$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333066653a3a2f34382d3438203d3e20323135303837.roa File: 326130363a396638313a333066653a3a2f34382d3438203d3e20323135303837.roa (raw, json) Hash identifier: /PAqTZvG5940KdyxtGacivjedZnA5Klyf8Zp8o94sLA= Subject key identifier: 00:02:97:20:AD:35:CF:07:E9:03:EF:4E:76:27:31:F0:A7:A5:D6:7B Certificate issuer: /CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Certificate serial: 2805262EC48570F869307A84522691C5634D1504 Authority key identifier: B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333066653a3a2f34382d3438203d3e20323135303837.roa Signing time: Sun 01 Jun 2025 13:36:09 +0000 ROA not before: Sun 01 Jun 2025 13:31:09 +0000 ROA not after: Sun 31 May 2026 13:36:09 +0000 asID: 215087 IP address blocks: 2a06:9f81:30fe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 18:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:05:26:2e:c4:85:70:f8:69:30:7a:84:52:26:91:c5:63:4d:15:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B75E5F3652430CEF96E1E0BD16DDAC40726889EB Validity Not Before: Jun 1 13:31:09 2025 GMT Not After : May 31 13:36:09 2026 GMT Subject: CN=00029720AD35CF07E903EF4E762731F0A7A5D67B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c2:ea:3a:b3:0f:c9:1d:e1:49:f8:11:02:8f: 14:e4:7b:8a:88:47:3d:2a:5e:59:bc:81:1f:d4:5a: 82:29:58:d5:15:0d:9e:49:ba:bb:5b:67:7d:d2:aa: 6a:03:e8:bb:b0:14:a4:cc:20:ac:47:df:cd:74:ec: cc:9e:64:29:e1:26:7c:3c:90:a4:51:f8:17:a0:d9: c0:55:e2:ef:91:80:85:30:ba:e0:41:40:84:dd:92: 62:99:29:ff:54:9b:2f:73:36:0f:3b:c2:e0:13:2d: b8:0a:9c:b7:40:0b:21:d7:a1:49:62:72:da:15:50: 89:d2:69:02:a9:9e:c1:1a:ee:08:4b:87:53:3c:88: ae:7f:43:2c:b9:4c:84:aa:66:59:c4:09:e8:23:a1: 40:2e:d7:10:2d:c2:e1:72:d8:21:73:e8:ff:e6:68: 77:5a:86:36:20:f0:a3:b8:3c:90:61:0b:9f:62:2a: 31:96:c4:99:a8:64:f9:5b:fa:dd:3a:39:26:17:b0: 64:00:97:92:f3:3a:16:cf:3a:64:c4:9c:d6:a6:55: c2:18:39:26:f8:f1:33:27:c6:01:f5:d1:f3:1e:9e: 16:78:1d:77:ab:d4:8e:b6:32:b2:5d:a2:bb:9d:ec: 39:08:32:d9:67:74:20:eb:78:57:62:2e:4f:7c:7b: 38:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:02:97:20:AD:35:CF:07:E9:03:EF:4E:76:27:31:F0:A7:A5:D6:7B X509v3 Authority Key Identifier: keyid:B7:5E:5F:36:52:43:0C:EF:96:E1:E0:BD:16:DD:AC:40:72:68:89:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/B75E5F3652430CEF96E1E0BD16DDAC40726889EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/0/326130363a396638313a333066653a3a2f34382d3438203d3e20323135303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:30fe::/48 Signature