$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS134666.roa File: AS134666.roa (raw, json) Hash identifier: 57/hG5phQPF9lAd0OXhEFERayCbWd4XIeoZ76ZkPJio= Subject key identifier: FB:41:55:48:D8:3E:A5:CE:13:9B:67:6E:1F:FE:4B:B0:0C:1C:2E:66 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 069A7CE6EB12D2F051C1DD718309BC0DADC0F04E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS134666.roa Signing time: Sun 05 Nov 2023 04:07:07 +0000 ROA not before: Sun 05 Nov 2023 04:02:07 +0000 ROA not after: Sun 03 Nov 2024 04:07:07 +0000 asID: 134666 IP address blocks: 2a0a:6040:4e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:9a:7c:e6:eb:12:d2:f0:51:c1:dd:71:83:09:bc:0d:ad:c0:f0:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:07 2023 GMT Not After : Nov 3 04:07:07 2024 GMT Subject: CN=FB415548D83EA5CE139B676E1FFE4BB00C1C2E66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a0:05:5e:69:fc:d3:5b:6c:d9:c9:28:51:09: 00:91:ee:18:3c:bd:ed:d2:30:46:65:1b:6b:05:1f: e4:9a:9f:7b:5b:78:3a:f3:23:8f:67:28:cd:c5:f7: ab:51:fb:d3:b6:6c:f7:b2:02:9c:f8:e8:07:7b:89: b8:f5:64:7e:28:74:9a:29:d2:4e:ea:f6:39:f8:f7: 86:e3:18:cc:47:2b:fd:e6:29:a2:49:f4:78:ec:49: 93:d7:27:7a:92:54:62:35:7e:60:c9:4b:91:7d:c4: dd:10:e2:98:46:fd:36:60:7a:dc:66:5a:6c:ed:a0: c5:38:02:90:ab:a5:6c:90:23:de:06:1e:38:74:5c: bc:4c:81:b9:b5:91:9b:0b:18:88:eb:ec:36:b4:fb: 2f:41:f5:c8:e8:20:ea:ec:5a:ec:5b:cd:5a:f1:a7: bc:bb:62:3b:0f:dd:9c:4f:b7:91:04:0e:8b:0f:74: f0:d0:93:02:99:ef:5c:1d:80:98:1c:a3:5d:84:c0: 6c:db:46:45:b7:20:31:70:9a:07:42:a0:be:7c:ab: 90:65:4d:d3:da:7e:cf:54:d8:a4:fb:8f:cd:7b:8f: 12:9e:d7:4f:ce:49:6a:d3:be:99:8d:3b:c1:ba:20: 75:bb:19:4c:fd:97:06:e5:e9:3f:e1:aa:07:93:4b: 94:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:41:55:48:D8:3E:A5:CE:13:9B:67:6E:1F:FE:4B:B0:0C:1C:2E:66 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS134666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4e00::/40 Signature Algorithm: sha256WithRSAEncryption 24:e5:08:52:60:0b:b8:c4:88:17:17:4c:a7:6a:23:5f:aa:c8: ab:a1:d8:7a:09:92:8c:f6:0d:6c:95:82:42:f7:e0:9b:79:41: f1:88:af:75:3e:e1:3d:fa:eb:33:40:ec:74:df:fc:f1:c4:52: ab:d4:ac:5d:2f:89:2b:6a:b3:ba:f0:6d:b7:f9:9b:2f:67:9e: 0a:e7:86:42:28:8c:d4:fd:12:80:91:01:dc:e0:de:54:b9:9e: a9:cd:7b:b3:6c:c3:33:b6:40:b0:b2:2d:9f:76:df:b6:23:2b: 1d:ef:56:33:cb:f0:e7:95:42:61:ca:9f:ef:75:f4:27:ae:87: 7e:a0:9f:f0:14:a9:4e:f1:f7:eb:bb:2c:8a:81:4d:af:a2:fb: 46:30:20:08:52:ef:8b:ce:93:ab:0c:65:c8:71:5f:c9:4a:4f: 8b:10:fd:e7:bd:94:da:7e:9b:bd:d6:1d:c0:80:d7:b9:1c:5d: 35:5b:0f:c3:58:34:5a:3c:b4:96:b3:e0:5f:c4:69:38:fb:9c: 7c:05:41:45:f5:0f:1b:0d:30:f3:81:59:6f:af:39:f0:e0:42: 33:e7:df:c5:7c:1f:81:4f:4b:f0:d5:c4:3d:e4:85:d0:4a:4f: 67:bf:34:32:a0:60:c6:00:e6:b8:89:63:cf:9b:60:20:df:49: 17:49:a8:34 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBpp85usS0vBRwd1xgwm8Da3A8E4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDdaFw0yNDExMDMwNDA3MDdaMDMxMTAvBgNV BAMTKEZCNDE1NTQ4RDgzRUE1Q0UxMzlCNjc2RTFGRkU0QkIwMEMxQzJFNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdoAVeafzTW2zZyShRCQCR7hg8 ve3SMEZlG2sFH+San3tbeDrzI49nKM3F96tR+9O2bPeyApz46Ad7ibj1ZH4odJop 0k7q9jn494bjGMxHK/3mKaJJ9HjsSZPXJ3qSVGI1fmDJS5F9xN0Q4phG/TZgetxm WmztoMU4ApCrpWyQI94GHjh0XLxMgbm1kZsLGIjr7Da0+y9B9cjoIOrsWuxbzVrx p7y7YjsP3ZxPt5EEDosPdPDQkwKZ71wdgJgco12EwGzbRkW3IDFwmgdCoL58q5Bl TdPafs9U2KT7j817jxKe10/OSWrTvpmNO8G6IHW7GUz9lwbl6T/hqgeTS5S7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+0FVSNg+pc4Tm2duH/5LsAwcLmYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTM0NjY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQE4wDQYJKoZIhvcNAQELBQADggEBACTl CFJgC7jEiBcXTKdqI1+qyKuh2HoJkoz2DWyVgkL34Jt5QfGIr3U+4T366zNA7HTf /PHEUqvUrF0viStqs7rwbbf5my9nngrnhkIojNT9EoCRAdzg3lS5nqnNe7NswzO2 QLCyLZ9237YjKx3vVjPL8OeVQmHKn+919Ceuh36gn/AUqU7x9+u7LIqBTa+i+0Yw IAhS74vOk6sMZchxX8lKT4sQ/ee9lNp+m73WHcCA17kcXTVbD8NYNFo8tJaz4F/E aTj7nHwFQUX1DxsNMPOBWW+vOfDgQjPn38V8H4FPS/DVxD3khdBKT2e/NDKgYMYA 5riJY8+bYCDfSRdJqDQ= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org