$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333030323a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333030323a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: P683nWWCLVJGsRmFvqa4mOkJFNnKwrLIctk6qVvtZLw= Subject key identifier: BD:4F:0F:6D:A6:43:32:5E:C6:43:02:2E:A4:93:2F:48:EF:E7:CD:18 Certificate issuer: /CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Certificate serial: 24FA718AFCF50FAA12F2994AF640F36849DC03AE Authority key identifier: B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333030323a3a2f34382d3438203d3e20313531333439.roa Signing time: Sun 01 Jun 2025 13:36:09 +0000 ROA not before: Sun 01 Jun 2025 13:31:09 +0000 ROA not after: Sun 31 May 2026 13:36:09 +0000 asID: 151349 IP address blocks: 2a06:9f81:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 04:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:fa:71:8a:fc:f5:0f:aa:12:f2:99:4a:f6:40:f3:68:49:dc:03:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Validity Not Before: Jun 1 13:31:09 2025 GMT Not After : May 31 13:36:09 2026 GMT Subject: CN=BD4F0F6DA643325EC643022EA4932F48EFE7CD18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d9:39:5c:f7:f2:7f:26:f1:d6:7a:b5:38:bd: 6c:26:f8:bd:d9:41:fe:21:2c:13:77:7c:58:f6:17: bf:8f:6c:7c:9d:ba:1f:3c:38:46:5e:1d:03:3f:ba: 6a:d7:7e:cc:87:b2:68:93:37:5d:7d:fa:4d:41:2e: cb:f9:95:6c:7c:0e:c9:91:99:74:a2:5b:c5:ac:eb: 36:af:cc:74:05:35:73:80:83:e8:1a:ad:70:7f:f5: 87:53:75:e9:5b:ed:05:86:20:e9:32:8a:d2:b8:2e: 24:8f:06:bc:15:75:97:cd:f3:c5:91:78:1e:1c:93: 57:ce:17:50:60:f7:4d:cd:c2:23:c6:b4:ce:f0:3d: 2b:d3:5b:2e:cf:69:0c:80:b3:6d:d0:d9:79:18:84: 39:f9:05:60:f5:8f:aa:92:a9:b0:58:c4:ad:e0:35: a4:30:31:50:d4:c3:1e:4c:4f:8a:d1:a7:07:43:b2: 95:ca:28:1a:96:4c:9c:52:e2:d8:b0:a9:40:32:44: 14:c2:1d:2e:45:29:e6:44:24:a4:08:77:3d:0c:97: a1:cd:0f:4d:63:4d:64:db:46:c9:be:4a:c7:41:e6: f3:20:2b:66:1d:12:2b:99:92:fa:98:53:73:83:98: 51:e9:82:d9:29:9e:5e:62:93:3c:04:3f:39:28:cf: 21:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:4F:0F:6D:A6:43:32:5E:C6:43:02:2E:A4:93:2F:48:EF:E7:CD:18 X509v3 Authority Key Identifier: keyid:B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333030323a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3002::/48 Signature Algorithm: sha256WithRSAEncryption aa:a5:52:4e:8d:04:5c:75:e0:c8:c6:41:85:74:ca:4b:cc:0f: d2:cc:8d:9a:3b:91:a2:b3:5e:44:c9:0d:44:10:fe:71:d0:e0: 5d:ad:60:a0:8b:6c:24:15:a5:89:a5:1d:96:ce:19:27:0d:3f: 98:75:a5:a5:f7:4c:b9:2f:16:4c:ef:2f:18:0f:f0:a1:52:bf: bb:b2:ad:dc:5d:2f:0e:87:79:76:a3:b2:f4:36:ac:5b:ec:65: 28:a9:73:e6:bc:3e:ab:92:67:c3:dc:d6:dc:3e:fa:de:d9:29: cd:67:ae:c0:e4:89:76:c7:33:88:d4:fd:85:0c:7e:28:e2:d7: ed:9f:71:79:3c:5e:99:f5:44:12:05:ab:ba:65:21:ba:35:08: 65:d4:ed:51:0a:88:3a:da:fb:f3:78:87:a9:75:9e:a7:95:f7: d6:00:b6:9b:06:c1:83:7d:7a:d8:8b:01:d0:9e:5d:61:d7:f6: 9a:ca:6f:b2:71:43:2d:69:db:7e:b9:3d:19:e8:b9:da:c1:ef: 2a:db:bc:9b:4e:39:24:0b:0e:5b:7e:c5:2b:c6:e9:5c:f7:a8: a1:0f:18:2c:89:59:d7:55:2a:3c:95:f6:a9:67:7a:3b:73:1b: 3a:18:ef:29:96:62:9f:3f:61:8f:d5:8b:ee:bc:6a:73:a0:d1: f6:f5:90:41 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUJPpxivz1D6oS8plK9kDzaEncA64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3 MjY4ODlFQjAeFw0yNTA2MDExMzMxMDlaFw0yNjA1MzExMzM2MDlaMDMxMTAvBgNV BAMTKEJENEYwRjZEQTY0MzMyNUVDNjQzMDIyRUE0OTMyRjQ4RUZFN0NEMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/2Tlc9/J/JvHWerU4vWwm+L3Z Qf4hLBN3fFj2F7+PbHyduh88OEZeHQM/umrXfsyHsmiTN119+k1BLsv5lWx8DsmR mXSiW8Ws6zavzHQFNXOAg+garXB/9YdTdelb7QWGIOkyitK4LiSPBrwVdZfN88WR eB4ck1fOF1Bg903NwiPGtM7wPSvTWy7PaQyAs23Q2XkYhDn5BWD1j6qSqbBYxK3g NaQwMVDUwx5MT4rRpwdDspXKKBqWTJxS4tiwqUAyRBTCHS5FKeZEJKQIdz0Ml6HN D01jTWTbRsm+SsdB5vMgK2YdEiuZkvqYU3ODmFHpgtkpnl5ikzwEPzkozyFTAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUvU8PbaZDMl7GQwIupJMvSO/nzRgwHwYDVR0j BBgwFoAUt15fNlJDDO+W4eC9Ft2sQHJoieswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzAvQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3MjY4ODlFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0I3NUU1RjM2NTI0MzBD RUY5NkUxRTBCRDE2RERBQzQwNzI2ODg5RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8wLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDMwMzIzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMAIwDQYJKoZIhvcN AQELBQADggEBAKqlUk6NBFx14MjGQYV0ykvMD9LMjZo7kaKzXkTJDUQQ/nHQ4F2t YKCLbCQVpYmlHZbOGScNP5h1paX3TLkvFkzvLxgP8KFSv7uyrdxdLw6HeXajsvQ2 rFvsZSipc+a8PquSZ8Pc1tw++t7ZKc1nrsDkiXbHM4jU/YUMfiji1+2fcXk8Xpn1 RBIFq7plIbo1CGXU7VEKiDra+/N4h6l1nqeV99YAtpsGwYN9etiLAdCeXWHX9prK b7JxQy1p2365PRnoudrB7yrbvJtOOSQLDlt+xSvG6Vz3qKEPGCyJWddVKjyV9qln ejtzGzoY7ymWYp8/YY/Vi+68anOg0fb1kEE= -----END CERTIFICATE-----Generated at Sat Jun 7 21:49:52 2025 by rpki-client