$ rpki-client -vvf rpki.co/repo/John/1/326131323a646434373a336530313a3a2f34382d3438203d3e20313939363736.roa File: 326131323a646434373a336530313a3a2f34382d3438203d3e20313939363736.roa (raw, json) Hash identifier: Mx4gEtDkz+Jj82Ih+Qzf8gLip+YL0eQ+19sspWT8P/w= Subject key identifier: B4:11:36:D6:4F:C0:F9:23:69:FC:4E:50:15:EF:55:FD:91:3C:1B:8A Certificate issuer: /CN=9788ACA0CB104D300847BED012FAF8E3269E8A01 Certificate serial: 1BA59DAAE33D0EEC494EAF69BA22433A54A212A6 Authority key identifier: 97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01 Authority info access: rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer Subject info access: rsync://rpki.co/repo/John/1/326131323a646434373a336530313a3a2f34382d3438203d3e20313939363736.roa Signing time: Sat 23 Mar 2024 15:14:33 +0000 ROA not before: Sat 23 Mar 2024 15:09:33 +0000 ROA not after: Sat 22 Mar 2025 15:14:33 +0000 asID: 199676 IP address blocks: 2a12:dd47:3e01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.crl rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.mft rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 19:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a5:9d:aa:e3:3d:0e:ec:49:4e:af:69:ba:22:43:3a:54:a2:12:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9788ACA0CB104D300847BED012FAF8E3269E8A01 Validity Not Before: Mar 23 15:09:33 2024 GMT Not After : Mar 22 15:14:33 2025 GMT Subject: CN=B41136D64FC0F92369FC4E5015EF55FD913C1B8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:56:14:99:49:c8:d6:c6:2f:d7:f3:21:ac:fd: 3f:e4:be:53:37:dc:cd:33:ad:d2:22:de:5c:a5:7d: 5c:64:37:dd:1f:ba:22:b8:f8:47:78:f9:f8:51:31: ef:0a:c8:a4:70:02:8f:01:08:40:54:14:ed:d4:7d: 52:63:a0:68:3e:ac:c6:b9:f2:74:17:d4:b4:a4:fa: 0a:16:38:1b:55:c8:cd:d6:29:96:6f:2f:d8:bb:85: 1c:e6:d2:fd:ac:9b:aa:8a:dd:4d:93:d2:9b:60:b0: 24:17:f8:e9:82:90:f9:c2:06:5b:36:29:00:16:5a: 69:5a:1f:a0:93:3c:7f:1f:fe:29:71:c4:b7:76:a4: f6:82:94:45:ae:56:d7:bd:80:ae:7c:13:e8:a6:68: cf:d6:de:26:2c:10:76:4d:41:51:11:7c:6c:34:c8: 26:61:6a:91:23:28:7a:8f:9a:84:95:d0:4d:89:5c: 04:ed:eb:56:74:ab:ed:df:0d:02:5f:7e:76:59:f2: 4c:28:bf:f3:a1:a3:9a:1c:d3:1c:d8:6f:50:56:dd: 52:42:fc:e4:75:9e:eb:7d:ba:06:c3:93:93:ce:39: 40:5e:9b:58:a0:72:d0:5e:e9:8c:11:e6:6f:90:46: f4:23:e1:97:26:d5:4c:c8:7c:c9:e5:f4:6e:a1:80: 96:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:11:36:D6:4F:C0:F9:23:69:FC:4E:50:15:EF:55:FD:91:3C:1B:8A X509v3 Authority Key Identifier: keyid:97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer Subject Information Access: Signed Object - URI:rsync://rpki.co/repo/John/1/326131323a646434373a336530313a3a2f34382d3438203d3e20313939363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:dd47:3e01::/48 