$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/3/326130613a363034303a646230303a3a2f34302d3438203d3e20323131313531.roa File: 326130613a363034303a646230303a3a2f34302d3438203d3e20323131313531.roa (raw, json) Hash identifier: tfZTODACLawFck6n6yim45qqX0QKQWHGw0OfZn9hHA4= Subject key identifier: 3D:01:B4:1E:5C:53:D2:1F:03:5F:7C:B5:1C:4B:1A:4B:7C:74:A0:99 Certificate issuer: /CN=23D444E7DED3712847CAE2B46DDD886FC2914D54 Certificate serial: 24A36DB98C2C136E583A3115ECC908FABF350044 Authority key identifier: 23:D4:44:E7:DE:D3:71:28:47:CA:E2:B4:6D:DD:88:6F:C2:91:4D:54 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/23D444E7DED3712847CAE2B46DDD886FC2914D54.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/3/326130613a363034303a646230303a3a2f34302d3438203d3e20323131313531.roa Signing time: Tue 18 Mar 2025 20:39:47 +0000 ROA not before: Tue 18 Mar 2025 20:34:47 +0000 ROA not after: Tue 17 Mar 2026 20:39:47 +0000 asID: 211151 IP address blocks: 2a0a:6040:db00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/3/23D444E7DED3712847CAE2B46DDD886FC2914D54.crl rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/3/23D444E7DED3712847CAE2B46DDD886FC2914D54.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/23D444E7DED3712847CAE2B46DDD886FC2914D54.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 14 Apr 2025 17:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:a3:6d:b9:8c:2c:13:6e:58:3a:31:15:ec:c9:08:fa:bf:35:00:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23D444E7DED3712847CAE2B46DDD886FC2914D54 Validity Not Before: Mar 18 20:34:47 2025 GMT Not After : Mar 17 20:39:47 2026 GMT Subject: CN=3D01B41E5C53D21F035F7CB51C4B1A4B7C74A099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:3d:e2:f0:a8:40:15:0c:2b:90:69:09:32:b6: 74:a7:46:b8:2e:84:e3:dc:a0:e9:ac:b1:1e:32:9a: b0:b5:b3:de:43:16:7b:eb:43:df:b9:a1:a6:c7:87: 7b:39:d6:9b:f5:2b:a8:56:0d:3a:a1:96:7d:8d:98: 59:7f:f7:65:6a:a1:77:8e:70:63:57:0c:03:5e:49: fe:0d:14:fb:1d:3d:29:7f:0e:86:0c:56:f7:5c:cc: d8:0c:7c:95:03:08:cd:d8:c4:56:6b:25:ea:9b:9e: c1:2a:86:3b:8f:3d:92:ae:fe:a9:15:5f:f7:30:5b: da:df:8f:cf:1b:a0:ec:93:eb:fb:14:dc:6d:d5:61: a4:97:00:6c:dd:f8:46:5f:4e:e4:13:11:f6:cd:fa: 37:95:30:42:1b:55:16:68:f3:f5:cd:7a:5f:fc:62: 71:cd:06:9f:72:c4:0a:b9:75:22:07:bb:c2:27:7e: 34:e6:9c:87:46:f6:8a:de:ca:35:8e:97:dd:3b:2f: 41:e3:77:12:67:f0:3a:8d:aa:02:cf:93:ff:82:de: ba:6f:6e:40:3b:85:dd:52:ee:38:bd:c2:00:dd:8f: 32:5e:68:28:13:d9:36:48:4b:3a:75:80:4e:15:96: 0c:0c:18:3a:fc:04:c0:b2:1a:02:1e:a1:2c:ff:2a: a7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:01:B4:1E:5C:53:D2:1F:03:5F:7C:B5:1C:4B:1A:4B:7C:74:A0:99 X509v3 Authority Key Identifier: keyid:23:D4:44:E7:DE:D3:71:28:47:CA:E2:B4:6D:DD:88:6F:C2:91:4D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/3/23D444E7DED3712847CAE2B46DDD886FC2914D54.