$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333034323a3a2f34382d3438203d3e20313532363731.roa File: 326130363a396638313a333034323a3a2f34382d3438203d3e20313532363731.roa (raw, json) Hash identifier: N1VTU+dCITWr0dBfIOGelATJFlyO9Vo20cG9GxlBGzw= Subject key identifier: AF:41:69:61:0F:86:6A:AC:5C:5F:26:B2:36:07:9A:3E:C3:60:23:53 Certificate issuer: /CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Certificate serial: 50B742EF58054CFC140A28D6028E292366E784ED Authority key identifier: 72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333034323a3a2f34382d3438203d3e20313532363731.roa Signing time: Fri 04 Jul 2025 19:57:39 +0000 ROA not before: Fri 04 Jul 2025 19:52:39 +0000 ROA not after: Fri 03 Jul 2026 19:57:39 +0000 asID: 152671 IP address blocks: 2a06:9f81:3042::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 21:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:b7:42:ef:58:05:4c:fc:14:0a:28:d6:02:8e:29:23:66:e7:84:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC Validity Not Before: Jul 4 19:52:39 2025 GMT Not After : Jul 3 19:57:39 2026 GMT Subject: CN=AF4169610F866AAC5C5F26B236079A3EC3602353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ef:6e:49:c0:2e:5f:b4:7d:20:a3:a2:c9:45: 49:b1:af:f5:22:eb:43:81:ad:fd:cc:a0:3c:1e:bf: 00:e3:61:bd:cf:fd:8e:ae:e6:34:34:ad:24:01:8d: f4:20:86:42:cb:fc:84:a6:59:52:89:37:af:ad:6c: a2:cc:24:2e:dc:08:c4:a7:a9:58:46:2d:4d:61:a3: 7b:e1:22:20:1b:71:c4:99:7c:92:54:02:03:f1:62: 0c:a9:e3:5f:b0:92:35:21:9e:0f:ee:3f:cd:1d:e4: de:f8:5a:b1:c3:b3:a5:8e:80:79:5e:01:0d:ea:d0: 6a:50:39:e4:e5:5f:6f:3d:3c:19:08:32:22:15:2c: 92:c6:06:8a:a7:22:86:bf:9f:d2:4d:aa:05:ef:68: 1d:de:b5:29:f5:bf:1b:4a:b3:a5:b6:df:aa:6a:66: 4c:38:d7:19:e3:89:d3:89:4b:67:42:8d:75:ad:7f: 1d:b1:49:3c:e5:62:24:ab:1c:55:b5:5e:7e:c2:72: 0b:a3:04:88:1b:75:bf:7b:57:8a:8e:45:9c:e3:26: 64:47:be:7d:49:58:d9:7f:22:42:d9:20:5d:8c:c4: 1c:1b:21:a9:23:4e:e8:7c:86:31:32:dc:8d:b3:a7: b5:da:06:dd:f4:3b:46:28:e5:c5:de:2b:bc:c1:55: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:41:69:61:0F:86:6A:AC:5C:5F:26:B2:36:07:9A:3E:C3:60:23:53 X509v3 Authority Key Identifier: keyid:72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333034323a3a2f34382d3438203d3e20313532363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3042::/48 Signature Algorithm: sha256WithRSAEncryption 0f:8f:5f:10:1a:bb:c5:85:3f:e5:87:8b:f8:a5:0b:81:66:45: 48:5e:7c:9d:dd:ee:00:96:a2:50:bc:4a:00:8a:70:a2:9f:83: 