$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333033303a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333033303a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: RJHxzDLA3nrmTNOFE+f/Mfx4nMFu/HoPiRk5LWoaAB4= Subject key identifier: 9D:75:03:4A:2D:3A:FA:CF:11:75:52:E0:05:BB:AC:19:DA:91:39:33 Certificate issuer: /CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Certificate serial: 6F8D98ABD595349BFF56B32450E0D081C48D67B3 Authority key identifier: 72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333033303a3a2f34382d3438203d3e20313531333439.roa Signing time: Fri 04 Jul 2025 19:57:37 +0000 ROA not before: Fri 04 Jul 2025 19:52:37 +0000 ROA not after: Fri 03 Jul 2026 19:57:37 +0000 asID: 151349 IP address blocks: 2a06:9f81:3030::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 20:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:8d:98:ab:d5:95:34:9b:ff:56:b3:24:50:e0:d0:81:c4:8d:67:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Validity Not Before: Jul 4 19:52:37 2025 GMT Not After : Jul 3 19:57:37 2026 GMT Subject: CN=9D75034A2D3AFACF117552E005BBAC19DA913933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:05:30:0e:af:b9:9b:5c:15:ce:fa:08:25:b9: 0c:68:34:32:68:a0:d0:b2:ba:01:61:76:7e:93:f6: 24:5c:de:23:95:f5:d8:4f:56:4b:f2:e5:2b:f4:8e: e8:18:fe:47:a6:b5:ac:84:16:c6:64:d7:36:83:3d: fe:47:e2:73:d7:80:8c:34:bc:7b:08:48:87:2a:bd: 36:c4:af:bf:dd:a1:49:6b:07:4d:a9:ea:b9:63:d7: 4e:61:53:3d:c6:05:0b:1e:18:a7:4d:64:a0:2c:d5: 3d:34:7d:6c:ff:5c:7d:68:54:7e:8e:e4:d0:29:a6: ad:b7:63:c5:c0:bd:a1:61:31:ea:35:af:16:c5:b2: 8c:f8:05:61:fa:b0:6a:26:a9:43:2e:77:28:ed:87: 02:d1:da:32:8e:26:c7:ae:2b:34:53:e2:03:66:f1: d6:2d:07:72:b9:93:b1:e5:1c:e3:dd:ea:df:66:0b: 60:8c:b6:a3:fc:74:63:38:26:0b:be:91:24:6e:d8: 77:2d:2e:2a:63:79:24:7c:1a:b2:9a:cf:72:c6:1d: be:75:6d:36:1b:08:4c:7a:c8:02:69:1b:7e:1a:79: 9e:c3:a5:e8:ff:5f:b8:19:d5:74:6c:21:b7:24:12: c9:e6:51:af:81:69:98:6d:05:04:20:18:a3:41:bc: 5c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:75:03:4A:2D:3A:FA:CF:11:75:52:E0:05:BB:AC:19:DA:91:39:33 X509v3 Authority Key Identifier: keyid:72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333033303a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3030::/48 Signature Algorithm: sha256WithRSAEncryption a0:34:4d:de:c3:29:3f:11:86:36:44:de:03:e4:2a:8e:33:1d: ac:04:d2:07:4e:11:f8:69:ea:de:5e:2f:d8:1f:b1:bd:ed:7c: ac:4d:d9:72:6f:47:c6:6a:9c:2e:a6:2a:1b:b4:cf:62:8e:a6: ef:58:3c:05:e5:b6:b2:2f:b9:2e:43:d6:1b:8c:c9:20:64:f8: 63:15:17:86:62:d7:df:19:4d:84:04:0b:a3:bc:12:ae:d3:5c: 6d:2a:3a:b7:e4:14:05:dc:f0:d4:18:5a:3a:5d:00:6b:e5:b6: 8d:e0:c9:d5:4b:3e:30:da:18:af:49:bf:aa:6b:74:c3:92:01: b8:31:b7:5e:de:99:9c:10:81:c3:d0:ba:0d:12:41:09:06:07: ad:f4:93:74:d3:4b:bd:13:ec:27:a2:9b:51:ae:e8:76:74:19: ef:48:37:09:77:ad:3f:2e:5b:3e:63:ff:fb:90:9f:d7:29:d8: 30:66:44:49:87:d6:fc:69:fd:3e:a7:cb:5b:f6:f8:b7:08:fc: 5e:35:52:6c:28:de:4f:7c:c0:09:f5:5f:c1:01:bb:a7:33:ea: d6:94:91:b0:96:e1:1a:42:c7:be:2b:6d:cc:92:4b:1f:10:25: fa:15:ce:e9:ab:a8:a4:29:83:9d:d7:c8:bb:4e:bb:de:96:a0: e8:78:4c:fd -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUb42Yq9WVNJv/VrMkUODQgcSNZ7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3 MTdDOTNDQzAeFw0yNTA3MDQxOTUyMzdaFw0yNjA3MDMxOTU3MzdaMDMxMTAvBgNV BAMTKDlENzUwMzRBMkQzQUZBQ0YxMTc1NTJFMDA1QkJBQzE5REE5MTM5MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjBTAOr7mbXBXO+ggluQxoNDJo oNCyugFhdn6T9iRc3iOV9dhPVkvy5Sv0jugY/kemtayEFsZk1zaDPf5H4nPXgIw0 vHsISIcqvTbEr7/doUlrB02p6rlj105hUz3GBQseGKdNZKAs1T00fWz/XH1oVH6O 5NAppq23Y8XAvaFhMeo1rxbFsoz4BWH6sGomqUMudyjthwLR2jKOJseuKzRT4gNm 8dYtB3K5k7HlHOPd6t9mC2CMtqP8dGM4Jgu+kSRu2HctLipjeSR8GrKaz3LGHb51 bTYbCEx6yAJpG34aeZ7Dpej/X7gZ1XRsIbckEsnmUa+BaZhtBQQgGKNBvFx9AgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUnXUDSi06+s8RdVLgBbusGdqROTMwHwYDVR0j BBgwFoAUctHd4bGwRdi+Q53dEBSG5nF8k8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzEvNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3MTdDOTNDQy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzcyRDFEREUxQjFCMDQ1 RDhCRTQzOURERDEwMTQ4NkU2NzE3QzkzQ0MuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8xLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDMzMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMDAwDQYJKoZIhvcN AQELBQADggEBAKA0Td7DKT8RhjZE3gPkKo4zHawE0gdOEfhp6t5eL9gfsb3tfKxN 2XJvR8ZqnC6mKhu0z2KOpu9YPAXltrIvuS5D1huMySBk+GMVF4Zi198ZTYQEC6O8 Eq7TXG0qOrfkFAXc8NQYWjpdAGvlto3gydVLPjDaGK9Jv6prdMOSAbgxt17emZwQ gcPQug0SQQkGB630k3TTS70T7Ceim1Gu6HZ0Ge9INwl3rT8uWz5j//uQn9cp2DBm REmH1vxp/T6ny1v2+LcI/F41Umwo3k98wAn1X8EBu6cz6taUkbCW4RpCx74rbcyS Sx8QJfoVzumrqKQpg53XyLtOu96WoOh4TP0= -----END CERTIFICATE-----Generated at Sat Jul 5 10:58:42 2025 by rpki-client