$ rpki-client -vvf repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030303a3a2f33382d3338203d3e20323135333635.roa File: 326131343a3763303a313030303a3a2f33382d3338203d3e20323135333635.roa (raw, json) Hash identifier: nucu8YeXyAJ1d1cM0WF7236LM50tPwAEitl5+zxIpfo= Subject key identifier: BF:EC:3E:28:36:7E:8F:18:24:A9:F9:A8:B1:02:7E:83:DA:41:07:D0 Certificate issuer: /CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Certificate serial: 6BC43348129BCD6725F348A631F997B1728DDAAE Authority key identifier: CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject info access: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030303a3a2f33382d3338203d3e20323135333635.roa Signing time: Sat 16 May 2026 20:12:25 +0000 ROA not before: Sat 16 May 2026 20:07:25 +0000 ROA not after: Sat 15 May 2027 20:12:25 +0000 asID: 215365 IP address blocks: 2a14:7c0:1000::/38 maxlen: 38 Validation: OK Signature path: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.mft rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Jun 2026 19:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:c4:33:48:12:9b:cd:67:25:f3:48:a6:31:f9:97:b1:72:8d:da:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Validity Not Before: May 16 20:07:25 2026 GMT Not After : May 15 20:12:25 2027 GMT Subject: CN=BFEC3E28367E8F1824A9F9A8B1027E83DA4107D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:16:37:8c:25:e1:58:53:3c:22:72:e1:41:64: 98:83:be:e0:27:30:15:d9:d1:3a:84:dd:84:28:f6: f9:aa:0f:e8:2e:db:8b:89:54:bc:6a:68:ab:f3:c5: ef:14:3d:01:09:93:cd:08:40:af:0c:b4:9d:a2:92: 1a:9c:89:bf:cf:02:1f:40:a3:bf:af:55:57:98:05: b7:3c:bb:dd:da:fa:55:d0:ad:36:cb:72:c8:2f:7e: 8d:16:6b:55:48:7e:66:cb:c7:1f:91:ad:8f:b6:02: f4:77:25:06:1c:07:2d:e3:a3:9a:82:08:31:ca:da: 5e:3b:3f:de:9c:c1:1f:a4:95:7f:ff:e0:cc:0f:c8: fa:c8:4b:8b:f3:ce:7f:0b:86:45:d6:68:0d:ef:fd: ed:8e:16:76:34:9a:8b:9f:82:5f:52:d1:48:98:48: 98:dc:8b:30:1e:2b:a2:ed:a1:db:5e:26:e5:a7:3c: d7:4d:44:ee:78:b4:f1:49:83:10:90:90:2a:51:b0: 63:6c:df:e8:eb:e1:ff:7a:95:50:63:f7:85:c5:63: 87:77:a7:0e:b6:3b:9c:20:7b:18:0b:d1:68:37:ce: 93:2f:62:dd:95:9d:90:c9:f8:1a:a7:61:88:51:71: 19:8c:99:9d:a6:9a:6a:a5:7e:f9:b9:d9:20:6b:d4: 02:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:EC:3E:28:36:7E:8F:18:24:A9:F9:A8:B1:02:7E:83:DA:41:07:D0 X509v3 Authority Key Identifier: keyid:CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030303a3a2f33382d3338203d3e20323135333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c0:1000::/38 Signature Algorithm: sha256WithRSAEncryption bc:d9:19:ae:dc:e5:37:bb:e8:e0:53:a7:74:cd:c0:fe:76:9b: 