$ rpki-client -vvf repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030333a3a2f34382d3438203d3e20323038323038.roa File: 326131343a3763303a313030333a3a2f34382d3438203d3e20323038323038.roa (raw, json) Hash identifier: uvRTeITzG5dnGGKWlNSbP1RgjIMdhit9i0H0cABSxCE= Subject key identifier: 50:7C:C7:11:A0:67:4F:A0:A2:59:A9:71:7C:D6:7B:AB:39:5D:10:6A Certificate issuer: /CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Certificate serial: 351BF703413CCF7FB1F74FDEFC416C99DBA47F8C Authority key identifier: CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 Authority info access: rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject info access: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030333a3a2f34382d3438203d3e20323038323038.roa Signing time: Wed 30 Apr 2025 12:03:05 +0000 ROA not before: Wed 30 Apr 2025 11:58:05 +0000 ROA not after: Wed 29 Apr 2026 12:03:05 +0000 asID: 208208 IP address blocks: 2a14:7c0:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.mft rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.crl rsync://repo.rpki.space/repo/Infiniroute/1/5B8E21C6890BD79AB764D91B60C39C3B7E4985E1.mft rsync://rpki.ripe.net/repository/DEFAULT/W44hxokL15q3ZNkbYMOcO35JheE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 May 2025 15:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:1b:f7:03:41:3c:cf:7f:b1:f7:4f:de:fc:41:6c:99:db:a4:7f:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CABF373EADCD9376E524CE313AB868C03EEB1088 Validity Not Before: Apr 30 11:58:05 2025 GMT Not After : Apr 29 12:03:05 2026 GMT Subject: CN=507CC711A0674FA0A259A9717CD67BAB395D106A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:af:07:db:bb:02:f8:36:3a:e4:73:f1:73:2e: 31:e6:31:d7:16:19:7a:a0:cf:7a:59:b5:3b:6e:de: bb:b5:6f:73:0e:78:19:ba:b6:7e:ca:52:17:a8:1b: 29:ce:c0:f1:11:bc:cc:78:b9:9b:7d:18:70:ca:5d: 6b:49:6e:d9:28:f1:6b:0a:c8:a7:19:27:ef:a1:5b: 47:76:28:35:b2:90:bf:41:7a:d5:36:6b:6f:c1:c1: 1d:c1:ad:cb:d4:52:dc:b8:bc:6f:ed:36:9d:57:77: 2f:75:4d:b0:bd:ca:89:1e:90:fa:4d:15:6d:f7:9e: d9:17:76:ef:49:93:c9:d3:a0:3c:3f:52:e8:af:e5: 0f:a8:42:24:c9:cf:a7:a8:24:46:a7:2a:e3:70:45: 3e:ec:4a:5e:45:34:dc:cb:a4:7a:09:90:fd:df:82: 44:b4:d3:29:bd:0a:18:49:71:92:ec:cf:0a:cf:6d: 69:d0:a1:9a:e4:a6:63:da:8e:22:8d:7b:42:36:89: 74:30:c9:b9:88:f1:f6:f7:6c:8a:84:80:37:bb:07: 01:0c:dc:90:4d:27:3c:43:a1:fe:cf:00:4f:bb:24: 48:c8:7f:09:a4:87:40:33:5a:f4:30:e9:ad:45:6e: 63:b1:25:27:32:18:c1:67:89:f7:52:74:8b:78:06: 0c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:7C:C7:11:A0:67:4F:A0:A2:59:A9:71:7C:D6:7B:AB:39:5D:10:6A X509v3 Authority Key Identifier: keyid:CA:BF:37:3E:AD:CD:93:76:E5:24:CE:31:3A:B8:68:C0:3E:EB:10:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/CABF373EADCD9376E524CE313AB868C03EEB1088.crl Authority Information Access: CA Issuers - URI:rsync://repo.rpki.space/repo/Infiniroute/1/CABF373EADCD9376E524CE313AB868C03EEB1088.cer Subject Information