$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: EPPNU2N02dspTOT+Qd29+6lRlfOZSF0Kd5muSJ8aZ+4= Subject key identifier: FA:C2:05:9E:A5:D1:F5:C8:FF:39:68:47:13:4E:87:C6:A7:04:3C:DF Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 514E8E9EDFC988AC66329740EBBEF397647C9DBD Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 05 Jun 2026 23:10:29 +0000 ROA not before: Fri 05 Jun 2026 23:05:29 +0000 ROA not after: Fri 04 Jun 2027 23:10:29 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cd3::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 17:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:4e:8e:9e:df:c9:88:ac:66:32:97:40:eb:be:f3:97:64:7c:9d:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jun 5 23:05:29 2026 GMT Not After : Jun 4 23:10:29 2027 GMT Subject: CN=FAC2059EA5D1F5C8FF396847134E87C6A7043CDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:38:05:14:a0:2d:66:ea:ea:8e:d5:cd:51:26: e5:72:2b:0c:dc:19:18:1a:a4:f5:c0:2d:cd:cf:9c: a9:ef:df:16:86:f2:d9:24:d6:2a:f3:57:cc:44:c1: 76:b2:52:aa:70:22:4b:55:c8:50:3b:de:be:a1:5d: f1:31:a1:2b:9d:40:27:db:a5:b2:79:1f:e0:43:37: 9b:a2:be:3d:f7:e9:c5:a2:6c:56:78:99:07:4b:8b: 90:95:d9:2f:b9:96:7f:d6:88:68:b7:55:5e:19:01: 31:60:50:9c:81:fe:3d:41:27:e4:da:74:a0:68:eb: 74:e3:23:b9:ad:9c:06:e7:1a:09:8c:d9:5c:8a:7c: 01:29:db:06:5e:ed:cc:49:c1:b6:a9:fa:a3:ca:5e: c0:a7:71:20:91:c5:b1:ea:98:4c:24:71:3f:bf:2b: cd:8c:6a:bf:b5:16:19:6d:2d:93:1b:84:7d:33:a8: ec:b3:85:f1:ca:3b:d6:71:d4:9d:f1:fa:dc:ad:bd: 4c:fe:c4:6f:58:4e:66:06:d3:aa:06:f9:f0:9d:2e: f5:62:75:9e:e8:cb:15:46:7a:ed:a2:12:ec:04:20: fb:a0:c1:c1:9c:17:1b:d6:d6:32:25:32:8b:71:a2: 09:40:2e:9f:7d:49:da:eb:13:2c:5d:19:5e:bd:ea: 53:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C2:05:9E:A5:D1:F5:C8:FF:39:68:47:13:4E:87:C6:A7:04:3C:DF X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6364333a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cd3::/48 Signature Algorithm: sha256WithRSAEncryption b5:4b:eb:d8:23:d3:52:f3:81:05:45:a8:04:53:31:f8:cd:da: 06:b9:6e:b0:3a:a4:a5:5d:80:3e:95:bd:cd:ea:99:4c:50:4d: 03:8e:c9:aa:e0:16:63:30:bb:fa:86:c5:be:8a:c6:ad:fd:c0: 12:07:5b:f0:ec:91:db:ef:cb:8a:6a:66:e5:92:86:89:a8:56: dc:6f:2c:f0:e1:86:8d:7a:c5:58:65:3e:0f:e0:d0:eb:4a:7b: f3:eb:14:cc:ba:11:69:aa:4f:49:11:6a:f0:c5:94:64:37:aa: d2:75:4d:bd:32:ca:75:62:02:90:83:d6:a8:36:ef:b5:20:b4: cf:d7:19:51:e5:60:43:5f:83:bb:c1:c4:af:0e:38:21:3b:95: 96:ac:7a:22:4a:55:a5:7c:28:3f:45:9e:88:83:bf:4a:99:e0: 07:7a:39:69:b9:39:3e:25:18:6f:62:03:88:29:7e:70:08:18: 66:f5:c6:2b:fa:30:6f:cf:40:5b:7b:1c:07:f8:4e:b1:ad:41: f9:af:00:44:e7:b2:55:d0:76:f4:9c:df:02:41:68:0c:58:bf: 99:f3:b5:76:72:15:3d:49:60:fa:91:6a:65:a4:ad:08:0a:6b: f0:2f:7d:42:3c:d6:c6:bf:c5:c7:46:91:d3:8f:92:d3:28:7d: 2f:5b:87:30 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUUU6Ont/JiKxmMpdA677zl2R8nb0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNjA2MDUyMzA1MjlaFw0yNzA2MDQyMzEwMjlaMDMxMTAvBgNV BAMTKEZBQzIwNTlFQTVEMUY1QzhGRjM5Njg0NzEzNEU4N0M2QTcwNDNDREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjOAUUoC1m6uqO1c1RJuVyKwzc GRgapPXALc3PnKnv3xaG8tkk1irzV8xEwXayUqpwIktVyFA73r6hXfExoSudQCfb pbJ5H+BDN5uivj336cWibFZ4mQdLi5CV2S+5ln/WiGi3VV4ZATFgUJyB/j1BJ+Ta dKBo63TjI7mtnAbnGgmM2VyKfAEp2wZe7cxJwbap+qPKXsCncSCRxbHqmEwkcT+/ K82Mar+1FhltLZMbhH0zqOyzhfHKO9Zx1J3x+tytvUz+xG9YTmYG06oG+fCdLvVi dZ7oyxVGeu2iEuwEIPugwcGcFxvW1jIlMotxoglALp99SdrrEyxdGV696lOXAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU+sIFnqXR9cj/OWhHE06HxqcEPN8wHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NDMzM2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQzTMA0GCSqGSIb3DQEB CwUAA4IBAQC1S+vYI9NS84EFRagEUzH4zdoGuW6wOqSlXYA+lb3N6plMUE0Djsmq 4BZjMLv6hsW+isat/cASB1vw7JHb78uKamblkoaJqFbcbyzw4YaNesVYZT4P4NDr Snvz6xTMuhFpqk9JEWrwxZRkN6rSdU29Msp1YgKQg9aoNu+1ILTP1xlR5WBDX4O7 wcSvDjghO5WWrHoiSlWlfCg/RZ6Ig79KmeAHejlpuTk+JRhvYgOIKX5wCBhm9cYr +jBvz0BbexwH+E6xrUH5rwBE57JV0Hb0nN8CQWgMWL+Z87V2chU9SWD6kWplpK0I CmvwL31CPNbGv8XHRpHTj5LTKH0vW4cw -----END CERTIFICATE-----Generated at Sat Jun 13 23:10:48 2026 by rpki-client