$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa File: 326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa (raw, json) Hash identifier: BtQLTTQtkjt+dOkOSbzl625aMHPNaGi50iFnJSKyAXs= Subject key identifier: 7B:3C:C7:D0:FE:82:7C:10:26:BC:59:EE:AA:4C:E6:43:87:63:E8:DC Certificate issuer: /CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Certificate serial: 6BA35DA61080B54D570F1587A4C8092A23D1BD52 Authority key identifier: 47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa Signing time: Fri 05 Jun 2026 23:10:31 +0000 ROA not before: Fri 05 Jun 2026 23:05:31 +0000 ROA not after: Fri 04 Jun 2027 23:10:31 +0000 asID: 216107 IP address blocks: 2a05:dfc1:cff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 19:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:a3:5d:a6:10:80:b5:4d:57:0f:15:87:a4:c8:09:2a:23:d1:bd:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=475A3BFA09614E07BE0567B1FB15110F45F894EB Validity Not Before: Jun 5 23:05:31 2026 GMT Not After : Jun 4 23:10:31 2027 GMT Subject: CN=7B3CC7D0FE827C1026BC59EEAA4CE6438763E8DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c8:2f:d6:02:96:30:32:9c:8e:e2:0b:7c:18: e2:33:df:c6:52:07:23:a7:28:61:08:3f:12:7c:e7: be:08:17:97:21:49:2f:20:5d:c0:70:0f:12:be:3f: 76:24:fe:65:54:41:c5:6f:ef:33:db:2f:58:52:18: f2:fe:97:f0:79:24:8b:d2:be:07:7a:d5:b5:ca:dd: 5f:cc:4a:d4:6b:74:1a:b7:f4:e6:f9:4a:74:74:68: ea:8e:23:00:75:b8:e8:89:cf:be:32:f0:d8:54:b1: 6d:f4:c5:e9:5c:be:d4:37:0b:63:c5:f4:22:5e:0f: 81:bb:b7:9a:f9:7e:0e:c2:cb:81:d8:b3:c7:aa:b8: 61:16:db:59:56:af:ce:82:f3:0c:ce:cd:ec:0b:75: 9e:6f:30:2f:64:b5:5f:f9:81:32:ad:cf:ba:a2:48: d9:12:51:b3:c7:0b:06:3f:fa:ce:00:de:ef:f8:f4: 86:24:34:dd:40:25:93:1d:b3:64:45:35:50:f1:03: 4e:72:36:5c:65:12:ad:06:7a:ad:19:32:c6:22:4c: 5c:26:4f:57:a0:6f:a8:52:91:49:30:ed:4f:d5:6c: 6b:a8:7b:8d:1f:45:ae:02:8f:e5:e5:36:08:4e:a5: 93:5e:04:b4:ac:47:7c:26:94:8c:d4:ed:c5:91:77: 41:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3C:C7:D0:FE:82:7C:10:26:BC:59:EE:AA:4C:E6:43:87:63:E8:DC X509v3 Authority Key Identifier: keyid:47:5A:3B:FA:09:61:4E:07:BE:05:67:B1:FB:15:11:0F:45:F8:94:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/475A3BFA09614E07BE0567B1FB15110F45F894EB.