$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386565303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386565303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: WioV+sq94xvUsWsll+5Q8EkQ36B8/m9RnTH6oRqpj+8= Subject key identifier: 88:99:6B:BB:5F:84:3B:6C:00:35:1E:B1:9D:78:1F:1C:72:EE:27:63 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 22B38192F1EEF62335F14FCC8B1CF2D6DE9CC000 Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386565303a3a2f34342d3434203d3e203538333339.roa Signing time: Fri 04 Jul 2025 19:52:53 +0000 ROA not before: Fri 04 Jul 2025 19:47:53 +0000 ROA not after: Fri 03 Jul 2026 19:52:53 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8ee0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:b3:81:92:f1:ee:f6:23:35:f1:4f:cc:8b:1c:f2:d6:de:9c:c0:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Jul 4 19:47:53 2025 GMT Not After : Jul 3 19:52:53 2026 GMT Subject: CN=88996BBB5F843B6C00351EB19D781F1C72EE2763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0e:06:f6:e1:96:75:a6:ee:24:99:92:1b:61: f0:74:57:6f:3f:ea:11:4f:ed:a4:05:a8:3b:6d:fb: 6e:b0:7d:65:61:27:f4:6d:bd:76:a2:78:1b:d2:8b: dd:79:05:e0:54:9a:79:7b:3c:4c:8a:b8:5b:23:c8: a3:f1:d5:0f:53:c0:e7:27:77:af:27:95:02:78:08: 6c:12:52:29:da:f3:df:fb:16:ee:fc:80:57:11:a2: f5:dc:8e:42:e1:d7:3d:08:90:36:b6:df:75:f7:d9: 2d:75:30:27:6c:05:35:aa:e2:ab:20:72:4b:d1:20: 5d:d1:6f:a9:c8:36:f8:38:4b:3f:98:df:30:22:97: 6b:f8:a6:c0:b1:a2:4b:d8:77:a7:ae:cc:88:ec:b0: b5:fa:b9:f7:95:d3:28:db:15:8c:c5:a5:ea:ed:99: 75:93:38:d0:7f:76:0b:0b:e2:af:11:55:10:d3:88: 09:07:01:05:e8:b3:41:fd:3b:0d:9f:95:44:cb:60: 86:b4:61:cf:a2:90:2c:24:1e:d0:2f:b2:61:b3:5e: 7a:61:1f:00:7d:30:21:6a:69:94:47:13:a5:56:56: 61:53:ba:e2:5b:d8:97:6c:a6:aa:92:ad:55:92:63: c2:b2:68:b4:ca:53:a4:80:4e:ac:8c:2a:d5:f5:d7: fd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:99:6B:BB:5F:84:3B:6C:00:35:1E:B1:9D:78:1F:1C:72:EE:27:63 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386565303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8ee0::/44 Signature Algorithm: sha256WithRSAEncryption 36:cd:98:c7:13:b8:79:90:0f:e5:6c:12:ce:a9:18:5e:4b:d1: e3:2b:66:0a:6e:0f:da:b9:b0:cc:65:90:dd:0d:7f:ea:fd:9e: 70:6a:98:32:b1:84:64:ec:1e:60:d3:64:a9:4b:c3:00:d5:5e: 79:93:eb:d1:c3:2e:5f:cc:a4:31:7f:64:30:31:37:51:95:4a: aa:4a:62:1c:69:8d:b3:8e:a2:c2:ee:b4:7b:61:12:08:06:7f: fd:ac:ca:8e:f8:df:e5:bf:3d:18:dc:e4:2b:3a:8e:c6:c7:d8: 71:2e:ff:b7:74:8e:dc:1a:c4:ad:9d:c1:31:9b:c6:a3:d6:d1: ce:b5:16:c0:8a:c9:a4:1c:4b:1a:db:c5:bd:ea:3d:f0:11:d8: 00:47:6b:21:ec:7c:f9:a9:a5:97:b0:6a:f6:d6:9e:aa:f4:ac: e1:aa:70:6f:14:7f:8b:02:9d:5e:83:ff:3e:c0:92:e0:18:66: 4c:e7:0e:60:34:43:28:25:1d:8a:2e:34:15:dd:e6:28:a7:8e: c2:67:03:f4:47:ed:3f:98:bc:eb:a5:f2:02:5f:2c:75:35:df: a1:2e:77:d8:09:dd:4b:af:60:7f:0f:bc:28:aa:e9:9a:52:98: b2:4b:e1:ae:15:36:f1:72:ab:10:0e:1d:52:e0:e9:f6:93:9c: 94:88:5f:ec -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUIrOBkvHu9iM18U/Mixzy1t6cwAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNTA3MDQxOTQ3NTNaFw0yNjA3MDMxOTUyNTNaMDMxMTAvBgNV BAMTKDg4OTk2QkJCNUY4NDNCNkMwMDM1MUVCMTlENzgxRjFDNzJFRTI3NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUDgb24ZZ1pu4kmZIbYfB0V28/ 6hFP7aQFqDtt+26wfWVhJ/RtvXaieBvSi915BeBUmnl7PEyKuFsjyKPx1Q9TwOcn d68nlQJ4CGwSUina89/7Fu78gFcRovXcjkLh1z0IkDa233X32S11MCdsBTWq4qsg ckvRIF3Rb6nINvg4Sz+Y3zAil2v4psCxokvYd6euzIjssLX6ufeV0yjbFYzFpert mXWTONB/dgsL4q8RVRDTiAkHAQXos0H9Ow2flUTLYIa0Yc+ikCwkHtAvsmGzXnph HwB9MCFqaZRHE6VWVmFTuuJb2JdspqqSrVWSY8KyaLTKU6SATqyMKtX11/2vAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUiJlru1+EO2wANR6xnXgfHHLuJ2MwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTY1MzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY7gMA0GCSqGSIb3DQEB CwUAA4IBAQA2zZjHE7h5kA/lbBLOqRheS9HjK2YKbg/aubDMZZDdDX/q/Z5wapgy sYRk7B5g02SpS8MA1V55k+vRwy5fzKQxf2QwMTdRlUqqSmIcaY2zjqLC7rR7YRII Bn/9rMqO+N/lvz0Y3OQrOo7Gx9hxLv+3dI7cGsStncExm8aj1tHOtRbAismkHEsa 28W96j3wEdgAR2sh7Hz5qaWXsGr21p6q9KzhqnBvFH+LAp1eg/8+wJLgGGZM5w5g NEMoJR2KLjQV3eYop47CZwP0R+0/mLzrpfICXyx1Nd+hLnfYCd1Lr2B/D7woquma UpiyS+GuFTbxcqsQDh1S4On2k5yUiF/s -----END CERTIFICATE-----Generated at Sat Jul 5 12:53:28 2025 by rpki-client