$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa File: 326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa (raw, json) Hash identifier: abN5/Cb9oYTUFq1aSz8m05EglqsnY7Kqm7yWmNO8IEA= Subject key identifier: 23:08:AA:83:74:72:14:0E:0E:65:56:BE:6C:CE:4C:8E:67:BE:56:6F Certificate issuer: /CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Certificate serial: 3CC49D1C6A587F4E458CF1E4C817422872AACD9A Authority key identifier: 48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa Signing time: Tue 06 May 2025 08:50:50 +0000 ROA not before: Tue 06 May 2025 08:45:50 +0000 ROA not after: Tue 05 May 2026 08:50:50 +0000 asID: 58339 IP address blocks: 2a05:dfc1:8ed0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 02:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:c4:9d:1c:6a:58:7f:4e:45:8c:f1:e4:c8:17:42:28:72:aa:cd:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4824CF994FD8A36F35B03D1AC69C7B4F5756B19C Validity Not Before: May 6 08:45:50 2025 GMT Not After : May 5 08:50:50 2026 GMT Subject: CN=2308AA837472140E0E6556BE6CCE4C8E67BE566F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ff:31:8f:f9:fd:63:a5:66:36:15:8b:9a:d7: d5:1b:c5:ef:1a:ba:fc:46:78:a0:07:5a:da:c1:b0: 74:1f:5a:86:f5:4e:c0:78:3a:09:06:b8:60:0d:fd: 74:89:ce:01:dd:9a:5f:10:cb:f2:36:38:09:a2:30: 62:13:f7:39:dd:97:1c:1a:8a:eb:dc:4b:64:34:c8: c5:1b:77:c5:99:00:d9:f1:e6:e0:54:e8:3f:54:e4: 76:7d:b0:b0:95:a1:21:ae:a6:ce:2d:e8:d6:7a:aa: 77:52:6a:e5:d2:4f:4a:38:c8:fd:d5:55:c8:1b:c8: fc:91:6e:3d:8c:96:17:a2:f2:2b:29:34:14:9d:46: 37:22:c2:04:8c:e6:fb:76:79:7b:bf:5c:85:8c:b9: 10:42:18:51:00:c6:eb:31:82:eb:59:92:9f:d4:90: 06:85:0c:79:c8:c2:ae:1f:da:70:93:a6:27:25:83: e0:5f:82:cd:59:a8:13:4d:be:4c:d4:c9:4d:dc:64: 99:a9:22:02:29:7a:92:fb:92:ed:8a:d9:d0:1b:00: 46:e2:d1:e7:a7:f9:4e:86:d9:69:55:34:fd:fa:25: 51:49:e9:c3:d7:47:16:76:12:2d:ee:f7:98:e4:fb: 56:7b:0b:c8:53:c8:fa:ca:02:1c:54:30:03:12:90: 9b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:08:AA:83:74:72:14:0E:0E:65:56:BE:6C:CE:4C:8E:67:BE:56:6F X509v3 Authority Key Identifier: keyid:48:24:CF:99:4F:D8:A3:6F:35:B0:3D:1A:C6:9C:7B:4F:57:56:B1:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/4824CF994FD8A36F35B03D1AC69C7B4F5756B19C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/0/326130353a646663313a386564303a3a2f34342d3434203d3e203538333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8ed0::/44 Signature Algorithm: sha256WithRSAEncryption