$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333030313a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333030313a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: X2l2seN9Wni1FQNI5w4252gttb4/G6sOTT401JAv18I= Subject key identifier: CF:FC:CE:6B:B3:C4:EF:87:07:6A:09:44:09:E6:EC:E4:05:66:38:49 Certificate issuer: /CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Certificate serial: 07A0C00C7446F204E444D3A1B1248F066DE2574C Authority key identifier: 72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333030313a3a2f34382d3438203d3e20313531333439.roa Signing time: Fri 04 Jul 2025 19:57:32 +0000 ROA not before: Fri 04 Jul 2025 19:52:32 +0000 ROA not after: Fri 03 Jul 2026 19:57:32 +0000 asID: 151349 IP address blocks: 2a06:9f81:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 20:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a0:c0:0c:74:46:f2:04:e4:44:d3:a1:b1:24:8f:06:6d:e2:57:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Validity Not Before: Jul 4 19:52:32 2025 GMT Not After : Jul 3 19:57:32 2026 GMT Subject: CN=CFFCCE6BB3C4EF87076A094409E6ECE405663849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bd:2b:ef:f7:a9:56:4f:45:22:32:b9:2b:7c: 94:16:03:32:6d:57:e5:ac:53:16:24:0c:8e:83:77: 45:7b:3f:d7:c0:a5:43:51:b5:ca:12:19:6d:27:d3: 30:e5:4b:92:57:3c:f3:40:7d:48:67:08:50:c5:71: 7c:64:52:bf:54:e2:69:92:e5:4d:b3:aa:e2:29:64: 57:87:22:71:85:29:cf:91:a8:dd:9d:7f:a0:8e:f7: ed:03:5e:26:c1:ff:fc:e8:ad:d1:dd:6b:07:c5:10: af:56:44:d5:37:a6:73:e6:38:4e:6b:bb:6e:b8:47: 70:96:26:3f:b9:0a:78:c1:99:a9:2c:2e:46:9d:5c: 2b:7c:09:88:31:4a:bd:3f:e9:57:39:b9:fb:4e:62: 91:db:7d:c0:c6:ed:6d:12:f4:81:4c:35:a6:ed:f9: 54:a4:65:fa:84:56:11:a7:dd:49:2e:40:5f:08:2a: 81:60:b5:6a:ff:e8:ea:da:82:1e:d4:80:6c:24:8d: c4:57:d8:48:40:62:96:d4:a0:5d:b7:d0:01:ba:22: 7b:ee:db:39:f0:7a:ff:d7:2c:ca:a0:15:f7:9b:3f: 02:af:1c:52:71:d1:2f:81:58:99:8f:a8:3b:84:b1: f0:02:8d:88:8e:be:2f:60:b0:9d:14:fb:29:53:92: 88:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FC:CE:6B:B3:C4:EF:87:07:6A:09:44:09:E6:EC:E4:05:66:38:49 X509v3 Authority Key Identifier: keyid:72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333030313a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3001::/48 Signature Algorithm: sha256WithRSAEncryption 42:d1:ab:3b:ea:a6:05:1d:88:4e:6c:b0:c3:7c:0a:84:81:72: e4:0e:d3:fe:e1:84:1a:a3:a5:4e:95:a2:f4:d8:b8:93:2c:15: 1e:37:a9:45:10:f0:42:af:08:11:2b:6a:8b:7d:43:4e:77:84: 22:d0:83:24:fa:57:23:ff:c0:96:55:9a:54:0e:0a:04:af:69: 77:7f:79:a6:0c:0b:96:e4:20:76:1b:4a:f3:91:cf:84:7d:c7: ae:8b:9c:bd:29:43:3f:e2:15:c6:6e:d8:ad:26:32:d2:21:90: 22:bb:5a:f2:98:ec:43:bd:6f:bd:55:c4:cb:39:96:e2:82:ee: f9:f3:c3:92:e1:4b:fa:bc:50:f0:ba:3d:8a:d0:f8:aa:c1:b3: 21:87:f3:94:a8:d2:0f:96:2c:c7:9b:01:0a:fa:c6:cc:a0:24: f8:d8:c2:5f:55:50:ef:fe:5b:88:16:56:62:a3:d7:a7:43:dc: ee:46:bc:88:62:36:09:9d:dc:1e:2d:df:4c:de:83:70:0e:a4: ad:1c:75:ce:d6:77:02:8d:ff:b6:ff:e0:dd:e6:05:65:45:a6: a5:ee:1a:b0:f0:d7:89:83:d7:ef:c2:8e:cf:83:7e:42:0b:5c: df:a2:1c:26:c8:29:48:5f:b8:00:02:e7:57:79:71:db:c7:53: 61:6b:96:d0 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUB6DADHRG8gTkRNOhsSSPBm3iV0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3 MTdDOTNDQzAeFw0yNTA3MDQxOTUyMzJaFw0yNjA3MDMxOTU3MzJaMDMxMTAvBgNV BAMTKENGRkNDRTZCQjNDNEVGODcwNzZBMDk0NDA5RTZFQ0U0MDU2NjM4NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+vSvv96lWT0UiMrkrfJQWAzJt V+WsUxYkDI6Dd0V7P9fApUNRtcoSGW0n0zDlS5JXPPNAfUhnCFDFcXxkUr9U4mmS 5U2zquIpZFeHInGFKc+RqN2df6CO9+0DXibB//zordHdawfFEK9WRNU3pnPmOE5r u264R3CWJj+5CnjBmaksLkadXCt8CYgxSr0/6Vc5uftOYpHbfcDG7W0S9IFMNabt +VSkZfqEVhGn3UkuQF8IKoFgtWr/6Oragh7UgGwkjcRX2EhAYpbUoF230AG6Invu 2znwev/XLMqgFfebPwKvHFJx0S+BWJmPqDuEsfACjYiOvi9gsJ0U+ylTkojVAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUz/zOa7PE74cHaglECebs5AVmOEkwHwYDVR0j BBgwFoAUctHd4bGwRdi+Q53dEBSG5nF8k8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzEvNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3MTdDOTNDQy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzcyRDFEREUxQjFCMDQ1 RDhCRTQzOURERDEwMTQ4NkU2NzE3QzkzQ0MuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8xLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDMwMzEzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMAEwDQYJKoZIhvcN AQELBQADggEBAELRqzvqpgUdiE5ssMN8CoSBcuQO0/7hhBqjpU6VovTYuJMsFR43 qUUQ8EKvCBEraot9Q053hCLQgyT6VyP/wJZVmlQOCgSvaXd/eaYMC5bkIHYbSvOR z4R9x66LnL0pQz/iFcZu2K0mMtIhkCK7WvKY7EO9b71VxMs5luKC7vnzw5LhS/q8 UPC6PYrQ+KrBsyGH85So0g+WLMebAQr6xsygJPjYwl9VUO/+W4gWVmKj16dD3O5G vIhiNgmd3B4t30zeg3AOpK0cdc7WdwKN/7b/4N3mBWVFpqXuGrDw14mD1+/Cjs+D fkILXN+iHCbIKUhfuAAC51d5cdvHU2FrltA= -----END CERTIFICATE-----Generated at Sat Jul 5 10:54:10 2025 by rpki-client