$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383130303a3a2f34302d3438203d3e20323131343331.roa File: 326130353a646663313a383130303a3a2f34302d3438203d3e20323131343331.roa (raw, json) Hash identifier: J+TjKX+7DGw7drJWlwu2XUXH9su5pdQu7se1IkJaFRc= Subject key identifier: 68:23:D5:C6:3F:7C:85:CC:88:EF:A1:FE:F8:67:24:69:A0:A5:C7:61 Certificate issuer: /CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2 Certificate serial: 1FC55E0D9343F9D56A7EAAD3FEE1F282521988FA Authority key identifier: CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383130303a3a2f34302d3438203d3e20323131343331.roa Signing time: Fri 05 Jan 2024 10:29:17 +0000 ROA not before: Fri 05 Jan 2024 10:24:17 +0000 ROA not after: Fri 03 Jan 2025 10:29:17 +0000 asID: 211431 IP address blocks: 2a05:dfc1:8100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.crl rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:c5:5e:0d:93:43:f9:d5:6a:7e:aa:d3:fe:e1:f2:82:52:19:88:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2 Validity Not Before: Jan 5 10:24:17 2024 GMT Not After : Jan 3 10:29:17 2025 GMT Subject: CN=6823D5C63F7C85CC88EFA1FEF8672469A0A5C761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9b:37:e2:9a:03:57:c1:e6:9f:1f:83:1d:ce: 2f:dc:0d:6f:e7:b5:32:0d:36:38:a9:0a:56:ca:4e: 20:6c:9d:dc:19:5f:88:97:4b:a3:ca:92:37:4b:1c: 2a:d6:1e:46:cf:29:03:eb:4f:4a:5f:1e:6b:75:0c: 90:f5:67:a8:c8:ff:2d:84:3b:84:49:2c:d7:5b:70: 40:5a:2e:75:05:10:90:92:e5:29:50:25:6b:85:32: 8c:85:37:4d:1c:d7:5c:82:f0:15:d0:9f:86:8a:dd: 56:52:e6:cc:39:c8:32:42:d8:f0:cf:88:3e:b7:02: 3b:62:56:05:26:a4:fd:84:53:2b:73:57:ab:41:8a: 9b:08:35:a2:43:fd:0a:5f:92:c4:43:2a:4b:2c:b8: 7f:1b:4a:51:2f:4e:85:31:d5:fa:bb:00:66:71:02: 7d:43:6d:fd:ce:88:96:c5:88:c8:3d:b3:9d:17:f8: 6f:68:e2:bb:ae:9a:fa:61:e2:fd:0a:ae:78:30:3d: ec:0e:76:90:1f:85:66:c6:de:b3:09:38:cd:a8:92: 59:c8:08:61:63:38:3e:30:06:2b:ab:11:8d:0b:0b: 94:36:21:74:ef:e0:2a:70:1e:23:1c:d5:ae:d2:57: 2b:86:bb:3e:9a:f7:97:27:e7:b4:c1:b8:5b:98:bd: 57:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:23:D5:C6:3F:7C:85:CC:88:EF:A1:FE:F8:67:24:69:A0:A5:C7:61 X509v3 Authority Key Identifier: keyid:CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383130303a3a2f34302d3438203d3e20323131343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8100::/40 Signature Algorithm: sha256WithRSAEncryption 52:15:ce:c3:bf:77:0c:18:9e:e9:e3:9f:ab:22:51:46:c9:9f: 79:70:bc:70:f9:20:cb:7a:5c:8f:88:51:f5:72:09:57:60:5b: d4:a5:4a:cf:b2:3c:7a:95:b8:79:ec:99:f3:2a:96:47:86:20: 