$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/4/326130613a363034303a646230303a3a2f34302d3438203d3e20323131313531.roa File: 326130613a363034303a646230303a3a2f34302d3438203d3e20323131313531.roa (raw, json) Hash identifier: +fw3SQMO92ygFCahRkoicBXvG1K7ggV1DgUpkn+lL98= Subject key identifier: 29:2B:0F:42:8D:82:BD:6D:69:86:1E:41:69:F0:46:1B:6E:92:8E:AF Certificate issuer: /CN=553D7611EA6BCE5EC79669E4B1F147F59C2A0EEE Certificate serial: 0F7807AC2B5A938C058D5E532C27BF4714B474A5 Authority key identifier: 55:3D:76:11:EA:6B:CE:5E:C7:96:69:E4:B1:F1:47:F5:9C:2A:0E:EE Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/553D7611EA6BCE5EC79669E4B1F147F59C2A0EEE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/4/326130613a363034303a646230303a3a2f34302d3438203d3e20323131313531.roa Signing time: Fri 04 Jul 2025 13:27:41 +0000 ROA not before: Fri 04 Jul 2025 13:22:41 +0000 ROA not after: Fri 03 Jul 2026 13:27:41 +0000 asID: 211151 IP address blocks: 2a0a:6040:db00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/4/553D7611EA6BCE5EC79669E4B1F147F59C2A0EEE.crl rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/4/553D7611EA6BCE5EC79669E4B1F147F59C2A0EEE.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/553D7611EA6BCE5EC79669E4B1F147F59C2A0EEE.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 15:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:78:07:ac:2b:5a:93:8c:05:8d:5e:53:2c:27:bf:47:14:b4:74:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=553D7611EA6BCE5EC79669E4B1F147F59C2A0EEE Validity Not Before: Jul 4 13:22:41 2025 GMT Not After : Jul 3 13:27:41 2026 GMT Subject: CN=292B0F428D82BD6D69861E4169F0461B6E928EAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0c:ce:39:8a:e8:df:56:a7:f1:b6:c3:18:b7: 9b:d7:55:95:9d:50:e7:18:67:2b:b9:8a:80:a0:9a: b7:69:94:69:66:8d:04:2c:88:07:1e:ae:98:c1:84: 37:a4:ad:92:00:c1:61:b9:03:b7:81:c2:8f:db:18: 6b:53:63:ea:c2:53:61:ca:d5:16:f3:c3:51:ed:6c: 8a:74:3f:5d:a2:28:fc:6e:08:22:88:7a:24:25:84: 3d:59:4e:c6:f2:4f:7d:98:8a:f8:1c:61:3c:47:2a: 20:68:df:e8:0d:80:2d:68:0d:3b:bf:d8:ce:71:3f: 32:74:43:e4:f8:89:55:bd:7e:aa:b2:ad:83:0d:fc: 66:49:c0:00:be:f7:13:80:a0:4d:86:4b:80:6a:d1: 1c:50:29:10:ec:b4:04:2b:f3:92:8e:91:0a:a5:b7: e4:13:d6:43:3d:b4:0c:11:3d:8b:89:70:85:d7:47: 86:bd:68:2c:d6:ff:79:9e:22:55:06:9d:a1:0a:24: 45:87:6d:47:37:b4:96:9b:39:92:5a:9f:bb:d6:a5: 33:b4:5f:e9:5e:bf:97:c2:b3:ee:3a:f9:21:6a:dc: df:12:4e:ca:a5:b3:e7:8e:27:b4:ab:be:fc:cd:93: 30:2c:5b:cc:48:98:f8:5d:fd:67:71:0e:03:22:8e: c6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2B:0F:42:8D:82:BD:6D:69:86:1E:41:69:F0:46:1B:6E:92:8E:AF X509v3 Authority Key Identifier: keyid:55:3D:76:11:EA:6B:CE:5E:C7:96:69:E4:B1:F1:47:F5:9C:2A:0E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/4/553D7611EA6BCE5EC79669E4B1F147F59C2A0EEE.