$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356636303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a356636303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: NoAeiuJjhntRzSQanLAKQdb7Q/w94Y5I0Lyufrgc3CQ= Subject key identifier: 77:36:CB:6C:BC:38:D2:53:9E:00:3E:9E:39:38:C9:E1:2C:24:2E:2E Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 5AF15B1627F8DB9C507E7ECE8124BBEC2F437834 Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356636303a3a2f34342d3434203d3e203538333339.roa Signing time: Tue 06 May 2025 08:50:50 +0000 ROA not before: Tue 06 May 2025 08:45:50 +0000 ROA not after: Tue 05 May 2026 08:50:50 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f60::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 21:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f1:5b:16:27:f8:db:9c:50:7e:7e:ce:81:24:bb:ec:2f:43:78:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: May 6 08:45:50 2025 GMT Not After : May 5 08:50:50 2026 GMT Subject: CN=7736CB6CBC38D2539E003E9E3938C9E12C242E2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bd:ee:89:57:7e:6c:06:4a:1a:af:d1:9c:8b: 95:83:bc:05:f5:52:39:65:d6:c1:40:85:a4:9a:d3: e1:96:6a:4f:9b:c9:20:44:62:56:04:54:93:d9:a7: 74:6e:7c:d2:b1:08:57:2a:d9:c8:6d:0c:60:c1:ed: a5:73:5e:1b:bb:8d:06:20:c4:36:48:74:6d:d9:f1: a9:de:6d:de:0e:1b:42:16:62:32:67:c5:95:dc:21: 3b:f1:50:2f:4d:a6:21:5c:ba:c4:4e:c3:e9:3b:a1: 3f:04:42:40:90:38:3b:18:08:aa:6f:67:6b:32:75: 95:a8:88:0b:4f:ea:c0:f9:f3:32:97:cb:cf:fb:bd: ba:7f:5f:73:ee:cb:4e:80:fe:34:ac:a6:44:71:ae: ea:bd:92:db:a8:0a:94:45:64:50:41:45:f2:91:c8: 5b:e8:4b:6d:f2:03:44:d4:45:50:cf:49:4b:df:21: 4f:b4:d3:36:2d:5c:92:62:c3:cb:ad:71:47:14:47: 3c:c8:dc:bd:87:b6:31:82:bb:ca:17:da:3d:a7:ea: ba:39:0e:3a:c5:7f:f9:61:f5:11:1e:23:98:f6:24: 33:b0:f6:9c:d5:68:d8:dd:27:fd:0a:e2:0f:0f:6e: 7f:69:f6:b6:a9:57:71:5d:6d:16:9d:a5:2d:57:da: 96:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:36:CB:6C:BC:38:D2:53:9E:00:3E:9E:39:38:C9:E1:2C:24:2E:2E X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356636303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f60::/44 Signature Algorithm: sha256WithRSAEncryption 3f:6e:22:54:8d:12:b8:0d:1c:9c:e6:46:fd:76:69:15:45:3e: 3f:31:c0:c4:de:7e:57:4c:c7:cc:08:95:2c:e7:cd:fc:26:f4: 0e:91:ff:c9:25:c5:f0:dd:e3:c3:f5:26:3a:de:f3:06:49:2e: 27:47:05:a6:39:86:f5:70:7a:c7:e6:1a:ca:01:6c:ba:27:83: 8c:a4:a3:25:b3:35:19:9b:d5:1b:25:a3:00:f1:69:e6:6e:12: 6f:45:e1:84:5e:fc:da:95:60:ee:e2:d7:71:cb:7a:29:8a:10: 32:8e:8d:00:7b:81:7d:d6:60:6f:53:de:af:c7:91:8e:69:ed: 80:ac:2d:fb:a0:73:11:6f:db:4e:e4:a9:5c:7d:11:cb:18:4c: 79:04:1e:8c:c8:bf:5b:a2:8d:f9:91:70:1e:54:15:81:f1:ac: c3:79:3f:f0:f1:68:58:b6:79:e1:66:7a:2e:8c:84:a6:28:93: 7b:2d:30:1d:19:70:1e:fd:78:4f:d2:e2:26:16:02:07:7f:9f: c4:bc:18:4a:ff:b3:de:46:b3:91:ee:7c:6f:5e:6a:de:7d:dc: fe:7a:49:29:1d:17:99:d2:03:ce:c8:55:38:66:be:0a:83:bd: b8:ec:01:57:41:64:4e:5b:3b:72:4a:fd:ae:5f:2d:ce:f3:4c: 5f:14:0a:12 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUWvFbFif425xQfn7OgSS77C9DeDQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNTA1MDYwODQ1NTBaFw0yNjA1MDUwODUwNTBaMDMxMTAvBgNV BAMTKDc3MzZDQjZDQkMzOEQyNTM5RTAwM0U5RTM5MzhDOUUxMkMyNDJFMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ve6JV35sBkoar9Gci5WDvAX1 Ujll1sFAhaSa0+GWak+bySBEYlYEVJPZp3RufNKxCFcq2chtDGDB7aVzXhu7jQYg xDZIdG3Z8anebd4OG0IWYjJnxZXcITvxUC9NpiFcusROw+k7oT8EQkCQODsYCKpv Z2sydZWoiAtP6sD58zKXy8/7vbp/X3Puy06A/jSspkRxruq9ktuoCpRFZFBBRfKR yFvoS23yA0TURVDPSUvfIU+00zYtXJJiw8utcUcURzzI3L2HtjGCu8oX2j2n6ro5 DjrFf/lh9REeI5j2JDOw9pzVaNjdJ/0K4g8Pbn9p9rapV3FdbRadpS1X2pavAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUdzbLbLw40lOeAD6eOTjJ4SwkLi4wHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjM2MzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwV9gMA0GCSqGSIb3DQEB CwUAA4IBAQA/biJUjRK4DRyc5kb9dmkVRT4/McDE3n5XTMfMCJUs5838JvQOkf/J JcXw3ePD9SY63vMGSS4nRwWmOYb1cHrH5hrKAWy6J4OMpKMlszUZm9UbJaMA8Wnm bhJvReGEXvzalWDu4tdxy3opihAyjo0Ae4F91mBvU96vx5GOae2ArC37oHMRb9tO 5KlcfRHLGEx5BB6MyL9boo35kXAeVBWB8azDeT/w8WhYtnnhZnoujISmKJN7LTAd GXAe/XhP0uImFgIHf5/EvBhK/7PeRrOR7nxvXmrefdz+ekkpHReZ0gPOyFU4Zr4K g7247AFXQWROWztySv2uXy3O80xfFAoS -----END CERTIFICATE-----Generated at Thu May 8 11:37:35 2025 by rpki-client