$ rpki-client -vvf repo.rpki.space/repo/infiniroute-nerdscave/0/326131343a3763343a3a2f33322d3332203d3e2030.roa File: 326131343a3763343a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: 7V1iZMl8i13k71FkID4gNa1ghH6jP6jRi2nTUfvgIEY= Subject key identifier: 4C:ED:1A:81:68:8F:4C:2E:FB:DC:40:BF:43:10:EB:B2:C1:A0:48:79 Certificate issuer: /CN=2DC6464BC863F4B338647A68C390021651EE36B3 Certificate serial: 6FA0C2A8F9C45C3577463AB0FAC3B484183178B7 Authority key identifier: 2D:C6:46:4B:C8:63:F4:B3:38:64:7A:68:C3:90:02:16:51:EE:36:B3 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/2DC6464BC863F4B338647A68C390021651EE36B3.cer Subject info access: rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/326131343a3763343a3a2f33322d3332203d3e2030.roa Signing time: Tue 29 Oct 2024 18:58:37 +0000 ROA not before: Tue 29 Oct 2024 18:53:37 +0000 ROA not after: Tue 28 Oct 2025 18:58:37 +0000 asID: 0 IP address blocks: 2a14:7c4::/32 maxlen: 32 Validation: OK Signature path: rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/2DC6464BC863F4B338647A68C390021651EE36B3.crl rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/2DC6464BC863F4B338647A68C390021651EE36B3.mft rsync://repo.rpki.space/repo/Infiniroute/1/2DC6464BC863F4B338647A68C390021651EE36B3.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 13:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:a0:c2:a8:f9:c4:5c:35:77:46:3a:b0:fa:c3:b4:84:18:31:78:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DC6464BC863F4B338647A68C390021651EE36B3 Validity Not Before: Oct 29 18:53:37 2024 GMT Not After : Oct 28 18:58:37 2025 GMT Subject: CN=4CED1A81688F4C2EFBDC40BF4310EBB2C1A04879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:22:46:3d:10:05:ae:5d:70:54:01:fa:28:eb: 97:f9:e0:1b:a9:e1:ac:7a:77:9c:04:7c:ff:51:43: d6:91:3c:c3:f3:a7:f8:16:c5:20:ae:11:0c:e5:28: 97:7b:89:bc:de:10:a3:0a:78:a6:44:a2:55:0c:01: 15:83:4b:2f:8f:ad:5c:f4:d0:f6:42:d5:34:a8:32: 38:bf:05:6c:04:47:ca:93:c7:52:b4:90:be:cd:75: e8:0e:69:8b:f7:da:6a:da:b0:75:7e:1a:f7:ff:9a: fd:61:16:41:1d:06:b1:df:45:a3:e3:b6:23:aa:22: 25:e5:25:89:4f:7f:30:ef:ba:c5:47:07:5c:a4:25: ac:fa:cb:8a:01:7a:4c:7c:2f:29:a2:2b:b0:db:86: df:db:d3:19:73:be:64:c6:db:92:9f:02:25:6c:70: 48:98:98:13:6a:63:81:08:93:d5:56:19:15:43:66: 59:89:03:d4:c7:fa:17:f7:f6:49:37:99:57:de:a5: 7c:b2:7e:aa:33:3c:f5:03:f4:96:9c:3a:1d:10:76: 5a:1c:8c:45:fc:47:5c:6e:d2:c7:43:86:8c:5e:93: b0:4c:f5:f6:7d:94:03:46:63:f7:75:e6:a9:b6:81: 9b:b7:3e:06:b7:c4:8a:b6:a2:9d:3b:d9:5a:5d:6f: 3a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:ED:1A:81:68:8F:4C:2E:FB:DC:40:BF:43:10:EB:B2:C1:A0:48:79 X509v3 Authority Key Identifier: keyid:2D:C6:46:4B:C8:63:F4:B3:38:64:7A:68:C3:90:02:16:51:EE:36:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/2DC6464BC863F4B338647A68C390021651EE36B3.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/2DC6464BC863F4B338647A68C390021651EE36B3.