$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: aBc+3q0F9+NwnnOKXQsziJcSflKCPcTqnJDYXx6ReGE= Subject key identifier: DC:DC:60:8E:A9:AE:69:F8:BA:00:CB:0B:C7:9B:38:A9:DC:22:0B:02 Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 0FC41031A7A3178EA78A68A69D7EC8700A2886AB Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 04 Jul 2025 22:34:42 +0000 ROA not before: Fri 04 Jul 2025 22:29:42 +0000 ROA not after: Fri 03 Jul 2026 22:34:42 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c4:10:31:a7:a3:17:8e:a7:8a:68:a6:9d:7e:c8:70:0a:28:86:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jul 4 22:29:42 2025 GMT Not After : Jul 3 22:34:42 2026 GMT Subject: CN=DCDC608EA9AE69F8BA00CB0BC79B38A9DC220B02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d0:88:ed:d4:d3:a5:c9:62:a1:84:21:fb:d2: ef:e5:11:90:ad:be:5b:51:a6:a4:49:c1:d8:75:cd: 8c:0a:8b:dc:41:f2:fc:f4:3e:d8:9b:d2:10:f7:1d: 20:05:a7:37:8b:a2:27:47:17:28:68:cc:2c:3c:b4: 00:f0:1b:51:dc:cf:ab:0b:6a:60:85:44:bf:08:01: 1d:fb:00:a1:0b:ce:4a:50:0b:2f:a2:b1:9b:4c:41: af:fb:e5:5e:ab:85:0c:28:fd:de:f6:6c:af:4b:b3: 76:b3:43:2c:40:1e:2f:02:5b:c4:9d:af:61:d8:fc: 46:48:ad:78:46:1f:42:1a:53:78:e5:71:11:26:ee: 1a:ec:7f:df:c1:7f:21:40:97:e4:9c:11:22:e1:9d: ba:1f:3a:f1:0d:29:00:d3:d8:7f:4b:f4:0d:b3:96: fb:7c:6b:b0:07:6a:f6:35:84:dc:5c:fd:ff:ee:b3: cd:ec:ae:53:d0:0b:9f:f1:6a:7a:f3:27:f4:ca:72: fe:1d:a0:13:f6:01:a1:de:90:b6:64:8e:c0:bc:0e: fd:81:cd:a8:de:9a:25:7a:9f:85:a7:41:06:94:05: 57:cd:fb:d9:dc:c3:a7:be:8f:80:67:28:bf:4f:39: bc:7b:6a:8b:1b:4f:bf:fa:5f:32:ee:78:38:1a:99: 61:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:DC:60:8E:A9:AE:69:F8:BA:00:CB:0B:C7:9B:38:A9:DC:22:0B:02 X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cff::/48 Signature Algorithm: sha256WithRSAEncryption db:50:58:84:2c:86:27:b5:85:6b:20:0c:f7:04:6d:64:24:d7: 3c:1e:2e:06:1e:70:25:82:76:0b:6a:fc:9c:e8:d0:30:d9:90: 97:aa:c7:5f:d6:72:b0:5f:b4:38:5a:2e:27:35:85:a5:c3:59: 94:bd:85:6b:fb:1c:55:63:95:4d:4a:3a:a8:51:5d:19:bb:f8: ac:4b:4c:3d:52:47:98:13:aa:f1:1d:4a:b8:96:ef:ca:0f:85: 98:ef:0f:62:46:05:09:32:0d:ca:cb:49:3e:2b:29:b7:4f:bc: ed:33:9b:32:c6:ca:f0:05:ab:2a:dc:03:f6:5c:f1:a9:54:2a: 37:32:87:86:c2:07:e0:c8:87:71:11:3e:f2:38:9a:46:75:e4: be:fe:86:a4:70:59:e3:9b:45:35:85:7a:5c:88:6f:aa:3f:7a: 94:8d:61:e1:a0:2a:a8:9d:ab:3b:2a:8b:c6:41:80:02:14:e6: 6b:ab:41:5f:3a:14:d1:d5:b9:7d:e5:40:13:4d:51:cc:38:9f: e4:d1:af:03:c9:d9:5c:a8:2f:db:04:59:6f:c1:22:ca:f2:d2: 04:9f:58:43:78:0d:e1:36:61:15:a7:21:38:1b:50:3d:27:ec: e3:43:9e:5c:17:50:62:11:4d:10:16:77:6b:10:42:3d:62:0a: bc:82:cb:53 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUD8QQMaejF46nimimnX7IcAoohqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNTA3MDQyMjI5NDJaFw0yNjA3MDMyMjM0NDJaMDMxMTAvBgNV BAMTKERDREM2MDhFQTlBRTY5RjhCQTAwQ0IwQkM3OUIzOEE5REMyMjBCMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/0Ijt1NOlyWKhhCH70u/lEZCt vltRpqRJwdh1zYwKi9xB8vz0Ptib0hD3HSAFpzeLoidHFyhozCw8tADwG1Hcz6sL amCFRL8IAR37AKELzkpQCy+isZtMQa/75V6rhQwo/d72bK9Ls3azQyxAHi8CW8Sd r2HY/EZIrXhGH0IaU3jlcREm7hrsf9/BfyFAl+ScESLhnbofOvENKQDT2H9L9A2z lvt8a7AHavY1hNxc/f/us83srlPQC5/xanrzJ/TKcv4doBP2AaHekLZkjsC8Dv2B zajemiV6n4WnQQaUBVfN+9ncw6e+j4BnKL9PObx7aosbT7/6XzLueDgamWFLAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU3Nxgjqmuafi6AMsLx5s4qdwiCwIwHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NjY2M2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQz/MA0GCSqGSIb3DQEB CwUAA4IBAQDbUFiELIYntYVrIAz3BG1kJNc8Hi4GHnAlgnYLavyc6NAw2ZCXqsdf 1nKwX7Q4Wi4nNYWlw1mUvYVr+xxVY5VNSjqoUV0Zu/isS0w9UkeYE6rxHUq4lu/K D4WY7w9iRgUJMg3Ky0k+Kym3T7ztM5syxsrwBasq3AP2XPGpVCo3MoeGwgfgyIdx ET7yOJpGdeS+/oakcFnjm0U1hXpciG+qP3qUjWHhoCqonas7KovGQYACFOZrq0Ff OhTR1bl95UATTVHMOJ/k0a8DydlcqC/bBFlvwSLK8tIEn1hDeA3hNmEVpyE4G1A9 J+zjQ55cF1BiEU0QFndrEEI9Ygq8gstT -----END CERTIFICATE-----Generated at Wed Nov 5 01:56:52 2025 by rpki-client