$ rpki-client -vvf repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030333a3a2f34382d3438203d3e20313938353536.roa File: 326131343a3763303a313030333a3a2f34382d3438203d3e20313938353536.roa (raw, json) Hash identifier: QMt8lEyTQwe9SFYUxgs8m22kisYpY/qxUFfV471xlpE= Subject key identifier: 0E:37:D4:22:43:A8:8C:F6:E5:FD:70:B8:AB:03:65:13:6A:6B:01:20 Certificate issuer: /CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Certificate serial: 23E1136E5DC7EBEA80AF5301E5ADC2145A0A599B Authority key identifier: CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject info access: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030333a3a2f34382d3438203d3e20313938353536.roa Signing time: Wed 29 Apr 2026 15:10:20 +0000 ROA not before: Wed 29 Apr 2026 15:05:20 +0000 ROA not after: Wed 28 Apr 2027 15:10:20 +0000 asID: 198556 IP address blocks: 2a14:7c0:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.mft rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 18:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e1:13:6e:5d:c7:eb:ea:80:af:53:01:e5:ad:c2:14:5a:0a:59:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Validity Not Before: Apr 29 15:05:20 2026 GMT Not After : Apr 28 15:10:20 2027 GMT Subject: CN=0E37D42243A88CF6E5FD70B8AB0365136A6B0120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ac:57:4e:61:a4:5a:34:38:60:c4:61:4f:a0: 27:26:ba:49:c5:56:66:8f:86:8d:24:c5:16:01:e8: 73:ed:63:2f:31:5e:1e:5d:38:ef:7a:26:97:f4:33: ae:d0:72:66:de:6b:d3:b0:df:65:3e:5c:2a:1f:fe: e9:fb:ab:26:53:e3:da:b3:99:d3:71:44:2e:16:ed: e3:38:93:80:49:4f:78:5a:b8:be:cf:4a:14:18:e6: d5:e5:be:0d:6e:92:30:ee:e1:19:99:00:02:d1:b9: 3f:c5:1a:da:22:68:20:42:f3:6b:1f:cf:1b:c8:b3: ce:9b:29:91:81:1f:9b:d8:cf:e1:36:97:c9:1c:8c: d2:06:30:31:42:0d:5c:10:72:ba:5b:d5:92:6f:f3: 82:4f:68:95:d2:9a:37:a9:ee:be:bf:30:41:aa:fd: b2:18:55:3f:11:53:4a:1f:c3:d6:f4:6f:88:c4:72: ae:4a:e0:19:15:6a:df:2a:82:14:f6:c8:71:16:2f: 00:42:38:91:54:8b:b5:f1:a5:28:a0:c4:af:08:e6: 00:5d:41:95:88:e4:25:c2:39:a5:f5:9f:6d:a2:fa: 03:04:a6:7c:4b:3a:2d:f1:3c:75:a5:cf:96:81:b7: 69:19:bf:cf:77:1a:5a:bb:0a:7b:da:ee:ca:e9:2e: 43:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:37:D4:22:43:A8:8C:F6:E5:FD:70:B8:AB:03:65:13:6A:6B:01:20 X509v3 Authority Key Identifier: keyid:CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030333a3a2f34382d3438203d3e20313938353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c0:1003::/48 Signature Algorithm: sha256WithRSAEncryption ab:8a:10:88:e3:2a:fd:a8:36:86:ed:f8:95:44:d6:88:4a:73: df:c1:a7:e3:0e:ed:b8:23:7b:37:4d:b6:19:a6:1b:2e:c4:29: