$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626137353a3a2f34382d3438203d3e20313939353138.roa File: 326130613a363034303a626137353a3a2f34382d3438203d3e20313939353138.roa (raw, json) Hash identifier: Q1r7lQE6wHG5E8hnfsNBgGIz7rcdfzzmGE3DVnVUAd0= Subject key identifier: 54:F5:E9:3A:A8:CB:EA:4A:AE:D5:89:29:C9:EC:26:64:82:DC:4E:75 Certificate issuer: /CN=756560C5B960222CE81AF47A8B758E1741461E7F Certificate serial: 522F896FE1F5256F6A7DCA4AB7C1F6B4682A4838 Authority key identifier: 75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626137353a3a2f34382d3438203d3e20313939353138.roa Signing time: Fri 01 Nov 2024 04:02:59 +0000 ROA not before: Fri 01 Nov 2024 03:57:59 +0000 ROA not after: Fri 31 Oct 2025 04:02:59 +0000 asID: 199518 IP address blocks: 2a0a:6040:ba75::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 18:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2f:89:6f:e1:f5:25:6f:6a:7d:ca:4a:b7:c1:f6:b4:68:2a:48:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=756560C5B960222CE81AF47A8B758E1741461E7F Validity Not Before: Nov 1 03:57:59 2024 GMT Not After : Oct 31 04:02:59 2025 GMT Subject: CN=54F5E93AA8CBEA4AAED58929C9EC266482DC4E75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:07:3d:cd:24:3a:98:8f:89:b2:bc:43:4f:67: 80:ff:a1:c7:e7:07:cb:da:b7:c3:c1:a1:3b:11:b3: 3c:71:3c:ce:c0:44:0b:4f:23:d8:c0:ac:46:bf:14: 56:be:52:00:1f:21:fd:bb:4d:45:e7:5d:61:31:bc: 64:d0:e2:82:3d:21:dc:73:65:e1:3e:77:70:1c:5f: 7c:7a:52:08:58:3f:c1:0d:90:48:54:8b:63:96:a2: 46:74:9f:53:9b:64:0a:73:4c:31:d4:1e:6d:d2:5c: f3:49:18:bb:7b:11:e6:85:a9:ac:3c:f6:fe:90:a6: 75:cc:44:6e:e2:91:8f:e6:bb:cd:d1:e3:de:54:09: bc:43:93:c5:d4:0e:c3:cf:b7:56:e1:69:1b:99:a1: 61:30:6d:47:d7:be:2f:e4:20:71:3e:98:d8:42:30: 20:55:18:45:dd:de:ce:a5:f9:b5:d8:85:89:5f:0c: 08:f8:c8:f6:04:a7:e5:25:c4:fa:30:4c:33:61:0a: c7:8c:57:d6:ca:24:4f:92:78:b7:e6:d9:bb:a5:8d: 22:07:33:e3:53:a5:ea:d1:bb:bc:1f:d2:7d:c8:d5: 5b:c0:95:bc:1c:1e:64:b2:27:d4:11:87:9c:64:9d: 5c:71:88:93:7d:67:d6:78:45:b9:00:1c:1b:df:52: 04:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F5:E9:3A:A8:CB:EA:4A:AE:D5:89:29:C9:EC:26:64:82:DC:4E:75 X509v3 Authority Key Identifier: keyid:75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626137353a3a2f34382d3438203d3e20313939353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ba75::/48 Signature Algorithm: sha256WithRSAEncryption b3:71:f7:a5:5f:be:0c:75:d2:d9:bb:be:f5:0e:fd:f2:f9:14: 05:11:0a:73:8d:6e:65:13:0e:35:d9:16:e8:93:0c:0a:21:0b: de:2f:f4:ab:91:53:d9:a1:04:3d:d4:7f:ee:ee:c7:53:7b:2a: 0a:18:45:a0:1a:c4:55:46:5a:13:fd:33:72:c7:19:a7:0e:1b: a1:c2:2d:e4:d2:69:dd:e3:6b:5a:99:99:a9:fd:a0:11:00:2a: bb:c7:a5:53:95:35:3e:7b:d1:c3:e9:3f:80:9e:9f:a0:1c:1e: 47:f1:84:50:06:63:2e:19:33:75:4b:82:6a:cd:3f:69:82:49: ee:75:8a:5a:1d:35:ae:0c:e1:79:39:7e:68:00:de:cc:d8:44: 13:db:bb:c9:6f:cc:8b:4d:b8:1a:b0:58:5b:ef:f4:2f:a7:27: d2:50:c8:b8:fb:d8:52:28:8f:e5:54:ac:bd:d7:43:af:78:e5: 23:d9:b3:59:d7:25:65:06:1d:91:4b:3c:27:c9:3c:1a:ba:d4: 60:e9:94:1e:e9:57:27:ef:2d:72:7e:19:a5:0f:ba:17:0b:b0: 68:f6:7f:65:aa:68:ae:4b:ba:09:5e:d2:23:ee:88:a4:20:00: 18:ff:f8:0f:88:fa:07:3c:c7:ce:56:1a:94:0d:f0:fb:54:b0: 3c:ea:ad:67 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUUi+Jb+H1JW9qfcpKt8H2tGgqSDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU2NTYwQzVCOTYwMjIyQ0U4MUFGNDdBOEI3NThFMTc0 MTQ2MUU3RjAeFw0yNDExMDEwMzU3NTlaFw0yNTEwMzEwNDAyNTlaMDMxMTAvBgNV BAMTKDU0RjVFOTNBQThDQkVBNEFBRUQ1ODkyOUM5RUMyNjY0ODJEQzRFNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaBz3NJDqYj4myvENPZ4D/ocfn B8vat8PBoTsRszxxPM7ARAtPI9jArEa/FFa+UgAfIf27TUXnXWExvGTQ4oI9Idxz ZeE+d3AcX3x6UghYP8ENkEhUi2OWokZ0n1ObZApzTDHUHm3SXPNJGLt7EeaFqaw8 9v6QpnXMRG7ikY/mu83R495UCbxDk8XUDsPPt1bhaRuZoWEwbUfXvi/kIHE+mNhC MCBVGEXd3s6l+bXYhYlfDAj4yPYEp+UlxPowTDNhCseMV9bKJE+SeLfm2buljSIH M+NTperRu7wf0n3I1VvAlbwcHmSyJ9QRh5xknVxxiJN9Z9Z4RbkAHBvfUgTRAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUVPXpOqjL6kqu1YkpyewmZILcTnUwHwYDVR0j BBgwFoAUdWVgxblgIizoGvR6i3WOF0FGHn8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzEvNzU2NTYwQzVCOTYwMjIyQ0U4MUFGNDdBOEI3NThFMTc0MTQ2MUU3Ri5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzc1NjU2MEM1Qjk2MDIy MkNFODFBRjQ3QThCNzU4RTE3NDE0NjFFN0YuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3LWI0MjgxOGNmNTBl OC8xLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjI2MTM3MzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM5MzkzNTMxMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqCmBAunUwDQYJKoZIhvcN AQELBQADggEBALNx96Vfvgx10tm7vvUO/fL5FAURCnONbmUTDjXZFuiTDAohC94v 9KuRU9mhBD3Uf+7ux1N7KgoYRaAaxFVGWhP9M3LHGacOG6HCLeTSad3ja1qZman9 oBEAKrvHpVOVNT570cPpP4Cen6AcHkfxhFAGYy4ZM3VLgmrNP2mCSe51ilodNa4M 4Xk5fmgA3szYRBPbu8lvzItNuBqwWFvv9C+nJ9JQyLj72FIoj+VUrL3XQ6945SPZ s1nXJWUGHZFLPCfJPBq61GDplB7pVyfvLXJ+GaUPuhcLsGj2f2WqaK5Lugle0iPu iKQgABj/+A+I+gc8x85WGpQN8PtUsDzqrWc= -----END CERTIFICATE-----Generated at Mon Nov 25 00:07:06 2024 by rpki-client on console-fra.rpki-client.org