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/infiniroute-nerdscave/0/326131343a3763343a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c4::/32 Signature Algorithm: sha256WithRSAEncryption 41:39:d9:16:fc:c6:dc:c8:61:ca:e3:d1:53:e3:8d:6d:6a:23: e2:d6:88:b8:20:e3:5d:67:f3:69:c0:7f:e1:71:55:c0:99:5d: 7f:a5:62:38:d6:b6:3b:3f:d0:6a:29:50:2c:15:fa:6e:f1:9c: 5e:12:64:27:15:7e:21:33:e4:14:94:4b:9d:48:ae:89:4b:48: ed:69:38:6b:32:3b:e4:9f:b7:87:4a:06:36:9a:67:73:68:ab: ba:4a:5e:5b:4b:ab:bc:e5:92:56:13:b3:e3:01:b5:39:0e:a1: 3d:7e:d9:00:1b:76:9f:3f:03:ab:1e:9d:1e:16:9f:9c:c0:31: 58:db:2b:ce:ba:9a:28:4c:8f:8f:44:ee:e9:47:f2:88:96:64: 39:7a:41:c4:c4:dd:3e:37:40:ff:79:2b:44:b3:92:78:e5:c9: 6e:93:86:e5:ac:35:47:7c:e3:e9:9c:f1:52:24:25:7b:93:a7: 4e:c2:16:5c:a0:c3:c8:15:96:25:06:12:25:ce:de:5b:d8:48: 58:9d:71:b1:cf:fb:6f:59:d6:b5:84:57:19:08:f0:30:57:cc: 6b:31:20:eb:13:b5:6e:24:30:b8:4f:6b:cf:18:3d:26:1c:26: 23:f5:13:b5:b8:00:39:a8:f0:fa:12:ba:22:5c:c0:bb:1a:8d: 81:e4:ee:e9 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUb6DCqPnEXDV3Rjqw+sO0hBgxeLcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRDNjQ2NEJDODYzRjRCMzM4NjQ3QTY4QzM5MDAyMTY1 MUVFMzZCMzAeFw0yNDEwMjkxODUzMzdaFw0yNTEwMjgxODU4MzdaMDMxMTAvBgNV BAMTKDRDRUQxQTgxNjg4RjRDMkVGQkRDNDBCRjQzMTBFQkIyQzFBMDQ4NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHIkY9EAWuXXBUAfoo65f54Bup 4ax6d5wEfP9RQ9aRPMPzp/gWxSCuEQzlKJd7ibzeEKMKeKZEolUMARWDSy+PrVz0 0PZC1TSoMji/BWwER8qTx1K0kL7NdegOaYv32mrasHV+Gvf/mv1hFkEdBrHfRaPj tiOqIiXlJYlPfzDvusVHB1ykJaz6y4oBekx8LymiK7Dbht/b0xlzvmTG25KfAiVs cEiYmBNqY4EIk9VWGRVDZlmJA9TH+hf39kk3mVfepXyyfqozPPUD9JacOh0Qdloc jEX8R1xu0sdDhoxek7BM9fZ9lANGY/d15qm2gZu3Pga3xIq2op072VpdbzqHAgMB AAGjggH6MIIB9jAdBgNVHQ4EFgQUTO0agWiPTC773EC/QxDrssGgSHkwHwYDVR0j BBgwFoAULcZGS8hj9LM4ZHpow5ACFlHuNrMwDgYDVR0PAQH/BAQDAgeAMHIGA1Ud HwRrMGkwZ6BloGOGYXJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vaW5maW5p cm91dGUtbmVyZHNjYXZlLzAvMkRDNjQ2NEJDODYzRjRCMzM4NjQ3QTY4QzM5MDAy MTY1MUVFMzZCMy5jcmwwcwYIKwYBBQUHAQEEZzBlMGMGCCsGAQUFBzAChldyc3lu YzovL3JlcG8ucnBraS5zcGFjZS9yZXBvL0luZmluaXJvdXRlLzEvMkRDNjQ2NEJD ODYzRjRCMzM4NjQ3QTY4QzM5MDAyMTY1MUVFMzZCMy5jZXIwfwYIKwYBBQUHAQsE czBxMG8GCCsGAQUFBzALhmNyc3luYzovL3JlcG8ucnBraS5zcGFjZS9yZXBvL2lu ZmluaXJvdXRlLW5lcmRzY2F2ZS8wLzMyNjEzMTM0M2EzNzYzMzQzYTNhMmYzMzMy MmQzMzMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoUB8QwDQYJKoZIhvcNAQELBQAD ggEBAEE52Rb8xtzIYcrj0VPjjW1qI+LWiLgg411n82nAf+FxVcCZXX+lYjjWtjs/ 0GopUCwV+m7xnF4SZCcVfiEz5BSUS51IrolLSO1pOGsyO+Sft4dKBjaaZ3Noq7pK XltLq7zlklYTs+MBtTkOoT1+2QAbdp8/A6senR4Wn5zAMVjbK866mihMj49E7ulH 8oiWZDl6QcTE3T43QP95K0SzknjlyW6ThuWsNUd84+mc8VIkJXuTp07CFlygw8gV liUGEiXO3lvYSFidcbHP+29Z1rWEVxkI8DBXzGsxIOsTtW4kMLhPa88YPSYcJiP1 E7W4ADmo8PoSuiJcwLsajYHk7uk= -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org