9f:7f:49:24:9e:89:ab:2d:27:11:23:ea:24:39:7b:a2:c8:0a: 75:95:19:4b:aa:51:dd:a9:d9:77:a5:ce:92:f5:4f:35:a3:13: b3:82:dd:34:68:95:30:8b:cf:d3:d6:42:0b:43:18:b1:41:39: 68:26:5d:ae:95:e4:56:60:a3:c9:cc:05:ff:34:db:83:f9:85: 32:c9:31:f7:a8:5c:ea:49:fb:36:67:a7:f8:81:6d:31:14:21: 82:82:40:9b:94:83:71:80:ab:0f:80:57:d3:10:59:70:01:f2: a7:be:21:84:89:43:2a:31:83:10:ff:2c:ce:9d:47:0a:e6:e2: 4d:35:45:97:00:16:74:9c:12:6d:d7:cf:7f:5e:21:ba:f0:94: 42:64:eb:0c:a1:da:49:b0:03:b9:26:34:64:42:3d:21:d3:0f: 15:36:2c:8f:33:dc:dc:f8:cf:17:a4:15:fb:f1:f5:c8:2f:1a: e7:a0:6a:cf:5d:3b:ef:29:ed:10:cf:f1:7b:90:d9:52:6c:b8: f6:e7:87:ab:c0:2f:05:78:28:00:86:6e:24:52:45:50:8a:80: 53:1f:14:c3 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUULdC71gFTPwUCijWAo4pI2bnhO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3 MTdDOTNDQzAeFw0yNTA3MDQxOTUyMzlaFw0yNjA3MDMxOTU3MzlaMDMxMTAvBgNV BAMTKEFGNDE2OTYxMEY4NjZBQUM1QzVGMjZCMjM2MDc5QTNFQzM2MDIzNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN725JwC5ftH0go6LJRUmxr/Ui 60OBrf3MoDwevwDjYb3P/Y6u5jQ0rSQBjfQghkLL/ISmWVKJN6+tbKLMJC7cCMSn qVhGLU1ho3vhIiAbccSZfJJUAgPxYgyp41+wkjUhng/uP80d5N74WrHDs6WOgHle AQ3q0GpQOeTlX289PBkIMiIVLJLGBoqnIoa/n9JNqgXvaB3etSn1vxtKs6W236pq Zkw41xnjidOJS2dCjXWtfx2xSTzlYiSrHFW1Xn7CcgujBIgbdb97V4qORZzjJmRH vn1JWNl/IkLZIF2MxBwbIakjTuh8hjEy3I2zp7XaBt30O0Yo5cXeK7zBVSahAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUr0FpYQ+GaqxcXyayNgeaPsNgI1MwHwYDVR0j BBgwFoAUctHd4bGwRdi+Q53dEBSG5nF8k8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY0YWM5NDEtNWE3Yy00MmNmLWI2NGItMGIyODhmMTg4 N2YyLzEvNzJEMURERTFCMUIwNDVEOEJFNDM5REREMTAxNDg2RTY3MTdDOTNDQy5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80LzcyRDFEREUxQjFCMDQ1 RDhCRTQzOURERDEwMTQ4NkU2NzE3QzkzQ0MuY2VyMIG3BggrBgEFBQcBCwSBqjCB pzCBpAYIKwYBBQUHMAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5L2Q2NGFjOTQxLTVhN2MtNDJjZi1iNjRiLTBiMjg4ZjE4ODdm Mi8xLzMyNjEzMDM2M2EzOTY2MzgzMTNhMzMzMDM0MzIzYTNhMmYzNDM4MmQzNDM4 MjAzZDNlMjAzMTM1MzIzNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBp+BMEIwDQYJKoZIhvcN AQELBQADggEBAA+PXxAau8WFP+WHi/ilC4FmRUhefJ3d7gCWolC8SgCKcKKfg59/ SSSeiastJxEj6iQ5e6LICnWVGUuqUd2p2XelzpL1TzWjE7OC3TRolTCLz9PWQgtD GLFBOWgmXa6V5FZgo8nMBf8024P5hTLJMfeoXOpJ+zZnp/iBbTEUIYKCQJuUg3GA qw+AV9MQWXAB8qe+IYSJQyoxgxD/LM6dRwrm4k01RZcAFnScEm3Xz39eIbrwlEJk 6wyh2kmwA7kmNGRCPSHTDxU2LI8z3Nz4zxekFfvx9cgvGuegas9dO+8p7RDP8XuQ 2VJsuPbnh6vALwV4KACGbiRSRVCKgFMfFMM= -----END CERTIFICATE-----Generated at Wed Nov 5 15:08:54 2025 by rpki-client