$ rpki-client -vvf repo.rpki.space/repo/infiniroute-nerdscave/0/326131343a3763343a3a2f33322d3332203d3e20313937343737.roa File: 326131343a3763343a3a2f33322d3332203d3e20313937343737.roa (raw, json) Hash identifier: /OcO0YObCmHOy4poR7fk42Gh1IadnC1RrfQeyrqSs9I= Subject key identifier: 5B:0E:02:30:84:98:8D:0D:C9:2A:AE:ED:65:71:A7:04:6A:13:E5:B7 Certificate issuer: /CN=2DC6464BC863F4B338647A68C390021651EE36B3 Certificate serial: 0EE06CA79F25DEA2E65C8226BE5B0829925BDC53 Authority key identifier: 2D:C6:46:4B:C8:63:F4:B3:38:64:7A:68:C3:90:02:16:51:EE:36:B3 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/2DC6464BC863F4B338647A68C390021651EE36B3.cer Subject info access: rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/326131343a3763343a3a2f33322d3332203d3e20313937343737.roa Signing time: Tue 28 May 2024 17:50:34 +0000 ROA not before: Tue 28 May 2024 17:45:34 +0000 ROA not after: Tue 27 May 2025 17:50:34 +0000 asID: 197477 IP address blocks: 2a14:7c4::/32 maxlen: 32 Validation: OK Signature path: rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/2DC6464BC863F4B338647A68C390021651EE36B3.crl rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/2DC6464BC863F4B338647A68C390021651EE36B3.mft rsync://repo.rpki.space/repo/Infiniroute/1/2DC6464BC863F4B338647A68C390021651EE36B3.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jul 2024 13:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:e0:6c:a7:9f:25:de:a2:e6:5c:82:26:be:5b:08:29:92:5b:dc:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DC6464BC863F4B338647A68C390021651EE36B3 Validity Not Before: May 28 17:45:34 2024 GMT Not After : May 27 17:50:34 2025 GMT Subject: CN=5B0E023084988D0DC92AAEED6571A7046A13E5B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ba:ba:5c:15:65:81:a4:c6:3f:d4:01:e0:d3: 0a:95:97:a1:6c:7c:ed:76:28:74:51:c5:fd:3b:14: a2:c6:39:d9:01:53:c1:00:38:79:3d:e2:24:15:ae: 60:d4:df:b1:e5:80:3f:a3:d5:e6:9f:97:11:af:c0: dd:8f:99:b6:eb:bc:2c:d5:9e:f4:d9:f7:89:02:ee: b7:f6:5a:a8:b8:98:fe:a5:20:bc:41:82:93:d3:ba: 5a:5d:40:4b:a7:9e:27:12:08:a2:35:02:3e:79:43: c3:50:12:a8:d3:2d:76:68:f9:ae:11:d9:c0:03:8c: 30:aa:f0:6d:ee:28:ef:c2:28:51:18:6c:ce:0f:8f: e2:f8:7a:23:68:3d:ea:06:f5:46:16:30:c0:91:87: de:8d:79:87:f9:29:cc:b4:84:3a:c6:40:d2:98:46: 6b:cf:43:90:a0:5d:80:75:ac:ff:55:d2:70:bd:d9: 7c:57:12:0b:d1:5e:e6:ba:ef:9c:47:fd:46:03:b3: ff:5f:e6:3e:57:7e:57:be:6e:8e:bb:04:42:f8:29: ed:a9:cb:24:65:d4:36:2f:c2:c6:73:28:40:5b:da: 80:4e:09:27:7b:06:70:24:9b:42:5a:55:cc:fb:4a: 8e:0a:0f:5b:95:d7:9a:20:6a:88:65:08:da:bb:bf: 65:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:0E:02:30:84:98:8D:0D:C9:2A:AE:ED:65:71:A7:04:6A:13:E5:B7 X509v3 Authority Key Identifier: keyid:2D:C6:46:4B:C8:63:F4:B3:38:64:7A:68:C3:90:02:16:51:EE:36:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/2DC6464BC863F4B338647A68C390021651EE36B3.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/2DC6464BC863F4B338647A68C390021651EE36B3.