$ rpki-client -vvf repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313330303a3a2f34302d3430203d3e20323133383530.roa File: 326131343a3763303a313330303a3a2f34302d3430203d3e20323133383530.roa (raw, json) Hash identifier: Qlgg5XfJnvwJOV0Cqc76R2Neze23lYyJeqwZCA5oSA0= Subject key identifier: 9A:78:B1:F9:86:3D:C1:22:3D:3C:EF:47:90:AF:C1:D8:36:D9:01:A9 Certificate issuer: /CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Certificate serial: 169C59F309D20AE1FA1F4B9FF4F1DEE52FA6C64E Authority key identifier: CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject info access: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313330303a3a2f34302d3430203d3e20323133383530.roa Signing time: Wed 27 Nov 2024 12:59:43 +0000 ROA not before: Wed 27 Nov 2024 12:54:43 +0000 ROA not after: Wed 26 Nov 2025 12:59:43 +0000 asID: 213850 IP address blocks: 2a14:7c0:1300::/40 maxlen: 40 Validation: OK Signature path: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.mft rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 30 Apr 2025 14:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:9c:59:f3:09:d2:0a:e1:fa:1f:4b:9f:f4:f1:de:e5:2f:a6:c6:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Validity Not Before: Nov 27 12:54:43 2024 GMT Not After : Nov 26 12:59:43 2025 GMT Subject: CN=9A78B1F9863DC1223D3CEF4790AFC1D836D901A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d7:70:e0:a3:1f:29:6b:16:86:d5:e9:88:a3: 60:b4:24:39:c2:a5:6f:36:d5:1f:20:46:de:85:06: a9:1d:bc:44:f2:2c:5f:46:f0:0c:5f:6b:97:18:cf: 51:46:f6:e6:2a:01:92:56:ad:00:b4:91:87:73:ac: 19:8e:c6:bc:8a:a9:93:0d:9b:3e:f3:c1:86:90:4d: bc:3a:f9:25:63:4f:99:dd:db:a0:9c:d2:a6:92:15: 9d:ec:2e:85:45:ce:63:71:1b:ba:9c:52:d9:7c:10: 53:6f:0f:b8:cb:08:36:d8:08:13:f2:e0:b1:36:88: a9:3e:86:5e:09:c0:2c:c2:4a:ed:92:cb:27:3a:1a: f8:01:2e:09:ea:25:3f:b5:0e:81:ee:4f:17:93:e3: 85:f2:e0:01:90:a7:39:de:d1:14:57:98:a6:23:8e: 8f:ff:3d:b2:71:51:79:1c:ea:48:85:4b:8e:37:5a: be:a0:46:4a:54:f1:9d:65:91:2a:52:9e:11:77:1a: 97:9d:62:48:43:94:53:0d:04:d3:85:03:8c:55:88: 30:0c:38:c5:7a:99:90:b1:69:ec:44:80:54:6d:b8: 03:63:1a:2e:88:36:82:33:bc:2a:b1:c6:95:5a:6c: 04:c4:07:52:4e:06:af:6b:28:e4:61:92:39:5b:81: 30:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:78:B1:F9:86:3D:C1:22:3D:3C:EF:47:90:AF:C1:D8:36:D9:01:A9 X509v3 Authority Key Identifier: keyid:CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313330303a3a2f34302d3430203d3e20323133383530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c0:1300::/40 Signature Algorithm: sha256WithRSAEncryption 01:34:a3:0a:11:0f:9f:f9:48:cf:f1:38:c2:c9:a6:1f:86:04: 