$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6335333a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6335333a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: WcdJc7EuorO3eVIWXV9S6944ATNznPqWh3CJsDrNt/M= Subject key identifier: 8B:A5:CC:3B:43:D0:75:84:98:71:09:1E:44:13:B2:D8:8E:F6:E0:47 Certificate issuer: /CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Certificate serial: 1014F9453276225D6378DDB188463B8E5FD7C6AF Authority key identifier: A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6335333a3a2f34382d3438203d3e20323136313037.roa Signing time: Sat 28 Jun 2025 16:08:49 +0000 ROA not before: Sat 28 Jun 2025 16:03:49 +0000 ROA not after: Sat 27 Jun 2026 16:08:49 +0000 asID: 216107 IP address blocks: 2a05:dfc1:c53::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 19:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:14:f9:45:32:76:22:5d:63:78:dd:b1:88:46:3b:8e:5f:d7:c6:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0BDCD4CEF02B9AA3CBD0A837666716397198BFD Validity Not Before: Jun 28 16:03:49 2025 GMT Not After : Jun 27 16:08:49 2026 GMT Subject: CN=8BA5CC3B43D075849871091E4413B2D88EF6E047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:75:27:a3:db:d5:1e:3a:60:66:16:a3:7b:72: 54:ee:5a:0a:bb:24:d7:8f:1b:a6:36:62:86:93:a0: 2f:2d:40:6a:92:6f:2e:f2:13:3f:73:28:1c:f7:3c: a5:4e:a7:c6:92:d0:0e:89:53:fa:9a:b0:7f:2c:aa: 6a:1c:12:cb:69:66:b9:97:53:ce:d9:10:0b:54:ba: 32:cc:c7:c3:ee:b5:a0:ee:ad:60:26:43:05:f2:9d: c2:2e:80:15:49:ce:c8:ef:13:d6:fd:03:dd:5b:ea: dd:a8:a9:8f:13:62:61:83:08:60:a2:c5:bc:0e:42: 46:ea:fc:bf:51:78:ec:80:f8:e0:14:83:5d:91:8a: 22:5b:f0:2a:48:71:ad:16:30:db:15:70:a3:f6:2d: bf:f8:24:cd:59:d6:d8:19:5e:dc:3f:4b:98:18:68: 2e:7c:f3:e0:aa:e5:69:08:9c:bd:04:35:77:1f:75: 8c:d4:bd:e2:8c:40:69:11:c3:cf:81:40:43:b9:3a: d5:de:f5:fd:71:93:39:12:0a:e4:a9:65:ba:97:6a: f7:3f:71:9d:2e:17:f1:49:61:79:53:71:1e:1a:44: d5:11:33:28:d3:93:42:a2:9f:db:6d:3b:17:4b:86: bc:f1:25:e2:90:c5:bc:55:d1:f5:69:af:a7:f7:b8: c7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A5:CC:3B:43:D0:75:84:98:71:09:1E:44:13:B2:D8:8E:F6:E0:47 X509v3 Authority Key Identifier: keyid:A0:BD:CD:4C:EF:02:B9:AA:3C:BD:0A:83:76:66:71:63:97:19:8B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A0BDCD4CEF02B9AA3CBD0A837666716397198BFD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/1/326130353a646663313a6335333a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c53::/48 Signature Algorithm: sha256WithRSAEncryption 42:22:e9:f0:be:03:7b:d6:7d:a9:6b:d0:cd:3d:1d:c7:d6:b8: d8:1b:e6:34:a4:a9:8d:02:70:a3:cd:4e:e6:6c:d5:24:5c:33: 44:90:3b:45:af:64:fd:0f:41:19:98:43:10:b4:97:6e:47:55: fb:b5:d8:27:0c:f9:6a:05:4c:ac:9e:64:8b:48:15:f1:f5:2a: 9f:9b:b5:64:34:ff:67:e1:04:4e:a2:1a:58:48:51:10:14:d3: 1e:27:1a:0e:36:74:8b:58:b5:39:c1:b3:d5:9d:6c:97:4a:df: fb:5c:87:a9:b5:71:51:54:40:7c:11:cf:ee:e1:e3:16:a0:c1: cb:7b:fb:82:ab:31:5e:91:93:c1:51:39:b1:03:bc:c2:67:0d: fa:25:30:6a:08:f9:e7:bc:b3:71:a9:ca:07:be:35:4a:47:02: 5a:fd:5d:12:c1:10:20:6a:fa:16:47:77:53:a5:34:61:2c:db: 8c:17:3f:14:45:63:0d:55:c7:1d:e8:be:12:7f:d6:3a:aa:82: 84:7e:5f:81:43:8d:de:0b:1b:e0:db:04:a5:5e:80:26:7b:d7: 44:d3:7f:8c:9e:5d:0b:a1:b1:8a:09:8b:75:b9:1e:2f:07:31: 87:61:48:86:05:3b:4f:3c:4d:c7:44:4a:89:94:76:40:f8:dd: 8e:b1:88:07 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUEBT5RTJ2Il1jeN2xiEY7jl/Xxq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5 NzE5OEJGRDAeFw0yNTA2MjgxNjAzNDlaFw0yNjA2MjcxNjA4NDlaMDMxMTAvBgNV BAMTKDhCQTVDQzNCNDNEMDc1ODQ5ODcxMDkxRTQ0MTNCMkQ4OEVGNkUwNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDadSej29UeOmBmFqN7clTuWgq7 JNePG6Y2YoaToC8tQGqSby7yEz9zKBz3PKVOp8aS0A6JU/qasH8sqmocEstpZrmX U87ZEAtUujLMx8PutaDurWAmQwXyncIugBVJzsjvE9b9A91b6t2oqY8TYmGDCGCi xbwOQkbq/L9ReOyA+OAUg12RiiJb8CpIca0WMNsVcKP2Lb/4JM1Z1tgZXtw/S5gY aC588+Cq5WkInL0ENXcfdYzUveKMQGkRw8+BQEO5OtXe9f1xkzkSCuSpZbqXavc/ cZ0uF/FJYXlTcR4aRNURMyjTk0Kin9ttOxdLhrzxJeKQxbxV0fVpr6f3uMcVAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUi6XMO0PQdYSYcQkeRBOy2I724EcwHwYDVR0j BBgwFoAUoL3NTO8Cuao8vQqDdmZxY5cZi/0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzEvQTBCRENENENFRjAyQjlBQTNDQkQwQTgzNzY2NjcxNjM5NzE5OEJGRC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0EwQkRDRDRDRUYwMkI5 QUEzQ0JEMEE4Mzc2NjY3MTYzOTcxOThCRkQuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjMzNTMzM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQxTMA0GCSqGSIb3DQEB CwUAA4IBAQBCIunwvgN71n2pa9DNPR3H1rjYG+Y0pKmNAnCjzU7mbNUkXDNEkDtF r2T9D0EZmEMQtJduR1X7tdgnDPlqBUysnmSLSBXx9Sqfm7VkNP9n4QROohpYSFEQ FNMeJxoONnSLWLU5wbPVnWyXSt/7XIeptXFRVEB8Ec/u4eMWoMHLe/uCqzFekZPB UTmxA7zCZw36JTBqCPnnvLNxqcoHvjVKRwJa/V0SwRAgavoWR3dTpTRhLNuMFz8U RWMNVccd6L4Sf9Y6qoKEfl+BQ43eCxvg2wSlXoAme9dE03+Mnl0LobGKCYt1uR4v BzGHYUiGBTtPPE3HREqJlHZA+N2OsYgH -----END CERTIFICATE-----Generated at Sun Jun 29 06:05:15 2025 by rpki-client