$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386563303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386563303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: 3OfkKwNSUq4yIbyS7EkCP2uCgeHqAJ6wd8O6l2GgwTo= Subject key identifier: A3:AE:BC:57:0A:95:44:22:E6:2C:8A:AC:30:0B:36:EF:77:71:62:02 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 6B59BF93474DAD0C256AF66BB0ED40503AC6CC35 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386563303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:53 +0000 ROA not before: Fri 04 Jul 2025 19:47:53 +0000 ROA not after: Fri 03 Jul 2026 19:52:53 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8ec0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:59:bf:93:47:4d:ad:0c:25:6a:f6:6b:b0:ed:40:50:3a:c6:cc:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:53 2025 GMT Not After : Jul 3 19:52:53 2026 GMT Subject: CN=A3AEBC570A954422E62C8AAC300B36EF77716202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:04:b8:38:d8:df:2a:bf:de:3d:c9:51:fa:8d: f6:f9:7f:8a:a1:6e:f5:f9:d9:56:f5:56:97:ce:fb: 8f:e5:08:c0:d1:0d:88:2e:b0:74:a2:22:e9:0b:69: 6d:83:c8:cd:62:e4:1a:fe:25:65:9a:32:8d:86:62: 2e:f4:67:54:a1:44:e7:34:0e:34:b6:e4:90:16:46: cd:d0:c8:bb:c0:6a:7d:01:fd:63:90:cc:bf:9f:5f: c9:c0:57:1b:ab:45:c2:ea:27:f5:ef:2d:cf:aa:c1: 96:7e:8a:0e:75:3b:93:c2:c6:46:da:c3:ca:66:c0: 6a:30:f6:ad:fd:9c:1f:0b:98:e1:25:5b:71:0a:ff: 50:24:03:f5:c2:a9:09:e9:bb:40:c5:f2:4a:1d:71: 32:c0:ca:18:0b:19:52:f3:98:28:63:bf:36:67:c0: c1:fc:43:94:34:ab:69:19:ca:98:3c:83:7a:5b:d6: c8:60:7a:40:b8:69:c2:1d:26:ff:cf:5c:20:4c:b3: 30:c3:0a:9d:bf:d8:e6:c6:7b:37:52:11:f6:ab:2c: 23:df:16:3f:15:c4:ea:70:08:ea:53:10:71:82:ea: 3e:5a:c3:b0:17:3d:93:0e:0f:66:d9:10:cd:c5:b4: 1d:ec:55:4f:67:0a:6c:c2:63:29:67:09:0d:d0:ac: 33:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AE:BC:57:0A:95:44:22:E6:2C:8A:AC:30:0B:36:EF:77:71:62:02 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386563303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8ec0::/44 Signature Algorithm: sha256WithRSAEncryption 79:ab:86:57:2b:93:5f:07:96:ae:11:7b:87:8b:89:ce:41:5f: 14:e4:5b:1e:53:87:e3:aa:17:0c:29:c2:3f:f8:88:ac:2e:cb: f8:5a:2b:4e:55:18:c8:f9:76:41:2c:ca:03:ba:19:57:8d:86: 96:a6:fb:9a:c3:27:61:49:f4:3a:26:1d:63:26:ad:e5:99:fd: b6:c3:7f:69:d5:a3:26:e2:b4:60:ca:93:a1:20:d3:7b:47:fd: 2d:11:72:da:24:17:71:f6:cf:a0:0a:30:ab:91:fd:cb:5c:22: b2:24:9d:ab:ae:a3:72:8d:f7:1a:7e:cc:16:7a:e2:ce:7a:60: 0d:4c:c6:91:65:dd:65:a5:7a:0a:65:39:bc:6d:0b:ad:a2:89: e4:58:69:ee:3b:d8:5f:2b:28:c4:5b:76:af:23:1c:6b:39:a9: 28:e5:c6:50:78:8d:95:c9:68:9a:1b:58:2c:4c:ce:ef:57:83: c1:36:f7:82:f2:82:65:39:37:d0:c2:3e:b8:09:9f:83:a2:ba: 5f:87:a7:2f:bf:9f:fa:9c:75:8d:8b:d9:37:c8:30:ce:d3:b7: 45:02:c5:bb:65:b1:57:8a:bd:c9:2d:c7:ce:f5:5b:c7:0f:53: 61:d7:76:37:ec:e3:06:27:e1:59:a6:0e:3f:71:52:42:cb:e8: bc:8a:69:01 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUa1m/k0dNrQwlavZrsO1AUDrGzDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTNaFw0yNjA3MDMxOTUyNTNaMDMxMTAvBgNV BAMTKEEzQUVCQzU3MEE5NTQ0MjJFNjJDOEFBQzMwMEIzNkVGNzc3MTYyMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9BLg42N8qv949yVH6jfb5f4qh bvX52Vb1VpfO+4/lCMDRDYgusHSiIukLaW2DyM1i5Br+JWWaMo2GYi70Z1ShROc0 DjS25JAWRs3QyLvAan0B/WOQzL+fX8nAVxurRcLqJ/XvLc+qwZZ+ig51O5PCxkba w8pmwGow9q39nB8LmOElW3EK/1AkA/XCqQnpu0DF8kodcTLAyhgLGVLzmChjvzZn wMH8Q5Q0q2kZypg8g3pb1shgekC4acIdJv/PXCBMszDDCp2/2ObGezdSEfarLCPf Fj8VxOpwCOpTEHGC6j5aw7AXPZMOD2bZEM3FtB3sVU9nCmzCYylnCQ3QrDNxAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUo668VwqVRCLmLIqsMAs273dxYgIwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTYzMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY7AMA0GCSqGSIb3DQEB CwUAA4IBAQB5q4ZXK5NfB5auEXuHi4nOQV8U5FseU4fjqhcMKcI/+IisLsv4WitO VRjI+XZBLMoDuhlXjYaWpvuawydhSfQ6Jh1jJq3lmf22w39p1aMm4rRgypOhINN7 R/0tEXLaJBdx9s+gCjCrkf3LXCKyJJ2rrqNyjfcafswWeuLOemANTMaRZd1lpXoK ZTm8bQutoonkWGnuO9hfKyjEW3avIxxrOako5cZQeI2VyWiaG1gsTM7vV4PBNveC 8oJlOTfQwj64CZ+Dorpfh6cvv5/6nHWNi9k3yDDO07dFAsW7ZbFXir3JLcfO9VvH D1Nh13Y37OMGJ+FZpg4/cVJCy+i8imkB -----END CERTIFICATE-----Generated at Sat Jul 5 12:56:15 2025 by rpki-client