$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626164653a3a2f34382d3438203d3e20313939353138.roa File: 326130613a363034303a626164653a3a2f34382d3438203d3e20313939353138.roa (raw, json) Hash identifier: XYePDCQ34yi5IGQ2NgxmNBiJbQgmCW1UB/xcMYZYXtI= Subject key identifier: 08:A1:E1:3C:95:E8:9C:CB:38:FE:59:89:02:DF:44:7B:5C:CC:50:08 Certificate issuer: /CN=756560C5B960222CE81AF47A8B758E1741461E7F Certificate serial: 696C9970A1228B21BDA284332CCB9F929E5C3D82 Authority key identifier: 75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626164653a3a2f34382d3438203d3e20313939353138.roa Signing time: Fri 21 Mar 2025 00:10:09 +0000 ROA not before: Fri 21 Mar 2025 00:05:09 +0000 ROA not after: Fri 20 Mar 2026 00:10:09 +0000 asID: 199518 IP address blocks: 2a0a:6040:bade::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 14:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:6c:99:70:a1:22:8b:21:bd:a2:84:33:2c:cb:9f:92:9e:5c:3d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=756560C5B960222CE81AF47A8B758E1741461E7F Validity Not Before: Mar 21 00:05:09 2025 GMT Not After : Mar 20 00:10:09 2026 GMT Subject: CN=08A1E13C95E89CCB38FE598902DF447B5CCC5008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ae:96:a7:dc:02:5e:0c:a0:52:26:ae:54:63: b5:23:3d:1b:af:24:6f:2c:55:2e:8d:c8:a3:6a:06: 96:40:40:30:36:4b:bf:5e:a7:f6:aa:5a:1c:56:b6: 92:aa:f5:f0:24:82:24:0d:8e:4e:82:7c:6c:02:d6: 0d:94:27:ba:73:aa:9e:68:9c:63:53:5d:37:dd:ec: 8d:ba:7e:fd:01:b4:35:c0:86:b6:ca:d4:89:a1:8b: c9:3e:6f:c8:d7:c3:2a:e8:3c:23:ee:3c:dc:0c:79: 3a:6c:96:45:33:3e:b1:a3:21:be:c8:06:57:62:de: d5:a5:c6:7c:86:3c:3f:da:9f:a6:05:43:d7:f3:0c: 7c:f8:28:4d:7b:bb:da:37:18:b2:05:54:1f:71:c1: aa:ca:68:7a:f6:b6:99:59:a3:a0:9b:06:5d:82:21: ed:ec:3c:2d:b3:ad:9c:4e:f8:ab:e6:66:6e:ab:99: f0:6b:df:73:a4:02:e2:3b:85:d2:08:80:c6:16:61: 4a:64:67:02:56:df:67:f5:60:6c:09:99:ba:55:81: 08:4e:3a:6f:08:19:7d:af:61:61:aa:40:70:12:b7: ea:32:8a:7e:91:d9:fe:5f:e9:04:4c:5f:e9:86:04: e6:72:a8:f1:31:c2:17:9d:32:df:f5:bd:60:32:88: f6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A1:E1:3C:95:E8:9C:CB:38:FE:59:89:02:DF:44:7B:5C:CC:50:08 X509v3 Authority Key Identifier: keyid:75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626164653a3a2f34382d3438203d3e20313939353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bade::/48 Signature Algorithm: sha256WithRSAEncryption 1f:7f:a8:79:dc:ec:c6:ad:00:77:bb:75:8e:37:94:86:89:41: da:d5:b4:f5:21:64:30:fe:aa:32:ea:63:78:fc:1e:d6:59:d3: 