$ rpki-client -vvf repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030613a3a2f34382d3438203d3e203437323633.roa File: 326131343a3763303a313030613a3a2f34382d3438203d3e203437323633.roa (raw, json) Hash identifier: SeNu4h+0l9b9bc1jP2dpEQxwlRATBtTZWHxihx7c61Y= Subject key identifier: 63:4F:D6:94:8B:B9:87:AD:E4:E4:0E:AF:9C:69:BF:9E:72:B5:8D:CB Certificate issuer: /CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Certificate serial: 7A2D6F0524A90E6165A308A325DB56791F4AB570 Authority key identifier: CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject info access: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030613a3a2f34382d3438203d3e203437323633.roa Signing time: Sun 15 Jun 2025 22:19:30 +0000 ROA not before: Sun 15 Jun 2025 22:14:30 +0000 ROA not after: Sun 14 Jun 2026 22:19:30 +0000 asID: 47263 IP address blocks: 2a14:7c0:100a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.mft rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Nov 2025 15:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:2d:6f:05:24:a9:0e:61:65:a3:08:a3:25:db:56:79:1f:4a:b5:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Validity Not Before: Jun 15 22:14:30 2025 GMT Not After : Jun 14 22:19:30 2026 GMT Subject: CN=634FD6948BB987ADE4E40EAF9C69BF9E72B58DCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ab:2e:7a:fd:d7:a0:34:89:20:79:ce:b7:91: a8:48:6d:d3:04:92:6b:fa:69:0f:6f:83:9a:cd:fe: aa:ca:ef:12:47:19:07:14:99:16:c9:3a:6a:06:00: ad:1b:fa:86:ff:bc:6a:b5:33:d9:e3:d9:4f:ec:65: 20:21:91:b7:c9:2b:8c:9f:b9:23:47:8d:80:5d:93: a6:06:4f:c7:69:a1:c3:1e:b4:8f:58:32:39:c8:19: 37:cc:0c:a8:45:5e:b5:83:dc:28:da:74:ee:05:1f: ab:7b:50:6d:e5:0a:a7:20:32:17:a1:c4:dd:cc:2b: a9:90:ae:a3:d0:15:2d:8c:b4:a2:84:43:45:11:a1: cf:a8:ca:59:45:45:e3:58:c7:d8:da:25:62:66:4f: c8:de:72:68:a1:1b:0a:2f:74:49:71:4e:35:39:96: 06:24:5d:52:08:9f:cc:fd:74:88:a4:c8:30:cf:a7: 3a:4c:3e:98:a2:ef:05:ee:76:98:26:cc:0f:4b:94: 68:0f:18:1d:be:1a:16:44:d9:97:c1:c1:f4:d3:be: c1:ef:37:f6:a8:87:6f:45:cc:35:d2:e0:9d:0f:db: ad:34:6a:7b:df:c4:3b:b0:2d:85:73:21:f7:da:38: 14:ea:0c:68:e6:0d:85:c4:3a:bf:23:03:7a:e2:c2: 60:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:4F:D6:94:8B:B9:87:AD:E4:E4:0E:AF:9C:69:BF:9E:72:B5:8D:CB X509v3 Authority Key Identifier: keyid:CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030613a3a2f34382d3438203d3e203437323633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c0:100a::/48 Signature Algorithm: sha256WithRSAEncryption 3d:64:7a:d0:ef:01:35:19:86:95:91:eb:3a:98:f8:2e:f4:fa: 97:4e:2f:d0:c3:43:bd:c2:67:a9:76:37:b0:13:ea:70:aa:29: 