$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333066653a3a2f34382d3438203d3e20323135303837.roa File: 326130363a396638313a333066653a3a2f34382d3438203d3e20323135303837.roa (raw, json) Hash identifier: QSIHZErz8PUVzkayOWEGMrhnu52B3t9jh0CDu6kAc4Y= Subject key identifier: 52:63:3F:C1:CD:D5:02:4B:A1:2F:BF:4E:24:B8:C3:54:AD:3A:57:A2 Certificate issuer: /CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Certificate serial: 1B0AFE207E1AA10770C273162FFAE9516A0842B1 Authority key identifier: 72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333066653a3a2f34382d3438203d3e20323135303837.roa Signing time: Fri 04 Jul 2025 19:57:40 +0000 ROA not before: Fri 04 Jul 2025 19:52:40 +0000 ROA not after: Fri 03 Jul 2026 19:57:40 +0000 asID: 215087 IP address blocks: 2a06:9f81:30fe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 20:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:0a:fe:20:7e:1a:a1:07:70:c2:73:16:2f:fa:e9:51:6a:08:42:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Validity Not Before: Jul 4 19:52:40 2025 GMT Not After : Jul 3 19:57:40 2026 GMT Subject: CN=52633FC1CDD5024BA12FBF4E24B8C354AD3A57A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:18:c6:17:c4:ff:4f:30:7a:9e:19:6e:ee:f6: 8c:9e:55:fc:d1:b5:04:df:e2:04:0c:a3:4b:fb:5c: 32:09:40:62:5b:4e:95:49:df:8f:9a:5c:5f:10:9b: 17:aa:a2:bc:7a:64:e7:42:d2:5d:b3:00:07:77:eb: 1d:6e:14:1b:7e:48:ca:5b:ec:96:2e:e3:3d:7f:6f: 40:51:4d:32:86:29:9b:51:47:4a:2f:aa:28:08:b5: 7b:ee:18:f9:81:74:7d:e2:7f:77:b4:de:57:68:37: 49:cb:f9:62:63:39:d1:6b:ae:08:3a:ef:6b:dc:42: 82:ee:88:8b:88:b5:eb:54:16:e2:21:b3:15:8c:71: e8:90:bf:cf:24:17:d9:b8:f8:dd:d9:93:5d:30:db: f6:c6:b3:13:18:02:c5:2e:bc:93:f2:5f:61:89:0c: aa:72:fc:17:cb:39:89:f4:d1:42:c4:8a:d0:c4:9c: ff:1c:45:73:c4:34:22:3a:bf:0a:da:c5:56:a3:6e: 35:6c:1f:9e:cc:8e:78:91:c6:04:30:47:64:1d:1e: 97:99:e8:9e:bc:bb:3f:06:cf:c6:ec:5b:1a:cd:80: 73:81:45:94:25:ab:d1:9e:01:e1:e7:79:4f:99:fc: c7:05:3a:9f:eb:d8:f2:5a:10:e1:d7:ee:6b:92:d6: 4e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:63:3F:C1:CD:D5:02:4B:A1:2F:BF:4E:24:B8:C3:54:AD:3A:57:A2 X509v3 Authority Key Identifier: keyid:72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333066653a3a2f34382d3438203d3e20323135303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:30fe::/48 Signature Algorithm: sha256WithRSAEncryption 48:e9:a2:49:a4:ef:13:f8:9b:a7:9a:83:5e:68:82:cb:65:ac: 8f:d2:02:a6:7b:81:71:bb:3b:03:ae:b7:e6:2c:fe:86:4c:f2: e6:83:bd:26:8c:ea:ed:9c:92:3a:15:33:c9:a6:18:1a:25:64: ba:fc:3d:fc:cb:93:39:75:6a:2a:47:fd:c2:db:69:64:43:a0: 48:3f:e2:4f:0d:96:2a:31:ed:fe:6a:0f:7a:8b:7f:db:eb:be: 54:0f:d4:41:a3:d8:39:ff:ed:8f:e6:c5:6a:3c:38:e8:38:6e: 89:41:2b:cb:5e:ef:bf:74:69:c0:77:9f:07:79:74:c2:b9:a5: a9:d3:f4:81:40:fa:d3:75:41:db:6c:77:66:2c:1a:15:8b:2c: 48:81:b3:be:7d:a1:3b:26:7c:ef:7f:5c:f7:b3:89:30:ac:8b: 6c:cf:6d:c5:4a:6c:5a:f3:3b:f2:3d:81:17:bb:6b:f4:3e:5d: 18:56:59:0a:41:69:05:78:0b:86:2a:ba:23:e0:f8:52:1f:3d: 86:0f:59:74:01:ff:bb:a5:02:69:90:ab:95:57:48:4f:f7:5d: 37:d7:38:93:80:cc:31:f5:bf:49:0e:ae:b1:88:66:3b:d9:cc: dd:96:ba:b9:8f:49:3e:65:f5:3f:e4:bf:f4:a9:ba:1b:37:8d: 9f:5e:af:c7 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUGwr+IH4aoQdwwnMWL/rpUWoIQrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3 MTdDOTNDQzAeFw0yNTA3MDQxOTUyNDBaFw0yNjA3MDMxOTU3NDBaMDMxMTAvBgNV BAMTKDUyNjMzRkMxQ0RENTAyNEJBMTJGQkY0RTI0QjhDMzU0QUQzQTU3QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXGMYXxP9PMHqeGW7u9oyeVfzR tQTf4gQMo0v7XDIJQGJbTpVJ34+aXF8Qmxeqorx6ZOdC0l2zAAd36x1uFBt+SMpb 7JYu4z1/b0BRTTKGKZtRR0ovqigItXvuGPmBdH3if3e03ldoN0nL+WJjOdFrrgg6 72vcQoLuiIuItetUFuIhsxWMceiQv88kF9m4+N3Zk10w2/bGsxMYAsUuvJPyX2GJ DKpy/BfLOYn00ULEitDEnP8cRXPENCI6vwraxVajbjVsH57MjniRxgQwR2QdHpeZ 6J68uz8Gz8bsWxrNgHOBRZQlq9GeAeHneU+Z/McFOp/r2PJaEOHX7muS1k4JAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUUmM/wc3VAkuhL79OJLjDVK06V6IwHwYDVR0j BBgwFoAUctHd4bGwRdi+Q53dEBSG5nF8k8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzEvNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3MTdDOTNDQy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzcyRDFEREUxQjFCMDQ1 RDhCRTQzOURERDEwMTQ4NkU2NzE3QzkzQ0MuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8xLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDY2NjUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMjMxMzUzMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMP4wDQYJKoZIhvcN AQELBQADggEBAEjpokmk7xP4m6eag15ogstlrI/SAqZ7gXG7OwOut+Ys/oZM8uaD vSaM6u2ckjoVM8mmGBolZLr8PfzLkzl1aipH/cLbaWRDoEg/4k8Nliox7f5qD3qL f9vrvlQP1EGj2Dn/7Y/mxWo8OOg4bolBK8te7790acB3nwd5dMK5panT9IFA+tN1 Qdtsd2YsGhWLLEiBs759oTsmfO9/XPeziTCsi2zPbcVKbFrzO/I9gRe7a/Q+XRhW WQpBaQV4C4YquiPg+FIfPYYPWXQB/7ulAmmQq5VXSE/3XTfXOJOAzDH1v0kOrrGI ZjvZzN2WurmPST5l9T/kv/Spuhs3jZ9er8c= -----END CERTIFICATE-----Generated at Sat Jul 5 10:54:09 2025 by rpki-client