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/23D444E7DED3712847CAE2B46DDD886FC2914D54.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/3/326130613a363034303a646230303a3a2f34302d3438203d3e20323131313531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:db00::/40 Signature Algorithm: sha256WithRSAEncryption 09:5a:16:7f:62:31:15:12:a3:f5:a5:d9:b3:98:84:50:2d:60: b1:76:7a:ac:96:12:a1:7f:7a:48:eb:59:3a:4b:d0:53:e1:00: eb:1d:16:b9:e0:00:47:fa:16:97:45:59:59:dd:32:17:c0:d3: c1:3e:cc:a6:73:f6:a5:7a:8b:1c:72:cc:c1:0f:7a:ba:fb:cc: fb:57:bb:0e:ec:bf:82:a3:90:19:62:99:84:b0:65:0b:5b:25: 93:5e:42:18:6c:d4:99:85:b8:c2:3d:ce:ea:ca:ca:78:6a:c7: ed:b4:89:40:4d:5e:36:bf:00:55:b5:dd:49:35:1e:b0:71:dc: b1:83:88:d2:0a:23:1b:3e:53:35:4a:91:de:3e:73:fc:a0:01: 24:07:1e:57:81:99:e9:06:c5:b8:ca:a8:b9:8f:4c:aa:75:2e: 18:69:ea:7b:e9:e8:88:2a:26:c6:18:68:28:23:c1:87:eb:b8: 2c:e4:c2:80:e9:4c:4a:7a:5c:a8:73:7f:5b:02:e2:5d:da:fc: 3e:97:7a:a0:7e:9d:8e:19:89:68:67:e7:6f:09:60:ac:43:b6: 5d:53:77:e9:59:4d:a8:4f:d3:e4:7d:e8:aa:9d:5e:20:29:c9: 8e:0f:17:af:47:04:9f:cb:41:8a:14:60:52:26:b7:f2:85:48: 9f:63:83:c7 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIUJKNtuYwsE25YOjEV7MkI+r81AEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNENDQ0RTdERUQzNzEyODQ3Q0FFMkI0NkRERDg4NkZD MjkxNEQ1NDAeFw0yNTAzMTgyMDM0NDdaFw0yNjAzMTcyMDM5NDdaMDMxMTAvBgNV BAMTKDNEMDFCNDFFNUM1M0QyMUYwMzVGN0NCNTFDNEIxQTRCN0M3NEEwOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5PeLwqEAVDCuQaQkytnSnRrgu hOPcoOmssR4ymrC1s95DFnvrQ9+5oabHh3s51pv1K6hWDTqhln2NmFl/92VqoXeO cGNXDANeSf4NFPsdPSl/DoYMVvdczNgMfJUDCM3YxFZrJeqbnsEqhjuPPZKu/qkV X/cwW9rfj88boOyT6/sU3G3VYaSXAGzd+EZfTuQTEfbN+jeVMEIbVRZo8/XNel/8 YnHNBp9yxAq5dSIHu8InfjTmnIdG9oreyjWOl907L0HjdxJn8DqNqgLPk/+C3rpv bkA7hd1S7ji9wgDdjzJeaCgT2TZISzp1gE4VlgwMGDr8BMCyGgIeoSz/KqeTAgMB AAGjggJfMIICWzAdBgNVHQ4EFgQUPQG0HlxT0h8DX3y1HEsaS3x0oJkwHwYDVR0j BBgwFoAUI9RE597TcShHyuK0bd2Ib8KRTVQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzEyODI3MWUtYzI2OS00OTU0LTg3ZGItZDE4NGRmMTdm ODVjLzMvMjNENDQ0RTdERUQzNzEyODQ3Q0FFMkI0NkRERDg4NkZDMjkxNEQ1NC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzIzRDQ0NEU3REVEMzcx Mjg0N0NBRTJCNDZEREQ4ODZGQzI5MTRENTQuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2MxMjgyNzFlLWMyNjktNDk1NC04N2RiLWQxODRkZjE3Zjg1 Yy8zLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjQ2MjMwMzAzYTNhMmYzNDMwMmQzNDM4 MjAzZDNlMjAzMjMxMzEzMTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqCmBA2zANBgkqhkiG9w0B AQsFAAOCAQEACVoWf2IxFRKj9aXZs5iEUC1gsXZ6rJYSoX96SOtZOkvQU+EA6x0W ueAAR/oWl0VZWd0yF8DTwT7MpnP2pXqLHHLMwQ96uvvM+1e7Duy/gqOQGWKZhLBl C1slk15CGGzUmYW4wj3O6srKeGrH7bSJQE1eNr8AVbXdSTUesHHcsYOI0gojGz5T NUqR3j5z/KABJAceV4GZ6QbFuMqouY9MqnUuGGnqe+noiComxhhoKCPBh+u4LOTC gOlMSnpcqHN/WwLiXdr8Ppd6oH6djhmJaGfnbwlgrEO2XVN36VlNqE/T5H3oqp1e ICnJjg8Xr0cEn8tBihRgUia38oVIn2ODxw== -----END CERTIFICATE-----Generated at Mon Apr 14 03:30:32 2025 by rpki-client