$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626166663a3a2f34382d3438203d3e20313939353138.roa File: 326130613a363034303a626166663a3a2f34382d3438203d3e20313939353138.roa (raw, json) Hash identifier: wLwWxdN51grwzMWksrqWcxsFwyLnEKYBbDyyzjtGQmg= Subject key identifier: DF:FA:0B:4B:D7:04:42:B8:ED:42:C9:2A:A9:B2:4F:BA:3B:73:6D:93 Certificate issuer: /CN=756560C5B960222CE81AF47A8B758E1741461E7F Certificate serial: 53AF368203B0F937B2328D7835D279BE52C78EF4 Authority key identifier: 75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626166663a3a2f34382d3438203d3e20313939353138.roa Signing time: Fri 21 Mar 2025 00:10:09 +0000 ROA not before: Fri 21 Mar 2025 00:05:09 +0000 ROA not after: Fri 20 Mar 2026 00:10:09 +0000 asID: 199518 IP address blocks: 2a0a:6040:baff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 14:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:af:36:82:03:b0:f9:37:b2:32:8d:78:35:d2:79:be:52:c7:8e:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=756560C5B960222CE81AF47A8B758E1741461E7F Validity Not Before: Mar 21 00:05:09 2025 GMT Not After : Mar 20 00:10:09 2026 GMT Subject: CN=DFFA0B4BD70442B8ED42C92AA9B24FBA3B736D93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2d:a1:16:dc:fa:d8:ab:b3:46:39:a9:af:99: e6:4b:5a:f0:65:ba:c0:ff:52:cb:d8:1b:eb:8c:85: 99:4a:92:58:d1:3c:5d:0c:9b:06:66:bc:23:7d:fd: 70:ba:7c:b8:ab:dd:6e:74:78:f7:50:a5:55:17:78: a6:8e:e8:ce:d5:49:61:43:68:e6:9f:4f:6a:18:0d: b6:e5:96:b0:d3:94:49:13:33:1d:49:bf:73:7d:ab: 19:2d:80:5d:32:4b:d6:eb:5a:f7:30:f8:da:f4:90: 9b:15:7e:92:02:a0:65:d9:a5:ce:f6:0b:4e:5e:cb: 4c:79:1e:56:63:22:43:6a:85:a3:20:8e:20:84:e7: 8f:cc:9c:4b:af:af:27:86:df:76:24:b1:2a:b4:7f: 43:30:ea:0c:3a:ea:63:cb:6f:ae:de:fa:90:9c:97: bc:9e:77:01:62:31:c8:b9:59:01:0f:a4:d9:5d:c1: 07:d1:4f:94:90:3c:98:c2:83:16:32:59:c7:67:77: 55:34:3d:96:ea:4e:49:8a:a8:3a:56:50:d3:ed:b4: af:92:f7:54:d6:ed:84:94:42:27:62:11:0c:27:16: 77:86:9e:80:a2:01:62:48:19:f1:36:7a:72:87:1c: 8a:07:5b:54:6d:1a:ae:81:bb:45:60:1b:8c:f2:e8: 8f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FA:0B:4B:D7:04:42:B8:ED:42:C9:2A:A9:B2:4F:BA:3B:73:6D:93 X509v3 Authority Key Identifier: keyid:75:65:60:C5:B9:60:22:2C:E8:1A:F4:7A:8B:75:8E:17:41:46:1E:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/756560C5B960222CE81AF47A8B758E1741461E7F.