$ rpki-client -vvf repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313330303a3a2f34302d3430203d3e20323133383530.roa File: 326131343a3763303a313330303a3a2f34302d3430203d3e20323133383530.roa (raw, json) Hash identifier: ghrsyOsNjV1vJxVSpYhOwOHrESe1ZdqgfbMmoLsZ/wQ= Subject key identifier: F6:BC:D6:68:59:24:42:B7:C0:A0:D4:AC:DA:C2:6D:81:B6:EE:87:BE Certificate issuer: /CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Certificate serial: 245C7106686B1DE56B5C5111DCA53A0ACFD4443F Authority key identifier: CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject info access: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313330303a3a2f34302d3430203d3e20323133383530.roa Signing time: Wed 29 Oct 2025 13:43:54 +0000 ROA not before: Wed 29 Oct 2025 13:38:54 +0000 ROA not after: Wed 28 Oct 2026 13:43:54 +0000 asID: 213850 IP address blocks: 2a14:7c0:1300::/40 maxlen: 40 Validation: OK Signature path: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.mft rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 11:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:5c:71:06:68:6b:1d:e5:6b:5c:51:11:dc:a5:3a:0a:cf:d4:44:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Validity Not Before: Oct 29 13:38:54 2025 GMT Not After : Oct 28 13:43:54 2026 GMT Subject: CN=F6BCD668592442B7C0A0D4ACDAC26D81B6EE87BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9a:56:90:22:cb:46:6c:dd:d4:2d:1e:40:0c: 72:50:6e:02:3f:c5:c9:13:f8:91:d8:6a:05:d4:3c: 06:22:3f:c5:5b:d4:86:8b:01:3c:99:f7:f0:ff:1c: 32:b6:07:d0:31:d0:d0:f0:96:48:17:0a:78:17:45: 17:cb:77:8b:f9:31:81:b6:e0:82:e7:5f:dc:e6:21: 77:be:87:87:5a:50:6d:d9:6b:47:2d:1f:0b:8f:81: f0:aa:eb:35:81:6b:02:fa:58:ee:60:7a:65:fe:78: ab:2c:69:58:09:f8:69:25:30:82:b5:26:6f:14:01: 3e:c1:5f:3c:8b:23:90:27:00:75:db:39:0f:39:23: 18:e5:65:de:89:23:38:c8:5f:ac:53:3d:d8:1e:63: 30:a0:1f:8b:54:08:38:e2:a8:4f:5b:ba:e5:5f:b5: 0b:1c:38:0e:ad:c0:9f:89:a1:c0:9c:34:76:e9:92: 11:04:ce:83:dc:c9:ba:32:20:ed:91:ff:5b:21:7e: 06:5f:00:5b:5d:f1:1b:03:37:9a:0f:09:99:b8:c0: c1:56:ea:83:93:8e:0b:4f:f6:b5:05:88:3a:f0:95: b7:fd:e1:c7:ed:85:74:8a:56:89:99:23:d2:7a:b5: 18:7c:28:04:bd:e7:09:ab:c9:be:66:bc:9c:80:64: bc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:BC:D6:68:59:24:42:B7:C0:A0:D4:AC:DA:C2:6D:81:B6:EE:87:BE X509v3 Authority Key Identifier: keyid:CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313330303a3a2f34302d3430203d3e20323133383530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c0:1300::/40 Signature Algorithm: sha256WithRSAEncryption 93:b1:e3:1b:9a:b6:0e:cc:63:2c:3a:2b:b3:cf:a2:1b:ed:a9: