$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383166303a3a2f34342d3438203d3e20323131343331.roa File: 326130353a646663313a383166303a3a2f34342d3438203d3e20323131343331.roa (raw, json) Hash identifier: Q313EmNcZjCp5gI85ocLN+HRvNtGlQ4fIkO1qdQCncY= Subject key identifier: 7E:53:1C:98:F3:B2:6A:EC:8C:DC:EB:5A:FA:0A:5F:8C:21:8F:8E:A9 Certificate issuer: /CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2 Certificate serial: 0F1F2C6D3A2FCFB363CA0303615642FAAAE2C2A0 Authority key identifier: CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383166303a3a2f34342d3438203d3e20323131343331.roa Signing time: Fri 05 Jan 2024 19:08:10 +0000 ROA not before: Fri 05 Jan 2024 19:03:10 +0000 ROA not after: Fri 03 Jan 2025 19:08:10 +0000 asID: 211431 IP address blocks: 2a05:dfc1:81f0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.crl rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:1f:2c:6d:3a:2f:cf:b3:63:ca:03:03:61:56:42:fa:aa:e2:c2:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2 Validity Not Before: Jan 5 19:03:10 2024 GMT Not After : Jan 3 19:08:10 2025 GMT Subject: CN=7E531C98F3B26AEC8CDCEB5AFA0A5F8C218F8EA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:60:3d:22:cf:2f:f9:7d:5a:4b:ef:7c:97:03: 44:cb:c2:d3:6a:d2:00:eb:73:ae:8c:82:68:f2:79: 09:b3:35:a1:a8:3e:63:96:c4:b9:7c:4a:dd:6f:d5: 3e:5d:c2:6c:f6:5d:08:5c:4a:3f:f9:d7:19:61:cf: 4c:c0:d0:7c:5e:da:5b:52:3a:80:5e:f6:37:82:11: c7:82:41:5d:8b:51:b8:9d:0a:9a:3c:de:d5:34:4c: a3:da:32:24:53:80:ca:eb:ed:a1:88:6e:fa:95:36: 0c:83:71:71:ec:60:2a:25:70:8e:9f:69:3b:51:7d: c0:32:3e:d2:8c:0a:3a:04:88:f1:99:6e:3e:85:32: fa:d1:2e:da:5f:be:97:2e:61:96:af:5b:95:60:91: ff:bd:15:b2:07:b6:0d:19:99:03:2b:df:20:6e:60: 78:6c:e4:39:c8:fe:72:1c:8b:8b:ea:af:77:3d:cf: 68:a2:87:1a:25:9f:b2:28:4c:a5:ae:d4:85:b4:c4: 00:3f:7a:74:08:76:29:fd:46:96:b6:63:15:81:81: 73:c1:66:4d:a7:33:ab:22:b2:77:62:48:cc:f7:36: 4f:ab:2b:87:1a:81:bf:76:16:44:05:82:73:30:a5: f0:b5:ae:92:a3:7a:34:f7:94:46:27:a2:b8:61:38: 5b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:53:1C:98:F3:B2:6A:EC:8C:DC:EB:5A:FA:0A:5F:8C:21:8F:8E:A9 X509v3 Authority Key Identifier: keyid:CA:DC:66:A6:E5:5B:EB:AF:DD:FA:8B:D7:2B:31:27:C8:AE:B5:0E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/CADC66A6E55BEBAFDDFA8BD72B3127C8AEB50EC2.