$ rpki-client -vvf rpki.co/repo/Riffi/1/326131323a646434373a383730303a3a2f34302d3438203d3e20323030353739.roa File: 326131323a646434373a383730303a3a2f34302d3438203d3e20323030353739.roa (raw, json) Hash identifier: bA06CE3m+H4aHFX2WXenKHmw/SzpPD+u6iEecnkhEcQ= Subject key identifier: 00:22:E2:6F:BC:5A:97:55:8C:5D:83:2B:37:6D:B3:0B:A0:6B:E5:A6 Certificate issuer: /CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136 Certificate serial: 0C5E8C8C65F29EB813BFA6E710C5E7E0B330732F Authority key identifier: A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36 Authority info access: rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer Subject info access: rsync://rpki.co/repo/Riffi/1/326131323a646434373a383730303a3a2f34302d3438203d3e20323030353739.roa Signing time: Thu 14 Mar 2024 08:14:05 +0000 ROA not before: Thu 14 Mar 2024 08:09:05 +0000 ROA not after: Thu 13 Mar 2025 08:14:05 +0000 asID: 200579 IP address blocks: 2a12:dd47:8700::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.crl rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.mft rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 04 May 2024 20:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:5e:8c:8c:65:f2:9e:b8:13:bf:a6:e7:10:c5:e7:e0:b3:30:73:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136 Validity Not Before: Mar 14 08:09:05 2024 GMT Not After : Mar 13 08:14:05 2025 GMT Subject: CN=0022E26FBC5A97558C5D832B376DB30BA06BE5A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7f:92:78:0e:e4:4d:bf:1c:ad:59:fd:2f:f8: 4a:3d:b2:0a:19:d7:4f:8b:12:7a:e0:6a:75:a3:09: d4:fa:b0:73:83:1d:33:bf:83:93:5e:23:bb:7e:ce: 67:ef:58:b4:da:8e:6f:b9:f5:7e:94:36:9f:ac:52: bc:68:61:93:76:4e:b5:1b:35:87:97:43:da:df:58: 52:00:82:4b:28:f3:b5:b2:c0:42:b8:72:dd:0c:81: c5:0a:30:c1:d9:bd:43:d9:c8:9c:90:37:5f:6d:fe: d0:ed:04:24:75:39:19:10:23:c3:3f:31:07:88:d7: fe:9b:c3:e9:e9:1e:6f:d4:5f:5a:7f:99:81:f6:df: 37:f5:c4:06:cb:e5:44:18:a1:d3:c0:b0:8a:c5:04: a3:bd:72:89:b5:e6:49:52:e5:2d:83:69:94:e2:f1: 2f:67:eb:b9:f5:22:41:fa:20:64:6e:8b:22:fc:6d: c2:26:97:06:1e:52:31:b6:5e:c3:4a:f1:e6:cc:b9: 36:6c:c2:47:90:5b:5e:22:45:fc:26:ea:f8:46:61: a6:6c:03:31:f6:38:09:fb:5a:df:6f:e1:b9:cd:91: 16:aa:43:48:1c:a3:11:96:94:c2:b5:bb:b6:43:b3: 93:bd:fc:b3:91:87:40:d0:3c:ac:ca:48:ca:2f:3f: 53:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:22:E2:6F:BC:5A:97:55:8C:5D:83:2B:37:6D:B3:0B:A0:6B:E5:A6 X509v3 Authority Key Identifier: keyid:A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.crl Authority Information Access: CA Issuers - URI:rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer Subject Information Access: Signed Object - URI:rsync://rpki.co/repo/Riffi/1/326131323a646434373a383730303a3a2f34302d3438203d3e20323030353739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:dd47:8700::/40 