$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333031313a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333031313a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: ByjB4xyP5eQ2YxegjF6Ty2qaNmYok2uvWKSmxWXHruA= Subject key identifier: AA:55:D8:B6:B4:81:3B:A5:49:6C:E4:62:16:71:96:62:F0:91:E8:17 Certificate issuer: /CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Certificate serial: 09E01739D0626A4782C1B92DE7B0A9871F9F8125 Authority key identifier: 72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333031313a3a2f34382d3438203d3e20313531333439.roa Signing time: Fri 04 Jul 2025 19:57:41 +0000 ROA not before: Fri 04 Jul 2025 19:52:41 +0000 ROA not after: Fri 03 Jul 2026 19:57:41 +0000 asID: 151349 IP address blocks: 2a06:9f81:3011::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 20:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:e0:17:39:d0:62:6a:47:82:c1:b9:2d:e7:b0:a9:87:1f:9f:81:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Validity Not Before: Jul 4 19:52:41 2025 GMT Not After : Jul 3 19:57:41 2026 GMT Subject: CN=AA55D8B6B4813BA5496CE46216719662F091E817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2f:c8:ba:46:d6:65:00:ad:48:4d:02:d1:91: ec:da:87:a3:ac:6a:75:43:a2:b6:19:cc:a6:71:53: 31:33:5f:b0:99:c7:b9:58:32:9f:9c:91:e9:61:c9: 39:4f:25:c2:a4:04:ee:f7:ca:52:77:92:f1:e2:89: 9a:31:20:c6:30:2c:d6:e5:5f:10:17:61:31:8c:12: e2:db:cf:cf:cc:56:da:a8:14:4b:84:89:8f:8c:d5: de:29:73:f5:d4:7b:bd:6c:90:08:80:74:dd:0e:7c: 47:9d:f7:d7:ef:83:a2:8a:ab:21:13:d8:20:96:cc: db:e9:6d:b0:ad:68:09:a3:08:db:00:54:a8:f8:3f: 6e:fa:4c:20:2d:9b:53:57:34:aa:c7:71:47:21:92: ab:1b:4b:b6:15:97:45:f4:22:ca:30:33:a3:c4:ab: 1d:a9:99:6e:ed:e1:89:4f:16:d4:34:5e:60:02:8a: 85:0d:41:de:7f:0b:55:5b:a9:54:cf:0f:2d:3e:37: 00:7b:db:ee:ef:7f:d5:df:f6:cc:ed:8f:f2:89:b5: f1:52:9f:f5:ca:60:53:21:67:07:83:f5:00:42:88: 63:37:a1:49:a7:5f:ce:2c:46:17:c0:71:a1:99:62: 9f:43:5d:7a:75:21:5b:e0:73:9d:c6:d5:d8:85:39: 77:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:55:D8:B6:B4:81:3B:A5:49:6C:E4:62:16:71:96:62:F0:91:E8:17 X509v3 Authority Key Identifier: keyid:72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333031313a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3011::/48 Signature Algorithm: sha256WithRSAEncryption 2a:42:9f:21:e6:f3:56:e5:9d:6a:24:03:8b:46:ba:29:0e:8e: 5d:65:1a:d2:f6:77:a6:0b:51:51:3f:72:3c:c1:53:3f:bb:99: 6b:e6:30:49:3d:ad:c9:3e:2d:99:e8:7c:d9:05:21:a2:83:f6: 2c:2d:00:e8:61:45:b1:a9:bc:77:b0:56:b1:45:41:70:99:e3: e6:da:ad:7c:1f:d3:1e:81:05:8e:73:f3:2a:88:37:51:30:b5: e7:cc:dc:70:36:9e:3a:16:20:71:1c:2f:a6:dd:24:1d:52:17: 4d:82:a3:7b:9e:7a:70:5b:c1:10:92:fd:ef:a1:89:7b:eb:9a: bb:07:54:2b:27:f7:7a:02:51:59:93:bd:da:fd:db:7e:b8:5d: 3c:29:40:e4:67:bb:1f:42:ff:1b:a5:49:25:a1:a8:22:63:10: 3f:8a:26:e0:ad:18:fb:93:d0:00:0f:9d:40:ea:e2:14:03:f8: e8:8b:18:e9:c0:3c:9f:58:ec:8e:ee:d8:c4:c2:98:f1:0f:b4: 52:85:fb:ee:1e:12:08:78:d9:02:0a:4b:5a:6a:e8:e4:24:a7: 76:48:42:53:48:a2:0b:2f:7e:63:c4:2f:13:f9:bd:0f:5e:58: 8a:1e:35:e0:49:94:1b:21:b7:aa:58:7b:33:cf:ec:80:c9:02: 6d:75:da:b1 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUCeAXOdBiakeCwbkt57Cphx+fgSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3 MTdDOTNDQzAeFw0yNTA3MDQxOTUyNDFaFw0yNjA3MDMxOTU3NDFaMDMxMTAvBgNV BAMTKEFBNTVEOEI2QjQ4MTNCQTU0OTZDRTQ2MjE2NzE5NjYyRjA5MUU4MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCL8i6RtZlAK1ITQLRkezah6Os anVDorYZzKZxUzEzX7CZx7lYMp+ckelhyTlPJcKkBO73ylJ3kvHiiZoxIMYwLNbl XxAXYTGMEuLbz8/MVtqoFEuEiY+M1d4pc/XUe71skAiAdN0OfEed99fvg6KKqyET 2CCWzNvpbbCtaAmjCNsAVKj4P276TCAtm1NXNKrHcUchkqsbS7YVl0X0IsowM6PE qx2pmW7t4YlPFtQ0XmACioUNQd5/C1VbqVTPDy0+NwB72+7vf9Xf9sztj/KJtfFS n/XKYFMhZweD9QBCiGM3oUmnX84sRhfAcaGZYp9DXXp1IVvgc53G1diFOXcfAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUqlXYtrSBO6VJbORiFnGWYvCR6BcwHwYDVR0j BBgwFoAUctHd4bGwRdi+Q53dEBSG5nF8k8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzEvNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3MTdDOTNDQy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzcyRDFEREUxQjFCMDQ1 RDhCRTQzOURERDEwMTQ4NkU2NzE3QzkzQ0MuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8xLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDMxMzEzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMBEwDQYJKoZIhvcN AQELBQADggEBACpCnyHm81blnWokA4tGuikOjl1lGtL2d6YLUVE/cjzBUz+7mWvm MEk9rck+LZnofNkFIaKD9iwtAOhhRbGpvHewVrFFQXCZ4+barXwf0x6BBY5z8yqI N1EwtefM3HA2njoWIHEcL6bdJB1SF02Co3ueenBbwRCS/e+hiXvrmrsHVCsn93oC UVmTvdr92364XTwpQORnux9C/xulSSWhqCJjED+KJuCtGPuT0AAPnUDq4hQD+OiL GOnAPJ9Y7I7u2MTCmPEPtFKF++4eEgh42QIKS1pq6OQkp3ZIQlNIogsvfmPELxP5 vQ9eWIoeNeBJlBsht6pYezPP7IDJAm112rE= -----END CERTIFICATE-----Generated at Sat Jul 5 10:55:31 2025 by rpki-client