Access: Signed Object - URI:rsync://repo.rpki.space/repo/pfcloud-tgewiese/0/326131343a3763303a313030333a3a2f34382d3438203d3e20323038323038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7c0:1003::/48 Signature Algorithm: sha256WithRSAEncryption 3f:16:c4:b0:d1:45:2e:7d:47:65:5f:1a:a4:0d:47:9d:4d:6e: 8b:3b:7c:46:99:1b:b7:8e:26:46:b9:4d:68:29:83:3c:b7:3e: 08:d7:bf:9d:d1:d3:e3:bf:82:d4:1b:a3:22:c6:46:f2:24:a3: 10:29:ed:93:d8:62:e2:7f:ae:4a:85:4d:69:53:2e:9a:f6:8e: 07:64:89:a2:6f:e6:41:15:83:a9:58:5f:f4:ad:6c:c1:46:7c: 16:74:52:4b:fc:ef:33:53:2e:17:6e:69:6d:99:e1:22:66:df: 82:f0:9f:9e:10:bb:c9:dd:2d:5d:60:a0:02:9f:88:cc:e1:f8: 92:7d:0d:14:5c:50:6f:bb:2a:ee:01:3f:bd:62:22:d6:0d:35: 43:42:50:b0:15:44:7c:16:02:c9:e2:e1:c5:1d:19:c6:61:6f: 06:4b:c9:3d:b9:9a:67:d2:c9:05:9c:47:c4:3f:25:f2:8a:9b: cd:91:6e:80:48:9e:e9:ad:a6:a8:88:8d:de:7c:f2:3d:1f:da: e2:36:77:f9:e5:9c:19:09:7b:93:3a:5c:27:ef:54:26:78:04: 87:bf:e4:7f:f6:ad:38:4e:11:3d:7b:20:fa:4e:2d:3a:e7:e6: 76:31:5e:d4:d2:7a:86:a1:65:ad:19:26:39:58:0b:c3:a7:ce: 60:14:cc:70 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUNRv3A0E8z3+x90/e/EFsmdukf4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0FCRjM3M0VBRENEOTM3NkU1MjRDRTMxM0FCODY4QzAz RUVCMTA4ODAeFw0yNTA0MzAxMTU4MDVaFw0yNjA0MjkxMjAzMDVaMDMxMTAvBgNV BAMTKDUwN0NDNzExQTA2NzRGQTBBMjU5QTk3MTdDRDY3QkFCMzk1RDEwNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCarwfbuwL4Njrkc/FzLjHmMdcW GXqgz3pZtTtu3ru1b3MOeBm6tn7KUheoGynOwPERvMx4uZt9GHDKXWtJbtko8WsK yKcZJ++hW0d2KDWykL9BetU2a2/BwR3BrcvUUty4vG/tNp1Xdy91TbC9yokekPpN FW33ntkXdu9Jk8nToDw/Uuiv5Q+oQiTJz6eoJEanKuNwRT7sSl5FNNzLpHoJkP3f gkS00ym9ChhJcZLszwrPbWnQoZrkpmPajiKNe0I2iXQwybmI8fb3bIqEgDe7BwEM 3JBNJzxDof7PAE+7JEjIfwmkh0AzWvQw6a1FbmOxJScyGMFnifdSdIt4BgxDAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUUHzHEaBnT6CiWalxfNZ7qzldEGowHwYDVR0j BBgwFoAUyr83Pq3Nk3blJM4xOrhowD7rEIgwDgYDVR0PAQH/BAQDAgeAMG0GA1Ud HwRmMGQwYqBgoF6GXHJzeW5jOi8vcmVwby5ycGtpLnNwYWNlL3JlcG8vcGZjbG91 ZC10Z2V3aWVzZS8wL0NBQkYzNzNFQURDRDkzNzZFNTI0Q0UzMTNBQjg2OEMwM0VF QjEwODguY3JsMHMGCCsGAQUFBwEBBGcwZTBjBggrBgEFBQcwAoZXcnN5bmM6Ly9y ZXBvLnJwa2kuc3BhY2UvcmVwby9JbmZpbmlyb3V0ZS8xL0NBQkYzNzNFQURDRDkz NzZFNTI0Q0UzMTNBQjg2OEMwM0VFQjEwODguY2VyMIGQBggrBgEFBQcBCwSBgzCB gDB+BggrBgEFBQcwC4ZycnN5bmM6Ly9yZXBvLnJwa2kuc3BhY2UvcmVwby9wZmNs b3VkLXRnZXdpZXNlLzAvMzI2MTMxMzQzYTM3NjMzMDNhMzEzMDMwMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMjMwMzgzMjMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqFAfAEAMw DQYJKoZIhvcNAQELBQADggEBAD8WxLDRRS59R2VfGqQNR51Nbos7fEaZG7eOJka5 TWgpgzy3PgjXv53R0+O/gtQboyLGRvIkoxAp7ZPYYuJ/rkqFTWlTLpr2jgdkiaJv 5kEVg6lYX/StbMFGfBZ0Ukv87zNTLhduaW2Z4SJm34Lwn54Qu8ndLV1goAKfiMzh +JJ9DRRcUG+7Ku4BP71iItYNNUNCULAVRHwWAsni4cUdGcZhbwZLyT25mmfSyQWc R8Q/JfKKm82RboBInumtpqiIjd588j0f2uI2d/nlnBkJe5M6XCfvVCZ4BIe/5H/2 rThOET17IPpOLTrn5nYxXtTSeoahZa0ZJjlYC8OnzmAUzHA= -----END CERTIFICATE-----Generated at Sat May 10 01:04:54 2025 by rpki-client