Signature Algorithm: sha256WithRSAEncryption ca:11:72:2e:fe:ad:2e:f9:fc:1b:49:40:8d:08:41:f2:5a:e1: bf:a7:fa:fa:c8:b5:d8:d4:aa:81:fb:d2:8c:62:90:6b:55:f2: 62:5a:d2:b6:e8:e9:b0:98:e6:cd:1a:b5:a0:8e:d4:fa:8b:10: a9:5c:aa:2e:06:75:50:87:47:71:87:14:41:fb:3a:61:a2:d5: 0e:db:2d:8d:1a:0a:73:64:d3:9a:eb:ac:44:cf:19:04:34:99: 9c:12:f3:5b:bf:ae:a8:04:14:e9:e8:2d:40:c1:26:26:4c:b9: 00:ff:27:ff:49:bc:53:fa:f3:ab:8b:c7:c4:fa:42:bf:42:3f: 3b:b4:18:76:09:bb:9f:73:3a:a2:23:e4:6d:f7:de:eb:0b:bf: a2:38:ee:4c:3a:fa:b8:d6:21:75:bd:86:a2:d4:8a:46:7f:8c: 42:b3:d9:bb:45:d8:e4:47:9f:a7:6a:81:4b:45:a3:b4:0c:e6: 2f:3d:67:a4:cc:54:ae:c2:45:8b:f3:8b:49:0c:88:4a:91:d5: 6e:a5:9c:59:c4:3e:d1:93:b2:b4:4d:d7:aa:f4:4a:3b:6c:67: c9:d6:c6:9a:78:82:6b:cc:f5:01:9f:a3:71:4c:ab:8b:45:19: 41:77:1f:e0:7f:37:f8:35:4a:c8:ff:e4:82:6a:64:d9:1c:e5: b9:ce:cc:b5 -----BEGIN CERTIFICATE----- MIIEyTCCA7GgAwIBAgIUDF6MjGXynrgTv6bnEMXn4LMwcy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdEQkRERTQ1QjlCRUQ5QzE3Q0IyMEYyQUUyOUVDNzAz Qzg2QTEzNjAeFw0yNDAzMTQwODA5MDVaFw0yNTAzMTMwODE0MDVaMDMxMTAvBgNV BAMTKDAwMjJFMjZGQkM1QTk3NTU4QzVEODMyQjM3NkRCMzBCQTA2QkU1QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZf5J4DuRNvxytWf0v+Eo9sgoZ 10+LEnrganWjCdT6sHODHTO/g5NeI7t+zmfvWLTajm+59X6UNp+sUrxoYZN2TrUb NYeXQ9rfWFIAgkso87WywEK4ct0MgcUKMMHZvUPZyJyQN19t/tDtBCR1ORkQI8M/ MQeI1/6bw+npHm/UX1p/mYH23zf1xAbL5UQYodPAsIrFBKO9com15klS5S2DaZTi 8S9n67n1IkH6IGRuiyL8bcImlwYeUjG2XsNK8ebMuTZswkeQW14iRfwm6vhGYaZs AzH2OAn7Wt9v4bnNkRaqQ0gcoxGWlMK1u7ZDs5O9/LORh0DQPKzKSMovP1OBAgMB AAGjggHTMIIBzzAdBgNVHQ4EFgQUACLib7xal1WMXYMrN22zC6Br5aYwHwYDVR0j BBgwFoAUp9vd5Fub7ZwXyyDyrinscDyGoTYwDgYDVR0PAQH/BAQDAgeAMFoGA1Ud HwRTMFEwT6BNoEuGSXJzeW5jOi8vcnBraS5jby9yZXBvL1JpZmZpLzEvQTdEQkRE RTQ1QjlCRUQ5QzE3Q0IyMEYyQUUyOUVDNzAzQzg2QTEzNi5jcmwwZQYIKwYBBQUH AQEEWTBXMFUGCCsGAQUFBzAChklyc3luYzovL3Jwa2kuY28vcmVwby9BUzk0NS8x L0E3REJEREU0NUI5QkVEOUMxN0NCMjBGMkFFMjlFQzcwM0M4NkExMzYuY2VyMH0G CCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5bmM6Ly9ycGtpLmNvL3JlcG8v UmlmZmkvMS8zMjYxMzEzMjNhNjQ2NDM0MzczYTM4MzczMDMwM2EzYTJmMzQzMDJk MzQzODIwM2QzZTIwMzIzMDMwMzUzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhLdR4cwDQYJKoZI hvcNAQELBQADggEBAMoRci7+rS75/BtJQI0IQfJa4b+n+vrItdjUqoH70oxikGtV 8mJa0rbo6bCY5s0ataCO1PqLEKlcqi4GdVCHR3GHFEH7OmGi1Q7bLY0aCnNk05rr rETPGQQ0mZwS81u/rqgEFOnoLUDBJiZMuQD/J/9JvFP686uLx8T6Qr9CPzu0GHYJ u59zOqIj5G333usLv6I47kw6+rjWIXW9hqLUikZ/jEKz2btF2ORHn6dqgUtFo7QM 5i89Z6TMVK7CRYvzi0kMiEqR1W6lnFnEPtGTsrRN16r0SjtsZ8nWxpp4gmvM9QGf o3FMq4tFGUF3H+B/N/g1Ssj/5IJqZNkc5bnOzLU= -----END CERTIFICATE-----Generated at Sat May 4 02:11:46 2024 by rpki-client on console-ams.rpki-client.org