0d:8d:cf:23:59:09:09:74:78:1d:f3:49:93:55:3e:55:70:e0: b5:dd:b4:53:87:e6:0a:fa:63:92:c2:8a:ae:86:86:64:59:80: e0:7e:47:fa:26:b6:7c:9e:73:2e:32:0f:bc:2c:21:f5:85:61: f1:3c:83:9d:41:3c:0e:33:8d:95:7a:58:e9:51:16:75:05:cf: 9e:53:da:21:6b:44:b9:38:99:b0:a3:8f:42:7f:90:a0:04:6f: d1:dc:79:f4:0f:f3:04:d4:4e:54:ee:cc:80:c8:e9:9a:24:d8: a3:01:ed:76:56:2c:10:46:1d:77:e9:27:68:d8:59:57:49:7a: 37:b5:22:a5:4e:38:65:65:51:cd:ac:a6:bc:cd:f1:9e:ab:40: ac:57:72:76:a9:b3:bb:12:e5:90:3b:a0:f1:f6:c8:50:8a:b2: ee:10:0e:0c:94:65:9f:f8:ad:1a:d7:63:e6:fc:9d:e4:2b:a3: 14:23:60:e3:80:be:72:61:bb:7a:c3:f7:e8:ea:19:32:79:47: 27:a8:e3:29:b9:4d:5f:49:23:eb:dc:a2:b1:93:3a:e5:b9:23: 68:6b:e3:fd:87:12:6e:7b:c8:e3:b5:71:77:4d:fc:89:34:c9: f4:82:0a:22 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUa8QzSBKbzWcl80imMfmXsXKN2q4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FCRjM3M0VBRENEOTM3NkU1MjRDRTMxM0FCODY4QzAz RUVCMTA4ODAeFw0yNjA1MTYyMDA3MjVaFw0yNzA1MTUyMDEyMjVaMDMxMTAvBgNV BAMTKEJGRUMzRTI4MzY3RThGMTgyNEE5RjlBOEIxMDI3RTgzREE0MTA3RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzFjeMJeFYUzwicuFBZJiDvuAn MBXZ0TqE3YQo9vmqD+gu24uJVLxqaKvzxe8UPQEJk80IQK8MtJ2ikhqcib/PAh9A o7+vVVeYBbc8u93a+lXQrTbLcsgvfo0Wa1VIfmbLxx+RrY+2AvR3JQYcBy3jo5qC CDHK2l47P96cwR+klX//4MwPyPrIS4vzzn8LhkXWaA3v/e2OFnY0moufgl9S0UiY SJjcizAeK6LtodteJuWnPNdNRO54tPFJgxCQkCpRsGNs3+jr4f96lVBj94XFY4d3 pw62O5wgexgL0Wg3zpMvYt2VnZDJ+BqnYYhRcRmMmZ2mmmqlfvm52SBr1AJpAgMB AAGjggIIMIICBDAdBgNVHQ4EFgQUv+w+KDZ+jxgkqfmosQJ+g9pBB9AwHwYDVR0j BBgwFoAUyr83Pq3Nk3blJM4xOrhowD7rEIgwDgYDVR0PAQH/BAQDAgeAMG0GA1Ud HwRmMGQwYqBgoF6GXHJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vcGZjbG91 ZC10Z2V3aWVzZS8wL0NBQkYzNzNFQURDRDkzNzZFNTI0Q0UzMTNBQjg2OEMwM0VF QjEwODguY3JsMHMGCCsGAQUFBwEBBGcwZTBjBggrBgEFBQcwAoZXcnN5bmM6Ly9y ZXBvLnJwa2kuc3BhY2UvcmVwby9JbmZpbmlyb3V0ZS8xL0NBQkYzNzNFQURDRDkz NzZFNTI0Q0UzMTNBQjg2OEMwM0VFQjEwODguY2VyMIGQBggrBgEFBQcBCwSBgzCB gDB+BggrBgEFBQcwC4ZycnN5bmM6Ly9yZXBvLnJwa2kuc3BhY2UvcmVwby9wZmNs b3VkLXRnZXdpZXNlLzAvMzI2MTMxMzQzYTM3NjMzMDNhMzEzMDMwMzAzYTNhMmYz MzM4MmQzMzM4MjAzZDNlMjAzMjMxMzUzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgIqFAfAEDAN BgkqhkiG9w0BAQsFAAOCAQEAvNkZrtzlN7vo4FOndM3A/nabDY3PI1kJCXR4HfNJ k1U+VXDgtd20U4fmCvpjksKKroaGZFmA4H5H+ia2fJ5zLjIPvCwh9YVh8TyDnUE8 DjONlXpY6VEWdQXPnlPaIWtEuTiZsKOPQn+QoARv0dx59A/zBNROVO7MgMjpmiTY owHtdlYsEEYdd+knaNhZV0l6N7UipU44ZWVRzaymvM3xnqtArFdydqmzuxLlkDug 8fbIUIqy7hAODJRln/itGtdj5vyd5CujFCNg44C+cmG7esP36OoZMnlHJ6jjKblN X0kj69yisZM65bkjaGvj/YcSbnvI47Vxd038iTTJ9IIKIg== -----END CERTIFICATE-----Generated at Thu Jun 4 12:05:13 2026 by rpki-client