$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS1004.roa File: AS1004.roa (raw, json) Hash identifier: Zt27qijy4nzH7+f3V3Yrx393jYym7DSlSW5TUk6ipuI= Subject key identifier: 31:4F:8C:F1:15:C2:7A:A3:0F:6E:C2:A0:7C:7C:4A:8F:FB:C8:85:20 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 27F58F55337A95F6F30D0322AED4494ED35D1A9C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS1004.roa Signing time: Sun 06 Oct 2024 04:45:11 +0000 ROA not before: Sun 06 Oct 2024 04:40:11 +0000 ROA not after: Sun 05 Oct 2025 04:45:11 +0000 asID: 1004 IP address blocks: 2a0a:6040:4d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f5:8f:55:33:7a:95:f6:f3:0d:03:22:ae:d4:49:4e:d3:5d:1a:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:11 2024 GMT Not After : Oct 5 04:45:11 2025 GMT Subject: CN=314F8CF115C27AA30F6EC2A07C7C4A8FFBC88520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:83:2c:70:a8:ba:ce:7c:7d:51:b9:fd:1a:41: 0a:69:4e:47:cc:84:44:6f:0a:4a:98:54:a4:b1:e7: b1:37:e0:ee:04:78:71:97:77:79:bd:6c:c9:4b:a7: a7:fc:b0:b6:d4:0c:d0:8f:1a:0d:d1:25:ed:ad:21: e0:ab:46:d1:83:15:34:6e:19:99:4f:24:04:af:0e: b5:61:2b:2b:cb:ce:67:dd:53:13:2a:39:57:9f:0f: c9:28:e7:74:17:89:bf:17:7e:07:81:d3:5f:a1:0b: ef:85:3b:a2:59:70:a1:ed:98:5a:c1:ae:d5:83:86: b9:eb:20:f2:26:0a:90:67:de:2a:eb:8d:d4:71:25: 70:f4:64:0a:b3:51:7b:20:19:3b:68:ec:37:a9:9f: 9b:fd:6e:a7:af:e9:0a:64:a7:fe:83:ad:42:00:41: 8f:8e:29:82:da:2d:dc:1c:7e:6c:22:08:e9:b4:bb: 8d:6e:44:42:2b:db:2d:fe:c6:15:7b:07:b5:2d:fa: 16:7a:40:12:c8:ce:54:3e:d0:72:ba:43:39:a7:26: 31:78:71:7f:ab:b5:63:28:f8:f6:97:9e:60:d4:f6: b0:17:76:43:75:10:65:02:b3:5b:0c:0d:f7:18:82: 77:fb:10:99:87:96:9c:4c:46:44:89:40:2b:36:ec: 30:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:4F:8C:F1:15:C2:7A:A3:0F:6E:C2:A0:7C:7C:4A:8F:FB:C8:85:20 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS1004.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4d00::/40 Signature Algorithm: sha256WithRSAEncryption 63:d2:93:00:c2:55:af:88:2b:b8:30:0e:5f:40:64:b6:9b:30: 92:ed:51:98:a5:da:ed:8b:1b:39:b1:98:0c:b8:be:3d:ea:8d: b6:f0:e4:4a:59:0c:39:44:4a:0a:63:dd:03:58:a9:cd:5f:08: b3:c0:52:d7:69:7c:9f:6e:2c:ca:52:e8:4e:37:58:ef:58:d4: e0:7a:cd:73:99:41:91:ef:5f:b6:72:1c:91:26:66:c6:52:32: ef:21:2a:6f:27:05:63:51:a0:11:65:21:0a:f4:39:99:dc:85: 60:3a:94:3b:8e:45:df:72:d8:b0:93:92:9e:1c:bd:23:52:1f: 10:46:fe:4e:63:3b:e5:78:79:78:65:fb:43:99:84:dd:9e:9f: 74:d1:4d:6e:9c:ce:88:10:68:2c:d8:c1:c9:91:a8:fe:be:43: 27:d4:9c:1d:55:6e:68:b8:8a:40:b2:8e:a9:96:9c:31:36:42: 31:b1:ec:0b:cd:a4:a2:c9:9f:7d:8b:d4:4f:83:d2:37:8d:c8: ca:82:2f:da:f1:99:07:8b:17:c7:99:f3:c3:28:22:20:56:da: 9d:51:63:a0:7e:9a:47:19:03:72:0a:71:e0:5f:d0:d4:7e:e1: d7:c4:41:da:6d:cc:41:a6:f2:f6:d7:21:68:65:8a:b4:fe:4f: fd:b8:79:12 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUJ/WPVTN6lfbzDQMirtRJTtNdGpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTFaFw0yNTEwMDUwNDQ1MTFaMDMxMTAvBgNV BAMTKDMxNEY4Q0YxMTVDMjdBQTMwRjZFQzJBMDdDN0M0QThGRkJDODg1MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHgyxwqLrOfH1Ruf0aQQppTkfM hERvCkqYVKSx57E34O4EeHGXd3m9bMlLp6f8sLbUDNCPGg3RJe2tIeCrRtGDFTRu GZlPJASvDrVhKyvLzmfdUxMqOVefD8ko53QXib8XfgeB01+hC++FO6JZcKHtmFrB rtWDhrnrIPImCpBn3irrjdRxJXD0ZAqzUXsgGTto7Depn5v9bqev6Qpkp/6DrUIA QY+OKYLaLdwcfmwiCOm0u41uREIr2y3+xhV7B7Ut+hZ6QBLIzlQ+0HK6QzmnJjF4 cX+rtWMo+PaXnmDU9rAXdkN1EGUCs1sMDfcYgnf7EJmHlpxMRkSJQCs27DCjAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUMU+M8RXCeqMPbsKgfHxKj/vIhSAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWAYIKwYBBQUHAQsETDBKMEgGCCsGAQUFBzALhjxy c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTAwNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoKYEBNMA0GCSqGSIb3DQEBCwUAA4IBAQBj0pMA wlWviCu4MA5fQGS2mzCS7VGYpdrtixs5sZgMuL496o228ORKWQw5REoKY90DWKnN XwizwFLXaXyfbizKUuhON1jvWNTges1zmUGR71+2chyRJmbGUjLvISpvJwVjUaAR ZSEK9DmZ3IVgOpQ7jkXfctiwk5KeHL0jUh8QRv5OYzvleHl4ZftDmYTdnp900U1u nM6IEGgs2MHJkaj+vkMn1JwdVW5ouIpAso6plpwxNkIxsewLzaSiyZ99i9RPg9I3 jcjKgi/a8ZkHixfHmfPDKCIgVtqdUWOgfppHGQNyCnHgX9DUfuHXxEHabcxBpvL2 1yFoZYq0/k/9uHkS -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org