$ rpki-client -vvf repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030613a3a2f34382d3438203d3e203437323633.roa File: 326131343a3763303a313030613a3a2f34382d3438203d3e203437323633.roa (raw, json) Hash identifier: eZ7jpicveS/dryZB9pvPZbDyAvUXk7g9rItMf31JKbE= Subject key identifier: DD:76:4E:BC:CF:82:71:BC:8A:49:5F:25:F8:D2:55:AF:29:77:02:84 Certificate issuer: /CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Certificate serial: 33952C3EA1B2CF5A44A255BA7DE03DDE8E6188EA Authority key identifier: CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject info access: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030613a3a2f34382d3438203d3e203437323633.roa Signing time: Sun 14 Jul 2024 22:14:42 +0000 ROA not before: Sun 14 Jul 2024 22:09:42 +0000 ROA not after: Sun 13 Jul 2025 22:14:42 +0000 asID: 47263 IP address blocks: 2a14:7c0:100a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.mft rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 13:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:95:2c:3e:a1:b2:cf:5a:44:a2:55:ba:7d:e0:3d:de:8e:61:88:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Validity Not Before: Jul 14 22:09:42 2024 GMT Not After : Jul 13 22:14:42 2025 GMT Subject: CN=DD764EBCCF8271BC8A495F25F8D255AF29770284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:57:e0:9c:38:9a:bb:61:c4:42:c7:5c:84:44: bb:d2:55:a9:3a:6d:22:d9:79:39:5e:eb:e8:4d:4d: cc:63:fa:56:4a:c2:e3:8e:e5:f8:4d:21:f6:5e:6c: ae:cb:49:8b:0e:e6:e6:2e:78:78:d1:42:f1:a4:93: 84:41:24:5e:6c:bf:93:be:d7:94:7b:eb:e3:ab:93: 82:4f:3c:44:51:25:31:12:aa:df:f1:de:3d:90:91: d6:c8:f4:5b:67:78:07:6a:10:2c:b4:c6:bc:68:91: 4a:39:e3:c8:61:9f:25:28:64:40:f4:de:64:f0:f4: 50:45:89:07:f0:cb:c1:f0:33:9e:e3:da:b0:35:fa: a1:71:05:dd:17:b6:24:b1:21:1d:a0:fb:5c:62:20: 7a:8b:13:99:7e:18:66:e8:df:ae:60:2e:08:96:0a: 42:a6:a6:ac:51:0f:71:c5:3c:29:76:be:85:81:c6: ce:be:5f:68:4d:8a:23:ae:c9:01:6b:3f:96:e9:4f: 90:32:f1:92:e1:6d:5c:ac:3b:74:00:a4:96:7a:e6: 1a:eb:ef:92:f5:ab:2f:b0:d0:48:18:aa:36:f9:1d: c6:c4:0f:fc:28:f7:21:4b:b1:16:af:23:20:c3:e7: 7b:0d:eb:54:5b:bd:27:1e:a3:33:6e:81:df:fd:75: c8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:76:4E:BC:CF:82:71:BC:8A:49:5F:25:F8:D2:55:AF:29:77:02:84 X509v3 Authority Key Identifier: keyid:CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030613a3a2f34382d3438203d3e203437323633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c0:100a::/48 Signature Algorithm: sha256WithRSAEncryption 51:31:a0:fe:85:c0:ba:4e:8a:3a:13:a6:d9:0c:bb:dd:ac:5b: 2a:37:d7:40:cd:48:ff:47:1c:04:75:8b:d1:84:73:76:43:8d: 