62:d5:7d:b5:22:fc:37:bd:81:0c:66:32:8a:cf:fe:31:fc:69: 51:84:e4:5a:c5:7e:63:aa:b4:3f:73:ad:2c:9e:7d:c5:dc:05: 13:a1:54:37:c5:7c:1a:16:9d:71:b3:a4:53:a0:7a:94:f3:41: 7e:9d:79:a2:34:e2:7f:d3:17:dd:b9:c3:8e:bd:97:b9:7e:ad: 97:22:9a:2f:a8:c5:ba:12:81:1f:bc:69:64:bb:d4:46:a3:86: f9:bd:59:1d:99:b6:07:18:ef:71:74:40:44:2d:9e:0b:b4:26: 98:b9:6a:ee:10:3b:50:01:38:89:a5:30:7d:92:0f:40:26:b9: 94:36:8b:6e:c5:7f:3a:ad:35:87:74:c3:38:14:64:0f:28:ed: de:a8:7a:86:1a:18:0a:38:6f:7f:10:1f:1d:df:b3:d6:53:bc: c5:5c:e2:0c:74:a7:c5:7f:88:c7:9a:e8:6f:24:2d:3e:a6:96: a0:4e:6b:70:98:17:a7:b5:f3:17:09:2c:5c:12:4d:52:f0:0e: d5:39:65:8d -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIUH8VeDZND+dVqfqrT/uHyglIZiPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FEQzY2QTZFNTVCRUJBRkRERkE4QkQ3MkIzMTI3QzhB RUI1MEVDMjAeFw0yNDAxMDUxMDI0MTdaFw0yNTAxMDMxMDI5MTdaMDMxMTAvBgNV BAMTKDY4MjNENUM2M0Y3Qzg1Q0M4OEVGQTFGRUY4NjcyNDY5QTBBNUM3NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOmzfimgNXweafH4Mdzi/cDW/n tTINNjipClbKTiBsndwZX4iXS6PKkjdLHCrWHkbPKQPrT0pfHmt1DJD1Z6jI/y2E O4RJLNdbcEBaLnUFEJCS5SlQJWuFMoyFN00c11yC8BXQn4aK3VZS5sw5yDJC2PDP iD63AjtiVgUmpP2EUytzV6tBipsINaJD/QpfksRDKkssuH8bSlEvToUx1fq7AGZx An1Dbf3OiJbFiMg9s50X+G9o4ruumvph4v0KrngwPewOdpAfhWbG3rMJOM2oklnI CGFjOD4wBiurEY0LC5Q2IXTv4CpwHiMc1a7SVyuGuz6a95cn57TBuFuYvVdVAgMB AAGjggJfMIICWzAdBgNVHQ4EFgQUaCPVxj98hcyI76H++GckaaClx2EwHwYDVR0j BBgwFoAUytxmpuVb66/d+ovXKzEnyK61DsIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzk5MjY1ZWYtMjJhOS00MTAwLWEyM2QtNTFhOWQ5ZmVl YjdkLzEvQ0FEQzY2QTZFNTVCRUJBRkRERkE4QkQ3MkIzMTI3QzhBRUI1MEVDMi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0NBREM2NkE2RTU1QkVC QUZEREZBOEJENzJCMzEyN0M4QUVCNTBFQzIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2M5OTI2NWVmLTIyYTktNDEwMC1hMjNkLTUxYTlkOWZlZWI3 ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzgzMTMwMzAzYTNhMmYzNDMwMmQzNDM4 MjAzZDNlMjAzMjMxMzEzNDMzMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BgTANBgkqhkiG9w0B AQsFAAOCAQEAUhXOw793DBie6eOfqyJRRsmfeXC8cPkgy3pcj4hR9XIJV2Bb1KVK z7I8epW4eeyZ8yqWR4YgYtV9tSL8N72BDGYyis/+MfxpUYTkWsV+Y6q0P3OtLJ59 xdwFE6FUN8V8GhadcbOkU6B6lPNBfp15ojTif9MX3bnDjr2XuX6tlyKaL6jFuhKB H7xpZLvURqOG+b1ZHZm2BxjvcXRARC2eC7QmmLlq7hA7UAE4iaUwfZIPQCa5lDaL bsV/Oq01h3TDOBRkDyjt3qh6hhoYCjhvfxAfHd+z1lO8xVziDHSnxX+Ix5robyQt PqaWoE5rcJgXp7XzFwksXBJNUvAO1TlljQ== -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:21 2024 by rpki-client on console-ams.rpki-client.org