aa:62:0d:f7:a0:22:f7:a8:96:7c:08:37:0d:fd:7e:76:39:61: 4f:2a:29:c9:d2:57:c4:8f:2c:38:fe:ab:d4:f8:a2:90:2b:d0: 62:33:65:7d:1f:9a:5f:85:bd:fa:56:e3:21:ad:bf:40:08:39: d8:2e:a4:c9:ba:ee:c7:ec:d6:15:42:61:e0:24:77:e3:75:2f: fd:c8:00:30:9c:76:1b:00:6f:e8:08:b1:aa:d0:dc:18:0d:54: de:1b:a1:10:1f:76:9b:6d:0b:dd:ee:7d:b8:99:ff:04:28:ba: da:06:86:7e:3b:44:dc:32:f0:ef:e0:2f:09:a5:47:34:03:48: ba:a6:9b:b8:8c:2d:9d:e6:b2:d7:2d:e3:2b:e9:1e:44:60:79: fc:8a:10:34:49:cc:fc:aa:d9:a9:f6:02:be:1c:c0:03:0d:50: 4b:0f:e3:ea:31:52:07:88:a5:55:0f:7c:a5:01:24:d4:4b:8b: b4:d7:15:db:29:c6:df:95:cc:cd:0c:71:39:ba:a5:ec:d7:60: 8a:85:83:be:f3:71:28:e6:cb:77:3c:66:7a:e2:fb:37:de:09: ee:db:3c:35:53:81:e0:11:cb:e7:c2:b5:cc:45:71:2e:bc:52: 6e:83:d7:50:08:4b:0c:ac:3d:70:e3:f4:73:33:5e:b5:7c:4d: e1:cf:5e:a5 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUPMSdHGpYf05FjPHkyBdCKHKqzZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1 NzU2QjE5QzAeFw0yNTA1MDYwODQ1NTBaFw0yNjA1MDUwODUwNTBaMDMxMTAvBgNV BAMTKDIzMDhBQTgzNzQ3MjE0MEUwRTY1NTZCRTZDQ0U0QzhFNjdCRTU2NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO/zGP+f1jpWY2FYua19Ubxe8a uvxGeKAHWtrBsHQfWob1TsB4OgkGuGAN/XSJzgHdml8Qy/I2OAmiMGIT9zndlxwa iuvcS2Q0yMUbd8WZANnx5uBU6D9U5HZ9sLCVoSGups4t6NZ6qndSauXST0o4yP3V VcgbyPyRbj2Mlhei8ispNBSdRjciwgSM5vt2eXu/XIWMuRBCGFEAxusxgutZkp/U kAaFDHnIwq4f2nCTpiclg+Bfgs1ZqBNNvkzUyU3cZJmpIgIpepL7ku2K2dAbAEbi 0een+U6G2WlVNP36JVFJ6cPXRxZ2Ei3u95jk+1Z7C8hTyPrKAhxUMAMSkJvpAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUIwiqg3RyFA4OZVa+bM5Mjme+Vm8wHwYDVR0j BBgwFoAUSCTPmU/Yo281sD0axpx7T1dWsZwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzAvNDgyNENGOTk0RkQ4QTM2RjM1QjAzRDFBQzY5QzdCNEY1NzU2QjE5Qy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ4MjRDRjk5NEZEOEEz NkYzNUIwM0QxQUM2OUM3QjRGNTc1NkIxOUMuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8wLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTY0MzAzYTNhMmYzNDM0MmQzNDM0 MjAzZDNlMjAzNTM4MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfwY7QMA0GCSqGSIb3DQEB CwUAA4IBAQCqYg33oCL3qJZ8CDcN/X52OWFPKinJ0lfEjyw4/qvU+KKQK9BiM2V9 H5pfhb36VuMhrb9ACDnYLqTJuu7H7NYVQmHgJHfjdS/9yAAwnHYbAG/oCLGq0NwY DVTeG6EQH3abbQvd7n24mf8EKLraBoZ+O0TcMvDv4C8JpUc0A0i6ppu4jC2d5rLX LeMr6R5EYHn8ihA0Scz8qtmp9gK+HMADDVBLD+PqMVIHiKVVD3ylASTUS4u01xXb KcbflczNDHE5uqXs12CKhYO+83Eo5st3PGZ64vs33gnu2zw1U4HgEcvnwrXMRXEu vFJug9dQCEsMrD1w4/RzM161fE3hz16l -----END CERTIFICATE-----Generated at Wed May 7 18:29:57 2025 by rpki-client