$ rpki-client -vvf rpki.co/repo/John/1/326131323a646434373a646630303a3a2f34342d3434203d3e20323030383739.roa File: 326131323a646434373a646630303a3a2f34342d3434203d3e20323030383739.roa (raw, json) Hash identifier: KVYDkwczvGxWcScRYpzQNd8/2VSEf+YA9t655/zRTds= Subject key identifier: 4B:60:09:99:1D:FE:31:5F:EF:54:5B:2A:0A:5C:86:B8:92:E0:D0:2F Certificate issuer: /CN=9788ACA0CB104D300847BED012FAF8E3269E8A01 Certificate serial: 3B8865241D06CCABED64708AA3B6D491F3F7A619 Authority key identifier: 97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01 Authority info access: rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer Subject info access: rsync://rpki.co/repo/John/1/326131323a646434373a646630303a3a2f34342d3434203d3e20323030383739.roa Signing time: Tue 19 Mar 2024 00:14:27 +0000 ROA not before: Tue 19 Mar 2024 00:09:27 +0000 ROA not after: Tue 18 Mar 2025 00:14:27 +0000 asID: 200879 IP address blocks: 2a12:dd47:df00::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.crl rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.mft rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Apr 2024 14:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:88:65:24:1d:06:cc:ab:ed:64:70:8a:a3:b6:d4:91:f3:f7:a6:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9788ACA0CB104D300847BED012FAF8E3269E8A01 Validity Not Before: Mar 19 00:09:27 2024 GMT Not After : Mar 18 00:14:27 2025 GMT Subject: CN=4B6009991DFE315FEF545B2A0A5C86B892E0D02F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:44:d6:3b:47:98:4b:ea:22:0b:1e:6c:bb:1d: 69:68:9b:ff:b5:1d:00:c6:9e:82:46:f1:82:99:8a: e1:de:75:4e:86:ed:89:00:c0:c6:76:94:ba:d5:bc: eb:17:f6:c2:cb:29:3d:1e:43:f7:9a:75:da:d3:90: f2:41:08:53:9e:88:25:d5:d7:da:56:9c:70:b4:e4: ce:5b:a1:17:81:e3:90:d8:9f:78:7d:cb:2c:99:d7: 60:66:e7:ef:51:aa:2b:a8:94:6d:aa:81:c2:e3:e4: 80:bc:5c:0e:88:30:5d:e2:46:02:55:b3:ec:81:13: 48:f0:2f:d2:f6:43:7e:a0:2f:79:7b:54:de:e6:1e: 39:b5:db:8d:fe:c0:cc:23:45:c5:58:3d:3e:3c:a0: 10:d2:9e:c1:66:d0:89:33:22:2e:82:81:e0:79:67: cd:3d:e4:53:12:8e:d8:f7:96:8b:f8:a1:a2:f4:c6: 56:c4:48:12:7f:b6:b9:3f:70:14:c4:f5:95:98:49: 41:a2:5f:a5:91:94:94:a6:62:c6:bf:1b:8b:d0:69: 98:28:90:7d:54:69:08:36:b1:2c:45:e7:9c:21:6d: 34:f6:c2:da:2d:1f:cc:12:57:78:be:f2:bd:6f:7a: 57:20:c3:25:52:40:4f:ce:33:b0:09:70:08:0e:ff: a0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:60:09:99:1D:FE:31:5F:EF:54:5B:2A:0A:5C:86:B8:92:E0:D0:2F X509v3 Authority Key Identifier: keyid:97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer Subject Information Access: Signed Object - URI:rsync://rpki.co/repo/John/1/326131323a646434373a646630303a3a2f34342d3434203d3e20323030383739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:dd47:df00::/44 