$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa File: 326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa (raw, json) Hash identifier: naowDW6MLE3ANeaa1uHwumrZ/cU3griubbVpUvI8L9Y= Subject key identifier: 27:D6:1F:ED:D6:FA:5C:F1:9E:5D:BE:9F:21:73:DD:E7:DF:8C:20:77 Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 2D4A610B60BE1B34D71FEFE98589FF0A407FB556 Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa Signing time: Tue 06 May 2025 08:50:49 +0000 ROA not before: Tue 06 May 2025 08:45:49 +0000 ROA not after: Tue 05 May 2026 08:50:49 +0000 asID: 138190 IP address blocks: 2a05:dfc1:5f85::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 May 2025 23:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:4a:61:0b:60:be:1b:34:d7:1f:ef:e9:85:89:ff:0a:40:7f:b5:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: May 6 08:45:49 2025 GMT Not After : May 5 08:50:49 2026 GMT Subject: CN=27D61FEDD6FA5CF19E5DBE9F2173DDE7DF8C2077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f7:6c:dc:7a:fe:63:9f:71:e1:9f:ac:d4:85: 03:48:ce:8b:d5:33:2d:da:dc:e4:87:0a:32:ab:06: e0:0f:d1:d0:d2:fb:79:03:08:1e:5c:ca:15:2c:bc: 49:57:60:87:f2:86:03:71:06:f5:90:7c:52:4e:9b: 31:75:14:b2:60:fe:bc:45:7e:d5:17:62:19:55:42: 25:f8:a5:0f:e1:a5:6d:1a:73:cd:8e:c5:89:bb:b4: 06:10:9e:85:52:7e:3d:e3:cb:21:a3:fc:43:2c:27: 75:e9:b6:a4:04:ae:0b:b4:30:3e:9b:99:dd:0c:24: db:68:3e:7c:bd:b5:1d:b4:2c:0e:eb:78:c3:08:32: 89:c2:2c:cf:d5:16:f1:33:a2:db:d0:fc:3b:17:b9: 18:e8:66:9a:6a:aa:78:f8:1d:83:24:01:45:be:f2: 2c:6e:2c:ae:d2:85:7c:b3:4f:7a:8c:45:dc:1b:99: 71:c4:5a:d4:60:34:09:66:4c:f4:f8:e1:51:6c:65: f6:d9:8b:34:69:cb:4d:a4:5e:8a:05:48:03:8b:5f: 08:4f:3f:eb:47:14:44:3c:d4:ea:7c:3b:01:f0:ba: 90:c5:27:69:a1:a0:0e:15:56:2b:70:d5:46:76:42: dd:5a:72:0c:85:93:97:41:bf:3f:16:17:c8:52:7d: 43:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D6:1F:ED:D6:FA:5C:F1:9E:5D:BE:9F:21:73:DD:E7:DF:8C:20:77 X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a356638353a3a2f34382d3438203d3e20313338313930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f85::/48 Signature Algorithm: sha256WithRSAEncryption b0:e2:07:a3:98:af:cd:c8:f2:fc:1c:0a:5e:cd:56:ba:7e:52: 64:bd:5c:01:f3:4b:68:15:15:82:94:88:40:fc:fb:92:4d:ed: 9d:57:82:10:4c:73:1b:a6:d6:ad:9e:7b:d3:48:ee:89:01:57: 1f:33:2e:34:f9:1b:62:90:c2:d1:5a:84:a2:4d:af:1c:71:df: 2a:7d:13:32:1c:1d:50:7c:7b:53:5b:6b:04:96:30:ce:72:72: 26:b0:aa:ba:59:07:e7:94:ab:42:2e:67:7a:75:26:9c:24:1a: e6:e0:19:9b:3e:3a:7e:0f:25:0e:3c:34:f4:2f:3b:47:3b:ed: 87:97:dc:f0:9d:e8:30:91:6a:aa:e2:da:c4:7f:c8:1b:e4:02: 8a:dc:85:46:3b:0e:a7:71:7d:ea:87:bd:6e:55:73:24:18:1d: b2:5c:bc:73:ef:fd:b7:ea:8d:78:76:a1:5f:1d:27:35:80:f7: d3:f0:a1:d0:be:da:1e:1f:87:3b:3e:fc:0e:2c:1d:83:b5:9d: a2:0f:cd:c4:bd:c7:a7:f7:da:61:87:73:ba:44:ff:d3:b6:e0: 79:ad:03:50:7c:c1:6a:d6:b0:01:b2:8c:bc:97:4e:e3:90:03: 1a:65:55:c1:16:ce:8f:90:26:33:08:fe:c8:bb:d6:d5:d4:e3: 18:10:11:e3 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIULUphC2C+GzTXH+/phYn/CkB/tVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNTA1MDYwODQ1NDlaFw0yNjA1MDUwODUwNDlaMDMxMTAvBgNV BAMTKDI3RDYxRkVERDZGQTVDRjE5RTVEQkU5RjIxNzNEREU3REY4QzIwNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC92zcev5jn3Hhn6zUhQNIzovV My3a3OSHCjKrBuAP0dDS+3kDCB5cyhUsvElXYIfyhgNxBvWQfFJOmzF1FLJg/rxF ftUXYhlVQiX4pQ/hpW0ac82OxYm7tAYQnoVSfj3jyyGj/EMsJ3XptqQErgu0MD6b md0MJNtoPny9tR20LA7reMMIMonCLM/VFvEzotvQ/DsXuRjoZppqqnj4HYMkAUW+ 8ixuLK7ShXyzT3qMRdwbmXHEWtRgNAlmTPT44VFsZfbZizRpy02kXooFSAOLXwhP P+tHFEQ81Op8OwHwupDFJ2mhoA4VVitw1UZ2Qt1acgyFk5dBvz8WF8hSfUOFAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUJ9Yf7db6XPGeXb6fIXPd59+MIHcwHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzU2NjM4MzUzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BX4UwDQYJKoZIhvcN AQELBQADggEBALDiB6OYr83I8vwcCl7NVrp+UmS9XAHzS2gVFYKUiED8+5JN7Z1X ghBMcxum1q2ee9NI7okBVx8zLjT5G2KQwtFahKJNrxxx3yp9EzIcHVB8e1NbawSW MM5yciawqrpZB+eUq0IuZ3p1JpwkGubgGZs+On4PJQ48NPQvO0c77YeX3PCd6DCR aqri2sR/yBvkAorchUY7DqdxfeqHvW5VcyQYHbJcvHPv/bfqjXh2oV8dJzWA99Pw odC+2h4fhzs+/A4sHYO1naIPzcS9x6f32mGHc7pE/9O24HmtA1B8wWrWsAGyjLyX TuOQAxplVcEWzo+QJjMI/si71tXU4xgQEeM= -----END CERTIFICATE-----Generated at Wed May 7 06:00:40 2025 by rpki-client