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/756560C5B960222CE81AF47A8B758E1741461E7F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/1/326130613a363034303a626166663a3a2f34382d3438203d3e20313939353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:baff::/48 Signature Algorithm: sha256WithRSAEncryption 22:45:dc:b6:ae:23:e6:fe:50:c7:c2:04:42:49:47:cf:7b:81: 4b:07:84:61:fd:4f:c8:89:41:c6:02:8b:09:e2:5b:2d:09:63: 38:25:46:e3:f6:08:50:9f:6e:e9:ac:9e:6e:b0:fd:69:69:e8: b7:fb:75:7e:23:5a:c4:d1:7f:e2:02:30:41:45:ee:9b:54:0c: cd:76:a7:bd:56:82:4d:34:4b:81:d0:97:11:31:f7:cd:44:34: af:67:72:fc:5f:d9:8a:56:b2:9e:fa:83:96:83:20:8a:2d:9f: b3:43:c2:30:08:37:7a:39:08:27:8c:47:f2:09:54:ae:70:1f: d6:d1:b1:4f:de:ad:86:bb:54:b6:a9:e6:89:c5:83:33:3d:82: 1c:b8:9d:64:9f:4e:b8:ba:1c:30:36:28:ff:78:a7:96:f3:d9: 43:1c:cb:64:06:91:cf:a4:a1:75:60:06:2d:1f:22:b6:37:55: 86:89:ef:f5:a0:4f:7c:46:c1:3d:7e:22:07:0c:38:21:33:b8: 20:b0:0c:55:21:3d:d3:5f:c8:6a:2a:77:39:7c:ca:36:77:65: 29:a6:8e:44:dd:7a:93:ab:a8:16:be:1f:9c:f5:fc:bd:13:19: aa:95:76:dd:55:76:da:aa:fe:fd:91:84:b3:56:4c:ae:5a:26: df:a9:7b:8c -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUU682ggOw+TeyMo14NdJ5vlLHjvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU2NTYwQzVCOTYwMjIyQ0U4MUFGNDdBOEI3NThFMTc0 MTQ2MUU3RjAeFw0yNTAzMjEwMDA1MDlaFw0yNjAzMjAwMDEwMDlaMDMxMTAvBgNV BAMTKERGRkEwQjRCRDcwNDQyQjhFRDQyQzkyQUE5QjI0RkJBM0I3MzZEOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKLaEW3PrYq7NGOamvmeZLWvBl usD/UsvYG+uMhZlKkljRPF0MmwZmvCN9/XC6fLir3W50ePdQpVUXeKaO6M7VSWFD aOafT2oYDbbllrDTlEkTMx1Jv3N9qxktgF0yS9brWvcw+Nr0kJsVfpICoGXZpc72 C05ey0x5HlZjIkNqhaMgjiCE54/MnEuvryeG33YksSq0f0Mw6gw66mPLb67e+pCc l7yedwFiMci5WQEPpNldwQfRT5SQPJjCgxYyWcdnd1U0PZbqTkmKqDpWUNPttK+S 91TW7YSUQidiEQwnFneGnoCiAWJIGfE2enKHHIoHW1RtGq6Bu0VgG4zy6I/hAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU3/oLS9cEQrjtQskqqbJPujtzbZMwHwYDVR0j BBgwFoAUdWVgxblgIizoGvR6i3WOF0FGHn8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzEvNzU2NTYwQzVCOTYwMjIyQ0U4MUFGNDdBOEI3NThFMTc0MTQ2MUU3Ri5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzc1NjU2MEM1Qjk2MDIy MkNFODFBRjQ3QThCNzU4RTE3NDE0NjFFN0YuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3LWI0MjgxOGNmNTBl OC8xLzMyNjEzMDYxM2EzNjMwMzQzMDNhNjI2MTY2NjYzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM5MzkzNTMxMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqCmBAuv8wDQYJKoZIhvcN AQELBQADggEBACJF3LauI+b+UMfCBEJJR897gUsHhGH9T8iJQcYCiwniWy0JYzgl RuP2CFCfbumsnm6w/Wlp6Lf7dX4jWsTRf+ICMEFF7ptUDM12p71Wgk00S4HQlxEx 981ENK9ncvxf2YpWsp76g5aDIIotn7NDwjAIN3o5CCeMR/IJVK5wH9bRsU/erYa7 VLap5onFgzM9ghy4nWSfTri6HDA2KP94p5bz2UMcy2QGkc+koXVgBi0fIrY3VYaJ 7/WgT3xGwT1+IgcMOCEzuCCwDFUhPdNfyGoqdzl8yjZ3ZSmmjkTdepOrqBa+H5z1 /L0TGaqVdt1Vdtqq/v2RhLNWTK5aJt+pe4w= -----END CERTIFICATE-----Generated at Sun Apr 6 05:59:25 2025 by rpki-client