$ rpki-client -vvf repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313031613a3a2f34382d3438203d3e20323134353536.roa File: 326131343a3763303a313031613a3a2f34382d3438203d3e20323134353536.roa (raw, json) Hash identifier: AOR9xuhoPMyVSt4dGpaOA2+G+oEECX6w2BT0l6yHoLc= Subject key identifier: 08:A4:79:3F:9E:AF:F3:87:1D:06:14:9A:AF:BC:D0:8B:7A:3B:E9:92 Certificate issuer: /CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Certificate serial: 1CED231FE99F1185005FDBC47CDA2F89FBE948B2 Authority key identifier: CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject info access: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313031613a3a2f34382d3438203d3e20323134353536.roa Signing time: Thu 27 Mar 2025 13:02:27 +0000 ROA not before: Thu 27 Mar 2025 12:57:27 +0000 ROA not after: Thu 26 Mar 2026 13:02:27 +0000 asID: 214556 IP address blocks: 2a14:7c0:101a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.mft rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 17 Apr 2025 09:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ed:23:1f:e9:9f:11:85:00:5f:db:c4:7c:da:2f:89:fb:e9:48:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Validity Not Before: Mar 27 12:57:27 2025 GMT Not After : Mar 26 13:02:27 2026 GMT Subject: CN=08A4793F9EAFF3871D06149AAFBCD08B7A3BE992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ad:ab:08:bc:a2:0a:05:81:21:37:3c:7e:84: ac:d3:81:68:d6:8b:fc:aa:af:15:e8:fd:f3:32:57: dd:c2:87:12:b1:2c:62:cc:82:af:d1:aa:97:32:71: fa:c3:11:67:d3:94:5a:84:36:4e:cf:f6:71:de:72: d2:5a:96:16:2f:ed:c2:69:f7:6f:cc:1a:8b:96:87: be:0d:3d:f9:97:58:b9:7a:91:c1:20:d1:6d:69:ae: 1e:d1:0b:83:1c:aa:e5:00:b3:fe:5c:4e:47:47:88: 2c:e5:ac:e8:78:6b:76:96:07:14:ec:ab:e3:e6:19: 4b:53:54:28:5a:5a:40:92:0f:f4:e0:b4:6d:67:28: 74:19:21:1a:d1:c0:98:78:13:b4:31:79:41:38:17: fb:12:45:ad:d0:0d:60:c2:20:33:61:79:6d:d5:07: 00:dc:93:1b:1d:5b:96:a2:d8:bb:80:dd:f7:e8:40: b5:f1:ba:9b:f6:aa:47:cc:ca:66:cf:51:e2:e4:24: 32:6c:78:5d:1c:12:8b:b6:f3:a2:af:73:20:6b:90: d7:b4:5c:c9:46:33:d1:0e:08:fc:3f:65:57:d0:eb: 99:ed:4e:0c:27:8f:12:b0:00:5e:fc:00:72:8b:31: 1d:43:67:c8:87:ca:7f:59:e0:62:f7:02:da:56:d5: 3e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A4:79:3F:9E:AF:F3:87:1D:06:14:9A:AF:BC:D0:8B:7A:3B:E9:92 X509v3 Authority Key Identifier: keyid:CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313031613a3a2f34382d3438203d3e20323134353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c0:101a::/48 Signature Algorithm: sha256WithRSAEncryption c9:c5:2e:f0:59:74:37:19:b6:90:53:00:bf:a3:05:26:c2:17: 75:f4:62:c8:1b:ba:cd:03:58:21:6e:29:c6:7b:c7:56:06:6f: 