$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS1004.roa File: AS1004.roa (raw, json) Hash identifier: hsW9QZ3DsmDyunDJ1zxSbmlirHUN/B42lq5Uk7XcJyY= Subject key identifier: C6:A2:DC:FE:F8:9F:4D:F8:99:3B:76:1A:5A:E0:DD:51:D3:12:F8:A2 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0FABF18DFD1098793380171CE34AAE04ED8BCD94 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS1004.roa Signing time: Sun 05 Nov 2023 04:07:18 +0000 ROA not before: Sun 05 Nov 2023 04:02:18 +0000 ROA not after: Sun 03 Nov 2024 04:07:18 +0000 asID: 1004 IP address blocks: 2a0a:6040:4d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ab:f1:8d:fd:10:98:79:33:80:17:1c:e3:4a:ae:04:ed:8b:cd:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:18 2023 GMT Not After : Nov 3 04:07:18 2024 GMT Subject: CN=C6A2DCFEF89F4DF8993B761A5AE0DD51D312F8A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a5:9f:f6:59:9e:ec:d9:33:b4:f9:43:82:25: e9:02:25:47:1a:4f:9c:f2:cd:70:b8:cd:a7:4d:7e: 73:4a:a2:24:96:0d:f4:60:92:12:0e:c9:34:7c:7e: 94:89:ad:80:50:06:49:60:43:fc:58:d6:f2:77:ec: 16:e6:3c:f0:b9:ff:55:e4:5a:da:5b:37:c7:78:88: 87:4f:0f:ef:f4:ba:5e:3c:4f:f6:8f:b6:6b:31:11: 85:3f:4b:7a:67:1e:b0:a2:1a:ce:a3:ab:77:8f:fc: ac:0f:07:5b:62:1c:85:64:82:27:97:9d:7d:f3:ca: ae:3c:82:e7:7e:64:0b:ca:2a:03:12:68:11:53:10: 76:4b:4b:6d:80:28:26:65:cf:e2:d3:ab:55:84:4f: 06:86:fc:f1:21:d3:ce:5d:3a:19:77:b4:9e:c1:89: 06:3a:5c:ef:56:2b:97:47:3e:c1:8c:db:9b:64:3d: 8b:bc:a3:06:31:01:7e:7a:d4:a9:07:72:f1:85:73: bc:bf:a1:4d:3f:41:db:fc:16:11:7d:5a:d9:e0:33: ee:83:78:45:9d:70:fd:0c:b7:38:39:80:65:da:21: e0:3c:b6:5e:9c:e5:d3:8f:90:b6:54:ed:23:b9:81: 99:42:d2:b7:88:4e:16:59:72:f1:0e:85:bf:6c:b5: d7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A2:DC:FE:F8:9F:4D:F8:99:3B:76:1A:5A:E0:DD:51:D3:12:F8:A2 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS1004.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4d00::/40 Signature Algorithm: sha256WithRSAEncryption 34:2e:16:3d:4e:1a:80:7b:bf:73:f6:3d:e3:03:3f:9b:cf:ba: ea:db:ec:f4:a6:4c:82:c6:78:4d:e0:3b:de:6a:79:21:21:1d: 19:b3:ac:2d:c3:fd:b6:8c:98:ae:13:3e:e9:d2:54:64:5b:f0: 41:50:89:70:63:cf:94:2b:90:3c:f5:fe:3a:b6:35:87:76:04: ec:52:58:f7:12:3d:ad:1e:ed:02:1b:81:65:0d:3f:04:78:70: 34:03:d9:5d:64:ba:f4:e7:77:55:92:71:d9:63:fa:8e:b5:1b: 64:10:92:2e:86:04:c9:6c:dd:b3:f9:98:e5:bb:85:ae:4e:a0: a0:fb:ba:e7:42:a7:2d:bb:85:0f:4a:ea:b6:af:ac:32:90:ad: b5:b0:f6:be:ff:17:b7:b8:ab:2c:18:a4:43:ba:6b:9a:e4:f3: 69:cd:12:ff:69:bc:4d:20:ad:c3:de:3e:e5:22:db:89:bb:f7: 86:63:b8:61:24:2d:a2:81:30:45:b7:ab:08:dc:53:85:39:8d: de:55:65:b4:b1:97:30:0b:0f:67:ae:4e:74:92:4e:88:97:03: 6b:30:36:e4:89:82:2c:95:a8:54:88:57:9f:25:1d:f3:1d:e9: 77:a1:f7:00:f9:16:e4:1b:b0:47:de:98:0a:1b:d8:a6:84:12: 68:e2:b4:8c -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUD6vxjf0QmHkzgBcc40quBO2LzZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMThaFw0yNDExMDMwNDA3MThaMDMxMTAvBgNV BAMTKEM2QTJEQ0ZFRjg5RjRERjg5OTNCNzYxQTVBRTBERDUxRDMxMkY4QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCypZ/2WZ7s2TO0+UOCJekCJUca T5zyzXC4zadNfnNKoiSWDfRgkhIOyTR8fpSJrYBQBklgQ/xY1vJ37BbmPPC5/1Xk WtpbN8d4iIdPD+/0ul48T/aPtmsxEYU/S3pnHrCiGs6jq3eP/KwPB1tiHIVkgieX nX3zyq48gud+ZAvKKgMSaBFTEHZLS22AKCZlz+LTq1WETwaG/PEh085dOhl3tJ7B iQY6XO9WK5dHPsGM25tkPYu8owYxAX561KkHcvGFc7y/oU0/Qdv8FhF9WtngM+6D eEWdcP0Mtzg5gGXaIeA8tl6c5dOPkLZU7SO5gZlC0reIThZZcvEOhb9stdf9AgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUxqLc/vifTfiZO3YaWuDdUdMS+KIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWAYIKwYBBQUHAQsETDBKMEgGCCsGAQUFBzALhjxy c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTAwNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoKYEBNMA0GCSqGSIb3DQEBCwUAA4IBAQA0LhY9 ThqAe79z9j3jAz+bz7rq2+z0pkyCxnhN4DveankhIR0Zs6wtw/22jJiuEz7p0lRk W/BBUIlwY8+UK5A89f46tjWHdgTsUlj3Ej2tHu0CG4FlDT8EeHA0A9ldZLr053dV knHZY/qOtRtkEJIuhgTJbN2z+Zjlu4WuTqCg+7rnQqctu4UPSuq2r6wykK21sPa+ /xe3uKssGKRDumua5PNpzRL/abxNIK3D3j7lItuJu/eGY7hhJC2igTBFt6sI3FOF OY3eVWW0sZcwCw9nrk50kk6IlwNrMDbkiYIslahUiFefJR3zHel3ofcA+RbkG7BH 3pgKG9imhBJo4rSM -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org