98:c0:b0:2b:59:11:6f:a9:33:2c:f6:6a:98:78:36:b7:e0:4a: 0d:a7:18:26:75:72:0f:49:02:2d:e2:8f:db:5d:ff:ef:97:36: 91:48:38:87:d2:bc:01:64:56:8c:c5:2a:dc:8c:35:0c:47:03: a3:85:39:88:c1:15:59:74:02:3e:1b:eb:eb:df:46:df:02:a9: f5:1c:7e:e6:b7:2a:eb:e4:eb:d1:f2:88:c4:e1:a9:0f:b9:f8: 8f:24:95:10:27:6b:68:18:a4:83:8b:13:b8:01:bc:d3:bd:4c: 88:10:a6:b6:78:c3:f4:7c:03:f1:43:25:db:43:3c:b5:57:b3: cc:58:a6:84:2d:3a:8b:dd:e1:97:5c:a7:e8:da:e9:80:56:74: ce:a2:aa:bf:01:f5:5d:0a:3b:81:cc:51:7b:9b:0d:df:a2:5a: 45:be:b1:bf:20:cc:00:1a:03:df:4d:26:ba:dc:aa:2b:75:c3: c3:bc:83:f5:7b:e8:d4:af:46:d4:39:c9:c0:33:19:3d:7a:e7: ce:e2:58:f9:fc:de:38:59:ae:4c:39:24:b0:97:e4:f8:11:77: f4:12:8a:a2 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUaWyZcKEiiyG9ooQzLMufkp5cPYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU2NTYwQzVCOTYwMjIyQ0U4MUFGNDdBOEI3NThFMTc0 MTQ2MUU3RjAeFw0yNTAzMjEwMDA1MDlaFw0yNjAzMjAwMDEwMDlaMDMxMTAvBgNV BAMTKDA4QTFFMTNDOTVFODlDQ0IzOEZFNTk4OTAyREY0NDdCNUNDQzUwMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOrpan3AJeDKBSJq5UY7UjPRuv JG8sVS6NyKNqBpZAQDA2S79ep/aqWhxWtpKq9fAkgiQNjk6CfGwC1g2UJ7pzqp5o nGNTXTfd7I26fv0BtDXAhrbK1Imhi8k+b8jXwyroPCPuPNwMeTpslkUzPrGjIb7I Bldi3tWlxnyGPD/an6YFQ9fzDHz4KE17u9o3GLIFVB9xwarKaHr2tplZo6CbBl2C Ie3sPC2zrZxO+KvmZm6rmfBr33OkAuI7hdIIgMYWYUpkZwJW32f1YGwJmbpVgQhO Om8IGX2vYWGqQHASt+oyin6R2f5f6QRMX+mGBOZyqPExwhedMt/1vWAyiPZVAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUCKHhPJXonMs4/lmJAt9Ee1zMUAgwHwYDVR0j BBgwFoAUdWVgxblgIizoGvR6i3WOF0FGHn8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzEvNzU2NTYwQzVCOTYwMjIyQ0U4MUFGNDdBOEI3NThFMTc0MTQ2MUU3Ri5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzc1NjU2MEM1Qjk2MDIy MkNFODFBRjQ3QThCNzU4RTE3NDE0NjFFN0YuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3LWI0MjgxOGNmNTBl OC8xLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjI2MTY0NjUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM5MzkzNTMxMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqCmBAut4wDQYJKoZIhvcN AQELBQADggEBAB9/qHnc7MatAHe7dY43lIaJQdrVtPUhZDD+qjLqY3j8HtZZ05jA sCtZEW+pMyz2aph4NrfgSg2nGCZ1cg9JAi3ij9td/++XNpFIOIfSvAFkVozFKtyM NQxHA6OFOYjBFVl0Aj4b6+vfRt8CqfUcfua3Kuvk69HyiMThqQ+5+I8klRAna2gY pIOLE7gBvNO9TIgQprZ4w/R8A/FDJdtDPLVXs8xYpoQtOovd4Zdcp+ja6YBWdM6i qr8B9V0KO4HMUXubDd+iWkW+sb8gzAAaA99NJrrcqit1w8O8g/V76NSvRtQ5ycAz GT16587iWPn83jhZrkw5JLCX5PgRd/QSiqI= -----END CERTIFICATE-----Generated at Sun Apr 6 03:21:01 2025 by rpki-client