$ rpki-client -vvf rpki.co/repo/Riffi/1/326131323a646434373a383034363a3a2f34382d3438203d3e20323033383638.roa File: 326131323a646434373a383034363a3a2f34382d3438203d3e20323033383638.roa (raw, json) Hash identifier: MdG006U9XMVs0Es14dboXJTTa9RiLlXJi+CaxjNbadE= Subject key identifier: 59:15:E3:C7:A5:1A:C1:2C:1D:A0:FC:18:DE:5F:A4:F0:75:3A:21:92 Certificate issuer: /CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136 Certificate serial: 1124D58D911D9DAF40C2CCE8751CC270EF7DCA57 Authority key identifier: A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36 Authority info access: rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer Subject info access: rsync://rpki.co/repo/Riffi/1/326131323a646434373a383034363a3a2f34382d3438203d3e20323033383638.roa Signing time: Thu 14 Mar 2024 08:14:05 +0000 ROA not before: Thu 14 Mar 2024 08:09:05 +0000 ROA not after: Thu 13 Mar 2025 08:14:05 +0000 asID: 203868 IP address blocks: 2a12:dd47:8046::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.crl rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.mft rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Apr 2024 14:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:24:d5:8d:91:1d:9d:af:40:c2:cc:e8:75:1c:c2:70:ef:7d:ca:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136 Validity Not Before: Mar 14 08:09:05 2024 GMT Not After : Mar 13 08:14:05 2025 GMT Subject: CN=5915E3C7A51AC12C1DA0FC18DE5FA4F0753A2192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a4:c0:ee:17:22:5c:6a:29:1d:b3:98:49:b8: ec:15:c4:2f:e1:dd:2b:49:8b:ca:57:83:60:41:54: fb:a0:27:53:2d:77:d8:4e:31:ec:57:4d:b1:79:d8: c5:e0:df:c6:81:ee:46:f0:b3:af:64:90:4a:55:d7: 70:43:ee:e4:42:40:37:a2:4b:b3:db:51:e6:87:ac: 3d:e7:e6:8b:48:96:45:b7:0a:f5:ef:4b:e1:af:de: 2e:3a:4f:93:50:b2:1f:33:5e:ed:5e:1c:f4:dc:e1: 9d:ad:57:df:65:46:5e:41:94:bc:4e:61:dd:07:3f: 1a:57:ab:34:f5:9f:f5:f3:dc:6b:e7:01:b7:24:0d: a8:7e:01:d2:a1:81:f0:dc:dc:1d:f7:19:1d:b4:c4: 20:d8:c2:6b:ed:51:8c:c3:f6:66:ba:83:2b:2f:4e: 80:68:f3:7a:2e:49:9b:a0:54:99:e6:aa:4e:02:78: 88:28:71:05:56:95:53:65:35:88:87:de:dc:24:be: a5:eb:36:35:2d:87:3e:f3:9d:1e:27:45:05:a9:c0: b2:7e:cb:96:14:0b:12:41:0c:f5:d1:11:1d:37:88: 65:cc:ca:98:e8:60:4e:35:a4:80:83:d5:58:49:12: f4:11:22:23:77:d8:a9:f5:73:b1:c8:b8:24:01:3a: a6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:15:E3:C7:A5:1A:C1:2C:1D:A0:FC:18:DE:5F:A4:F0:75:3A:21:92 X509v3 Authority Key Identifier: keyid:A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.crl Authority Information Access: CA Issuers - URI:rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer Subject Information Access: Signed Object - URI:rsync://rpki.co/repo/Riffi/1/326131323a646434373a383034363a3a2f34382d3438203d3e20323033383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:dd47:8046::/48 