$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: svzimzhdqlclmvG7IJ8vvWQ0kGTSIwK/8yxPFMHQftw= Subject key identifier: 70:A8:88:3A:0D:66:E3:36:0E:0C:E0:55:B3:C0:D1:BB:6D:3A:ED:C8 Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 12AB0CB10DCD8287AE5707CFFC0DD485BE87113B Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa Signing time: Tue 06 May 2025 08:50:51 +0000 ROA not before: Tue 06 May 2025 08:45:51 +0000 ROA not after: Tue 05 May 2026 08:50:51 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f10::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 May 2025 23:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ab:0c:b1:0d:cd:82:87:ae:57:07:cf:fc:0d:d4:85:be:87:11:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: May 6 08:45:51 2025 GMT Not After : May 5 08:50:51 2026 GMT Subject: CN=70A8883A0D66E3360E0CE055B3C0D1BB6D3AEDC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:99:f8:0c:39:a7:8d:62:28:46:94:74:2e:04: 3c:c1:3a:15:e2:c9:3b:85:8b:b5:8a:86:c3:5c:67: 22:bf:f1:51:29:7b:46:5d:2b:d4:5f:34:fe:8d:50: b0:d8:10:20:46:4d:31:3a:9c:9e:a9:76:ff:b5:8b: 73:53:ba:a2:ca:20:70:fc:5e:78:f6:a1:27:1f:f6: fe:35:ab:21:0c:cd:22:78:ed:cd:56:38:dc:a6:36: 81:77:ad:31:7d:52:d5:d6:e7:aa:4e:32:10:d1:9b: a5:7d:89:52:b8:61:4d:f4:6b:00:7c:f6:fb:b9:47: 67:af:94:8e:2d:35:91:8a:c4:4d:d7:0a:fa:2f:07: b4:da:24:ce:3e:96:c5:52:45:63:ec:35:f7:0c:5c: 57:86:19:e0:9f:f9:e3:13:3c:a3:6b:5f:15:39:5a: 0c:f4:48:a9:15:8b:cc:1d:e1:f5:b2:a9:3d:7f:a8: 4c:6d:fa:cb:38:a4:d0:b2:22:39:05:af:79:90:68: f8:96:e7:62:5b:5d:61:07:e3:2c:e2:cc:ef:79:31: 82:e5:87:82:b2:5f:5c:19:ef:ee:52:f9:83:eb:93: 26:a8:63:c0:2c:01:bc:f8:7f:1f:9d:e9:0a:cf:ce: c5:80:ed:4d:b0:86:a0:3f:d2:4a:3e:e4:35:8d:2b: a0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A8:88:3A:0D:66:E3:36:0E:0C:E0:55:B3:C0:D1:BB:6D:3A:ED:C8 X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356631303a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f10::/48 Signature Algorithm: sha256WithRSAEncryption 0f:3d:e5:d7:04:2f:98:59:87:59:ad:12:1c:96:3a:b4:45:96: a8:a6:23:53:9a:66:38:22:52:12:35:2a:ea:fc:97:c9:78:e0: 10:c0:a7:f9:34:0e:0f:ad:21:bc:a8:00:8b:a5:13:70:12:56: ae:18:55:c3:b8:87:47:33:91:c6:e0:b5:d9:ed:80:0c:5e:37: 67:3a:d1:fa:9f:96:3e:a9:90:26:f0:e3:1a:9c:30:f2:bc:b5: 72:bb:4c:ab:9c:3d:1c:c2:e2:b0:a2:58:07:e4:97:ce:35:87: 6b:fd:f1:4e:0e:37:03:bf:61:5a:ad:a5:80:72:6c:41:ce:b2: b8:2a:30:8c:ea:f9:aa:c4:a5:30:70:b7:54:fc:38:7c:c8:0e: 3b:26:ed:89:4a:77:18:fd:bf:54:a9:54:2a:57:7c:61:38:69: 34:6f:2e:97:1e:24:c1:4b:4f:79:48:6a:15:b8:5f:ca:f4:b3: 49:32:2a:1e:2b:ff:e1:42:f8:16:d4:6e:b3:94:32:6c:49:5d: 92:46:87:91:68:9b:df:c2:bd:5b:2d:a9:25:23:61:1a:62:9b: 48:bb:59:f1:91:fd:fa:b9:b5:ac:10:13:50:c4:a2:9f:75:50: e0:0f:41:f5:72:a7:b9:b6:0f:a6:75:0f:09:c0:7f:c5:8e:47: 1c:cc:8e:57 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUEqsMsQ3NgoeuVwfP/A3Uhb6HETswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNTA1MDYwODQ1NTFaFw0yNjA1MDUwODUwNTFaMDMxMTAvBgNV BAMTKDcwQTg4ODNBMEQ2NkUzMzYwRTBDRTA1NUIzQzBEMUJCNkQzQUVEQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpmfgMOaeNYihGlHQuBDzBOhXi yTuFi7WKhsNcZyK/8VEpe0ZdK9RfNP6NULDYECBGTTE6nJ6pdv+1i3NTuqLKIHD8 Xnj2oScf9v41qyEMzSJ47c1WONymNoF3rTF9UtXW56pOMhDRm6V9iVK4YU30awB8 9vu5R2evlI4tNZGKxE3XCvovB7TaJM4+lsVSRWPsNfcMXFeGGeCf+eMTPKNrXxU5 Wgz0SKkVi8wd4fWyqT1/qExt+ss4pNCyIjkFr3mQaPiW52JbXWEH4yzizO95MYLl h4KyX1wZ7+5S+YPrkyaoY8AsAbz4fx+d6QrPzsWA7U2whqA/0ko+5DWNK6DNAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUcKiIOg1m4zYODOBVs8DRu2067cgwHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMxMzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV8QMA0GCSqGSIb3DQEB CwUAA4IBAQAPPeXXBC+YWYdZrRIcljq0RZaopiNTmmY4IlISNSrq/JfJeOAQwKf5 NA4PrSG8qACLpRNwElauGFXDuIdHM5HG4LXZ7YAMXjdnOtH6n5Y+qZAm8OManDDy vLVyu0yrnD0cwuKwolgH5JfONYdr/fFODjcDv2FaraWAcmxBzrK4KjCM6vmqxKUw cLdU/Dh8yA47Ju2JSncY/b9UqVQqV3xhOGk0by6XHiTBS095SGoVuF/K9LNJMioe K//hQvgW1G6zlDJsSV2SRoeRaJvfwr1bLaklI2EaYptIu1nxkf36ubWsEBNQxKKf dVDgD0H1cqe5tg+mdQ8JwH/FjkcczI5X -----END CERTIFICATE-----Generated at Wed May 7 16:41:07 2025 by rpki-client