$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333030333a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333030333a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: j8DdnBykGGrG9bn0CU6EYDZKovBas8rC+W06Q/VZIs0= Subject key identifier: 19:3D:40:CA:70:48:2F:8D:4B:6F:D6:00:AB:77:66:31:7D:CD:1F:53 Certificate issuer: /CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Certificate serial: 5310A35A81BEB70A0CD8BC53FEEDDB8D796BC850 Authority key identifier: B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333030333a3a2f34382d3438203d3e20313531333439.roa Signing time: Sun 01 Jun 2025 13:36:08 +0000 ROA not before: Sun 01 Jun 2025 13:31:08 +0000 ROA not after: Sun 31 May 2026 13:36:08 +0000 asID: 151349 IP address blocks: 2a06:9f81:3003::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 19:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:10:a3:5a:81:be:b7:0a:0c:d8:bc:53:fe:ed:db:8d:79:6b:c8:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Validity Not Before: Jun 1 13:31:08 2025 GMT Not After : May 31 13:36:08 2026 GMT Subject: CN=193D40CA70482F8D4B6FD600AB7766317DCD1F53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6d:ef:30:02:e0:b4:6f:49:b4:0c:be:ad:64: 05:b3:11:ac:61:df:07:19:d8:30:51:de:ba:ca:a3: 84:5f:59:3c:0e:7b:25:40:ee:8b:9a:ee:da:05:5a: 31:cb:c1:45:65:36:5d:62:44:ab:e2:2c:36:e3:2d: 58:87:86:43:03:6a:8f:0e:e7:f9:3d:9e:19:ea:e9: b3:8c:d2:87:01:da:c2:94:05:8a:13:d1:d5:54:3e: 52:4e:08:31:49:27:12:01:89:c0:5b:30:92:5e:42: b7:4b:ae:d8:01:22:61:91:2e:7c:78:36:f5:16:c9: 15:69:fe:06:8f:a7:36:dd:5b:f5:d7:87:36:5d:47: f2:ce:12:fe:a1:8b:f3:e9:14:96:ce:cb:c4:41:5c: 53:c9:2b:2c:08:95:22:98:60:6e:d8:fe:f3:9f:31: 03:5f:fe:4a:79:96:ed:7c:e9:ce:f4:78:f4:9d:11: 27:f6:41:b3:f5:00:4b:14:20:03:07:4f:a0:3b:e9: ab:46:4f:4e:71:ea:12:ca:7a:3c:b8:2a:e6:32:7c: d4:64:61:4f:2b:d0:5e:9b:ab:92:7e:52:45:3b:dd: da:78:7c:91:e5:22:67:af:77:7c:b5:af:f8:69:9b: 85:0d:50:37:15:45:89:f5:81:18:c3:90:70:ae:a3: 6a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3D:40:CA:70:48:2F:8D:4B:6F:D6:00:AB:77:66:31:7D:CD:1F:53 X509v3 Authority Key Identifier: keyid:B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333030333a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3003::/48 Signature Algorithm: sha256WithRSAEncryption 29:4e:e1:4f:af:b2:c6:02:03:0e:54:43:e2:f6:e3:01:79:8b: 23:10:fb:d9:f3:18:85:5b:01:81:cf:22:bd:df:da:20:b4:5e: b2:35:65:a4:72:b0:ac:17:76:93:cd:3e:4e:6e:33:58:1c:ec: 1a:67:c1:24:0f:fd:18:5a:77:a3:f5:3a:bf:5e:00:2b:1d:c7: 6b:5a:26:77:24:a2:47:c2:b0:b6:41:05:03:ab:52:48:ac:f7: b1:dd:f1:f0:ad:97:65:80:39:62:85:0b:6a:87:83:00:f6:7f: a0:16:07:37:fe:b5:36:c6:17:b6:65:60:d6:4f:c3:51:89:17: 7a:29:c8:4a:e5:a3:96:8a:f7:ab:ff:55:ce:22:61:6e:12:71: 43:a8:17:7f:2c:0d:fd:49:8a:ec:71:c5:c4:e8:a0:07:a3:42: f8:ab:4d:0e:5b:87:ec:58:54:70:73:72:70:59:a5:04:c3:6d: bc:df:bc:50:19:83:4c:a5:0f:dd:3e:35:0e:e3:00:c6:44:c2: 4d:ab:d0:b3:ce:b5:bd:83:99:de:7f:d6:f4:0d:7f:87:b5:c3: f0:28:33:ca:31:78:d0:fa:1e:64:14:92:60:bd:2b:e3:ae:29: 66:7e:ec:b9:e1:c8:46:4b:23:9a:44:a7:cb:d6:3a:be:e8:ea: f3:7b:ec:5c -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUUxCjWoG+twoM2LxT/u3bjXlryFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3 MjY4ODlFQjAeFw0yNTA2MDExMzMxMDhaFw0yNjA1MzExMzM2MDhaMDMxMTAvBgNV BAMTKDE5M0Q0MENBNzA0ODJGOEQ0QjZGRDYwMEFCNzc2NjMxN0RDRDFGNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4be8wAuC0b0m0DL6tZAWzEaxh 3wcZ2DBR3rrKo4RfWTwOeyVA7oua7toFWjHLwUVlNl1iRKviLDbjLViHhkMDao8O 5/k9nhnq6bOM0ocB2sKUBYoT0dVUPlJOCDFJJxIBicBbMJJeQrdLrtgBImGRLnx4 NvUWyRVp/gaPpzbdW/XXhzZdR/LOEv6hi/PpFJbOy8RBXFPJKywIlSKYYG7Y/vOf MQNf/kp5lu186c70ePSdESf2QbP1AEsUIAMHT6A76atGT05x6hLKejy4KuYyfNRk YU8r0F6bq5J+UkU73dp4fJHlImevd3y1r/hpm4UNUDcVRYn1gRjDkHCuo2p9AgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUGT1AynBIL41Lb9YAq3dmMX3NH1MwHwYDVR0j BBgwFoAUt15fNlJDDO+W4eC9Ft2sQHJoieswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzAvQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3MjY4ODlFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0I3NUU1RjM2NTI0MzBD RUY5NkUxRTBCRDE2RERBQzQwNzI2ODg5RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8wLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDMwMzMzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMAMwDQYJKoZIhvcN AQELBQADggEBAClO4U+vssYCAw5UQ+L24wF5iyMQ+9nzGIVbAYHPIr3f2iC0XrI1 ZaRysKwXdpPNPk5uM1gc7BpnwSQP/Rhad6P1Or9eACsdx2taJnckokfCsLZBBQOr Ukis97Hd8fCtl2WAOWKFC2qHgwD2f6AWBzf+tTbGF7ZlYNZPw1GJF3opyErlo5aK 96v/Vc4iYW4ScUOoF38sDf1JiuxxxcTooAejQvirTQ5bh+xYVHBzcnBZpQTDbbzf vFAZg0ylD90+NQ7jAMZEwk2r0LPOtb2Dmd5/1vQNf4e1w/AoM8oxeND6HmQUkmC9 K+OuKWZ+7LnhyEZLI5pEp8vWOr7o6vN77Fw= -----END CERTIFICATE-----Generated at Sat Jun 7 11:52:23 2025 by rpki-client