$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386563303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386563303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: RpDgbu6p4SFhXpdROcqcb1DRBdp7/jz735MRw2n1nB0= Subject key identifier: 90:1B:7D:7A:E3:1F:0D:50:FD:3C:58:F5:7F:C5:1A:9E:22:C2:E7:23 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 2037A31F5A38CAC857B65A537DAFD22D4069C5BE Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386563303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 05 Jun 2026 19:58:12 +0000 ROA not before: Fri 05 Jun 2026 19:53:12 +0000 ROA not after: Fri 04 Jun 2027 19:58:12 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8ec0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 07:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:37:a3:1f:5a:38:ca:c8:57:b6:5a:53:7d:af:d2:2d:40:69:c5:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jun 5 19:53:12 2026 GMT Not After : Jun 4 19:58:12 2027 GMT Subject: CN=901B7D7AE31F0D50FD3C58F57FC51A9E22C2E723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:11:31:da:0e:c0:38:25:64:db:4c:85:ed:3d: 85:e5:eb:87:8a:71:0a:e7:44:11:41:b5:a7:5e:b9: 9c:40:4e:65:da:3d:52:0a:e6:3b:41:d6:5d:12:ac: fa:60:c6:ea:f2:bb:81:b0:66:0d:f9:49:0b:57:2b: cd:3c:2a:2e:8a:06:48:70:73:09:0b:66:12:c8:af: e2:3a:64:19:aa:41:4c:97:51:d1:bc:bb:e1:60:5e: 78:c6:73:f3:ba:ba:6c:e6:48:90:1b:74:e4:fa:53: aa:bb:de:1b:f0:f3:bc:f4:cb:11:7a:31:dc:ba:fd: d1:44:73:87:24:59:41:fd:71:f3:d3:1c:92:9c:af: cd:40:70:ec:dc:9f:e3:86:05:13:bc:95:72:3b:34: 3e:ad:7d:b1:16:4c:8f:43:49:b8:b3:74:68:54:77: 60:36:30:c0:ec:f3:73:7c:2c:25:b4:8d:f3:06:ab: 7e:a5:dc:06:9d:fd:3d:b5:45:55:e4:15:f9:38:f8: 5b:f7:86:64:89:18:a8:98:e2:35:ca:7e:49:b4:28: 8b:b0:3a:58:93:18:3c:05:26:c0:c4:90:80:ac:8e: 18:bc:e9:e1:cc:c6:be:91:6b:f4:d1:cb:2d:b7:7f: 97:16:7e:ce:a7:d5:38:b1:61:2d:83:43:e0:c2:cf: b9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:1B:7D:7A:E3:1F:0D:50:FD:3C:58:F5:7F:C5:1A:9E:22:C2:E7:23 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386563303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8ec0::/44 Signature Algorithm: sha256WithRSAEncryption 08:30:81:ef:8a:16:12:59:b6:c2:7d:1e:f0:67:ef:68:c5:f5: fd:d7:8d:73:6a:c4:29:cd:5c:71:85:3b:31:10:bd:da:aa:79: d1:27:1d:a3:ac:7c:4a:0b:12:44:7b:bd:12:d1:7b:b2:6a:d6: 2d:59:c0:01:f8:85:a6:28:69:a0:00:a0:44:a9:bf:81:18:aa: 24:66:9f:35:20:34:8d:0b:98:d3:fa:76:5d:2b:60:e3:2c:a0: 29:56:ec:b3:2d:5f:4b:43:9d:81:bb:f4:ce:9c:5d:46:87:5a: 16:91:93:21:a9:fe:52:39:c4:2e:a4:0e:63:41:66:b8:33:52: c6:b3:16:8d:ef:0a:ac:be:40:41:c8:57:d4:c6:3a:df:39:1d: 9e:c9:89:af:02:7b:5c:7f:32:66:60:b1:e7:7a:ee:33:a7:e2: 25:f0:18:55:c0:de:fb:16:38:05:49:fe:1f:56:c3:37:bf:53: 60:00:a0:b6:bc:b4:03:0d:cf:75:a7:d0:6d:d7:61:a2:41:a2: ee:b9:07:74:e4:42:07:1f:62:f3:fd:4f:c4:7b:11:05:e6:37: ed:fd:af:f5:c6:fa:79:42:68:72:8c:d9:4e:45:8a:5d:cc:00: f8:1c:ee:48:76:fd:76:ed:f9:0f:71:a3:de:b4:8d:1a:c3:78: 43:e4:ca:d2 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUIDejH1o4yshXtlpTfa/SLUBpxb4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA2MDUxOTUzMTJaFw0yNzA2MDQxOTU4MTJaMDMxMTAvBgNV BAMTKDkwMUI3RDdBRTMxRjBENTBGRDNDNThGNTdGQzUxQTlFMjJDMkU3MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyETHaDsA4JWTbTIXtPYXl64eK cQrnRBFBtadeuZxATmXaPVIK5jtB1l0SrPpgxuryu4GwZg35SQtXK808Ki6KBkhw cwkLZhLIr+I6ZBmqQUyXUdG8u+FgXnjGc/O6umzmSJAbdOT6U6q73hvw87z0yxF6 Mdy6/dFEc4ckWUH9cfPTHJKcr81AcOzcn+OGBRO8lXI7ND6tfbEWTI9DSbizdGhU d2A2MMDs83N8LCW0jfMGq36l3Aad/T21RVXkFfk4+Fv3hmSJGKiY4jXKfkm0KIuw OliTGDwFJsDEkICsjhi86eHMxr6Ra/TRyy23f5cWfs6n1TixYS2DQ+DCz7ltAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUkBt9euMfDVD9PFj1f8UaniLC5yMwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTYzMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY7AMA0GCSqGSIb3DQEB CwUAA4IBAQAIMIHvihYSWbbCfR7wZ+9oxfX9141zasQpzVxxhTsxEL3aqnnRJx2j rHxKCxJEe70S0XuyatYtWcAB+IWmKGmgAKBEqb+BGKokZp81IDSNC5jT+nZdK2Dj LKApVuyzLV9LQ52Bu/TOnF1Gh1oWkZMhqf5SOcQupA5jQWa4M1LGsxaN7wqsvkBB yFfUxjrfOR2eyYmvAntcfzJmYLHneu4zp+Il8BhVwN77FjgFSf4fVsM3v1NgAKC2 vLQDDc91p9Bt12GiQaLuuQd05EIHH2Lz/U/EexEF5jft/a/1xvp5QmhyjNlORYpd zAD4HO5Idv127fkPcaPetI0aw3hD5MrS -----END CERTIFICATE-----Generated at Fri Jun 12 01:10:50 2026 by rpki-client