Signature Algorithm: sha256WithRSAEncryption cd:68:91:61:b0:e5:b7:fe:2f:cf:19:54:5d:d9:6d:1d:45:62: ff:92:d8:a7:ff:62:f4:75:c6:ab:4b:df:4a:87:4c:0a:e8:00: b8:8e:32:40:44:0a:2d:64:fe:f7:6b:be:4c:b5:93:eb:f8:d2: 4f:92:e0:0a:5e:9f:10:b9:be:98:1d:0d:ef:7e:fa:6d:cc:fd: 77:9c:4b:4c:b5:74:7f:a6:7f:fa:ac:2b:fa:e6:f6:c9:1e:af: 20:41:21:bf:4b:f1:9a:94:56:b6:2f:7d:3e:f2:97:e0:9f:2c: c4:41:e6:d6:7f:2d:35:7e:51:00:48:98:53:8e:24:09:71:ee: bc:49:31:fe:28:c3:b2:5d:11:1d:bd:72:4c:b6:db:3e:87:20: f4:5b:d6:b6:92:6e:6c:c8:9e:ec:1b:99:8b:97:2d:07:b1:7c: 7e:0d:15:4e:5d:c1:89:e8:38:55:b1:84:a0:00:d2:3b:20:8e: 0e:65:62:c0:19:f0:97:d3:0b:73:66:d6:ad:c7:f3:2b:43:a3: d2:33:f3:65:2b:05:53:98:b3:d8:25:3c:9b:86:22:e3:56:0c: c9:0d:a8:ae:ea:a7:11:e5:d8:53:f4:e3:b3:1e:aa:81:ab:e0: 91:10:86:aa:50:3d:ed:f6:c2:d3:66:44:17:d6:7a:13:5f:a0: 89:5a:e4:9a -----BEGIN CERTIFICATE----- MIIEyjCCA7KgAwIBAgIUESTVjZEdna9AwszodRzCcO99ylcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdEQkRERTQ1QjlCRUQ5QzE3Q0IyMEYyQUUyOUVDNzAz Qzg2QTEzNjAeFw0yNDAzMTQwODA5MDVaFw0yNTAzMTMwODE0MDVaMDMxMTAvBgNV BAMTKDU5MTVFM0M3QTUxQUMxMkMxREEwRkMxOERFNUZBNEYwNzUzQTIxOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxpMDuFyJcaikds5hJuOwVxC/h 3StJi8pXg2BBVPugJ1Mtd9hOMexXTbF52MXg38aB7kbws69kkEpV13BD7uRCQDei S7PbUeaHrD3n5otIlkW3CvXvS+Gv3i46T5NQsh8zXu1eHPTc4Z2tV99lRl5BlLxO Yd0HPxpXqzT1n/Xz3GvnAbckDah+AdKhgfDc3B33GR20xCDYwmvtUYzD9ma6gysv ToBo83ouSZugVJnmqk4CeIgocQVWlVNlNYiH3twkvqXrNjUthz7znR4nRQWpwLJ+ y5YUCxJBDPXRER03iGXMypjoYE41pICD1VhJEvQRIiN32Kn1c7HIuCQBOqZRAgMB AAGjggHUMIIB0DAdBgNVHQ4EFgQUWRXjx6UawSwdoPwY3l+k8HU6IZIwHwYDVR0j BBgwFoAUp9vd5Fub7ZwXyyDyrinscDyGoTYwDgYDVR0PAQH/BAQDAgeAMFoGA1Ud HwRTMFEwT6BNoEuGSXJzeW5jOi8vcnBraS5jby9yZXBvL1JpZmZpLzEvQTdEQkRE RTQ1QjlCRUQ5QzE3Q0IyMEYyQUUyOUVDNzAzQzg2QTEzNi5jcmwwZQYIKwYBBQUH AQEEWTBXMFUGCCsGAQUFBzAChklyc3luYzovL3Jwa2kuY28vcmVwby9BUzk0NS8x L0E3REJEREU0NUI5QkVEOUMxN0NCMjBGMkFFMjlFQzcwM0M4NkExMzYuY2VyMH0G CCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5bmM6Ly9ycGtpLmNvL3JlcG8v UmlmZmkvMS8zMjYxMzEzMjNhNjQ2NDM0MzczYTM4MzAzNDM2M2EzYTJmMzQzODJk MzQzODIwM2QzZTIwMzIzMDMzMzgzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhLdR4BGMA0GCSqG SIb3DQEBCwUAA4IBAQDNaJFhsOW3/i/PGVRd2W0dRWL/ktin/2L0dcarS99Kh0wK 6AC4jjJARAotZP73a75MtZPr+NJPkuAKXp8Qub6YHQ3vfvptzP13nEtMtXR/pn/6 rCv65vbJHq8gQSG/S/GalFa2L30+8pfgnyzEQebWfy01flEASJhTjiQJce68STH+ KMOyXREdvXJMtts+hyD0W9a2km5syJ7sG5mLly0HsXx+DRVOXcGJ6DhVsYSgANI7 II4OZWLAGfCX0wtzZtatx/MrQ6PSM/NlKwVTmLPYJTybhiLjVgzJDaiu6qcR5dhT 9OOzHqqBq+CREIaqUD3t9sLTZkQX1noTX6CJWuSa -----END CERTIFICATE-----Generated at Thu Apr 25 20:39:35 2024 by rpki-client on console-fra.rpki-client.org