68:67:65:f5:b7:97:c6:e5:55:6b:d7:0d:25:65:26:8c:eb:ee: 61:6a:93:c3:84:c2:05:83:50:fc:32:75:a5:6f:e6:da:4a:82: ce:8b:58:ac:02:64:78:b3:f7:07:9b:52:8b:4b:2b:fd:67:ba: b9:12:72:98:a2:d2:16:b6:bd:06:ac:51:a7:cd:a1:de:43:00: 25:d9:18:f8:99:f0:15:c6:a3:91:34:31:cf:8d:47:07:dc:22: 0b:31:4f:0c:bb:c2:82:f5:cb:b8:13:08:2c:01:36:ba:ef:72: 24:62:0b:d9:f2:98:fa:b5:6d:06:99:bf:2c:36:4b:75:76:c2: 2d:2f:f8:1a:08:ce:12:bb:69:70:f8:4a:dd:0f:ff:3a:48:24: 3e:a2:57:ba:24:83:6c:fc:12:3f:54:fa:17:87:a5:32:3f:58: 4a:80:e1:b6:06:01:54:49:54:84:8e:19:d5:62:af:aa:9c:ef: 5d:49:8c:5f:53:c9:3d:f4:c6:5f:c8:7c:3a:06:e6:20:f3:c9: e3:36:4d:a1:a2:57:3e:68:33:77:5d:5d:ca:e5:01:10:2d:17: 26:0c:bd:1a -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgIUei1vBSSpDmFlowijJdtWeR9KtXAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FCRjM3M0VBRENEOTM3NkU1MjRDRTMxM0FCODY4QzAz RUVCMTA4ODAeFw0yNTA2MTUyMjE0MzBaFw0yNjA2MTQyMjE5MzBaMDMxMTAvBgNV BAMTKDYzNEZENjk0OEJCOTg3QURFNEU0MEVBRjlDNjlCRjlFNzJCNThEQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClqy56/degNIkgec63kahIbdME kmv6aQ9vg5rN/qrK7xJHGQcUmRbJOmoGAK0b+ob/vGq1M9nj2U/sZSAhkbfJK4yf uSNHjYBdk6YGT8dpocMetI9YMjnIGTfMDKhFXrWD3CjadO4FH6t7UG3lCqcgMheh xN3MK6mQrqPQFS2MtKKEQ0URoc+oyllFReNYx9jaJWJmT8jecmihGwovdElxTjU5 lgYkXVIIn8z9dIikyDDPpzpMPpii7wXudpgmzA9LlGgPGB2+GhZE2ZfBwfTTvsHv N/aoh29FzDXS4J0P2600anvfxDuwLYVzIffaOBTqDGjmDYXEOr8jA3riwmBNAgMB AAGjggIGMIICAjAdBgNVHQ4EFgQUY0/WlIu5h63k5A6vnGm/nnK1jcswHwYDVR0j BBgwFoAUyr83Pq3Nk3blJM4xOrhowD7rEIgwDgYDVR0PAQH/BAQDAgeAMG0GA1Ud HwRmMGQwYqBgoF6GXHJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vcGZjbG91 ZC10Z2V3aWVzZS8wL0NBQkYzNzNFQURDRDkzNzZFNTI0Q0UzMTNBQjg2OEMwM0VF QjEwODguY3JsMHMGCCsGAQUFBwEBBGcwZTBjBggrBgEFBQcwAoZXcnN5bmM6Ly9y ZXBvLnJwa2kuc3BhY2UvcmVwby9JbmZpbmlyb3V0ZS8xL0NBQkYzNzNFQURDRDkz NzZFNTI0Q0UzMTNBQjg2OEMwM0VFQjEwODguY2VyMIGNBggrBgEFBQcBCwSBgDB+ MHwGCCsGAQUFBzALhnByc3luYzovL3JlcG8ucnBraS5zcGFjZS9yZXBvL3BmY2xv dWQtdGdld2llc2UvMC8zMjYxMzEzNDNhMzc2MzMwM2EzMTMwMzA2MTNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDM0MzczMjM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqFAfAEAowDQYJ KoZIhvcNAQELBQADggEBAD1ketDvATUZhpWR6zqY+C70+pdOL9DDQ73CZ6l2N7AT 6nCqKWhnZfW3l8blVWvXDSVlJozr7mFqk8OEwgWDUPwydaVv5tpKgs6LWKwCZHiz 9webUotLK/1nurkScpii0ha2vQasUafNod5DACXZGPiZ8BXGo5E0Mc+NRwfcIgsx Twy7woL1y7gTCCwBNrrvciRiC9nymPq1bQaZvyw2S3V2wi0v+BoIzhK7aXD4St0P /zpIJD6iV7okg2z8Ej9U+heHpTI/WEqA4bYGAVRJVISOGdVir6qc711JjF9TyT30 xl/IfDoG5iDzyeM2TaGiVz5oM3ddXcrlARAtFyYMvRo= -----END CERTIFICATE-----Generated at Sat Nov 1 03:43:54 2025 by rpki-client