$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: rQUCn+hHBZ68JhM7ZafMxS4M04OOHi6AcHSR20Lo1TU= Subject key identifier: 3A:32:40:76:06:08:C6:31:5C:8A:32:01:82:40:22:4D:61:B2:0D:31 Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 6BC30575FAE4697E412013C9B475D947F087A3B2 Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa Signing time: Tue 06 May 2025 08:50:50 +0000 ROA not before: Tue 06 May 2025 08:45:50 +0000 ROA not after: Tue 05 May 2026 08:50:50 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8e20::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 12:42:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:c3:05:75:fa:e4:69:7e:41:20:13:c9:b4:75:d9:47:f0:87:a3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: May 6 08:45:50 2025 GMT Not After : May 5 08:50:50 2026 GMT Subject: CN=3A3240760608C6315C8A32018240224D61B20D31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e4:c8:a2:88:fa:38:06:be:2c:19:0c:04:4a: e9:c8:3b:34:9c:a5:8b:26:8d:58:da:fc:aa:25:1e: d0:a6:bd:29:a5:29:be:26:c6:cb:e5:88:12:69:4f: c9:98:b1:67:a1:5a:e6:e4:4e:c9:18:1f:ae:31:7c: b0:13:37:e1:b2:30:f9:d8:8d:77:1c:2e:3a:39:7f: 13:d7:9b:30:6f:14:ae:67:0d:8a:45:3a:38:97:54: 62:f7:dd:50:78:b9:3a:34:38:36:8f:53:ad:3b:ca: dc:3e:6f:04:06:11:d8:2e:f0:15:f5:85:66:89:f3: 2c:d6:94:ef:fd:eb:af:9c:6c:7e:a9:8e:71:e5:fa: a6:01:f5:65:0f:da:13:e0:f0:f7:41:54:a0:ca:28: c7:5a:80:f0:41:fd:76:56:fe:b2:c6:24:c8:57:83: 1d:fc:29:a7:42:00:c3:48:eb:0c:a3:c9:0e:bb:b3: a5:49:4d:1e:b9:04:73:01:df:77:78:a5:e7:15:1f: 07:09:f1:de:4d:42:8b:46:70:cb:75:1b:69:2d:2e: 8a:86:f3:c5:5d:8a:77:03:bb:e7:cd:13:ef:8b:b2: 27:25:de:c9:0f:6c:89:3c:8a:3d:85:de:2d:26:f9: d1:d5:99:0a:c0:b0:ef:53:2d:cc:05:0b:f6:58:5b: 84:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:32:40:76:06:08:C6:31:5C:8A:32:01:82:40:22:4D:61:B2:0D:31 X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386532303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8e20::/44 Signature Algorithm: sha256WithRSAEncryption 4f:87:ad:e9:ac:70:90:85:59:eb:82:52:de:98:0e:fd:cd:d3: 7f:b5:c3:a3:f6:b6:d0:9b:93:37:5d:ae:bb:94:35:8f:1a:11: d6:49:a6:0c:6f:3b:cf:24:d3:56:99:9b:42:07:9d:f8:b4:cb: c7:5c:7e:f1:58:f4:78:51:cc:ab:9d:82:8c:83:52:b8:85:53: 79:32:a8:14:ae:dc:ac:6e:32:3a:eb:c8:7f:ff:6d:6c:e7:5f: f5:5c:87:22:5f:09:a0:46:0b:b8:77:1a:94:5e:fb:a0:dd:43: ef:2a:89:76:b5:6b:41:0b:ae:f9:ca:4c:cf:b7:b0:58:91:7d: 61:e2:83:d0:fb:ea:68:15:68:8e:de:bb:e9:4f:b3:a5:36:32: 86:e6:cb:4e:2a:fb:88:2e:42:f3:a3:f0:d0:4d:fb:39:4d:d5: e6:c4:b0:bb:c4:af:41:2c:ad:c9:64:01:d4:ab:6b:ee:ba:f0: d9:e3:c1:49:3a:19:5e:5c:75:91:ce:b6:07:d4:df:0f:1f:7c: 37:1d:15:44:05:ba:24:3d:3c:ff:98:d6:54:da:d7:4b:71:49: cf:1b:2b:45:49:41:30:29:a1:a2:07:67:b5:76:f7:80:06:6f: 86:ba:90:f3:d0:ab:ea:7f:1b:c4:81:02:13:1e:90:3c:19:cb: 01:b8:24:c1 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUa8MFdfrkaX5BIBPJtHXZR/CHo7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNTA1MDYwODQ1NTBaFw0yNjA1MDUwODUwNTBaMDMxMTAvBgNV BAMTKDNBMzI0MDc2MDYwOEM2MzE1QzhBMzIwMTgyNDAyMjRENjFCMjBEMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG5MiiiPo4Br4sGQwESunIOzSc pYsmjVja/KolHtCmvSmlKb4mxsvliBJpT8mYsWehWubkTskYH64xfLATN+GyMPnY jXccLjo5fxPXmzBvFK5nDYpFOjiXVGL33VB4uTo0ODaPU607ytw+bwQGEdgu8BX1 hWaJ8yzWlO/966+cbH6pjnHl+qYB9WUP2hPg8PdBVKDKKMdagPBB/XZW/rLGJMhX gx38KadCAMNI6wyjyQ67s6VJTR65BHMB33d4pecVHwcJ8d5NQotGcMt1G2ktLoqG 88VdincDu+fNE++Lsicl3skPbIk8ij2F3i0m+dHVmQrAsO9TLcwFC/ZYW4SdAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUOjJAdgYIxjFcijIBgkAiTWGyDTEwHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTMyMzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY4gMA0GCSqGSIb3DQEB CwUAA4IBAQBPh63prHCQhVnrglLemA79zdN/tcOj9rbQm5M3Xa67lDWPGhHWSaYM bzvPJNNWmZtCB534tMvHXH7xWPR4UcyrnYKMg1K4hVN5MqgUrtysbjI668h//21s 51/1XIciXwmgRgu4dxqUXvug3UPvKol2tWtBC675ykzPt7BYkX1h4oPQ++poFWiO 3rvpT7OlNjKG5stOKvuILkLzo/DQTfs5TdXmxLC7xK9BLK3JZAHUq2vuuvDZ48FJ OhleXHWRzrYH1N8PH3w3HRVEBbokPTz/mNZU2tdLcUnPGytFSUEwKaGiB2e1dveA Bm+GupDz0KvqfxvEgQITHpA8GcsBuCTB -----END CERTIFICATE-----Generated at Wed May 7 23:47:59 2025 by rpki-client