$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383030303a3a2f34342d3438203d3e20323034323931.roa File: 326130353a646663313a383030303a3a2f34342d3438203d3e20323034323931.roa (raw, json) Hash identifier: Q4lN9IudS9dVhn2DTLFcQL0XvsRzy0y8gzvqMKmxv1g= Subject key identifier: D1:23:79:5F:01:2C:6A:28:0D:E3:E4:D3:FE:B7:2F:85:26:28:A2:3E Certificate issuer: /CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2 Certificate serial: 12398D1B76165F59E9B5C36C43C9F38672713853 Authority key identifier: CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383030303a3a2f34342d3438203d3e20323034323931.roa Signing time: Sat 11 May 2024 20:14:48 +0000 ROA not before: Sat 11 May 2024 20:09:48 +0000 ROA not after: Sat 10 May 2025 20:14:48 +0000 asID: 204291 IP address blocks: 2a05:dfc1:8000::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.crl rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:39:8d:1b:76:16:5f:59:e9:b5:c3:6c:43:c9:f3:86:72:71:38:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2 Validity Not Before: May 11 20:09:48 2024 GMT Not After : May 10 20:14:48 2025 GMT Subject: CN=D123795F012C6A280DE3E4D3FEB72F852628A23E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:96:89:8c:97:15:05:49:58:72:33:20:b7:c4: cc:af:86:33:8a:66:8c:70:89:35:51:bc:7e:8d:99: f6:1a:02:a7:8f:09:ba:43:6c:18:79:2d:30:c8:1c: 94:4a:19:dd:71:54:6f:0c:ee:87:64:04:a7:1f:c7: 4a:3f:d9:86:9e:06:89:2b:2b:83:5c:b7:5f:cc:85: 7d:73:af:e9:7c:3d:4b:c1:64:fe:59:dc:67:69:49: 84:a8:55:6f:5e:50:1e:7b:98:ef:02:1a:73:cd:db: 32:50:e2:21:eb:67:e4:0a:8b:73:da:c5:5c:7b:1e: f8:50:8a:65:29:15:23:32:0d:a1:e5:6b:76:cc:23: 00:6f:e6:b4:a0:aa:4e:b0:1c:23:07:71:9a:91:13: 16:d7:06:2f:54:09:b2:22:ea:03:24:0f:a4:fa:62: 40:30:f3:bf:35:40:f4:36:83:c1:d0:90:86:d6:c8: e8:2a:f3:62:85:29:05:54:d5:d9:11:d0:55:44:4d: 6f:8b:3b:ae:e3:93:aa:e6:17:87:1f:40:1c:19:af: 75:de:32:ca:0d:96:80:d3:6b:79:6e:01:90:d2:26: 59:3b:1e:d5:a9:21:34:26:99:f1:f4:72:78:9b:34: 9a:57:ed:d5:c8:7c:04:26:0b:3c:ec:28:53:e9:1d: 24:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:23:79:5F:01:2C:6A:28:0D:E3:E4:D3:FE:B7:2F:85:26:28:A2:3E X509v3 Authority Key Identifier: keyid:CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383030303a3a2f34342d3438203d3e20323034323931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8000::/44 Signature Algorithm: sha256WithRSAEncryption 18:2c:e5:3d:85:6b:73:61:bf:c9:33:2b:97:9f:d1:eb:c7:37: b6:51:dc:72:d2:e9:79:e1:4d:f8:80:8f:d9:0d:9c:17:83:5a: 50:45:e4:9c:2d:2d:61:38:8f:fd:ed:57:ec:65:7e:f9:4a:0b: 