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/553D7611EA6BCE5EC79669E4B1F147F59C2A0EEE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c128271e-c269-4954-87db-d184df17f85c/4/326130613a363034303a646230303a3a2f34302d3438203d3e20323131313531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:db00::/40 Signature Algorithm: sha256WithRSAEncryption 0b:01:90:a5:ef:30:ab:c9:61:67:08:68:3d:5e:ea:d6:6e:96: 1a:54:c9:87:b6:ba:f8:2e:79:09:a2:4d:44:2f:e8:72:90:84: 17:b1:06:95:cf:7b:df:51:b9:b8:0f:7e:01:c9:83:f7:18:26: d0:b3:dd:10:63:85:b9:21:9f:09:44:83:f0:fb:19:66:3b:4c: da:92:39:76:80:f5:1a:60:e6:65:62:26:d6:cd:70:7f:98:fd: d8:25:bf:2d:d6:3a:ce:91:f2:92:cd:cf:a8:ca:4d:48:a1:2d: 7b:8a:95:a6:b5:66:76:45:cb:ba:5e:ca:d2:bb:88:71:50:a0: d2:93:10:51:fc:82:02:24:ff:56:01:11:a2:00:dc:0e:82:b1: e2:c6:e7:bc:10:e3:d2:a0:19:29:21:99:b4:6c:74:59:a5:61: 9d:41:ea:74:33:39:13:15:fc:b7:5e:09:bd:a8:2f:69:92:b6: bc:31:b2:ce:ed:99:36:b2:b4:6a:c7:38:e8:47:08:57:63:18: 42:84:42:d7:73:74:64:c0:97:b6:fd:cc:c0:4b:27:a4:17:fe: 61:2b:b9:11:a3:ed:18:fa:89:57:8e:20:bd:a4:c2:12:03:b5: 37:8f:7b:c7:70:d1:7c:7f:df:ca:47:1b:de:af:fc:3d:ac:36: 65:4d:f0:a9 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIUD3gHrCtak4wFjV5TLCe/RxS0dKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUzRDc2MTFFQTZCQ0U1RUM3OTY2OUU0QjFGMTQ3RjU5 QzJBMEVFRTAeFw0yNTA3MDQxMzIyNDFaFw0yNjA3MDMxMzI3NDFaMDMxMTAvBgNV BAMTKDI5MkIwRjQyOEQ4MkJENkQ2OTg2MUU0MTY5RjA0NjFCNkU5MjhFQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMDM45iujfVqfxtsMYt5vXVZWd UOcYZyu5ioCgmrdplGlmjQQsiAcerpjBhDekrZIAwWG5A7eBwo/bGGtTY+rCU2HK 1Rbzw1HtbIp0P12iKPxuCCKIeiQlhD1ZTsbyT32YivgcYTxHKiBo3+gNgC1oDTu/ 2M5xPzJ0Q+T4iVW9fqqyrYMN/GZJwAC+9xOAoE2GS4Bq0RxQKRDstAQr85KOkQql t+QT1kM9tAwRPYuJcIXXR4a9aCzW/3meIlUGnaEKJEWHbUc3tJabOZJan7vWpTO0 X+lev5fCs+46+SFq3N8STsqls+eOJ7SrvvzNkzAsW8xImPhd/WdxDgMijsarAgMB AAGjggJfMIICWzAdBgNVHQ4EFgQUKSsPQo2CvW1phh5BafBGG26Sjq8wHwYDVR0j BBgwFoAUVT12Eeprzl7HlmnksfFH9ZwqDu4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzEyODI3MWUtYzI2OS00OTU0LTg3ZGItZDE4NGRmMTdm ODVjLzQvNTUzRDc2MTFFQTZCQ0U1RUM3OTY2OUU0QjFGMTQ3RjU5QzJBMEVFRS5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzU1M0Q3NjExRUE2QkNF NUVDNzk2NjlFNEIxRjE0N0Y1OUMyQTBFRUUuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2MxMjgyNzFlLWMyNjktNDk1NC04N2RiLWQxODRkZjE3Zjg1 Yy80LzMyNjEzMDYxM2EzNjMwMzQzMDNhNjQ2MjMwMzAzYTNhMmYzNDMwMmQzNDM4 MjAzZDNlMjAzMjMxMzEzMTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqCmBA2zANBgkqhkiG9w0B AQsFAAOCAQEACwGQpe8wq8lhZwhoPV7q1m6WGlTJh7a6+C55CaJNRC/ocpCEF7EG lc9731G5uA9+AcmD9xgm0LPdEGOFuSGfCUSD8PsZZjtM2pI5doD1GmDmZWIm1s1w f5j92CW/LdY6zpHyks3PqMpNSKEte4qVprVmdkXLul7K0ruIcVCg0pMQUfyCAiT/ VgERogDcDoKx4sbnvBDj0qAZKSGZtGx0WaVhnUHqdDM5ExX8t14JvagvaZK2vDGy zu2ZNrK0asc46EcIV2MYQoRC13N0ZMCXtv3MwEsnpBf+YSu5EaPtGPqJV44gvaTC EgO1N497x3DRfH/fykcb3q/8Paw2ZU3wqQ== -----END CERTIFICATE-----Generated at Wed Nov 5 06:17:57 2025 by rpki-client