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/475A3BFA09614E07BE0567B1FB15110F45F894EB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/28cd6224-a3b0-468e-aa37-82ca6a3e9243/2/326130353a646663313a6366663a3a2f34382d3438203d3e20323136313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:cff::/48 Signature Algorithm: sha256WithRSAEncryption 0f:3c:bc:57:e5:2b:d8:79:da:1c:91:84:27:14:be:d3:94:8a: 1e:0f:c0:9b:1a:19:4a:94:59:18:69:a5:81:f0:37:45:01:16: f4:8d:7b:1d:5f:87:8c:ac:af:46:0f:90:11:e1:43:1d:2d:e1: b1:b3:9a:e9:a3:04:a5:eb:43:dc:78:58:5e:c9:65:59:73:e9: a8:28:28:a0:67:21:21:40:32:59:73:08:fc:16:c4:b3:bf:5e: 49:7a:e8:c3:a6:23:f8:2d:fe:04:5c:7d:77:88:a0:47:8a:96: f8:50:43:f7:f8:72:bb:39:3c:28:f8:a5:85:c2:31:56:50:3a: 9f:26:3b:07:b7:92:9d:ec:88:68:f8:b3:a8:be:24:93:30:89: 89:ed:ba:b1:89:d3:13:c3:06:18:62:22:93:f6:f1:ec:f5:27: 0e:5e:ca:9c:aa:86:38:2d:17:77:9d:dd:bf:a0:5f:54:40:78: 90:1d:03:0b:81:9b:70:85:42:67:c6:f4:0b:8f:3d:5c:39:13: da:18:83:ca:24:4a:ba:b0:62:0e:e2:ba:84:5f:2d:f9:14:54: 72:dc:b1:ac:d4:18:a0:94:40:52:64:cc:6d:42:aa:9a:71:e8: ce:01:69:ab:5f:e6:1c:83:b1:90:74:3a:65:0f:dc:5f:66:e7: 6c:56:d9:11 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUa6NdphCAtU1XDxWHpMgJKiPRvVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0 NUY4OTRFQjAeFw0yNjA2MDUyMzA1MzFaFw0yNzA2MDQyMzEwMzFaMDMxMTAvBgNV BAMTKDdCM0NDN0QwRkU4MjdDMTAyNkJDNTlFRUFBNENFNjQzODc2M0U4REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2yC/WApYwMpyO4gt8GOIz38ZS ByOnKGEIPxJ8574IF5chSS8gXcBwDxK+P3Yk/mVUQcVv7zPbL1hSGPL+l/B5JIvS vgd61bXK3V/MStRrdBq39Ob5SnR0aOqOIwB1uOiJz74y8NhUsW30xelcvtQ3C2PF 9CJeD4G7t5r5fg7Cy4HYs8equGEW21lWr86C8wzOzewLdZ5vMC9ktV/5gTKtz7qi SNkSUbPHCwY/+s4A3u/49IYkNN1AJZMds2RFNVDxA05yNlxlEq0Geq0ZMsYiTFwm T1egb6hSkUkw7U/VbGuoe40fRa4Cj+XlNghOpZNeBLSsR3wmlIzU7cWRd0E7AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUezzH0P6CfBAmvFnuqkzmQ4dj6NwwHwYDVR0j BBgwFoAUR1o7+glhTge+BWex+xURD0X4lOswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjhjZDYyMjQtYTNiMC00NjhlLWFhMzctODJjYTZhM2U5 MjQzLzIvNDc1QTNCRkEwOTYxNEUwN0JFMDU2N0IxRkIxNTExMEY0NUY4OTRFQi5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzQ3NUEzQkZBMDk2MTRF MDdCRTA1NjdCMUZCMTUxMTBGNDVGODk0RUIuY2VyMIG1BggrBgEFBQcBCwSBqDCB pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzI4Y2Q2MjI0LWEzYjAtNDY4ZS1hYTM3LTgyY2E2YTNlOTI0 My8yLzMyNjEzMDM1M2E2NDY2NjMzMTNhNjM2NjY2M2EzYTJmMzQzODJkMzQzODIw M2QzZTIwMzIzMTM2MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgXfwQz/MA0GCSqGSIb3DQEB CwUAA4IBAQAPPLxX5SvYedockYQnFL7TlIoeD8CbGhlKlFkYaaWB8DdFARb0jXsd X4eMrK9GD5AR4UMdLeGxs5rpowSl60PceFheyWVZc+moKCigZyEhQDJZcwj8FsSz v15JeujDpiP4Lf4EXH13iKBHipb4UEP3+HK7OTwo+KWFwjFWUDqfJjsHt5Kd7Iho +LOoviSTMImJ7bqxidMTwwYYYiKT9vHs9ScOXsqcqoY4LRd3nd2/oF9UQHiQHQML gZtwhUJnxvQLjz1cORPaGIPKJEq6sGIO4rqEXy35FFRy3LGs1BiglEBSZMxtQqqa cejOAWmrX+Ycg7GQdDplD9xfZudsVtkR -----END CERTIFICATE-----Generated at Sun Jun 14 05:45:44 2026 by rpki-client