$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/1/326131323a646434373a383630353a3a2f34382d3438203d3e203530353535.roa File: 326131323a646434373a383630353a3a2f34382d3438203d3e203530353535.roa (raw, json) Hash identifier: 8eFv2RBBtby1mcmk3KpRwsZCQZSgRLjiy2M/X1iLuSk= Subject key identifier: 7D:3F:FC:03:F9:72:66:0D:2C:47:D2:8B:50:22:B3:0C:8D:3C:3D:82 Certificate issuer: /CN=02876C11924CBDA01BE1AD39A3206CFACDCC58A3 Certificate serial: 6CFE6BF1916A1F6DA3A25C6CCDD5231D4BD15591 Authority key identifier: 02:87:6C:11:92:4C:BD:A0:1B:E1:AD:39:A3:20:6C:FA:CD:CC:58:A3 Authority info access: rsync://rpki.co/repo/AS945/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/326131323a646434373a383630353a3a2f34382d3438203d3e203530353535.roa Signing time: Mon 11 Mar 2024 07:12:23 +0000 ROA not before: Mon 11 Mar 2024 07:07:23 +0000 ROA not after: Mon 10 Mar 2025 07:12:23 +0000 asID: 50555 IP address blocks: 2a12:dd47:8605::/48 maxlen: 48 Validation: OK Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.crl rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.mft rsync://rpki.co/repo/AS945/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 11 Jun 2024 14:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:fe:6b:f1:91:6a:1f:6d:a3:a2:5c:6c:cd:d5:23:1d:4b:d1:55:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02876C11924CBDA01BE1AD39A3206CFACDCC58A3 Validity Not Before: Mar 11 07:07:23 2024 GMT Not After : Mar 10 07:12:23 2025 GMT Subject: CN=7D3FFC03F972660D2C47D28B5022B30C8D3C3D82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:66:15:55:23:4e:f8:c7:f9:3a:72:2c:01:37: 08:b2:a3:4b:4e:77:a9:57:8f:d0:9e:09:74:0d:ac: a3:26:95:1a:0c:38:56:ed:d0:f0:46:77:25:79:96: e1:f2:1d:a7:56:99:00:a2:a7:e4:cf:af:22:e2:ad: 10:1a:57:12:bc:65:cd:90:7c:16:ac:d3:c6:9a:91: e1:1d:e5:48:e7:d9:98:65:28:83:f1:04:46:8d:d2: 07:6b:0d:17:49:aa:d8:21:58:e4:c3:a2:88:59:71: 44:7a:50:3b:30:b3:ae:4c:12:4c:9b:e4:ed:52:3a: 48:01:21:5a:09:19:cc:62:fb:12:b4:c7:8f:b8:d3: 80:b8:1f:09:e0:13:3b:c3:c6:5e:8c:37:5c:08:eb: bd:98:ff:59:64:fc:fe:02:30:e4:ac:5a:26:32:be: 03:6b:44:b5:ab:bf:7f:2e:91:04:17:c5:17:8a:8e: db:76:ff:8c:83:fb:17:e7:fa:50:75:d3:91:ac:f1: 7b:51:0d:3d:2b:42:37:6d:91:cc:59:1d:e2:66:d0: fe:d5:38:26:38:bf:3a:f0:ce:ab:b7:fc:cd:45:45: 9e:ab:ad:07:12:a8:05:63:88:2c:d0:d3:21:81:9c: 83:b5:61:9d:6f:fb:e3:c0:46:64:f1:4c:0f:70:aa: 99:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3F:FC:03:F9:72:66:0D:2C:47:D2:8B:50:22:B3:0C:8D:3C:3D:82 X509v3 Authority Key Identifier: keyid:02:87:6C:11:92:4C:BD:A0:1B:E1:AD:39:A3:20:6C:FA:CD:CC:58:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.co/repo/AS945/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer Subject Information Access: Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/326131323a646434373a383630353a3a2f34382d3438203d3e203530353535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:dd47:8605::/48 