$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333030313a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333030313a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: E4/FkXjfKhVOW3ZIuI0KluFAHkFaknWLJ3AVrRElufc= Subject key identifier: 4D:BD:45:CD:83:BA:3C:FE:D3:E3:39:4D:4E:1B:D4:16:C8:92:0E:78 Certificate issuer: /CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Certificate serial: 4B6C851BDE51EBD1594CCEE6C51E67BC5F0DBB6D Authority key identifier: B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333030313a3a2f34382d3438203d3e20313531333439.roa Signing time: Sun 01 Jun 2025 13:36:10 +0000 ROA not before: Sun 01 Jun 2025 13:31:10 +0000 ROA not after: Sun 31 May 2026 13:36:10 +0000 asID: 151349 IP address blocks: 2a06:9f81:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 04:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:6c:85:1b:de:51:eb:d1:59:4c:ce:e6:c5:1e:67:bc:5f:0d:bb:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Validity Not Before: Jun 1 13:31:10 2025 GMT Not After : May 31 13:36:10 2026 GMT Subject: CN=4DBD45CD83BA3CFED3E3394D4E1BD416C8920E78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:00:7a:3b:f7:bf:68:9f:b4:b0:02:d5:13:b1: 92:1b:3c:b4:e5:d8:24:6d:9a:39:40:ff:76:3e:a7: 07:43:51:22:5c:0c:48:2e:27:9f:dd:b3:2d:64:5f: d7:d3:cc:9d:ba:94:4d:50:2a:07:80:8f:3d:87:53: d6:5c:93:1a:c7:ad:71:64:5f:f3:e4:01:09:0f:64: 39:39:6b:7d:c3:d7:60:4a:64:ad:94:5d:2b:cc:e6: 56:cc:1a:2f:c5:b1:62:41:10:2e:81:22:69:24:e2: 99:d7:a2:eb:eb:95:e5:05:a9:a6:9a:41:ac:33:45: 11:49:00:32:5c:86:0f:b4:59:46:f4:0a:f2:bf:70: d1:0b:10:e2:0f:fe:18:d4:90:f0:43:1e:aa:26:e4: 32:cb:80:a8:db:64:10:5a:cd:a1:86:77:3b:88:ca: 52:5f:1e:85:8e:29:87:bc:a2:ca:2c:46:a8:9f:a2: c2:2a:51:6f:f4:d0:f1:66:f3:cd:75:50:84:af:57: 37:a8:24:e8:de:76:28:05:e5:6b:af:04:f4:5e:fe: 90:c9:51:8a:73:63:4f:75:2c:42:e6:8d:7e:10:4b: 97:e1:db:1a:35:84:67:04:d6:62:e5:63:74:d4:cf: ed:a2:1c:a2:c8:72:24:60:2b:5c:81:8a:20:1b:83: fe:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BD:45:CD:83:BA:3C:FE:D3:E3:39:4D:4E:1B:D4:16:C8:92:0E:78 X509v3 Authority Key Identifier: keyid:B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333030313a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3001::/48 Signature Algorithm: sha256WithRSAEncryption 7c:32:a3:4b:cf:d3:9c:44:00:4f:cb:0c:e4:eb:f4:49:b9:2f: b8:5b:df:e7:09:97:f1:ae:26:e5:4d:25:4d:de:a4:f8:a9:7d: 52:30:7e:e5:f0:bc:07:10:dd:11:4a:39:bb:52:1d:a5:4d:78: e3:d7:ae:fa:41:57:14:ff:a3:13:fc:7c:59:7f:ee:43:e0:ea: 6b:45:6c:69:de:64:9c:c0:d2:f4:ec:93:24:c7:ea:f8:49:42: a7:5a:e3:f7:58:c8:a3:15:4d:d4:53:a9:bc:9d:fb:6c:6d:dc: ee:94:c7:ba:c0:20:1a:e2:39:e2:c2:5a:a3:fc:38:f7:bb:39: 73:d9:cd:93:b2:98:03:a6:5a:52:6c:90:1c:92:af:cc:1a:f7: 36:80:41:a0:32:c0:02:99:01:ec:21:2a:ed:33:ab:7c:1f:ea: cd:cb:63:e1:6b:21:00:7d:33:01:f6:bc:59:ee:7d:c7:a6:62: ca:0d:ce:fb:a2:87:f8:e5:73:38:47:19:9d:97:7f:a0:4d:77: f3:df:a5:28:a0:ed:c9:76:da:f3:e3:cd:71:bc:23:92:2c:d3: 27:39:f7:85:23:41:c4:fe:a8:b2:c4:bf:79:53:31:c5:90:b4: 9c:12:fd:62:86:e2:88:d1:d7:e8:6e:0b:e9:1b:23:d0:4b:83: 85:06:08:bb -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUS2yFG95R69FZTM7mxR5nvF8Nu20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3 MjY4ODlFQjAeFw0yNTA2MDExMzMxMTBaFw0yNjA1MzExMzM2MTBaMDMxMTAvBgNV BAMTKDREQkQ0NUNEODNCQTNDRkVEM0UzMzk0RDRFMUJENDE2Qzg5MjBFNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTAHo7979on7SwAtUTsZIbPLTl 2CRtmjlA/3Y+pwdDUSJcDEguJ5/dsy1kX9fTzJ26lE1QKgeAjz2HU9ZckxrHrXFk X/PkAQkPZDk5a33D12BKZK2UXSvM5lbMGi/FsWJBEC6BImkk4pnXouvrleUFqaaa QawzRRFJADJchg+0WUb0CvK/cNELEOIP/hjUkPBDHqom5DLLgKjbZBBazaGGdzuI ylJfHoWOKYe8ososRqifosIqUW/00PFm8811UISvVzeoJOjedigF5WuvBPRe/pDJ UYpzY091LELmjX4QS5fh2xo1hGcE1mLlY3TUz+2iHKLIciRgK1yBiiAbg/7tAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUTb1FzYO6PP7T4zlNThvUFsiSDngwHwYDVR0j BBgwFoAUt15fNlJDDO+W4eC9Ft2sQHJoieswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzAvQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3MjY4ODlFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0I3NUU1RjM2NTI0MzBD RUY5NkUxRTBCRDE2RERBQzQwNzI2ODg5RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8wLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDMwMzEzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMAEwDQYJKoZIhvcN AQELBQADggEBAHwyo0vP05xEAE/LDOTr9Em5L7hb3+cJl/GuJuVNJU3epPipfVIw fuXwvAcQ3RFKObtSHaVNeOPXrvpBVxT/oxP8fFl/7kPg6mtFbGneZJzA0vTskyTH 6vhJQqda4/dYyKMVTdRTqbyd+2xt3O6Ux7rAIBriOeLCWqP8OPe7OXPZzZOymAOm WlJskBySr8wa9zaAQaAywAKZAewhKu0zq3wf6s3LY+FrIQB9MwH2vFnufcemYsoN zvuih/jlczhHGZ2Xf6BNd/PfpSig7cl22vPjzXG8I5Is0yc594UjQcT+qLLEv3lT McWQtJwS/WKG4ojR1+huC+kbI9BLg4UGCLs= -----END CERTIFICATE-----Generated at Sat Jun 7 16:57:26 2025 by rpki-client