fd:3e:8d:af:7d:f1:f2:61:58:95:62:71:2a:74:04:22:ba:0f: c6:90:8f:92:ed:f0:2c:cd:18:ff:90:a2:5d:47:46:07:70:81: 77:d5:83:5c:47:fa:01:e0:88:fb:46:35:d8:b1:0d:21:66:6c: f9:0e:b1:cb:11:95:a3:3d:aa:a7:8a:be:f8:e3:ca:b8:da:d4: ce:d6:b8:bf:bc:fd:56:41:88:a1:fb:22:5d:76:13:34:dd:8b: 48:27:05:70:29:b1:40:b2:d2:ad:49:0c:e8:51:26:ba:28:75: 1e:7f:d5:92:59:fb:04:da:48:34:f8:d7:10:29:77:5c:f1:bf: ef:63:12:34:28:95:2a:8b:56:91:b8:30:25:94:84:f3:de:cc: da:e7:bc:2a:4f:c9:4e:11:7b:f5:1e:49:b2:8e:a6:32:a7:dd: 57:b1:7b:97:97:70:50:c9:1c:a0:36:2c:29:b3:09:e4:45:4c: 73:2d:55:b4:5f:ec:2b:23:e0:53:b7:f1:d8:12:6c:83:3e:9d: 61:46:a2:13:b0:63:a1:60:6a:f6:a0:b7:92:5e:a6:03:a8:fb: 0a:0a:aa:8b:2f:fe:17:1a:04:7e:84:67:8b:38:28:f4:4a:56: f2:12:0c:44 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUJFxxBmhrHeVrXFER3KU6Cs/URD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FCRjM3M0VBRENEOTM3NkU1MjRDRTMxM0FCODY4QzAz RUVCMTA4ODAeFw0yNTEwMjkxMzM4NTRaFw0yNjEwMjgxMzQzNTRaMDMxMTAvBgNV BAMTKEY2QkNENjY4NTkyNDQyQjdDMEEwRDRBQ0RBQzI2RDgxQjZFRTg3QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCmlaQIstGbN3ULR5ADHJQbgI/ xckT+JHYagXUPAYiP8Vb1IaLATyZ9/D/HDK2B9Ax0NDwlkgXCngXRRfLd4v5MYG2 4ILnX9zmIXe+h4daUG3Za0ctHwuPgfCq6zWBawL6WO5gemX+eKssaVgJ+GklMIK1 Jm8UAT7BXzyLI5AnAHXbOQ85IxjlZd6JIzjIX6xTPdgeYzCgH4tUCDjiqE9buuVf tQscOA6twJ+JocCcNHbpkhEEzoPcyboyIO2R/1shfgZfAFtd8RsDN5oPCZm4wMFW 6oOTjgtP9rUFiDrwlbf94cfthXSKVomZI9J6tRh8KAS95wmryb5mvJyAZLzlAgMB AAGjggIIMIICBDAdBgNVHQ4EFgQU9rzWaFkkQrfAoNSs2sJtgbbuh74wHwYDVR0j BBgwFoAUyr83Pq3Nk3blJM4xOrhowD7rEIgwDgYDVR0PAQH/BAQDAgeAMG0GA1Ud HwRmMGQwYqBgoF6GXHJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vcGZjbG91 ZC10Z2V3aWVzZS8wL0NBQkYzNzNFQURDRDkzNzZFNTI0Q0UzMTNBQjg2OEMwM0VF QjEwODguY3JsMHMGCCsGAQUFBwEBBGcwZTBjBggrBgEFBQcwAoZXcnN5bmM6Ly9y ZXBvLnJwa2kuc3BhY2UvcmVwby9JbmZpbmlyb3V0ZS8xL0NBQkYzNzNFQURDRDkz NzZFNTI0Q0UzMTNBQjg2OEMwM0VFQjEwODguY2VyMIGQBggrBgEFBQcBCwSBgzCB gDB+BggrBgEFBQcwC4ZycnN5bmM6Ly9yZXBvLnJwa2kuc3BhY2UvcmVwby9wZmNs b3VkLXRnZXdpZXNlLzAvMzI2MTMxMzQzYTM3NjMzMDNhMzEzMzMwMzAzYTNhMmYz NDMwMmQzNDMwMjAzZDNlMjAzMjMxMzMzODM1MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqFAfAEzAN BgkqhkiG9w0BAQsFAAOCAQEAk7HjG5q2DsxjLDors8+iG+2p/T6Nr33x8mFYlWJx KnQEIroPxpCPku3wLM0Y/5CiXUdGB3CBd9WDXEf6AeCI+0Y12LENIWZs+Q6xyxGV oz2qp4q++OPKuNrUzta4v7z9VkGIofsiXXYTNN2LSCcFcCmxQLLSrUkM6FEmuih1 Hn/Vkln7BNpINPjXECl3XPG/72MSNCiVKotWkbgwJZSE897M2ue8Kk/JThF79R5J so6mMqfdV7F7l5dwUMkcoDYsKbMJ5EVMcy1VtF/sKyPgU7fx2BJsgz6dYUaiE7Bj oWBq9qC3kl6mA6j7Cgqqiy/+FxoEfoRnizgo9EpW8hIMRA== -----END CERTIFICATE-----Generated at Wed Nov 5 02:54:25 2025 by rpki-client