Signature Algorithm: sha256WithRSAEncryption 44:1a:ff:40:02:8c:e3:6c:ea:d5:97:21:0b:32:d3:9e:d0:7e: 7e:67:a9:e3:a7:fa:d8:f0:7b:44:83:97:bc:27:13:c7:e2:ce: 76:a0:34:ba:79:00:28:0c:b1:b6:94:14:3b:a1:d5:d9:5b:15: 18:4b:59:a8:46:ef:e6:1f:2a:f6:09:62:df:39:7f:68:ba:ac: 76:fc:e2:6d:04:ef:5c:6b:0c:55:16:d9:8d:38:97:70:2d:e6: 6d:f3:f6:78:a7:e6:8d:e3:6b:f9:07:15:fd:aa:43:91:33:52: 09:82:50:32:94:db:21:5b:b0:81:ac:8e:b6:c2:dc:38:30:e8: 9e:65:f8:e4:c8:23:e6:48:dc:96:1d:f4:5c:59:45:75:27:3a: 07:92:24:e9:71:d3:73:02:bf:39:07:7c:24:59:da:4a:35:12: 9b:62:b3:fa:db:03:0a:ae:af:50:90:c1:3f:b4:91:e4:c9:ac: df:8d:91:aa:f2:21:88:ea:d4:75:4d:cf:ef:55:35:76:d2:d2: 74:01:98:0a:ec:e5:5d:ff:b7:57:38:44:80:3e:9d:ec:87:57: c7:e7:d6:96:9c:d3:c0:71:86:bb:e3:53:7e:a2:6b:73:fc:af: 4e:c5:f7:92:bf:e0:83:b5:8a:f0:3a:a2:a2:a7:74:a5:6e:8b: 93:da:0e:bd -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUbP5r8ZFqH22jolxszdUjHUvRVZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI4NzZDMTE5MjRDQkRBMDFCRTFBRDM5QTMyMDZDRkFD RENDNThBMzAeFw0yNDAzMTEwNzA3MjNaFw0yNTAzMTAwNzEyMjNaMDMxMTAvBgNV BAMTKDdEM0ZGQzAzRjk3MjY2MEQyQzQ3RDI4QjUwMjJCMzBDOEQzQzNEODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlZhVVI074x/k6ciwBNwiyo0tO d6lXj9CeCXQNrKMmlRoMOFbt0PBGdyV5luHyHadWmQCip+TPryLirRAaVxK8Zc2Q fBas08aakeEd5Ujn2ZhlKIPxBEaN0gdrDRdJqtghWOTDoohZcUR6UDsws65MEkyb 5O1SOkgBIVoJGcxi+xK0x4+404C4HwngEzvDxl6MN1wI672Y/1lk/P4CMOSsWiYy vgNrRLWrv38ukQQXxReKjtt2/4yD+xfn+lB105Gs8XtRDT0rQjdtkcxZHeJm0P7V OCY4vzrwzqu3/M1FRZ6rrQcSqAVjiCzQ0yGBnIO1YZ1v++PARmTxTA9wqplvAgMB AAGjggH2MIIB8jAdBgNVHQ4EFgQUfT/8A/lyZg0sR9KLUCKzDI08PYIwHwYDVR0j BBgwFoAUAodsEZJMvaAb4a05oyBs+s3MWKMwDgYDVR0PAQH/BAQDAgeAMGsGA1Ud HwRkMGIwYKBeoFyGWnJzeW5jOi8vcmVwby5rYWdsLm1lL3Jwa2kvS2VhdG9uQUdM YWlyLVRFU1QvMS8wMjg3NkMxMTkyNENCREEwMUJFMUFEMzlBMzIwNkNGQUNEQ0M1 OEEzLmNybDBlBggrBgEFBQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBr aS5jby9yZXBvL0FTOTQ1LzEvMDI4NzZDMTE5MjRDQkRBMDFCRTFBRDM5QTMyMDZD RkFDRENDNThBMy5jZXIwgY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJz eW5jOi8vcmVwby5rYWdsLm1lL3Jwa2kvS2VhdG9uQUdMYWlyLVRFU1QvMS8zMjYx MzEzMjNhNjQ2NDM0MzczYTM4MzYzMDM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIw MzUzMDM1MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEF BQcBBwEB/wQTMBEwDwQCAAIwCQMHACoS3UeGBTANBgkqhkiG9w0BAQsFAAOCAQEA RBr/QAKM42zq1ZchCzLTntB+fmep46f62PB7RIOXvCcTx+LOdqA0unkAKAyxtpQU O6HV2VsVGEtZqEbv5h8q9gli3zl/aLqsdvzibQTvXGsMVRbZjTiXcC3mbfP2eKfm jeNr+QcV/apDkTNSCYJQMpTbIVuwgayOtsLcODDonmX45Mgj5kjclh30XFlFdSc6 B5Ik6XHTcwK/OQd8JFnaSjUSm2Kz+tsDCq6vUJDBP7SR5Mms342RqvIhiOrUdU3P 71U1dtLSdAGYCuzlXf+3VzhEgD6d7IdXx+fWlpzTwHGGu+NTfqJrc/yvTsX3kr/g g7WK8Dqioqd0pW6Lk9oOvQ== -----END CERTIFICATE-----Generated at Mon Jun 10 17:02:24 2024 by rpki-client on console-fra.rpki-client.org