2b:2b:b2:14:40:b9:b9:65:7f:cc:57:9d:da:87:89:cc:81:fe: 04:fa:71:e0:0d:eb:f8:df:1d:ea:88:7e:58:ac:41:74:d8:0a: d2:b1:da:60:c4:d5:a1:5a:00:a6:09:ae:da:77:16:d1:b5:e3: 78:a3:bc:c6:b8:0f:3c:98:7b:01:9f:07:74:46:be:d3:91:e5: b9:0b:70:52:ab:0e:48:1a:e3:b6:1e:a6:9f:da:21:85:64:2a: 6b:8e:af:8a:1f:0b:2b:fb:c1:12:29:38:30:f5:3b:5c:ae:02: c0:2e:6d:50:27:50:ba:6c:b0:a4:a2:94:03:40:89:1f:97:93: f7:d8:45:e7:5d:af:cf:f5:60:15:1b:b5:dd:7a:9b:19:d0:f4: 46:9d:e7:17:88:cc:6c:e7:9a:a5:9d:3d:38:56:e0:20:93:85: a8:ef:68:10:00:09:62:e6:95:fa:cb:c7:13:35:36:94:f1:15: 18:6b:72:da:d5:0d:89:b4:8f:0e:22:9d:65:dd:29:1d:ad:b2: 91:b1:77:14 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUEjmNG3YWX1nptcNsQ8nzhnJxOFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FEQzY2QTZFNTVCRUJBRkRERkE4QkQ3MkIzMTI3QzhB RUI1MEVDMjAeFw0yNDA1MTEyMDA5NDhaFw0yNTA1MTAyMDE0NDhaMDMxMTAvBgNV BAMTKEQxMjM3OTVGMDEyQzZBMjgwREUzRTREM0ZFQjcyRjg1MjYyOEEyM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYlomMlxUFSVhyMyC3xMyvhjOK ZoxwiTVRvH6NmfYaAqePCbpDbBh5LTDIHJRKGd1xVG8M7odkBKcfx0o/2YaeBokr K4Nct1/MhX1zr+l8PUvBZP5Z3GdpSYSoVW9eUB57mO8CGnPN2zJQ4iHrZ+QKi3Pa xVx7HvhQimUpFSMyDaHla3bMIwBv5rSgqk6wHCMHcZqRExbXBi9UCbIi6gMkD6T6 YkAw8781QPQ2g8HQkIbWyOgq82KFKQVU1dkR0FVETW+LO67jk6rmF4cfQBwZr3Xe MsoNloDTa3luAZDSJlk7HtWpITQmmfH0cnibNJpX7dXIfAQmCzzsKFPpHSQZAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU0SN5XwEsaigN4+TT/rcvhSYooj4wHwYDVR0j BBgwFoAUytxmpuVb66/d+ovXKzEnyK61DsIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzk5MjY1ZWYtMjJhOS00MTAwLWEyM2QtNTFhOWQ5ZmVl YjdkLzEvQ0FEQzY2QTZFNTVCRUJBRkRERkE4QkQ3MkIzMTI3QzhBRUI1MEVDMi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0NBREM2NkE2RTU1QkVC QUZEREZBOEJENzJCMzEyN0M4QUVCNTBFQzIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2M5OTI2NWVmLTIyYTktNDEwMC1hMjNkLTUxYTlkOWZlZWI3 ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzgzMDMwMzAzYTNhMmYzNDM0MmQzNDM4 MjAzZDNlMjAzMjMwMzQzMjM5MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQqBd/BgAAwDQYJKoZIhvcN AQELBQADggEBABgs5T2Fa3Nhv8kzK5ef0evHN7ZR3HLS6XnhTfiAj9kNnBeDWlBF 5JwtLWE4j/3tV+xlfvlKCysrshRAubllf8xXndqHicyB/gT6ceAN6/jfHeqIflis QXTYCtKx2mDE1aFaAKYJrtp3FtG143ijvMa4DzyYewGfB3RGvtOR5bkLcFKrDkga 47Yepp/aIYVkKmuOr4ofCyv7wRIpODD1O1yuAsAubVAnULpssKSilANAiR+Xk/fY Reddr8/1YBUbtd16mxnQ9Ead5xeIzGznmqWdPThW4CCThajvaBAACWLmlfrLxxM1 NpTxFRhrctrVDYm0jw4inWXdKR2tspGxdxQ= -----END CERTIFICATE-----Generated at Thu Nov 21 18:06:14 2024 by rpki-client on console-fra.rpki-client.org