgwNTMzNTJaMDMxMTAvBgNV BAMTKEQ0REJENDREMENGNzhFQTE3OERBNTNCNkIxNkEyMEU3NjZBMzE0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDchJqTeJg1DAqGGqs/XcNm+ZIu Upk0K3Hu3iBz4Qe4LGLRyKPhwSrsG/ioxwN1jXu2AzcgoXOXZXu7N1QXBrPpFRHI dB0cQNBIpNhT46+8ops1xIvLx7JUV0xwIVd10IcbNuV2mnHVP9hSEbbMWVmOcxUU p+iBFU8SyegXUOc3Dcq87ziE8DbPinBmo1L5Os46SujCwammGdU/ZY+6gS5x4tm/ N7JRvtbV6FO2DuVMRWGWzA47zcmlKgBPCeE1rtJohDmqoYN2cwmAKfulqIi/j2kl lzL9uDP0FpUgXFlohc4dAcvi4yZwPvS98kJDMguzrxRRnV6WLfy61I1lAW6tAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU1NvUTQz3jqF42lO2sWog52ajFJcwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTM5MzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwY6VMA0GCSqGSIb3DQEB CwUAA4IBAQBv+d8Pgbxt4d0Yg4D6tu+fYLBSXkcpOtwQZYgN6FVHyh9vve1sjwUW DsPK+ZGQ+hpRMm5bb7spAO5d2DDMNaZwZcHV7j+9FffjrXSLjVngXg9hE1ZXMfUm 7S5hyjmKyS/lFLoyF5AAO51fiaQSnDLrGH8c4KSYJF0zkZhVrX8hZtC1N/8Psaeo 7QEKXUQLHWaR20YMOmWIkV1qyRVjr7/MIATD8sh0TfQmEIDKtlZqn06YqrQIwq2J meZeUxdoGlb83EVbv1+g1W8Ls+PEAAldiWoZKwQJ8KVh/7RJJ17D628ft+G4+7cE Jr5I1P5xsFAmSSOq4eNG5Eclwdv4pbHv -----END CERTIFICATE-----Generated at Sat Apr 11 11:45:23 2026 by rpki-client