$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356633353a3a2f34382d3438203d3e203538333339.roa File: 326130353a646663313a356633353a3a2f34382d3438203d3e203538333339.roa (raw, json) Hash identifier: XPgjGBrZFVygJ4AAsGKRKtDhWyE6BnqilLsNV0wu2sQ= Subject key identifier: 4F:91:24:CB:9B:77:56:6C:C3:36:6D:12:2D:6F:21:9F:02:01:28:14 Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 0445F08B7C5204BAA5BC949586A566F5218A33FC Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356633353a3a2f34382d3438203d3e203538333339.roa Signing time: Tue 06 May 2025 08:50:49 +0000 ROA not before: Tue 06 May 2025 08:45:49 +0000 ROA not after: Tue 05 May 2026 08:50:49 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f35::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 20:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:45:f0:8b:7c:52:04:ba:a5:bc:94:95:86:a5:66:f5:21:8a:33:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: May 6 08:45:49 2025 GMT Not After : May 5 08:50:49 2026 GMT Subject: CN=4F9124CB9B77566CC3366D122D6F219F02012814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ef:ce:ed:12:21:d7:3f:b1:71:9a:df:a4:29: d3:04:a1:2e:72:ef:5a:8b:0f:99:a8:a4:4e:87:19: e2:d0:b8:6f:5a:3d:19:b6:b1:96:bb:89:26:7c:8d: 08:f1:1a:bd:94:6b:d2:65:44:ca:b5:47:57:46:61: 53:87:2f:7d:b4:5f:13:2d:21:1a:85:29:e6:b9:8f: d5:c4:0b:48:04:5a:6d:fc:33:6f:83:bb:6a:0f:30: 6c:47:33:29:b1:fb:26:69:32:bf:5b:fd:3d:de:54: 01:ce:92:cc:14:7c:56:56:74:b2:07:da:58:39:fc: 8d:98:f3:43:1d:6d:ae:89:17:d9:84:49:6e:cb:c5: 26:0f:a7:9a:ad:29:ca:d5:d9:95:f3:f3:be:41:da: c2:90:a3:3a:ae:2e:aa:ef:98:95:76:80:17:2e:b1: 4d:c9:be:d4:ba:15:1d:e6:54:27:eb:db:08:35:4d: 22:1f:e6:17:d7:6d:cf:de:bd:1e:46:64:be:e6:3c: c0:b6:af:6f:7d:91:7f:b1:cc:15:2f:0e:4d:21:44: b7:fc:8e:fc:84:c5:5b:bc:d1:32:37:7d:6a:08:74: e0:c3:03:f7:65:64:eb:b8:71:eb:80:4c:7c:fa:74: 5f:6d:70:cc:96:5d:9c:8c:ce:e4:8f:5a:61:43:49: 21:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:91:24:CB:9B:77:56:6C:C3:36:6D:12:2D:6F:21:9F:02:01:28:14 X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356633353a3a2f34382d3438203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f35::/48 Signature Algorithm: sha256WithRSAEncryption 42:a3:42:61:b4:87:60:9e:d2:da:8b:99:0e:77:76:73:8f:2b: 9c:93:cd:a6:72:20:da:79:23:23:ab:84:3e:fb:38:56:7e:f3: 27:9e:1c:a9:4c:ee:4a:5e:37:33:a9:95:2f:11:fa:18:e7:67: 24:c0:8f:ea:d6:2e:ff:43:5d:ab:56:53:5f:7d:c0:e4:95:e7: b7:7a:48:04:bb:8f:eb:89:5c:5c:fa:ce:70:52:4b:f0:1e:d9: 41:bb:47:1f:c7:06:c4:84:fc:23:b9:8c:9c:b4:a7:2f:7e:7c: e1:4d:2b:19:f2:15:de:00:de:11:94:9b:52:9e:bf:c1:be:67: 9c:97:62:bb:cb:f4:17:24:4b:32:f5:13:f1:eb:53:08:68:14: f7:1a:c8:77:e3:dd:e5:2a:85:27:8d:90:4c:b8:d7:5c:e2:d1: fb:e0:1d:f0:ca:de:6c:73:a7:88:bb:5a:0d:d2:51:09:ee:f9: 61:51:99:84:11:0c:ed:0e:1c:bd:93:92:3e:be:bb:ab:86:d9: 49:9e:1e:ac:ff:d2:de:44:d9:9a:91:a8:11:6c:ae:6b:96:11: 59:aa:83:fd:32:d4:0a:b4:53:90:2a:fe:ad:2e:b1:2c:5c:32: db:05:8c:0c:0a:1c:1c:ab:b7:37:b3:73:69:77:45:2c:b3:a1: 75:1d:6a:3e -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUBEXwi3xSBLqlvJSVhqVm9SGKM/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNTA1MDYwODQ1NDlaFw0yNjA1MDUwODUwNDlaMDMxMTAvBgNV BAMTKDRGOTEyNENCOUI3NzU2NkNDMzM2NkQxMjJENkYyMTlGMDIwMTI4MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI787tEiHXP7Fxmt+kKdMEoS5y 71qLD5mopE6HGeLQuG9aPRm2sZa7iSZ8jQjxGr2Ua9JlRMq1R1dGYVOHL320XxMt IRqFKea5j9XEC0gEWm38M2+Du2oPMGxHMymx+yZpMr9b/T3eVAHOkswUfFZWdLIH 2lg5/I2Y80Mdba6JF9mESW7LxSYPp5qtKcrV2ZXz875B2sKQozquLqrvmJV2gBcu sU3JvtS6FR3mVCfr2wg1TSIf5hfXbc/evR5GZL7mPMC2r299kX+xzBUvDk0hRLf8 jvyExVu80TI3fWoIdODDA/dlZOu4ceuATHz6dF9tcMyWXZyMzuSPWmFDSSERAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUT5Eky5t3VmzDNm0SLW8hnwIBKBQwHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjMzMzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwV81MA0GCSqGSIb3DQEB CwUAA4IBAQBCo0JhtIdgntLai5kOd3Zzjyuck82mciDaeSMjq4Q++zhWfvMnnhyp TO5KXjczqZUvEfoY52ckwI/q1i7/Q12rVlNffcDklee3ekgEu4/riVxc+s5wUkvw HtlBu0cfxwbEhPwjuYyctKcvfnzhTSsZ8hXeAN4RlJtSnr/Bvmecl2K7y/QXJEsy 9RPx61MIaBT3Gsh3493lKoUnjZBMuNdc4tH74B3wyt5sc6eIu1oN0lEJ7vlhUZmE EQztDhy9k5I+vrurhtlJnh6s/9LeRNmakagRbK5rlhFZqoP9MtQKtFOQKv6tLrEs XDLbBYwMChwcq7c3s3Npd0Uss6F1HWo+ -----END CERTIFICATE-----Generated at Thu May 8 02:13:21 2025 by rpki-client