$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333030303a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333030303a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: 276dLuDJoJdkmMvl+NWGRMkNu8Sc1eeK0G+tuAIaX+w= Subject key identifier: BA:75:D3:57:12:06:DE:CD:FA:97:1A:85:3F:4A:A2:5E:25:88:E3:7A Certificate issuer: /CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Certificate serial: 0C40564CBF6A0BC98A6F2A0B61835A71C142C010 Authority key identifier: 72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333030303a3a2f34382d3438203d3e20313531333439.roa Signing time: Fri 04 Jul 2025 19:57:32 +0000 ROA not before: Fri 04 Jul 2025 19:52:32 +0000 ROA not after: Fri 03 Jul 2026 19:57:32 +0000 asID: 151349 IP address blocks: 2a06:9f81:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 20:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:40:56:4c:bf:6a:0b:c9:8a:6f:2a:0b:61:83:5a:71:c1:42:c0:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Validity Not Before: Jul 4 19:52:32 2025 GMT Not After : Jul 3 19:57:32 2026 GMT Subject: CN=BA75D3571206DECDFA971A853F4AA25E2588E37A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f0:23:74:1b:c2:e4:30:b5:7b:13:15:29:8e: 01:a2:7f:e1:8a:f5:d4:1d:4b:73:b3:c9:0e:f2:71: fb:7c:41:fc:15:aa:8a:82:51:22:f6:36:fa:19:c1: 31:ef:cd:01:7b:2b:f6:ae:be:b7:84:df:83:ec:97: 49:50:c0:2c:61:84:64:55:ab:a4:02:5f:ce:a2:27: 61:52:29:7c:aa:ab:64:48:e6:f6:9c:ee:0a:55:a9: 9f:da:53:54:aa:12:d9:90:ab:d5:f8:0a:1e:08:90: e4:59:c0:0c:dc:82:e2:d8:c0:e9:9b:5f:f3:26:32: 8e:e5:d9:3a:04:a2:61:fa:69:c6:4d:86:21:3f:ce: 1d:b3:7d:a9:40:1f:7c:a2:c9:d0:2b:68:53:1c:9e: b1:e7:62:8e:f1:fc:cb:c8:1f:cc:7f:c8:3f:2d:13: b0:02:4a:f0:86:51:1b:18:71:5c:70:72:b4:5f:65: d1:da:91:35:fb:ba:86:fc:f3:23:71:3f:b7:06:9d: 50:ca:e6:c4:7c:30:17:dd:e6:db:e2:f5:fd:9d:34: 97:f0:e0:6d:a0:09:c5:09:19:96:8b:22:4e:c4:8a: 35:f0:de:e5:65:28:76:d8:64:d3:d0:8c:43:27:70: 64:47:39:82:16:66:f1:19:06:37:3e:a5:b1:34:34: 55:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:75:D3:57:12:06:DE:CD:FA:97:1A:85:3F:4A:A2:5E:25:88:E3:7A X509v3 Authority Key Identifier: keyid:72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333030303a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3000::/48 Signature Algorithm: sha256WithRSAEncryption 1f:f1:db:18:36:b8:8a:e1:20:96:0f:bd:e1:06:05:09:5b:44: fc:66:d6:c7:0f:02:4f:71:49:84:b8:f4:f1:d4:e1:b0:d2:c4: 26:17:54:2e:cf:43:75:53:4d:0a:ae:f6:7c:d9:09:74:d2:1a: 42:d8:a9:87:aa:6c:81:d4:7e:cc:74:0e:fc:05:b1:94:5c:f7: c0:67:27:e9:5a:42:e1:16:e6:4e:94:1b:58:88:ee:68:f5:18: fd:10:a1:99:a8:1e:97:9c:eb:f0:89:95:cc:6c:47:b7:14:fb: ae:f3:62:e0:14:ab:35:28:c4:55:c0:a7:b2:1e:61:2a:0a:6f: c1:70:18:ff:57:7c:2d:71:13:d3:f1:15:34:5c:50:80:7b:a8: 51:61:d2:ad:c4:66:41:76:bd:a1:49:ae:17:52:f9:56:c4:74: e7:ae:0f:6e:07:c8:04:75:20:eb:fd:0b:b1:77:f8:54:45:06: 4f:94:16:5f:f8:ac:cb:6b:8b:c6:e2:52:8d:b2:c9:00:8f:e1: 2c:b7:9b:b4:72:77:af:b7:26:32:bf:67:13:7a:90:78:79:7d: 46:c7:55:51:73:f8:d9:24:ca:36:d6:27:5a:41:87:29:97:cf: 62:c7:95:43:77:8c:f0:ff:aa:9b:e0:d1:c8:ff:17:1d:89:f4: 9e:6d:66:03 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUDEBWTL9qC8mKbyoLYYNaccFCwBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3 MTdDOTNDQzAeFw0yNTA3MDQxOTUyMzJaFw0yNjA3MDMxOTU3MzJaMDMxMTAvBgNV BAMTKEJBNzVEMzU3MTIwNkRFQ0RGQTk3MUE4NTNGNEFBMjVFMjU4OEUzN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV8CN0G8LkMLV7ExUpjgGif+GK 9dQdS3OzyQ7ycft8QfwVqoqCUSL2NvoZwTHvzQF7K/auvreE34Psl0lQwCxhhGRV q6QCX86iJ2FSKXyqq2RI5vac7gpVqZ/aU1SqEtmQq9X4Ch4IkORZwAzcguLYwOmb X/MmMo7l2ToEomH6acZNhiE/zh2zfalAH3yiydAraFMcnrHnYo7x/MvIH8x/yD8t E7ACSvCGURsYcVxwcrRfZdHakTX7uob88yNxP7cGnVDK5sR8MBfd5tvi9f2dNJfw 4G2gCcUJGZaLIk7EijXw3uVlKHbYZNPQjEMncGRHOYIWZvEZBjc+pbE0NFUJAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUunXTVxIG3s36lxqFP0qiXiWI43owHwYDVR0j BBgwFoAUctHd4bGwRdi+Q53dEBSG5nF8k8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzEvNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3MTdDOTNDQy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzcyRDFEREUxQjFCMDQ1 RDhCRTQzOURERDEwMTQ4NkU2NzE3QzkzQ0MuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8xLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDMwMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMAAwDQYJKoZIhvcN AQELBQADggEBAB/x2xg2uIrhIJYPveEGBQlbRPxm1scPAk9xSYS49PHU4bDSxCYX VC7PQ3VTTQqu9nzZCXTSGkLYqYeqbIHUfsx0DvwFsZRc98BnJ+laQuEW5k6UG1iI 7mj1GP0QoZmoHpec6/CJlcxsR7cU+67zYuAUqzUoxFXAp7IeYSoKb8FwGP9XfC1x E9PxFTRcUIB7qFFh0q3EZkF2vaFJrhdS+VbEdOeuD24HyAR1IOv9C7F3+FRFBk+U Fl/4rMtri8biUo2yyQCP4Sy3m7Ryd6+3JjK/ZxN6kHh5fUbHVVFz+NkkyjbWJ1pB hymXz2LHlUN3jPD/qpvg0cj/Fx2J9J5tZgM= -----END CERTIFICATE-----Generated at Sat Jul 5 10:59:23 2025 by rpki-client