Signature Algorithm: sha256WithRSAEncryption 0a:07:bc:4c:52:ac:48:c0:94:12:33:6d:f6:e4:d3:e2:0e:8d: 58:8c:63:c7:ee:34:13:c0:1a:f6:76:3b:3b:4a:eb:86:02:d6: 6b:4e:7b:e7:93:78:6e:b8:fd:81:27:2c:04:1f:4d:95:14:37: a8:31:db:34:1b:ba:63:23:fe:9e:ed:0f:1c:36:51:90:de:a8: 42:58:f6:02:d7:6d:c0:00:0b:d2:3b:6b:ff:25:9d:b8:52:ab: 9a:60:89:3b:5f:ad:bb:22:9b:fd:be:85:09:c8:06:ca:55:fc: 11:bc:3b:e2:53:87:66:a5:9f:2f:1a:d2:66:ce:12:ed:ab:fe: 62:bd:4d:f4:c8:6e:b8:f9:4d:1b:89:9f:33:a3:12:12:71:10: 06:ff:32:b6:d4:58:31:83:d4:07:69:99:39:87:48:7e:14:ab: 2a:8c:87:23:b0:94:a6:c8:9c:00:36:90:99:f8:8f:40:b8:27: a3:2d:17:ec:e2:43:f6:1e:6a:2e:10:97:95:ab:f7:39:7a:c6: a5:02:7c:9a:32:08:f9:d1:5a:4e:6f:78:21:1c:ef:f3:c0:3c: 9b:85:5a:07:20:e5:41:b6:ec:3d:71:c0:7f:bb:a3:54:58:86: 73:04:cb:9c:ba:aa:b4:8d:8d:da:12:9b:e6:6a:da:ec:c3:76: 56:f1:22:48 -----BEGIN CERTIFICATE----- MIIEyDCCA7CgAwIBAgIUG6WdquM9DuxJTq9puiJDOlSiEqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc4OEFDQTBDQjEwNEQzMDA4NDdCRUQwMTJGQUY4RTMy NjlFOEEwMTAeFw0yNDAzMjMxNTA5MzNaFw0yNTAzMjIxNTE0MzNaMDMxMTAvBgNV BAMTKEI0MTEzNkQ2NEZDMEY5MjM2OUZDNEU1MDE1RUY1NUZEOTEzQzFCOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSVhSZScjWxi/X8yGs/T/kvlM3 3M0zrdIi3lylfVxkN90fuiK4+Ed4+fhRMe8KyKRwAo8BCEBUFO3UfVJjoGg+rMa5 8nQX1LSk+goWOBtVyM3WKZZvL9i7hRzm0v2sm6qK3U2T0ptgsCQX+OmCkPnCBls2 KQAWWmlaH6CTPH8f/ilxxLd2pPaClEWuVte9gK58E+imaM/W3iYsEHZNQVERfGw0 yCZhapEjKHqPmoSV0E2JXATt61Z0q+3fDQJffnZZ8kwov/Oho5oc0xzYb1BW3VJC /OR1nut9ugbDk5POOUBem1igctBe6YwR5m+QRvQj4Zcm1UzIfMnl9G6hgJbhAgMB AAGjggHSMIIBzjAdBgNVHQ4EFgQUtBE21k/A+SNp/E5QFe9V/ZE8G4owHwYDVR0j BBgwFoAUl4isoMsQTTAIR77QEvr44yaeigEwDgYDVR0PAQH/BAQDAgeAMFkGA1Ud HwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5jby9yZXBvL0pvaG4vMS85Nzg4QUNB MENCMTA0RDMwMDg0N0JFRDAxMkZBRjhFMzI2OUU4QTAxLmNybDBlBggrBgEFBQcB AQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5jby9yZXBvL0FTOTQ1LzEv OTc4OEFDQTBDQjEwNEQzMDA4NDdCRUQwMTJGQUY4RTMyNjlFOEEwMS5jZXIwfAYI KwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kuY28vcmVwby9K b2huLzEvMzI2MTMxMzIzYTY0NjQzNDM3M2EzMzY1MzAzMTNhM2EyZjM0MzgyZDM0 MzgyMDNkM2UyMDMxMzkzOTM2MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoS3Uc+ATANBgkqhkiG 9w0BAQsFAAOCAQEACge8TFKsSMCUEjNt9uTT4g6NWIxjx+40E8Aa9nY7O0rrhgLW a05755N4brj9gScsBB9NlRQ3qDHbNBu6YyP+nu0PHDZRkN6oQlj2AtdtwAAL0jtr /yWduFKrmmCJO1+tuyKb/b6FCcgGylX8Ebw74lOHZqWfLxrSZs4S7av+Yr1N9Mhu uPlNG4mfM6MSEnEQBv8yttRYMYPUB2mZOYdIfhSrKoyHI7CUpsicADaQmfiPQLgn oy0X7OJD9h5qLhCXlav3OXrGpQJ8mjII+dFaTm94IRzv88A8m4VaByDlQbbsPXHA f7ujVFiGcwTLnLqqtI2N2hKb5mra7MN2VvEiSA== -----END CERTIFICATE-----Generated at Sat May 18 09:48:27 2024 by rpki-client on console-ams.rpki-client.org