Signature Algorithm: sha256WithRSAEncryption 1a:fb:f1:16:73:21:bb:11:72:45:99:ae:1d:00:19:0a:c6:88: da:12:89:2e:68:4f:7f:ce:95:1f:0d:70:2b:6a:c2:b7:03:a4: ed:86:ab:ec:6e:f2:7c:52:46:3e:cd:9b:88:32:b8:43:9c:bc: 7d:be:a4:1f:48:9e:34:08:24:28:37:78:06:86:26:14:5a:72: 8f:c2:c0:da:b8:fb:d9:9f:47:73:dc:f9:e6:c5:c7:94:52:ee: 26:fe:a8:26:2d:fd:83:a9:79:7c:e0:5c:52:9c:5a:9f:08:92: 42:a6:5f:11:64:97:0b:9b:55:d3:21:e8:ea:a9:a9:65:83:d8: c1:67:be:9d:fe:ca:d7:3b:cb:ef:1b:08:a5:0f:b7:13:83:78: 4f:25:53:46:56:75:64:a8:cd:59:87:db:ca:05:12:51:c8:d2: 36:a3:ba:ae:af:82:bd:d5:c6:07:af:f1:55:b9:29:06:28:a0: 90:0a:ae:1f:ee:21:4f:ed:73:53:db:74:38:43:2a:8c:eb:17: d8:86:53:86:f7:a5:f1:5e:b6:1d:42:da:d5:65:11:34:19:f8: f9:da:f6:aa:8a:7f:cc:9c:32:92:95:39:40:61:f5:ad:cc:70: cd:b1:e5:43:71:6e:e8:75:bd:cb:97:0a:5c:a9:f3:4f:6d:e5: ab:41:d5:5e -----BEGIN CERTIFICATE----- MIIEyDCCA7CgAwIBAgIUO4hlJB0GzKvtZHCKo7bUkfP3phkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc4OEFDQTBDQjEwNEQzMDA4NDdCRUQwMTJGQUY4RTMy NjlFOEEwMTAeFw0yNDAzMTkwMDA5MjdaFw0yNTAzMTgwMDE0MjdaMDMxMTAvBgNV BAMTKDRCNjAwOTk5MURGRTMxNUZFRjU0NUIyQTBBNUM4NkI4OTJFMEQwMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXRNY7R5hL6iILHmy7HWlom/+1 HQDGnoJG8YKZiuHedU6G7YkAwMZ2lLrVvOsX9sLLKT0eQ/eaddrTkPJBCFOeiCXV 19pWnHC05M5boReB45DYn3h9yyyZ12Bm5+9RqiuolG2qgcLj5IC8XA6IMF3iRgJV s+yBE0jwL9L2Q36gL3l7VN7mHjm1243+wMwjRcVYPT48oBDSnsFm0IkzIi6CgeB5 Z8095FMSjtj3lov4oaL0xlbESBJ/trk/cBTE9ZWYSUGiX6WRlJSmYsa/G4vQaZgo kH1UaQg2sSxF55whbTT2wtotH8wSV3i+8r1velcgwyVSQE/OM7AJcAgO/6A/AgMB AAGjggHSMIIBzjAdBgNVHQ4EFgQUS2AJmR3+MV/vVFsqClyGuJLg0C8wHwYDVR0j BBgwFoAUl4isoMsQTTAIR77QEvr44yaeigEwDgYDVR0PAQH/BAQDAgeAMFkGA1Ud HwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5jby9yZXBvL0pvaG4vMS85Nzg4QUNB MENCMTA0RDMwMDg0N0JFRDAxMkZBRjhFMzI2OUU4QTAxLmNybDBlBggrBgEFBQcB AQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5jby9yZXBvL0FTOTQ1LzEv OTc4OEFDQTBDQjEwNEQzMDA4NDdCRUQwMTJGQUY4RTMyNjlFOEEwMS5jZXIwfAYI KwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kuY28vcmVwby9K b2huLzEvMzI2MTMxMzIzYTY0NjQzNDM3M2E2NDY2MzAzMDNhM2EyZjM0MzQyZDM0 MzQyMDNkM2UyMDMyMzAzMDM4MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoS3UffADANBgkqhkiG 9w0BAQsFAAOCAQEAGvvxFnMhuxFyRZmuHQAZCsaI2hKJLmhPf86VHw1wK2rCtwOk 7Yar7G7yfFJGPs2biDK4Q5y8fb6kH0ieNAgkKDd4BoYmFFpyj8LA2rj72Z9Hc9z5 5sXHlFLuJv6oJi39g6l5fOBcUpxanwiSQqZfEWSXC5tV0yHo6qmpZYPYwWe+nf7K 1zvL7xsIpQ+3E4N4TyVTRlZ1ZKjNWYfbygUSUcjSNqO6rq+CvdXGB6/xVbkpBiig kAquH+4hT+1zU9t0OEMqjOsX2IZThvel8V62HULa1WURNBn4+dr2qop/zJwykpU5 QGH1rcxwzbHlQ3Fu6HW9y5cKXKnzT23lq0HVXg== -----END CERTIFICATE-----Generated at Thu Apr 25 22:47:08 2024 by rpki-client on console-fra.rpki-client.org