Algorithm: sha256WithRSAEncryption 6d:77:3f:26:df:f8:13:a0:8b:b1:37:ed:18:1b:40:fb:81:7a: 55:97:e7:25:01:10:e4:0d:5c:30:9e:f9:05:99:64:d1:da:e2: 78:b3:a8:03:ce:0b:82:c9:41:67:08:1c:c7:c0:3f:83:0b:0b: 5d:5a:fe:87:1f:af:42:92:d6:8a:3c:37:72:7f:15:5d:31:71: b3:00:e5:9f:fe:80:81:b2:be:ca:84:6c:9f:43:b7:35:d2:98: b4:ee:b9:ec:3a:59:8b:cd:f4:0a:0d:dd:73:a5:50:f6:f8:09: 46:6d:7e:f9:96:47:b4:6c:e9:af:0f:32:9a:d0:f1:de:32:ee: 8a:18:15:32:c7:5a:79:6d:7e:6e:7f:db:04:b3:4d:f6:57:6b: ee:74:9f:e9:ae:b2:75:7e:00:75:c4:bd:19:bf:32:0d:b4:bb: 06:98:a3:a8:f5:35:6b:23:48:48:27:ea:86:83:9d:98:e1:f7: a8:e2:42:45:5a:15:01:3a:75:52:d6:fb:89:0a:c4:57:63:60: 0b:01:50:4f:d7:b3:80:44:d7:eb:93:96:64:28:6b:0c:44:f9: 70:c5:dc:c2:0b:fd:9e:8a:f6:f7:ee:39:b8:00:2e:fc:0a:a3: e8:3f:5a:0d:a4:4b:cd:e2:f4:53:64:1b:c3:cc:85:4e:5a:c1: cf:8e:8e:ab -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUKAUmLsSFcPhpMHqEUiaRxWNNFQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3 MjY4ODlFQjAeFw0yNTA2MDExMzMxMDlaFw0yNjA1MzExMzM2MDlaMDMxMTAvBgNV BAMTKDAwMDI5NzIwQUQzNUNGMDdFOTAzRUY0RTc2MjczMUYwQTdBNUQ2N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzwuo6sw/JHeFJ+BECjxTke4qI Rz0qXlm8gR/UWoIpWNUVDZ5JurtbZ33SqmoD6LuwFKTMIKxH38107MyeZCnhJnw8 kKRR+Beg2cBV4u+RgIUwuuBBQITdkmKZKf9Umy9zNg87wuATLbgKnLdACyHXoUli ctoVUInSaQKpnsEa7ghLh1M8iK5/Qyy5TISqZlnECegjoUAu1xAtwuFy2CFz6P/m aHdahjYg8KO4PJBhC59iKjGWxJmoZPlb+t06OSYXsGQAl5LzOhbPOmTEnNamVcIY OSb48TMnxgH10fMenhZ4HXer1I62MrJdorud7DkIMtlndCDreFdiLk98ezjvAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUAAKXIK01zwfpA+9Odicx8Kel1nswHwYDVR0j BBgwFoAUt15fNlJDDO+W4eC9Ft2sQHJoieswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzAvQjc1RTVGMzY1MjQzMENFRjk2RTFFMEJEMTZEREFDNDA3MjY4ODlFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0I3NUU1RjM2NTI0MzBD RUY5NkUxRTBCRDE2RERBQzQwNzI2ODg5RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8wLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDY2NjUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMjMxMzUzMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMP4wDQYJKoZIhvcN AQELBQADggEBAG13Pybf+BOgi7E37RgbQPuBelWX5yUBEOQNXDCe+QWZZNHa4niz qAPOC4LJQWcIHMfAP4MLC11a/ocfr0KS1oo8N3J/FV0xcbMA5Z/+gIGyvsqEbJ9D tzXSmLTuuew6WYvN9AoN3XOlUPb4CUZtfvmWR7Rs6a8PMprQ8d4y7ooYFTLHWnlt fm5/2wSzTfZXa+50n+musnV+AHXEvRm/Mg20uwaYo6j1NWsjSEgn6oaDnZjh96ji QkVaFQE6dVLW+4kKxFdjYAsBUE/Xs4BE1+uTlmQoawxE+XDF3MIL/Z6K9vfuObgA LvwKo+g/Wg2kS83i9FNkG8PMhU5awc+Ojqs= -----END CERTIFICATE-----Generated at Fri Jun 6 12:06:23 2025 by rpki-client