$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386564303a3a2f34382d3438203d3e20313338313930.roa File: 326130353a646663313a386564303a3a2f34382d3438203d3e20313338313930.roa (raw, json) Hash identifier: WwwzWsaHd+2L7Jr+4PX5WCaqRc6xjOQttVfo5c9R824= Subject key identifier: F8:54:2A:08:95:16:DC:21:C7:9E:AA:3D:EE:2B:80:FC:91:AF:85:66 Certificate issuer: /CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Certificate serial: 44AA5572AB48EF3E0958F23B9C9BE22A23C814FF Authority key identifier: BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386564303a3a2f34382d3438203d3e20313338313930.roa Signing time: Thu 02 Apr 2026 03:18:11 +0000 ROA not before: Thu 02 Apr 2026 03:13:11 +0000 ROA not after: Thu 01 Apr 2027 03:18:11 +0000 asID: 138190 IP address blocks: 2a05:dfc1:8ed0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 05:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:aa:55:72:ab:48:ef:3e:09:58:f2:3b:9c:9b:e2:2a:23:c8:14:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3 Validity Not Before: Apr 2 03:13:11 2026 GMT Not After : Apr 1 03:18:11 2027 GMT Subject: CN=F8542A089516DC21C79EAA3DEE2B80FC91AF8566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:22:a9:90:7f:e8:4e:02:5e:be:fe:08:2a:2a: 5e:3c:20:fd:35:5f:71:6d:39:e7:6b:eb:c1:34:ee: 1e:e6:ef:4e:c5:ce:74:b4:a3:ef:0a:46:10:0b:55: ce:b5:2b:b7:cb:f5:1e:76:a2:10:34:93:c0:7c:02: 16:a0:a1:a0:57:bb:35:a0:46:80:95:e4:f7:61:9b: 72:48:27:7b:f1:ff:ad:12:e1:91:47:e8:cd:ee:74: 44:92:19:c0:5b:df:39:4b:8c:a5:87:a7:f7:07:84: 2b:a0:09:a7:f7:38:b0:0f:d1:6b:09:0c:29:8b:21: 83:7a:8b:8d:07:09:03:5c:be:98:55:7f:1d:e9:9c: c5:ba:80:6c:41:10:25:f1:00:b4:fc:96:c2:11:2f: 9d:c0:7e:ae:69:39:32:b6:92:95:23:f9:a2:f6:ea: 15:31:a0:00:1f:95:dd:f6:96:7a:94:61:ff:d5:99: cc:e2:bd:f7:5a:65:4a:8d:6e:bb:17:dc:b0:9c:3a: c1:f2:09:fc:9e:cf:03:55:e1:9e:63:a8:f2:d9:59: 3e:a1:d0:66:85:0a:8f:82:a2:ba:61:a9:43:7f:18: 31:80:1d:26:df:42:95:e7:16:bd:17:e7:ac:bd:df: 5c:c3:3e:16:38:24:f2:1a:17:db:46:44:b2:12:5b: 64:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:54:2A:08:95:16:DC:21:C7:9E:AA:3D:EE:2B:80:FC:91:AF:85:66 X509v3 Authority Key Identifier: keyid:BE:3D:C6:61:4E:0A:2F:3B:3D:6F:08:DC:04:A1:BC:34:C8:FB:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/BE3DC6614E0A2F3B3D6F08DC04A1BC34C8FBC9C3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/acecfdc7-6db9-425b-acae-7e20fbe6e129/3/326130353a646663313a386564303a3a2f34382d3438203d3e20313338313930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8ed0::/48 Signature Algorithm: sha256WithRSAEncryption 