$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626131313a3a2f34382d3438203d3e20313939353138.roa File: 326130613a363034303a626131313a3a2f34382d3438203d3e20313939353138.roa (raw, json) Hash identifier: yCliR8haAYA7CSZY5kVvSLIZviiVyUgreRvFthnsPQM= Subject key identifier: 10:F4:46:9C:C7:A6:34:A7:13:EE:20:28:20:89:E5:11:E0:BE:6E:87 Certificate issuer: /CN=756560C5B960222CE81AF47A8B758E1741461E7F Certificate serial: 03C9BA190115BD0759DD7DF6FF4C1E595E83AFC0 Authority key identifier: 75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626131313a3a2f34382d3438203d3e20313939353138.roa Signing time: Mon 13 Jan 2025 16:03:25 +0000 ROA not before: Mon 13 Jan 2025 15:58:25 +0000 ROA not after: Mon 12 Jan 2026 16:03:25 +0000 asID: 199518 IP address blocks: 2a0a:6040:ba11::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 14:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:c9:ba:19:01:15:bd:07:59:dd:7d:f6:ff:4c:1e:59:5e:83:af:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=756560C5B960222CE81AF47A8B758E1741461E7F Validity Not Before: Jan 13 15:58:25 2025 GMT Not After : Jan 12 16:03:25 2026 GMT Subject: CN=10F4469CC7A634A713EE20282089E511E0BE6E87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:68:9d:8f:1d:66:fc:23:44:3d:11:2a:96:d2: 6a:22:5f:af:94:7e:73:fe:18:81:ce:8b:2a:1d:e1: d2:4b:f9:81:03:2c:c6:1f:de:4a:72:55:bb:7f:6c: c8:47:a0:7e:26:a2:00:92:bf:c9:06:dc:1e:0b:3e: c1:7a:d5:7f:9d:82:dd:9f:22:22:63:8d:af:69:5b: 13:09:7a:55:e2:d2:29:21:21:56:c0:c4:76:a1:cd: be:7a:dd:ed:a2:68:95:b2:8d:ef:04:e0:21:48:bb: 42:74:ca:16:08:2d:a8:69:18:f0:9d:c1:cd:a3:0e: 6f:cc:3f:dd:e6:63:27:a8:0c:fd:bb:c6:b4:3d:f0: 36:25:ee:cd:b7:91:23:51:44:f4:b1:2a:d5:18:4d: 14:fb:a7:76:ea:74:c2:1a:b5:9f:ab:cf:a5:ca:ec: 38:25:7a:60:aa:9d:48:6f:54:61:8e:df:ed:9b:d6: 9b:2f:f3:4d:e0:b4:26:d3:48:30:a3:ee:14:90:ec: 61:91:c6:f8:38:c6:4a:e7:3d:c8:5a:f6:bd:ae:e1: 6d:18:3a:17:40:8f:d1:db:1c:27:f0:c2:b1:c2:a8: da:f6:46:f3:bf:a5:ed:86:77:64:7b:3b:9a:0c:e8: f3:6c:a0:13:c7:64:18:77:5a:35:36:2f:8e:be:17: ae:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F4:46:9C:C7:A6:34:A7:13:EE:20:28:20:89:E5:11:E0:BE:6E:87 X509v3 Authority Key Identifier: keyid:75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626131313a3a2f34382d3438203d3e20313939353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ba11::/48 Signature Algorithm: sha256WithRSAEncryption 12:88:01:fb:56:7d:66:c1:7f:8b:fb:c7:f4:34:09:d0:40:b8: b9:3a:3e:cb:ee:2d:59:8d:a9:4f:3c:79:e9:40:75:04:6d:93: e1:d7:b1:4a:ea:68:26:bc:10:d2:0a:77:ec:2d:28:07:ce:61: 04:d1:b4:5c:92:b3:84:fb:4d:71:ad:5c:5e:ab:17:17:ed:07: 69:31:c7:3b:8b:10:83:de:65:1c:24:7d:52:55:78:15:a7:88: de:7e:52:89:7a:62:59:0e:2b:16:b4:05:4e:4b:55:5d:38:61: 04:07:94:13:47:c9:fe:b8:36:e2:b5:0c:9d:d5:5e:5b:35:d0: ac:5c:7a:c2:22:13:16:c4:5f:86:87:f3:fb:43:6b:3d:64:1c: c7:72:7b:1b:0b:6d:01:de:5c:86:d4:70:35:dd:84:47:1f:48: dc:d0:00:2c:62:37:ee:1c:ac:76:7d:a9:42:56:9b:06:ab:35: 0e:65:d0:62:c5:ae:02:2a:4a:89:e3:b1:4a:79:c1:99:4d:84: 4c:f7:80:7f:e2:8e:b3:a5:fe:10:98:03:f1:51:7a:03:5e:3d: 0f:53:55:dc:fb:6f:77:2a:94:4a:5b:65:ad:14:86:b6:74:ed: 74:41:93:03:b6:8f:0b:5a:07:ac:a1:e6:81:af:f8:eb:e4:7a: a0:0d:c3:5a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUA8m6GQEVvQdZ3X32/0weWV6Dr8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU2NTYwQzVCOTYwMjIyQ0U4MUFGNDdBOEI3NThFMTc0 MTQ2MUU3RjAeFw0yNTAxMTMxNTU4MjVaFw0yNjAxMTIxNjAzMjVaMDMxMTAvBgNV BAMTKDEwRjQ0NjlDQzdBNjM0QTcxM0VFMjAyODIwODlFNTExRTBCRTZFODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpaJ2PHWb8I0Q9ESqW0moiX6+U fnP+GIHOiyod4dJL+YEDLMYf3kpyVbt/bMhHoH4mogCSv8kG3B4LPsF61X+dgt2f IiJjja9pWxMJelXi0ikhIVbAxHahzb563e2iaJWyje8E4CFIu0J0yhYILahpGPCd wc2jDm/MP93mYyeoDP27xrQ98DYl7s23kSNRRPSxKtUYTRT7p3bqdMIatZ+rz6XK 7DglemCqnUhvVGGO3+2b1psv803gtCbTSDCj7hSQ7GGRxvg4xkrnPcha9r2u4W0Y OhdAj9HbHCfwwrHCqNr2RvO/pe2Gd2R7O5oM6PNsoBPHZBh3WjU2L46+F67bAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUEPRGnMemNKcT7iAoIInlEeC+bocwHwYDVR0j BBgwFoAUdWVgxblgIizoGvR6i3WOF0FGHn8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzEvNzU2NTYwQzVCOTYwMjIyQ0U4MUFGNDdBOEI3NThFMTc0MTQ2MUU3Ri5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzc1NjU2MEM1Qjk2MDIy MkNFODFBRjQ3QThCNzU4RTE3NDE0NjFFN0YuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3LWI0MjgxOGNmNTBl OC8xLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjI2MTMxMzEzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM5MzkzNTMxMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqCmBAuhEwDQYJKoZIhvcN AQELBQADggEBABKIAftWfWbBf4v7x/Q0CdBAuLk6PsvuLVmNqU88eelAdQRtk+HX sUrqaCa8ENIKd+wtKAfOYQTRtFySs4T7TXGtXF6rFxftB2kxxzuLEIPeZRwkfVJV eBWniN5+Uol6YlkOKxa0BU5LVV04YQQHlBNHyf64NuK1DJ3VXls10KxcesIiExbE X4aH8/tDaz1kHMdyexsLbQHeXIbUcDXdhEcfSNzQACxiN+4crHZ9qUJWmwarNQ5l 0GLFrgIqSonjsUp5wZlNhEz3gH/ijrOl/hCYA/FRegNePQ9TVdz7b3cqlEpbZa0U hrZ07XRBkwO2jwtaB6yh5oGv+OvkeqANw1o= -----END CERTIFICATE-----Generated at Sun Apr 6 05:58:50 2025 by rpki-client