6b:8b:b9:bd:a8:17:10:97:0f:8a:ac:a2:45:ca:ac:4a:cb:67: 97:ff:9e:a3:8c:4b:da:4d:8b:f1:fe:51:56:4e:02:a5:24:b0: 57:fc:33:26:33:f1:a3:a9:1f:b1:41:e3:8b:0e:2c:cc:df:47: 26:af:c8:c6:44:5b:2f:4a:a6:70:47:71:04:2b:53:02:42:00: 40:a8:3c:2f:35:38:13:d7:61:9f:b6:7f:ca:ae:66:f5:5b:07: 98:bc:77:af:0f:52:75:82:97:11:c6:14:94:43:e2:3a:e7:dd: 8e:7e:e4:a0:50:5a:b7:57:23:b9:29:b6:84:b5:46:c6:ed:30: e1:28:d2:f0:66:ac:12:15:26:37:3c:fe:41:b0:09:3f:25:5f: 00:12:90:8b:45:01:c3:30:52:f8:26:d1:f6:7d:74:6e:5d:23: f0:6c:f6:1e:87:c4:9f:f0:b1:16:d6:16:83:a9:9e:c9:0c:c8: 59:0f:13:35:af:39:ad:39:23:48:ae:c7:ec:61:e5:0c:e2:b5: ef:c4:17:e9:d7:39:48:9f:17:4d:13:26:06:35:f5:11:9c:3f: 10:01:b3:f3:ed:df:e7:c7:cf:37:c7:dc:b4:21:0b:dd:6f:06: fb:d3:e1:16 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUFpxZ8wnSCuH6H0uf9PHe5S+mxk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FCRjM3M0VBRENEOTM3NkU1MjRDRTMxM0FCODY4QzAz RUVCMTA4ODAeFw0yNDExMjcxMjU0NDNaFw0yNTExMjYxMjU5NDNaMDMxMTAvBgNV BAMTKDlBNzhCMUY5ODYzREMxMjIzRDNDRUY0NzkwQUZDMUQ4MzZEOTAxQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD13Dgox8paxaG1emIo2C0JDnC pW821R8gRt6FBqkdvETyLF9G8Axfa5cYz1FG9uYqAZJWrQC0kYdzrBmOxryKqZMN mz7zwYaQTbw6+SVjT5nd26Cc0qaSFZ3sLoVFzmNxG7qcUtl8EFNvD7jLCDbYCBPy 4LE2iKk+hl4JwCzCSu2Syyc6GvgBLgnqJT+1DoHuTxeT44Xy4AGQpzne0RRXmKYj jo//PbJxUXkc6kiFS443Wr6gRkpU8Z1lkSpSnhF3GpedYkhDlFMNBNOFA4xViDAM OMV6mZCxaexEgFRtuANjGi6INoIzvCqxxpVabATEB1JOBq9rKORhkjlbgTBNAgMB AAGjggIIMIICBDAdBgNVHQ4EFgQUmnix+YY9wSI9PO9HkK/B2DbZAakwHwYDVR0j BBgwFoAUyr83Pq3Nk3blJM4xOrhowD7rEIgwDgYDVR0PAQH/BAQDAgeAMG0GA1Ud HwRmMGQwYqBgoF6GXHJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vcGZjbG91 ZC10Z2V3aWVzZS8wL0NBQkYzNzNFQURDRDkzNzZFNTI0Q0UzMTNBQjg2OEMwM0VF QjEwODguY3JsMHMGCCsGAQUFBwEBBGcwZTBjBggrBgEFBQcwAoZXcnN5bmM6Ly9y ZXBvLnJwa2kuc3BhY2UvcmVwby9JbmZpbmlyb3V0ZS8xL0NBQkYzNzNFQURDRDkz NzZFNTI0Q0UzMTNBQjg2OEMwM0VFQjEwODguY2VyMIGQBggrBgEFBQcBCwSBgzCB gDB+BggrBgEFBQcwC4ZycnN5bmM6Ly9yZXBvLnJwa2kuc3BhY2UvcmVwby9wZmNs b3VkLXRnZXdpZXNlLzAvMzI2MTMxMzQzYTM3NjMzMDNhMzEzMzMwMzAzYTNhMmYz NDMwMmQzNDMwMjAzZDNlMjAzMjMxMzMzODM1MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqFAfAEzAN BgkqhkiG9w0BAQsFAAOCAQEAATSjChEPn/lIz/E4wsmmH4YEa4u5vagXEJcPiqyi RcqsSstnl/+eo4xL2k2L8f5RVk4CpSSwV/wzJjPxo6kfsUHjiw4szN9HJq/IxkRb L0qmcEdxBCtTAkIAQKg8LzU4E9dhn7Z/yq5m9VsHmLx3rw9SdYKXEcYUlEPiOufd jn7koFBat1cjuSm2hLVGxu0w4SjS8GasEhUmNzz+QbAJPyVfABKQi0UBwzBS+CbR 9n10bl0j8Gz2HofEn/CxFtYWg6meyQzIWQ8TNa85rTkjSK7H7GHlDOK178QX6dc5 SJ8XTRMmBjX1EZw/EAGz8+3f58fPN8fctCEL3W8G+9PhFg== -----END CERTIFICATE-----Generated at Wed Apr 30 03:34:54 2025 by rpki-client