$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333030333a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333030333a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: N4cuZX10wyj2Ko/1hhIp0Eyx+5tJLEro9I4pb43Uvcs= Subject key identifier: 4B:CD:E3:76:CD:F6:CC:7E:C6:5C:3F:86:11:A5:E6:36:77:50:F8:52 Certificate issuer: /CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Certificate serial: 1823A19C21135237088762F27EFFBA829CC07E34 Authority key identifier: 72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333030333a3a2f34382d3438203d3e20313531333439.roa Signing time: Fri 04 Jul 2025 19:57:39 +0000 ROA not before: Fri 04 Jul 2025 19:52:39 +0000 ROA not after: Fri 03 Jul 2026 19:57:39 +0000 asID: 151349 IP address blocks: 2a06:9f81:3003::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 20:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:23:a1:9c:21:13:52:37:08:87:62:f2:7e:ff:ba:82:9c:c0:7e:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Validity Not Before: Jul 4 19:52:39 2025 GMT Not After : Jul 3 19:57:39 2026 GMT Subject: CN=4BCDE376CDF6CC7EC65C3F8611A5E6367750F852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e7:e7:5d:ae:10:d3:db:9e:17:ea:a9:3c:1d: 9f:e2:f1:e7:eb:ad:ef:5d:54:e4:f9:b6:e3:bd:f7: 74:a2:7f:b2:96:81:1d:b5:92:ce:14:2d:08:ba:e5: 5e:70:42:36:67:53:3b:25:ef:80:1e:4b:c6:c4:9f: 7d:42:0f:ea:3d:16:b0:37:32:14:8a:b2:ab:86:55: 8f:18:dd:f7:be:5f:80:63:50:d2:51:2d:e9:6b:64: f2:77:60:b4:3a:53:64:39:50:07:40:38:a0:8e:db: 8c:20:db:15:a8:d4:46:14:42:a8:72:d1:29:85:0e: bc:a6:09:45:78:ae:ba:b6:bf:92:07:61:2a:f3:4d: e5:14:7a:ca:d4:da:86:46:fd:76:04:4c:c2:52:01: 04:73:d9:cd:d2:41:55:9b:cb:15:fe:7f:7e:3d:9f: cd:b0:53:f1:b4:57:f8:31:ea:e3:d4:1a:9d:96:43: b5:87:60:83:51:7f:bf:bf:6d:97:3f:37:e5:93:64: 8f:49:b7:e5:6f:93:de:9d:5b:47:fc:6e:8b:16:36: b5:e3:6c:57:1b:e7:a6:b8:eb:b5:0a:08:35:9d:da: 44:57:25:3f:f4:61:22:a6:ad:47:6c:0e:5e:7f:d5: 75:7e:0a:de:cb:8d:92:83:6b:64:43:d3:ae:2b:92: 20:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CD:E3:76:CD:F6:CC:7E:C6:5C:3F:86:11:A5:E6:36:77:50:F8:52 X509v3 Authority Key Identifier: keyid:72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333030333a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3003::/48 Signature Algorithm: sha256WithRSAEncryption 1c:5b:93:4e:87:c2:58:33:eb:36:1a:6e:20:0b:47:eb:01:ac: e5:80:25:1f:ce:d8:66:23:eb:3c:d5:d9:d0:4d:2d:ae:bc:a7: 75:bc:fb:38:9a:6c:65:df:28:f3:5d:1e:7b:5a:9a:69:97:70: c7:8a:92:39:3e:9c:13:c6:13:b5:97:5c:86:45:df:43:d8:14: 9f:78:db:d6:b9:1d:6b:4c:25:ef:52:9e:b2:72:20:3d:6f:f0: ba:bd:64:e7:6d:c7:e2:85:b9:5c:6a:b4:4c:06:cc:b1:2a:db: 73:3a:e0:5c:6d:f8:5b:67:e9:ca:8e:6f:b2:5f:46:a0:9e:a2: c8:0d:12:be:03:2a:b8:8b:89:6f:06:14:e9:e7:a2:a0:bd:59: ca:06:f7:fd:30:6d:fd:b1:b0:f8:2b:ae:83:d6:12:ca:50:19: d7:53:bf:ab:8a:d4:07:9c:fa:05:c4:62:68:5e:80:ef:3d:4c: 55:0d:77:12:cb:33:a1:4c:24:eb:81:1e:81:79:bc:b7:79:5e: f5:cd:4a:5a:72:ea:64:93:d9:b0:d7:cb:b3:26:e8:9e:08:68: d1:72:a8:cc:f0:e4:e9:9c:3d:7e:a7:64:57:a9:77:67:59:c0: b6:c0:42:19:17:e0:db:99:c0:cf:b4:d0:14:ea:e5:a4:2c:95: 6d:5b:82:79 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUGCOhnCETUjcIh2Lyfv+6gpzAfjQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3 MTdDOTNDQzAeFw0yNTA3MDQxOTUyMzlaFw0yNjA3MDMxOTU3MzlaMDMxMTAvBgNV BAMTKDRCQ0RFMzc2Q0RGNkNDN0VDNjVDM0Y4NjExQTVFNjM2Nzc1MEY4NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF5+ddrhDT254X6qk8HZ/i8efr re9dVOT5tuO993Sif7KWgR21ks4ULQi65V5wQjZnUzsl74AeS8bEn31CD+o9FrA3 MhSKsquGVY8Y3fe+X4BjUNJRLelrZPJ3YLQ6U2Q5UAdAOKCO24wg2xWo1EYUQqhy 0SmFDrymCUV4rrq2v5IHYSrzTeUUesrU2oZG/XYETMJSAQRz2c3SQVWbyxX+f349 n82wU/G0V/gx6uPUGp2WQ7WHYINRf7+/bZc/N+WTZI9Jt+Vvk96dW0f8bosWNrXj bFcb56a467UKCDWd2kRXJT/0YSKmrUdsDl5/1XV+Ct7LjZKDa2RD064rkiCHAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUS83jds32zH7GXD+GEaXmNndQ+FIwHwYDVR0j BBgwFoAUctHd4bGwRdi+Q53dEBSG5nF8k8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzEvNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3MTdDOTNDQy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzcyRDFEREUxQjFCMDQ1 RDhCRTQzOURERDEwMTQ4NkU2NzE3QzkzQ0MuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8xLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDMwMzMzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMAMwDQYJKoZIhvcN AQELBQADggEBABxbk06Hwlgz6zYabiALR+sBrOWAJR/O2GYj6zzV2dBNLa68p3W8 +ziabGXfKPNdHntammmXcMeKkjk+nBPGE7WXXIZF30PYFJ9429a5HWtMJe9SnrJy ID1v8Lq9ZOdtx+KFuVxqtEwGzLEq23M64Fxt+Ftn6cqOb7JfRqCeosgNEr4DKriL iW8GFOnnoqC9WcoG9/0wbf2xsPgrroPWEspQGddTv6uK1Aec+gXEYmhegO89TFUN dxLLM6FMJOuBHoF5vLd5XvXNSlpy6mST2bDXy7Mm6J4IaNFyqMzw5OmcPX6nZFep d2dZwLbAQhkX4NuZwM+00BTq5aQslW1bgnk= -----END CERTIFICATE-----Generated at Sat Jul 5 10:57:54 2025 by rpki-client