$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333033303a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333033303a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: xusS3lx+3oFOvsxR6eOCsxTz3XnzSawf3K7nEq0zkig= Subject key identifier: DC:8A:58:9C:BA:CF:01:73:A5:4C:89:D3:95:B1:40:4D:82:E7:F0:D7 Certificate issuer: /CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Certificate serial: 5EE1289E8641A9170E609ADBD14D2835BE930793 Authority key identifier: B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333033303a3a2f34382d3438203d3e20313531333439.roa Signing time: Sun 01 Jun 2025 13:36:06 +0000 ROA not before: Sun 01 Jun 2025 13:31:06 +0000 ROA not after: Sun 31 May 2026 13:36:06 +0000 asID: 151349 IP address blocks: 2a06:9f81:3030::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 19:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:e1:28:9e:86:41:a9:17:0e:60:9a:db:d1:4d:28:35:be:93:07:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Validity Not Before: Jun 1 13:31:06 2025 GMT Not After : May 31 13:36:06 2026 GMT Subject: CN=DC8A589CBACF0173A54C89D395B1404D82E7F0D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:0d:0d:8b:84:82:fb:5f:bd:31:0a:2f:7e:8c: 5e:46:8a:99:e8:30:52:ad:9f:89:20:7f:3a:bc:78: 07:a6:6b:7c:0f:49:32:78:e3:48:0b:db:de:77:f4: 53:a0:14:d6:14:80:d3:51:12:71:02:8d:c9:6c:01: e1:8b:ac:ad:5e:97:18:cd:ac:47:65:2e:a8:53:78: 02:41:ac:00:64:8f:00:e8:fc:38:cc:f6:9c:89:cc: 7d:63:b9:ff:0f:a6:cf:65:86:96:cb:64:70:7d:57: 70:95:5d:3c:c6:8d:55:00:4d:b4:41:e2:66:ec:8a: ac:4c:8e:f1:79:c1:63:05:7d:2a:fa:ea:7c:66:cf: 89:07:ff:78:4f:cf:63:4d:5f:1c:76:fb:01:82:a3: 9c:2e:db:a3:0c:2a:87:49:c9:a1:e3:01:7f:76:21: f1:e4:2c:46:6a:c2:bd:d0:85:da:32:80:e3:93:df: b3:a5:37:8e:c2:51:15:62:1d:2f:48:91:1d:e9:0a: 5e:52:3e:d0:52:90:86:52:79:9c:2e:f2:1c:cd:4e: f8:cc:60:00:b6:12:f7:55:37:fb:e7:20:f1:a9:e3: 5d:17:f1:84:0c:82:ca:2d:36:23:05:2c:fc:b7:5f: 58:82:38:fe:c6:1e:90:8b:e4:b2:ac:b2:9a:38:67: ca:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:8A:58:9C:BA:CF:01:73:A5:4C:89:D3:95:B1:40:4D:82:E7:F0:D7 X509v3 Authority Key Identifier: keyid:B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333033303a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3030::/48 Signature Algorithm: sha256WithRSAEncryption 33:d7:5b:a9:c9:c3:f6:3a:e9:8b:0d:c3:50:bc:91:07:d2:9b: 93:ef:06:57:37:38:09:27:ab:23:a6:3d:76:c7:90:cb:f7:18: 84:48:0f:75:1f:09:36:32:10:44:64:b3:5e:98:2e:fe:67:cc: ae:06:c0:36:c1:ea:b9:df:e6:ed:58:d4:fa:8a:50:41:b6:3f: 88:99:8e:8e:ed:36:63:69:24:dc:b6:4d:d2:96:54:7d:e7:ba: d2:86:8c:e4:9a:50:19:73:94:7e:98:34:44:ef:e0:24:8b:1a: 9b:12:75:b5:ac:b6:d6:7b:f2:36:61:7e:6d:88:5b:07:f5:a1: 65:ca:ab:ea:50:06:76:76:c9:52:12:86:3e:91:9d:1c:7b:49: 25:a9:0d:5f:58:a7:0a:6d:13:3e:4f:95:3d:3e:0a:de:54:cc: 8a:e2:a8:92:42:d0:dd:65:93:aa:e2:2f:03:a1:08:84:4f:0e: 1e:c8:8e:7e:5a:b1:2b:e2:b3:e8:0a:37:b0:17:06:b3:0f:b4: ad:69:0c:1f:0c:84:f6:7d:c4:e9:34:9b:bb:8b:80:e0:38:46: 24:35:b3:37:e8:98:1c:48:46:5d:c7:40:14:9c:06:97:87:6f: 1a:99:06:f1:b5:f8:c3:01:56:2e:39:44:a8:db:e5:ec:ee:e3: b6:0d:4c:38 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUXuEonoZBqRcOYJrb0U0oNb6TB5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3 MjY4ODlFQjAeFw0yNTA2MDExMzMxMDZaFw0yNjA1MzExMzM2MDZaMDMxMTAvBgNV BAMTKERDOEE1ODlDQkFDRjAxNzNBNTRDODlEMzk1QjE0MDREODJFN0YwRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxDQ2LhIL7X70xCi9+jF5Gipno MFKtn4kgfzq8eAema3wPSTJ440gL29539FOgFNYUgNNREnECjclsAeGLrK1elxjN rEdlLqhTeAJBrABkjwDo/DjM9pyJzH1juf8Pps9lhpbLZHB9V3CVXTzGjVUATbRB 4mbsiqxMjvF5wWMFfSr66nxmz4kH/3hPz2NNXxx2+wGCo5wu26MMKodJyaHjAX92 IfHkLEZqwr3QhdoygOOT37OlN47CURViHS9IkR3pCl5SPtBSkIZSeZwu8hzNTvjM YAC2EvdVN/vnIPGp410X8YQMgsotNiMFLPy3X1iCOP7GHpCL5LKsspo4Z8pHAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU3IpYnLrPAXOlTInTlbFATYLn8NcwHwYDVR0j BBgwFoAUt15fNlJDDO+W4eC9Ft2sQHJoieswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzAvQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3MjY4ODlFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0I3NUU1RjM2NTI0MzBD RUY5NkUxRTBCRDE2RERBQzQwNzI2ODg5RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8wLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDMzMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMDAwDQYJKoZIhvcN AQELBQADggEBADPXW6nJw/Y66YsNw1C8kQfSm5PvBlc3OAknqyOmPXbHkMv3GIRI D3UfCTYyEERks16YLv5nzK4GwDbB6rnf5u1Y1PqKUEG2P4iZjo7tNmNpJNy2TdKW VH3nutKGjOSaUBlzlH6YNETv4CSLGpsSdbWsttZ78jZhfm2IWwf1oWXKq+pQBnZ2 yVIShj6RnRx7SSWpDV9YpwptEz5PlT0+Ct5UzIriqJJC0N1lk6riLwOhCIRPDh7I jn5asSvis+gKN7AXBrMPtK1pDB8MhPZ9xOk0m7uLgOA4RiQ1szfomBxIRl3HQBSc BpeHbxqZBvG1+MMBVi45RKjb5ezu47YNTDg= -----END CERTIFICATE-----Generated at Sat Jun 7 11:54:22 2025 by rpki-client