$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333034343a3a2f34382d3438203d3e20313531333439.roa File: 326130363a396638313a333034343a3a2f34382d3438203d3e20313531333439.roa (raw, json) Hash identifier: FMHtUC3+tr3RBZxG6MYw1AEp8NuSGMah0Dj6h/Gm5sU= Subject key identifier: C9:52:E4:F9:D2:C3:32:E2:B7:43:58:AC:C2:AA:D8:44:61:AE:F6:97 Certificate issuer: /CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Certificate serial: 287A961F27D1C00398668D97D86734C2EEB599C6 Authority key identifier: 72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333034343a3a2f34382d3438203d3e20313531333439.roa Signing time: Fri 04 Jul 2025 19:57:33 +0000 ROA not before: Fri 04 Jul 2025 19:52:33 +0000 ROA not after: Fri 03 Jul 2026 19:57:33 +0000 asID: 151349 IP address blocks: 2a06:9f81:3044::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 20:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:7a:96:1f:27:d1:c0:03:98:66:8d:97:d8:67:34:c2:ee:b5:99:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Validity Not Before: Jul 4 19:52:33 2025 GMT Not After : Jul 3 19:57:33 2026 GMT Subject: CN=C952E4F9D2C332E2B74358ACC2AAD84461AEF697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:91:22:df:36:9e:5c:03:f0:fa:65:8e:40:d9: 57:81:d8:3a:df:de:be:09:e3:40:71:78:e2:ed:61: a3:a3:5d:b1:43:82:d0:b5:46:a9:53:71:a9:77:7e: bb:e3:2f:f3:e8:2b:b3:db:90:86:61:75:e1:44:56: ed:94:cc:d3:cc:77:f3:8b:c4:e3:6d:d6:bc:e2:56: 48:15:64:9e:39:09:c2:c8:00:2b:47:3e:23:39:40: 91:74:d3:5c:7d:9f:df:6b:11:cf:92:ce:87:9c:62: b3:c6:b7:f0:54:87:40:c7:5a:10:54:bb:c9:b1:31: e7:75:78:86:03:bf:88:ae:bc:ae:93:af:6a:d2:05: 06:57:17:9d:c8:26:6d:4e:07:85:81:f9:a1:30:cd: 78:5f:13:59:19:52:7a:9c:8a:d9:c1:3c:3b:41:1d: 2c:f1:52:d1:15:1a:f0:a5:a4:03:4c:0a:bb:08:f9: db:59:4c:1a:d2:bd:d8:42:f2:ca:7c:2e:dd:9f:52: be:08:09:c2:fc:8a:1f:93:fb:69:b7:6d:07:b9:d3: 5b:30:dd:67:03:33:2a:67:ed:73:9e:97:6b:81:60: 2f:2a:24:79:52:54:50:d3:42:79:5d:bc:98:39:5d: be:2d:3e:e4:2c:59:6a:83:b5:c5:41:1a:a2:46:d5: 14:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:52:E4:F9:D2:C3:32:E2:B7:43:58:AC:C2:AA:D8:44:61:AE:F6:97 X509v3 Authority Key Identifier: keyid:72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333034343a3a2f34382d3438203d3e20313531333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3044::/48 Signature Algorithm: sha256WithRSAEncryption 52:5a:59:96:e8:10:61:92:91:04:7b:13:0d:f1:01:80:9d:bf: 7a:8b:60:ec:61:22:31:85:84:41:6f:ea:61:ec:e4:0c:a1:7c: d4:be:9c:06:3d:21:e2:72:c3:c5:10:2e:b1:a4:f1:9b:69:eb: 61:47:15:18:ef:64:c0:e9:b5:61:84:ed:a5:40:28:63:fd:0e: c2:76:df:27:3b:25:51:62:b8:08:4f:ad:0d:ca:8d:8b:7b:00: bd:6d:e5:81:d2:65:23:30:33:4a:73:be:97:74:4c:c8:d9:66: ac:c7:a9:1b:d0:d7:f1:9f:9a:ea:54:22:59:f1:b6:83:80:3f: e8:35:53:ab:e7:4c:26:67:1e:26:6b:e4:66:9a:39:a8:33:3d: b5:ce:9b:3f:50:88:e4:c2:e3:86:81:45:1f:69:af:fe:cc:9d: 36:8c:b0:7a:7d:85:8f:22:7a:c6:4f:0f:99:a9:46:12:60:c3: 4c:84:6e:d7:81:08:a9:97:05:fb:0b:48:04:a5:41:b2:f0:52: 4c:be:66:5b:7f:de:b4:83:bc:2a:0d:1d:c1:fe:ae:7b:4d:68: 13:63:fa:1d:69:32:34:aa:c8:d9:ea:45:d6:1a:99:16:9b:a6: d9:f8:8d:67:82:07:c2:8d:62:1a:35:a2:29:ca:82:d6:91:27: 05:d0:91:2a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUKHqWHyfRwAOYZo2X2Gc0wu61mcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3 MTdDOTNDQzAeFw0yNTA3MDQxOTUyMzNaFw0yNjA3MDMxOTU3MzNaMDMxMTAvBgNV BAMTKEM5NTJFNEY5RDJDMzMyRTJCNzQzNThBQ0MyQUFEODQ0NjFBRUY2OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDckSLfNp5cA/D6ZY5A2VeB2Drf 3r4J40BxeOLtYaOjXbFDgtC1RqlTcal3frvjL/PoK7PbkIZhdeFEVu2UzNPMd/OL xONt1rziVkgVZJ45CcLIACtHPiM5QJF001x9n99rEc+SzoecYrPGt/BUh0DHWhBU u8mxMed1eIYDv4iuvK6Tr2rSBQZXF53IJm1OB4WB+aEwzXhfE1kZUnqcitnBPDtB HSzxUtEVGvClpANMCrsI+dtZTBrSvdhC8sp8Lt2fUr4ICcL8ih+T+2m3bQe501sw 3WcDMypn7XOel2uBYC8qJHlSVFDTQnldvJg5Xb4tPuQsWWqDtcVBGqJG1RTDAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUyVLk+dLDMuK3Q1iswqrYRGGu9pcwHwYDVR0j BBgwFoAUctHd4bGwRdi+Q53dEBSG5nF8k8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzEvNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3MTdDOTNDQy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzcyRDFEREUxQjFCMDQ1 RDhCRTQzOURERDEwMTQ4NkU2NzE3QzkzQ0MuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8xLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDM0MzQzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzEzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMEQwDQYJKoZIhvcN AQELBQADggEBAFJaWZboEGGSkQR7Ew3xAYCdv3qLYOxhIjGFhEFv6mHs5AyhfNS+ nAY9IeJyw8UQLrGk8Ztp62FHFRjvZMDptWGE7aVAKGP9DsJ23yc7JVFiuAhPrQ3K jYt7AL1t5YHSZSMwM0pzvpd0TMjZZqzHqRvQ1/GfmupUIlnxtoOAP+g1U6vnTCZn HiZr5GaaOagzPbXOmz9QiOTC44aBRR9pr/7MnTaMsHp9hY8iesZPD5mpRhJgw0yE bteBCKmXBfsLSASlQbLwUky+Zlt/3rSDvCoNHcH+rntNaBNj+h1pMjSqyNnqRdYa mRabptn4jWeCB8KNYho1oinKgtaRJwXQkSo= -----END CERTIFICATE-----Generated at Sat Jul 5 10:54:07 2025 by rpki-client