$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6362313a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6362313a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: ED9T1TH/lLo9n75GsxMUU3iCH+Cefw8ulX1hszJwXAg= Subject key identifier: 15:84:07:52:2A:56:F4:F1:CC:CC:28:1E:A2:79:01:84:C4:03:A9:D9 Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 64A65AA441A14D9787DC17F80E5D7717C5613E64 Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6362313a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 05 Jun 2026 23:10:31 +0000 ROA not before: Fri 05 Jun 2026 23:05:31 +0000 ROA not after: Fri 04 Jun 2027 23:10:31 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cb1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 17:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:a6:5a:a4:41:a1:4d:97:87:dc:17:f8:0e:5d:77:17:c5:61:3e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jun 5 23:05:31 2026 GMT Not After : Jun 4 23:10:31 2027 GMT Subject: CN=158407522A56F4F1CCCC281EA2790184C403A9D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:54:42:bf:28:98:ea:70:72:0e:20:d0:27:2b: 98:15:00:ff:68:8f:9f:30:28:7a:c3:ad:f1:56:f7: d1:56:34:85:73:f4:f5:e6:55:d5:2d:a4:23:3f:79: 12:fe:6e:77:76:33:58:1d:fb:90:3a:bf:3b:90:09: e4:09:71:41:9b:50:92:f7:57:85:d8:0d:47:72:bd: d4:4e:45:39:31:18:46:59:7c:73:1c:46:df:f7:f3: 8a:97:8a:2c:50:92:54:33:1b:1a:3c:af:aa:43:24: 3e:1a:16:78:d4:2e:ee:8f:b0:d9:78:17:eb:4b:cd: 94:2f:2f:3a:38:a2:1d:9c:9c:61:a3:a0:88:e1:51: a7:16:19:27:b1:5f:eb:59:06:87:ac:4e:ab:e6:9d: 2d:89:43:63:ea:2d:e0:c9:bc:dc:4c:3d:cf:11:54: bf:02:0b:f2:e3:e3:f1:83:a5:10:f6:a0:30:54:a0: 84:6a:c1:fa:fb:aa:cd:a0:7e:ba:bd:b5:ea:62:b7: c7:51:2e:29:60:0f:66:d4:95:7f:82:b2:20:3c:2d: 77:20:37:90:23:ae:16:59:5c:77:16:74:96:72:cb: 2e:3b:0a:6f:fe:57:30:13:5e:23:d4:44:df:8f:39: c3:39:bf:b2:a7:ed:3b:a9:a3:ed:e4:f0:27:94:92: 52:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:84:07:52:2A:56:F4:F1:CC:CC:28:1E:A2:79:01:84:C4:03:A9:D9 X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6362313a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cb1::/48 Signature Algorithm: sha256WithRSAEncryption 4c:21:c7:ad:d6:ef:a1:2e:2c:3e:a4:87:c4:41:c4:28:42:e7: 40:f7:bf:e3:52:75:f3:2f:54:4e:78:d8:9e:e2:45:11:d3:9d: f0:97:15:81:2f:5a:f8:49:e2:ec:8e:4b:43:16:65:73:f4:68: 1a:11:cb:3e:3d:0e:05:40:7a:73:e9:a5:0a:09:40:e0:64:72: 48:cc:e5:25:d0:35:ce:3c:ba:d7:19:4e:78:ac:70:29:1e:de: 1b:89:87:3c:22:e1:f4:bd:d8:ff:b7:ee:45:1e:53:2a:94:c1: 7d:fb:7f:fc:80:30:8b:44:07:56:f9:f5:1e:bf:ba:f2:9e:b8: 4a:49:ae:0d:2c:a1:05:d4:c1:60:1e:f4:6e:b5:20:cf:83:10: 4e:ea:97:f6:be:a1:5b:84:56:dc:bc:32:09:00:58:4b:d4:a0: e7:27:d7:ed:13:42:c3:60:57:cb:74:44:2f:11:a2:78:33:33: 4e:9f:54:e0:68:6e:e5:87:89:84:76:83:83:86:44:3c:e6:25: 3d:69:62:fd:9f:67:3f:43:4a:55:20:74:d7:a5:33:f1:e5:a1: 57:e2:0f:b8:dd:29:0a:2a:85:94:50:ad:e2:b4:03:c7:40:09: 51:bd:30:52:13:eb:32:7c:ae:69:fe:ec:77:de:65:20:70:b2: ee:5e:7d:bd -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUZKZapEGhTZeH3Bf4Dl13F8VhPmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNjA2MDUyMzA1MzFaFw0yNzA2MDQyMzEwMzFaMDMxMTAvBgNV BAMTKDE1ODQwNzUyMkE1NkY0RjFDQ0NDMjgxRUEyNzkwMTg0QzQwM0E5RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuVEK/KJjqcHIOINAnK5gVAP9o j58wKHrDrfFW99FWNIVz9PXmVdUtpCM/eRL+bnd2M1gd+5A6vzuQCeQJcUGbUJL3 V4XYDUdyvdRORTkxGEZZfHMcRt/384qXiixQklQzGxo8r6pDJD4aFnjULu6PsNl4 F+tLzZQvLzo4oh2cnGGjoIjhUacWGSexX+tZBoesTqvmnS2JQ2PqLeDJvNxMPc8R VL8CC/Lj4/GDpRD2oDBUoIRqwfr7qs2gfrq9tepit8dRLilgD2bUlX+CsiA8LXcg N5AjrhZZXHcWdJZyyy47Cm/+VzATXiPURN+POcM5v7Kn7Tupo+3k8CeUklI1AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUFYQHUipW9PHMzCgeonkBhMQDqdkwHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2MjMxM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQyxMA0GCSqGSIb3DQEB CwUAA4IBAQBMIcet1u+hLiw+pIfEQcQoQudA97/jUnXzL1ROeNie4kUR053wlxWB L1r4SeLsjktDFmVz9GgaEcs+PQ4FQHpz6aUKCUDgZHJIzOUl0DXOPLrXGU54rHAp Ht4biYc8IuH0vdj/t+5FHlMqlMF9+3/8gDCLRAdW+fUev7rynrhKSa4NLKEF1MFg HvRutSDPgxBO6pf2vqFbhFbcvDIJAFhL1KDnJ9ftE0LDYFfLdEQvEaJ4MzNOn1Tg aG7lh4mEdoODhkQ85iU9aWL9n2c/Q0pVIHTXpTPx5aFX4g+43SkKKoWUUK3itAPH QAlRvTBSE+syfK5p/ux33mUgcLLuXn29 -----END CERTIFICATE-----Generated at Sat Jun 13 23:06:52 2026 by rpki-client