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/1/326130353a646663313a383166303a3a2f34342d3438203d3e20323131343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:81f0::/44 Signature Algorithm: sha256WithRSAEncryption 7e:88:09:28:d4:a6:ef:58:b8:2d:d4:f9:66:19:29:31:7d:b2: 8b:0c:b5:ab:65:c8:a9:8c:2d:1e:b0:67:98:62:0f:88:8c:40: 56:9e:1f:3e:e4:4d:1c:d3:60:fe:1a:fb:23:f9:ac:a3:7b:bb: e9:64:c5:c9:0b:4d:f4:56:6d:69:42:0b:b5:4a:bd:46:4d:60: 74:41:c1:e6:6f:d6:81:a8:8e:6b:ec:33:77:e6:9a:a2:df:5a: d8:c1:b8:33:48:9d:e9:5f:a6:87:31:12:08:6f:44:f4:0c:f7: 1c:4c:00:32:b8:da:0a:9d:49:11:12:64:31:43:68:ba:07:19: cf:07:ac:f7:86:22:c8:06:45:e7:df:9f:2b:c1:70:15:c2:06: 68:b5:e9:e7:db:94:d5:39:56:9d:ed:5c:5a:2f:6c:1c:76:f3: 13:f5:8a:e4:c9:17:23:8d:13:4c:a8:66:de:fa:c0:b4:e2:9d: bf:75:c8:0d:2d:d8:d1:35:e5:22:70:ad:a7:24:87:52:8d:20: 80:e2:73:e7:8c:bf:8d:e0:cb:50:c6:eb:66:b1:43:a8:7d:79: 69:06:cf:7d:57:ae:70:53:2c:d2:bf:a2:06:ab:7f:a5:f1:1b: c2:8f:d3:fd:05:96:15:ee:46:43:c0:63:cc:fd:3d:0f:6f:b4: 7f:d2:d7:f4 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUDx8sbTovz7NjygMDYVZC+qriwqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FEQzY2QTZFNTVCRUJBRkRERkE4QkQ3MkIzMTI3QzhB RUI1MEVDMjAeFw0yNDAxMDUxOTAzMTBaFw0yNTAxMDMxOTA4MTBaMDMxMTAvBgNV BAMTKDdFNTMxQzk4RjNCMjZBRUM4Q0RDRUI1QUZBMEE1RjhDMjE4RjhFQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoYD0izy/5fVpL73yXA0TLwtNq 0gDrc66MgmjyeQmzNaGoPmOWxLl8St1v1T5dwmz2XQhcSj/51xlhz0zA0Hxe2ltS OoBe9jeCEceCQV2LUbidCpo83tU0TKPaMiRTgMrr7aGIbvqVNgyDcXHsYColcI6f aTtRfcAyPtKMCjoEiPGZbj6FMvrRLtpfvpcuYZavW5Vgkf+9FbIHtg0ZmQMr3yBu YHhs5DnI/nIci4vqr3c9z2iihxoln7IoTKWu1IW0xAA/enQIdin9Rpa2YxWBgXPB Zk2nM6sisndiSMz3Nk+rK4cagb92FkQFgnMwpfC1rpKjejT3lEYnorhhOFvZAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUflMcmPOyauyM3Ota+gpfjCGPjqkwHwYDVR0j BBgwFoAUytxmpuVb66/d+ovXKzEnyK61DsIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzk5MjY1ZWYtMjJhOS00MTAwLWEyM2QtNTFhOWQ5ZmVl YjdkLzEvQ0FEQzY2QTZFNTVCRUJBRkRERkE4QkQ3MkIzMTI3QzhBRUI1MEVDMi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0NBREM2NkE2RTU1QkVC QUZEREZBOEJENzJCMzEyN0M4QUVCNTBFQzIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2M5OTI2NWVmLTIyYTktNDEwMC1hMjNkLTUxYTlkOWZlZWI3 ZC8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzgzMTY2MzAzYTNhMmYzNDM0MmQzNDM4 MjAzZDNlMjAzMjMxMzEzNDMzMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQqBd/BgfAwDQYJKoZIhvcN AQELBQADggEBAH6ICSjUpu9YuC3U+WYZKTF9sosMtatlyKmMLR6wZ5hiD4iMQFae Hz7kTRzTYP4a+yP5rKN7u+lkxckLTfRWbWlCC7VKvUZNYHRBweZv1oGojmvsM3fm mqLfWtjBuDNInelfpocxEghvRPQM9xxMADK42gqdSRESZDFDaLoHGc8HrPeGIsgG ReffnyvBcBXCBmi16efblNU5Vp3tXFovbBx28xP1iuTJFyONE0yoZt76wLTinb91 yA0t2NE15SJwrackh1KNIIDic+eMv43gy1DG62axQ6h9eWkGz31XrnBTLNK/ogar f6XxG8KP0/0FlhXuRkPAY8z9PQ9vtH/S1/Q= -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:21 2024 by rpki-client on console-ams.rpki-client.org