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/326131343a3763343a3a2f33322d3332203d3e20313937343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c4::/32 Signature Algorithm: sha256WithRSAEncryption a7:9d:34:4c:20:11:3e:4e:98:7d:c3:0c:05:c9:e7:7d:86:86: e1:20:b1:77:98:18:3a:fe:3f:83:66:85:6d:82:e5:0d:b6:51: 82:9c:41:10:ad:2a:57:3c:69:70:b9:21:6c:9c:bb:6c:50:c6: fb:82:4e:2e:a7:9b:8a:f1:63:7c:36:10:aa:f0:b9:0f:d8:d4: 9c:35:06:fb:8e:b7:77:2d:d1:48:91:8a:86:26:c2:ac:5f:23: d3:b5:2f:1d:4e:f6:7d:00:9a:31:51:ca:e2:23:3c:30:b4:37: 95:9e:cf:6f:04:25:36:59:55:d0:ef:92:58:e4:eb:a1:45:26: 33:a4:11:c2:d4:25:e6:d8:7f:50:04:50:d5:6f:cf:91:f7:82: 75:bb:f1:ef:39:96:27:40:da:ba:a3:7d:8c:54:dc:dc:01:85: 04:36:59:fe:b3:60:a5:41:a0:81:b9:ce:86:1a:15:82:4c:96: eb:9a:aa:91:2e:18:1b:71:2b:c7:c1:41:0d:8f:74:3a:80:28: 18:61:b8:3d:55:02:9f:a5:d1:5a:e9:5f:98:f4:a0:ae:03:9b: 76:fa:8a:bd:aa:df:b6:21:70:f2:5b:52:5e:95:da:1b:e8:29: 91:39:f8:3a:db:26:f0:ed:83:52:ff:4f:d7:ee:c1:98:2a:3b: 3a:67:39:4f -----BEGIN CERTIFICATE----- MIIE+zCCA+OgAwIBAgIUDuBsp58l3qLmXIImvlsIKZJb3FMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRDNjQ2NEJDODYzRjRCMzM4NjQ3QTY4QzM5MDAyMTY1 MUVFMzZCMzAeFw0yNDA1MjgxNzQ1MzRaFw0yNTA1MjcxNzUwMzRaMDMxMTAvBgNV BAMTKDVCMEUwMjMwODQ5ODhEMERDOTJBQUVFRDY1NzFBNzA0NkExM0U1QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfurpcFWWBpMY/1AHg0wqVl6Fs fO12KHRRxf07FKLGOdkBU8EAOHk94iQVrmDU37HlgD+j1eaflxGvwN2PmbbrvCzV nvTZ94kC7rf2Wqi4mP6lILxBgpPTulpdQEunnicSCKI1Aj55Q8NQEqjTLXZo+a4R 2cADjDCq8G3uKO/CKFEYbM4Pj+L4eiNoPeoG9UYWMMCRh96NeYf5Kcy0hDrGQNKY RmvPQ5CgXYB1rP9V0nC92XxXEgvRXua675xH/UYDs/9f5j5Xfle+bo67BEL4Ke2p yyRl1DYvwsZzKEBb2oBOCSd7BnAkm0JaVcz7So4KD1uV15ogaohlCNq7v2V1AgMB AAGjggIFMIICATAdBgNVHQ4EFgQUWw4CMISYjQ3JKq7tZXGnBGoT5bcwHwYDVR0j BBgwFoAULcZGS8hj9LM4ZHpow5ACFlHuNrMwDgYDVR0PAQH/BAQDAgeAMHIGA1Ud HwRrMGkwZ6BloGOGYXJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vaW5maW5p cm91dGUtbmVyZHNjYXZlLzAvMkRDNjQ2NEJDODYzRjRCMzM4NjQ3QTY4QzM5MDAy MTY1MUVFMzZCMy5jcmwwcwYIKwYBBQUHAQEEZzBlMGMGCCsGAQUFBzAChldyc3lu YzovL3JlcG8ucnBraS5zcGFjZS9yZXBvL0luZmluaXJvdXRlLzEvMkRDNjQ2NEJD ODYzRjRCMzM4NjQ3QTY4QzM5MDAyMTY1MUVFMzZCMy5jZXIwgYkGCCsGAQUFBwEL BH0wezB5BggrBgEFBQcwC4ZtcnN5bmM6Ly9yZXBvLnJwa2kuc3BhY2UvcmVwby9p bmZpbmlyb3V0ZS1uZXJkc2NhdmUvMC8zMjYxMzEzNDNhMzc2MzM0M2EzYTJmMzMz MjJkMzMzMjIwM2QzZTIwMzEzOTM3MzQzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhQHxDANBgkq hkiG9w0BAQsFAAOCAQEAp500TCARPk6YfcMMBcnnfYaG4SCxd5gYOv4/g2aFbYLl DbZRgpxBEK0qVzxpcLkhbJy7bFDG+4JOLqebivFjfDYQqvC5D9jUnDUG+463dy3R SJGKhibCrF8j07UvHU72fQCaMVHK4iM8MLQ3lZ7PbwQlNllV0O+SWOTroUUmM6QR wtQl5th/UARQ1W/PkfeCdbvx7zmWJ0DauqN9jFTc3AGFBDZZ/rNgpUGggbnOhhoV gkyW65qqkS4YG3Erx8FBDY90OoAoGGG4PVUCn6XRWulfmPSgrgObdvqKvarftiFw 8ltSXpXaG+gpkTn4Otsm8O2DUv9P1+7BmCo7Omc5Tw== -----END CERTIFICATE-----Generated at Sun Jul 7 02:50:13 2024 by rpki-client on console-fra.rpki-client.org