2e:bb:5c:d9:2c:92:7e:94:55:a4:7d:ed:05:a6:3a:0d:71:ac: e6:67:15:45:94:24:d0:f5:e4:e7:e6:a7:64:03:a5:30:2d:f2: e8:6e:87:1c:ef:ad:0b:fb:ae:30:6c:08:75:4a:ef:1e:f1:4c: 8b:ec:23:46:37:a0:7c:31:32:14:36:33:a3:70:10:d9:a4:0f: 93:e4:3d:04:76:10:d1:ed:65:f2:7d:18:63:84:8f:26:45:a8: 26:a2:58:79:d6:b6:23:18:ec:77:74:8b:f4:64:da:ce:85:50: 08:79:70:13:1f:eb:cf:d1:06:14:50:35:bd:d8:77:6d:5e:d7: 84:a5:45:80:2c:51:42:40:bb:bf:2c:35:2b:32:70:f6:ce:ca: 92:3d:0a:ed:cb:b5:6a:b0:41:26:8a:11:a8:5e:98:dc:38:bb: 63:8b:f7:43:7f:c5:74:bc:ab:c3:ad:98:24:68:27:cf:86:cb: 95:74:1e:f7:a3:91:41:80:03:3d:92:0e:3c:85:ba:5e:a5:bd: a4:80:9d:44:1b:72:35:f5:47:6e:9f:54:fd:fa:22:6a:df:88: 97:e1:b5:1b -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgIUM5UsPqGyz1pEolW6feA93o5hiOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FCRjM3M0VBRENEOTM3NkU1MjRDRTMxM0FCODY4QzAz RUVCMTA4ODAeFw0yNDA3MTQyMjA5NDJaFw0yNTA3MTMyMjE0NDJaMDMxMTAvBgNV BAMTKERENzY0RUJDQ0Y4MjcxQkM4QTQ5NUYyNUY4RDI1NUFGMjk3NzAyODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCFV+CcOJq7YcRCx1yERLvSVak6 bSLZeTle6+hNTcxj+lZKwuOO5fhNIfZebK7LSYsO5uYueHjRQvGkk4RBJF5sv5O+ 15R76+Ork4JPPERRJTESqt/x3j2QkdbI9FtneAdqECy0xrxokUo548hhnyUoZED0 3mTw9FBFiQfwy8HwM57j2rA1+qFxBd0XtiSxIR2g+1xiIHqLE5l+GGbo365gLgiW CkKmpqxRD3HFPCl2voWBxs6+X2hNiiOuyQFrP5bpT5Ay8ZLhbVysO3QApJZ65hrr 75L1qy+w0EgYqjb5HcbED/wo9yFLsRavIyDD53sN61RbvSceozNugd/9dcj9AgMB AAGjggIGMIICAjAdBgNVHQ4EFgQU3XZOvM+CcbyKSV8l+NJVryl3AoQwHwYDVR0j BBgwFoAUyr83Pq3Nk3blJM4xOrhowD7rEIgwDgYDVR0PAQH/BAQDAgeAMG0GA1Ud HwRmMGQwYqBgoF6GXHJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vcGZjbG91 ZC10Z2V3aWVzZS8wL0NBQkYzNzNFQURDRDkzNzZFNTI0Q0UzMTNBQjg2OEMwM0VF QjEwODguY3JsMHMGCCsGAQUFBwEBBGcwZTBjBggrBgEFBQcwAoZXcnN5bmM6Ly9y ZXBvLnJwa2kuc3BhY2UvcmVwby9JbmZpbmlyb3V0ZS8xL0NBQkYzNzNFQURDRDkz NzZFNTI0Q0UzMTNBQjg2OEMwM0VFQjEwODguY2VyMIGNBggrBgEFBQcBCwSBgDB+ MHwGCCsGAQUFBzALhnByc3luYzovL3JlcG8ucnBraS5zcGFjZS9yZXBvL3BmY2xv dWQtdGdld2llc2UvMC8zMjYxMzEzNDNhMzc2MzMwM2EzMTMwMzA2MTNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDM0MzczMjM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqFAfAEAowDQYJ KoZIhvcNAQELBQADggEBAFExoP6FwLpOijoTptkMu92sWyo310DNSP9HHAR1i9GE c3ZDjS67XNkskn6UVaR97QWmOg1xrOZnFUWUJND15Ofmp2QDpTAt8uhuhxzvrQv7 rjBsCHVK7x7xTIvsI0Y3oHwxMhQ2M6NwENmkD5PkPQR2ENHtZfJ9GGOEjyZFqCai WHnWtiMY7Hd0i/Rk2s6FUAh5cBMf68/RBhRQNb3Yd21e14SlRYAsUUJAu78sNSsy cPbOypI9Cu3LtWqwQSaKEahemNw4u2OL90N/xXS8q8OtmCRoJ8+Gy5V0HvejkUGA Az2SDjyFul6lvaSAnUQbcjX1R26fVP36ImrfiJfhtRs= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org