79:85:e1:20:64:9f:ab:e6:96:14:01:e3:dd:18:20:01:a0:ea: 34:2b:2e:f5:79:4e:31:7d:f1:cb:71:75:92:dc:60:f2:e1:9d: 1a:44:e0:4a:5d:b2:7e:1d:c0:11:fa:11:0f:05:9a:28:71:73: 28:05:b9:81:f7:c6:16:18:b8:22:b0:63:bd:04:bd:2a:33:6f: 64:cc:4a:ad:90:01:c0:95:c7:57:0c:40:4f:e7:a7:fe:8e:5a: 96:2a:ef:81:63:ee:62:24:8a:00:8a:96:fc:3b:c2:1d:a3:e6: 53:6a:ab:28:cf:28:0b:24:1e:5f:31:85:e7:c7:85:34:c3:c4: dd:e3:01:b3:c2:32:11:a1:65:6e:e0:2a:33:f2:3a:5a:ec:aa: 0b:c9:20:05:46:87:47:68:d6:ce:f7:39:6b:95:09:41:99:2e: 35:18:57:39:f2:59:2b:1e:ac:77:0f:a5:2c:22:22:99:8e:7b: fc:b1:72:84:2b:ee:41:d1:e9:b6:05:e8:23:49:47:cd:4c:81: df:e1:b3:a8:15:20:1f:27:0c:90:c2:b3:a5:01:ae:81:a1:a2: d3:b4:75:2e:c0:70:b2:38:17:7c:67:38:b4:52:d5:e5:9b:f1: 2c:0d:b6:db:43:28:33:72:7c:dc:46:34:58:26:58:53:0d:1a: 4f:25:be:3a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIURKpVcqtI7z4JWPI7nJviKiPIFP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRD OEZCQzlDMzAeFw0yNjA0MDIwMzEzMTFaFw0yNzA0MDEwMzE4MTFaMDMxMTAvBgNV BAMTKEY4NTQyQTA4OTUxNkRDMjFDNzlFQUEzREVFMkI4MEZDOTFBRjg1NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmIqmQf+hOAl6+/ggqKl48IP01 X3FtOedr68E07h7m707FznS0o+8KRhALVc61K7fL9R52ohA0k8B8AhagoaBXuzWg RoCV5Pdhm3JIJ3vx/60S4ZFH6M3udESSGcBb3zlLjKWHp/cHhCugCaf3OLAP0WsJ DCmLIYN6i40HCQNcvphVfx3pnMW6gGxBECXxALT8lsIRL53Afq5pOTK2kpUj+aL2 6hUxoAAfld32lnqUYf/VmczivfdaZUqNbrsX3LCcOsHyCfyezwNV4Z5jqPLZWT6h 0GaFCo+CorphqUN/GDGAHSbfQpXnFr0X56y931zDPhY4JPIaF9tGRLISW2T7AgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU+FQqCJUW3CHHnqo97iuA/JGvhWYwHwYDVR0j BBgwFoAUvj3GYU4KLzs9bwjcBKG8NMj7ycMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWNlY2ZkYzctNmRiOS00MjViLWFjYWUtN2UyMGZiZTZl MTI5LzMvQkUzREM2NjE0RTBBMkYzQjNENkYwOERDMDRBMUJDMzRDOEZCQzlDMy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80L0JFM0RDNjYxNEUwQTJG M0IzRDZGMDhEQzA0QTFCQzM0QzhGQkM5QzMuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2FjZWNmZGM3LTZkYjktNDI1Yi1hY2FlLTdlMjBmYmU2ZTEy OS8zLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzg2NTY0MzAzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTMzMzgzMTM5MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBd/BjtAwDQYJKoZIhvcN AQELBQADggEBAHmF4SBkn6vmlhQB490YIAGg6jQrLvV5TjF98ctxdZLcYPLhnRpE 4Epdsn4dwBH6EQ8FmihxcygFuYH3xhYYuCKwY70EvSozb2TMSq2QAcCVx1cMQE/n p/6OWpYq74Fj7mIkigCKlvw7wh2j5lNqqyjPKAskHl8xhefHhTTDxN3jAbPCMhGh ZW7gKjPyOlrsqgvJIAVGh0do1s73OWuVCUGZLjUYVznyWSserHcPpSwiIpmOe/yx coQr7kHR6bYF6CNJR81Mgd/hs6gVIB8nDJDCs6UBroGhotO0dS7AcLI4F3xnOLRS 1eWb8SwNtttDKDNyfNxGNFgmWFMNGk8lvjo= -----END CERTIFICATE-----Generated at Fri Apr 17 18:50:47 2026 by rpki-client