$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a393330303a3a2f34342d3434203d3e20323136313037.roa File: 326130353a646663313a393330303a3a2f34342d3434203d3e20323136313037.roa (raw, json) Hash identifier: b1jW0QtrvfNFuku7DA8T3pdCcJ7XdV69DcuFmLfePdg= Subject key identifier: 48:29:50:CF:5C:C1:A0:FD:AB:C0:10:EB:8E:EA:CB:AB:79:ED:D7:2B Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 27A8B2A72CFFC81CD90A852F34CF8706E5E5EDE1 Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a393330303a3a2f34342d3434203d3e20323136313037.roa Signing time: Mon 13 Oct 2025 21:07:50 +0000 ROA not before: Mon 13 Oct 2025 21:02:50 +0000 ROA not after: Mon 12 Oct 2026 21:07:50 +0000 asID: 216107 IP address blocks: 2a05:dfc1:9300::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 13:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:a8:b2:a7:2c:ff:c8:1c:d9:0a:85:2f:34:cf:87:06:e5:e5:ed:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Oct 13 21:02:50 2025 GMT Not After : Oct 12 21:07:50 2026 GMT Subject: CN=482950CF5CC1A0FDABC010EB8EEACBAB79EDD72B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:99:b7:90:13:91:8f:65:40:60:1b:b1:0b:17: 6a:ba:2c:1f:64:23:ad:85:c8:c5:26:83:6e:a6:b8: 0a:51:ef:1a:38:43:d3:82:e6:20:2f:16:2b:bb:51: 52:c7:47:df:7e:9b:b2:ee:d3:29:79:1e:e3:65:49: 39:d8:92:de:de:ac:3c:81:f3:01:46:ba:10:26:44: a6:bf:18:d5:93:fd:54:f1:06:6c:87:a4:c7:e3:8a: 46:b0:d2:94:8c:ce:a5:13:5c:f6:2d:f3:d2:b8:ac: ab:bf:33:b5:32:61:9c:f4:2e:e3:ca:29:98:be:84: e5:39:68:f4:f4:be:d0:be:1c:6c:67:22:af:a4:d0: 0b:bd:07:2f:63:eb:5a:94:ca:74:56:b6:f6:ec:99: b9:dc:67:15:97:f9:3a:e9:0f:33:5d:ef:8a:cf:a6: 63:ba:71:a6:e7:3a:da:d4:07:9e:9c:08:16:d6:53: c9:eb:32:ca:b4:32:6b:d9:87:8e:2c:cd:19:9e:b0: c0:cd:7b:4c:9e:70:71:15:b1:a9:f3:23:c7:9b:57: 86:85:8a:e8:0b:fa:e4:39:54:43:2b:41:b8:00:33: c5:91:9a:1f:94:31:95:36:bb:34:af:bb:6a:ad:21: 1e:36:07:b8:54:fe:f8:6c:4c:d6:4b:05:71:fe:f3: 41:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:29:50:CF:5C:C1:A0:FD:AB:C0:10:EB:8E:EA:CB:AB:79:ED:D7:2B X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a393330303a3a2f34342d3434203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9300::/44 Signature Algorithm: sha256WithRSAEncryption 70:10:67:f0:62:a8:63:1c:9c:a1:cd:ef:53:46:34:43:47:4d: 8f:69:1c:f8:8c:42:56:08:9f:05:0d:5f:32:21:e1:13:ba:32: 89:27:5d:47:f2:39:f8:31:d9:fd:50:6a:bc:de:f5:3d:91:69: 0a:49:e4:e6:81:e8:b1:de:50:01:a4:57:0d:58:75:be:0c:f3: ca:25:ac:ab:42:c5:37:c8:36:61:f1:6c:8f:4b:f0:36:62:7f: 4b:9a:e6:f6:b6:9f:7e:9c:26:9c:e5:46:d2:05:e0:05:3f:5b: fc:f2:73:ab:58:8b:cb:a2:ed:89:29:22:1f:e3:41:8e:35:c0: ef:52:f5:56:bc:48:b3:a1:58:b7:42:89:97:55:f7:72:2e:80: 9b:3c:6c:99:81:d4:2b:d4:8b:4a:ad:b6:45:77:1c:06:6a:21: 98:47:6e:83:0b:d6:75:97:bf:e7:c0:e8:c0:7a:db:dc:3c:e3: 5b:a2:45:f6:f1:b5:b3:15:1c:60:f1:69:71:91:ac:96:7e:5c: 0b:5e:b6:04:da:3e:9c:d0:0c:3f:df:9d:79:66:22:6b:e5:d6: 87:f5:5c:6e:d0:fa:6f:d1:0d:bb:52:5c:38:72:28:72:c5:81: 7d:48:02:74:f8:90:dc:6c:8d:ac:0d:43:24:ec:e4:03:ab:14: 53:8a:35:91 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUJ6iypyz/yBzZCoUvNM+HBuXl7eEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTEwMTMyMTAyNTBaFw0yNjEwMTIyMTA3NTBaMDMxMTAvBgNV BAMTKDQ4Mjk1MENGNUNDMUEwRkRBQkMwMTBFQjhFRUFDQkFCNzlFREQ3MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsmbeQE5GPZUBgG7ELF2q6LB9k I62FyMUmg26muApR7xo4Q9OC5iAvFiu7UVLHR99+m7Lu0yl5HuNlSTnYkt7erDyB 8wFGuhAmRKa/GNWT/VTxBmyHpMfjikaw0pSMzqUTXPYt89K4rKu/M7UyYZz0LuPK KZi+hOU5aPT0vtC+HGxnIq+k0Au9By9j61qUynRWtvbsmbncZxWX+TrpDzNd74rP pmO6cabnOtrUB56cCBbWU8nrMsq0MmvZh44szRmesMDNe0yecHEVsanzI8ebV4aF iugL+uQ5VEMrQbgAM8WRmh+UMZU2uzSvu2qtIR42B7hU/vhsTNZLBXH+80HrAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUSClQz1zBoP2rwBDrjurLq3nt1yswHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzkzMzMwMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzMjMxMzYzMTMwMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQqBd/BkwAwDQYJKoZIhvcN AQELBQADggEBAHAQZ/BiqGMcnKHN71NGNENHTY9pHPiMQlYInwUNXzIh4RO6Mokn XUfyOfgx2f1Qarze9T2RaQpJ5OaB6LHeUAGkVw1Ydb4M88olrKtCxTfINmHxbI9L 8DZif0ua5va2n36cJpzlRtIF4AU/W/zyc6tYi8ui7YkpIh/jQY41wO9S9Va8SLOh WLdCiZdV93IugJs8bJmB1CvUi0qttkV3HAZqIZhHboML1nWXv+fA6MB629w841ui RfbxtbMVHGDxaXGRrJZ+XAtetgTaPpzQDD/fnXlmImvl1of1XG7Q+m/RDbtSXDhy KHLFgX1IAnT4kNxsjawNQyTs5AOrFFOKNZE= -----END CERTIFICATE-----Generated at Mon Oct 20 03:17:57 2025 by rpki-client