ca:c6:ea:9e:e3:b5:1f:57:ab:c8:69:73:b8:6c:3b:5d:fa:de: 84:56:6e:71:29:b7:3f:dc:dc:a0:f8:86:34:dd:28:3d:95:28: 33:c5:b9:17:6f:b6:85:8a:ff:d7:f3:04:84:d3:ed:4e:c8:cc: 0e:d0:81:a3:be:1d:06:8d:64:e3:f9:0a:61:24:64:e2:2c:d0: 16:12:6f:31:1b:b8:a4:44:1d:3f:78:5e:2a:4e:b9:37:4a:5b: 1d:7b:79:63:f5:4d:39:1c:80:38:c7:a6:b1:c5:fa:98:81:6d: 68:22:b0:1d:eb:ec:70:5f:cc:87:9c:3e:fb:36:79:e8:72:a0: ae:f1:a8:e9:61:72:fa:47:46:32:0b:68:01:08:20:dc:f1:a7: 24:09:01:e3:4d:76:a0:95:c4:7c:4b:a8:f7:53:ad:33:8f:ae: 84:d2:6f:28:d1:b4:84:f3:68:6f:b8:3b:da:80:7a:ce:c4:ef: 6b:45:29:99:77:98:02:80:e9:c2:e8:5c:f0:21:91:ed:14:87: 8d:17:c8:5d:e2:8d:16:57:7b:7f:21:64:f9:11:56:2f:ef:ed: e2:cb:91:11 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUI+ETbl3H6+qAr1MB5a3CFFoKWZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FCRjM3M0VBRENEOTM3NkU1MjRDRTMxM0FCODY4QzAz RUVCMTA4ODAeFw0yNjA0MjkxNTA1MjBaFw0yNzA0MjgxNTEwMjBaMDMxMTAvBgNV BAMTKDBFMzdENDIyNDNBODhDRjZFNUZENzBCOEFCMDM2NTEzNkE2QjAxMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCorFdOYaRaNDhgxGFPoCcmuknF VmaPho0kxRYB6HPtYy8xXh5dOO96Jpf0M67Qcmbea9Ow32U+XCof/un7qyZT49qz mdNxRC4W7eM4k4BJT3hauL7PShQY5tXlvg1ukjDu4RmZAALRuT/FGtoiaCBC82sf zxvIs86bKZGBH5vYz+E2l8kcjNIGMDFCDVwQcrpb1ZJv84JPaJXSmjep7r6/MEGq /bIYVT8RU0ofw9b0b4jEcq5K4BkVat8qghT2yHEWLwBCOJFUi7XxpSigxK8I5gBd QZWI5CXCOaX1n22i+gMEpnxLOi3xPHWlz5aBt2kZv893Glq7Cnva7srpLkNfAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUDjfUIkOojPbl/XC4qwNlE2prASAwHwYDVR0j BBgwFoAUyr83Pq3Nk3blJM4xOrhowD7rEIgwDgYDVR0PAQH/BAQDAgeAMG0GA1Ud HwRmMGQwYqBgoF6GXHJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vcGZjbG91 ZC10Z2V3aWVzZS8wL0NBQkYzNzNFQURDRDkzNzZFNTI0Q0UzMTNBQjg2OEMwM0VF QjEwODguY3JsMHMGCCsGAQUFBwEBBGcwZTBjBggrBgEFBQcwAoZXcnN5bmM6Ly9y ZXBvLnJwa2kuc3BhY2UvcmVwby9JbmZpbmlyb3V0ZS8xL0NBQkYzNzNFQURDRDkz NzZFNTI0Q0UzMTNBQjg2OEMwM0VFQjEwODguY2VyMIGQBggrBgEFBQcBCwSBgzCB gDB+BggrBgEFBQcwC4ZycnN5bmM6Ly9yZXBvLnJwa2kuc3BhY2UvcmVwby9wZmNs b3VkLXRnZXdpZXNlLzAvMzI2MTMxMzQzYTM3NjMzMDNhMzEzMDMwMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM5MzgzNTM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqFAfAEAMw DQYJKoZIhvcNAQELBQADggEBAKuKEIjjKv2oNobt+JVE1ohKc9/Bp+MO7bgjezdN thmmGy7EKcrG6p7jtR9Xq8hpc7hsO1363oRWbnEptz/c3KD4hjTdKD2VKDPFuRdv toWK/9fzBITT7U7IzA7QgaO+HQaNZOP5CmEkZOIs0BYSbzEbuKREHT94XipOuTdK Wx17eWP1TTkcgDjHprHF+piBbWgisB3r7HBfzIecPvs2eehyoK7xqOlhcvpHRjIL aAEIINzxpyQJAeNNdqCVxHxLqPdTrTOProTSbyjRtITzaG+4O9qAes7E72tFKZl3 mAKA6cLoXPAhke0Uh40XyF3ijRZXe38hZPkRVi/v7eLLkRE= -----END CERTIFICATE-----Generated at Wed May 13 11:46:51 2026 by rpki-client