8b:38:25:1b:ff:0f:ce:05:a6:10:60:aa:4f:9c:f2:9e:1d:3e: 97:5b:65:5f:f6:a3:89:8c:57:cd:a5:f7:88:89:7c:a0:67:96: f0:ec:26:e4:d9:8c:99:d5:f6:7f:6b:53:e5:2a:31:5b:d3:dc: ca:71:1c:be:c8:1d:63:88:46:2c:65:62:62:4b:c7:c4:50:6b: f9:a3:aa:74:c4:51:1d:4b:4f:d3:5d:26:6e:1f:9b:83:8e:6b: 5c:b7:97:5c:83:38:9f:ff:7f:80:f6:8b:ac:da:21:94:14:27: 88:2a:bc:b5:65:a7:c3:1b:ef:cb:ee:86:38:b9:89:ce:20:05: c6:7a:4c:1b:95:5b:98:80:dc:43:27:54:be:d1:a5:f7:d0:f3: cd:fd:65:79:af:f0:ba:63:ec:2b:2e:dd:2d:bf:f8:8a:de:6e: 57:2a:73:01:eb:e4:fc:0f:98:54:fb:54:e8:11:71:9e:8b:eb: fe:72:7c:8c:44:15:c0:f3:f5:19:f4:8d:5b:67:cc:82:ee:16: 06:17:90:50:26:e4:84:eb:f7:ee:68:5e:90:4d:a8:3a:4b:1f: 9e:b0:61:09 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUHO0jH+mfEYUAX9vEfNovifvpSLIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FCRjM3M0VBRENEOTM3NkU1MjRDRTMxM0FCODY4QzAz RUVCMTA4ODAeFw0yNTAzMjcxMjU3MjdaFw0yNjAzMjYxMzAyMjdaMDMxMTAvBgNV BAMTKDA4QTQ3OTNGOUVBRkYzODcxRDA2MTQ5QUFGQkNEMDhCN0EzQkU5OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkrasIvKIKBYEhNzx+hKzTgWjW i/yqrxXo/fMyV93ChxKxLGLMgq/RqpcycfrDEWfTlFqENk7P9nHectJalhYv7cJp 92/MGouWh74NPfmXWLl6kcEg0W1prh7RC4McquUAs/5cTkdHiCzlrOh4a3aWBxTs q+PmGUtTVChaWkCSD/TgtG1nKHQZIRrRwJh4E7QxeUE4F/sSRa3QDWDCIDNheW3V BwDckxsdW5ai2LuA3ffoQLXxupv2qkfMymbPUeLkJDJseF0cEou286KvcyBrkNe0 XMlGM9EOCPw/ZVfQ65ntTgwnjxKwAF78AHKLMR1DZ8iHyn9Z4GL3AtpW1T6VAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUCKR5P56v84cdBhSar7zQi3o76ZIwHwYDVR0j BBgwFoAUyr83Pq3Nk3blJM4xOrhowD7rEIgwDgYDVR0PAQH/BAQDAgeAMG0GA1Ud HwRmMGQwYqBgoF6GXHJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vcGZjbG91 ZC10Z2V3aWVzZS8wL0NBQkYzNzNFQURDRDkzNzZFNTI0Q0UzMTNBQjg2OEMwM0VF QjEwODguY3JsMHMGCCsGAQUFBwEBBGcwZTBjBggrBgEFBQcwAoZXcnN5bmM6Ly9y ZXBvLnJwa2kuc3BhY2UvcmVwby9JbmZpbmlyb3V0ZS8xL0NBQkYzNzNFQURDRDkz NzZFNTI0Q0UzMTNBQjg2OEMwM0VFQjEwODguY2VyMIGQBggrBgEFBQcBCwSBgzCB gDB+BggrBgEFBQcwC4ZycnN5bmM6Ly9yZXBvLnJwa2kuc3BhY2UvcmVwby9wZmNs b3VkLXRnZXdpZXNlLzAvMzI2MTMxMzQzYTM3NjMzMDNhMzEzMDMxNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMjMxMzQzNTM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqFAfAEBow DQYJKoZIhvcNAQELBQADggEBAMnFLvBZdDcZtpBTAL+jBSbCF3X0Ysgbus0DWCFu KcZ7x1YGb4s4JRv/D84FphBgqk+c8p4dPpdbZV/2o4mMV82l94iJfKBnlvDsJuTZ jJnV9n9rU+UqMVvT3MpxHL7IHWOIRixlYmJLx8RQa/mjqnTEUR1LT9NdJm4fm4OO a1y3l1yDOJ//f4D2i6zaIZQUJ4gqvLVlp8Mb78vuhji5ic4gBcZ6TBuVW5iA3EMn VL7RpffQ8839ZXmv8Lpj7Csu3S2/+IreblcqcwHr5PwPmFT7VOgRcZ6L6/5yfIxE FcDz9Rn0jVtnzILuFgYXkFAm5ITr9+5oXpBNqDpLH56wYQk= -----END CERTIFICATE-----Generated at Thu Apr 17 02:08:42 2025 by rpki-client