$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: Ak8zkEYi1oEi/oeJzu452sjFwTtK4sdKPFAGjU4iI90= Subject key identifier: 42:0D:F7:AD:3B:2E:0B:CA:2B:50:FD:83:B2:FD:17:98:E6:8B:1A:04 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 6D95C53A54C12DED8DFC0FCF5B6372890196463F Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:53 +0000 ROA not before: Fri 04 Jul 2025 19:47:53 +0000 ROA not after: Fri 03 Jul 2026 19:52:53 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8ed0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:95:c5:3a:54:c1:2d:ed:8d:fc:0f:cf:5b:63:72:89:01:96:46:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:53 2025 GMT Not After : Jul 3 19:52:53 2026 GMT Subject: CN=420DF7AD3B2E0BCA2B50FD83B2FD1798E68B1A04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c8:99:b4:32:5b:e2:85:6a:a3:e9:87:5b:6b: c7:4c:44:66:c4:32:73:33:ca:f8:3e:8c:69:2e:ec: 0b:28:bf:75:4e:0d:35:8d:ee:81:2c:57:0a:d7:11: 0d:89:73:bc:86:9d:44:48:e1:50:e2:96:a4:be:c4: 56:35:43:ee:23:f1:e3:ab:6e:6c:d6:72:a5:c9:b5: 6c:c9:88:c2:0d:ff:78:47:22:61:6a:a6:17:4c:fb: 34:71:ee:c2:70:98:c7:fe:26:8b:bd:4d:80:0f:3f: ee:4e:51:df:e1:53:ac:a4:18:2c:5d:f0:81:28:0b: a9:07:95:7e:86:d3:9d:c9:d5:08:c2:cd:46:20:32: 27:9b:e2:1a:46:54:75:5e:07:7b:71:c0:f5:81:ca: 44:b3:6d:57:44:22:1b:fa:81:9f:1d:16:00:26:4c: 0f:87:76:75:68:dc:69:39:0d:19:b2:8d:ff:3f:95: 60:73:08:cf:e9:25:73:95:3f:4d:f7:79:19:08:b1: 99:44:c8:95:57:7c:39:a6:67:55:59:e7:15:b2:95: 22:32:fe:cd:00:0a:a4:7d:c1:50:ef:ef:8a:a1:fe: aa:59:de:7f:5d:9d:98:3a:57:53:de:02:4b:bb:05: 44:53:c2:5e:4c:d0:0f:e5:c1:2d:66:14:7d:30:3c: 55:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0D:F7:AD:3B:2E:0B:CA:2B:50:FD:83:B2:FD:17:98:E6:8B:1A:04 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8ed0::/44 Signature Algorithm: sha256WithRSAEncryption 0b:e1:06:82:05:66:c6:1a:5b:44:81:f0:58:e4:74:19:35:d6: 99:e0:14:ee:29:84:d2:53:27:20:bb:53:f0:1e:1a:f9:87:19: 84:a9:c1:3f:78:b5:52:2b:f5:2b:76:ae:5a:de:1f:a1:d7:0c: fa:fd:bd:f0:8a:f2:13:2b:5e:00:df:7b:79:03:91:bc:75:53: 26:f1:8a:af:ee:ad:66:8a:74:e4:77:38:c2:14:85:e1:4e:8f: 03:2e:69:16:1b:98:85:a9:9f:68:13:23:86:5c:f7:4b:53:2d: eb:bb:63:36:d2:fd:ae:f3:bc:45:f5:1f:ac:d6:fd:0d:3b:18: 97:4a:e9:b4:c1:94:1f:6a:3d:42:e1:cd:d3:5e:3d:21:e6:f6: fc:84:92:e9:72:7d:cc:9c:05:4d:a3:47:04:b6:0d:64:4a:e3: 23:40:27:0b:42:d5:35:38:e6:1c:7c:95:2d:69:f4:0a:3e:cf: 27:30:98:3f:37:88:83:d4:4a:dd:83:d7:47:1a:2f:f0:c3:96: e4:ab:9b:49:af:87:14:c4:37:83:2c:55:8d:1e:69:82:31:6c: b9:97:bb:ba:4f:2b:1c:bf:ba:2a:dc:41:47:24:b3:09:db:82: 9c:54:12:04:78:55:d2:6c:7c:d7:94:a1:57:43:eb:69:10:f8: ab:78:dd:99 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUbZXFOlTBLe2N/A/PW2NyiQGWRj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTNaFw0yNjA3MDMxOTUyNTNaMDMxMTAvBgNV BAMTKDQyMERGN0FEM0IyRTBCQ0EyQjUwRkQ4M0IyRkQxNzk4RTY4QjFBMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwyJm0MlvihWqj6Ydba8dMRGbE MnMzyvg+jGku7Asov3VODTWN7oEsVwrXEQ2Jc7yGnURI4VDilqS+xFY1Q+4j8eOr bmzWcqXJtWzJiMIN/3hHImFqphdM+zRx7sJwmMf+Jou9TYAPP+5OUd/hU6ykGCxd 8IEoC6kHlX6G053J1QjCzUYgMieb4hpGVHVeB3txwPWBykSzbVdEIhv6gZ8dFgAm TA+HdnVo3Gk5DRmyjf8/lWBzCM/pJXOVP033eRkIsZlEyJVXfDmmZ1VZ5xWylSIy /s0ACqR9wVDv74qh/qpZ3n9dnZg6V1PeAku7BURTwl5M0A/lwS1mFH0wPFVTAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUQg33rTsuC8orUP2Dsv0XmOaLGgQwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTY0MzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY7QMA0GCSqGSIb3DQEB CwUAA4IBAQAL4QaCBWbGGltEgfBY5HQZNdaZ4BTuKYTSUycgu1PwHhr5hxmEqcE/ eLVSK/Urdq5a3h+h1wz6/b3wivITK14A33t5A5G8dVMm8Yqv7q1minTkdzjCFIXh To8DLmkWG5iFqZ9oEyOGXPdLUy3ru2M20v2u87xF9R+s1v0NOxiXSum0wZQfaj1C 4c3TXj0h5vb8hJLpcn3MnAVNo0cEtg1kSuMjQCcLQtU1OOYcfJUtafQKPs8nMJg/ N4iD1Erdg9dHGi/ww5bkq5tJr4cUxDeDLFWNHmmCMWy5l7u6Tyscv7oq3EFHJLMJ 24KcVBIEeFXSbHzXlKFXQ+tpEPireN2Z -----END CERTIFICATE-----Generated at Sat Jul 5 12:52:09 2025 by rpki-client