$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS134666.roa File: AS134666.roa (raw, json) Hash identifier: B7Qa9uvs8t7xUXf00842oPReca9ISfrfer19kOtf5og= Subject key identifier: E2:13:27:A8:A4:DF:23:DA:2F:F2:70:3B:9F:E4:21:AA:BD:47:D3:3A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 42AC52F816CFD5D41374501452FE7C96B594C997 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS134666.roa Signing time: Sun 06 Oct 2024 04:45:13 +0000 ROA not before: Sun 06 Oct 2024 04:40:13 +0000 ROA not after: Sun 05 Oct 2025 04:45:13 +0000 asID: 134666 IP address blocks: 2a0a:6040:4e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ac:52:f8:16:cf:d5:d4:13:74:50:14:52:fe:7c:96:b5:94:c9:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:13 2024 GMT Not After : Oct 5 04:45:13 2025 GMT Subject: CN=E21327A8A4DF23DA2FF2703B9FE421AABD47D33A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:19:63:62:0f:04:0f:2f:13:92:57:d7:7c:18: a1:13:9e:28:c5:43:7e:0f:bd:aa:54:e5:d3:91:7a: 49:c8:7d:98:90:76:02:25:50:d7:a3:27:bf:74:7d: 00:a9:91:cd:af:16:66:3f:40:dd:3f:2f:07:5a:41: 2a:15:b8:34:56:55:d5:74:9e:92:be:3d:2f:f1:71: 72:78:32:06:c4:be:12:68:9b:94:d3:6a:9a:89:2d: 42:96:dc:cd:22:b5:7e:02:ce:2c:10:7b:26:ef:df: 93:ea:78:11:f1:52:12:17:e5:11:12:24:c9:d9:90: 04:e8:68:a0:d6:9e:b3:f4:3c:b1:32:18:12:49:e7: 94:03:37:4f:20:5b:84:8a:05:a1:1f:c7:6a:71:52: bd:10:f7:4f:5f:c4:a6:ca:3f:fb:8e:72:ce:43:77: 50:f3:ee:72:28:89:04:81:8b:fb:b9:e5:98:0e:da: 29:c4:2c:77:b9:87:ca:eb:9d:4a:63:83:62:08:1c: cb:4e:8b:d5:33:9d:dc:1d:32:b5:d5:e1:15:5e:10: 8c:ea:41:13:af:ee:4e:45:40:c1:f0:50:ef:29:27: 94:95:d1:26:ca:59:e8:81:e2:bd:1b:90:6d:4f:2a: 23:14:bf:6a:37:a0:ad:c8:63:e7:ac:fb:b1:9e:25: c4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:13:27:A8:A4:DF:23:DA:2F:F2:70:3B:9F:E4:21:AA:BD:47:D3:3A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS134666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4e00::/40 Signature Algorithm: sha256WithRSAEncryption 72:29:6b:f8:87:c8:06:4c:41:d1:b5:eb:17:2d:4d:d3:30:4b: a8:07:b2:d7:24:af:bd:2b:65:c7:0a:6e:1d:c4:94:e9:26:3a: 3c:0f:2f:f9:5b:e9:9e:ff:ac:dc:1f:43:74:1d:90:ab:58:98: d0:f7:41:3d:0c:15:c4:d9:3b:03:0f:78:f3:6f:49:43:96:81: 7a:46:53:54:98:52:a8:d7:8c:74:e8:24:b4:79:2f:1a:fd:c8: 7f:65:d0:22:3a:a2:22:6a:29:b9:02:d5:4a:7c:f3:2b:2d:30: d4:19:d8:1c:5d:04:4c:5f:6d:34:a8:6b:19:80:51:56:57:13: 8d:5b:9b:ac:05:39:6d:37:0c:9b:d8:67:d7:b8:c6:19:01:7a: 31:b7:15:72:fe:2c:54:03:39:51:20:0a:c6:98:b8:07:33:00: 81:35:23:f4:e7:e6:99:9a:8e:dd:55:dd:f3:27:f8:3f:fa:90: 0f:8e:0d:b9:9f:a1:02:19:85:79:3c:39:82:ce:c6:8d:1a:83: 55:9d:27:72:78:53:12:08:46:ee:e3:d4:08:c3:7b:4e:c2:d9: d6:73:7d:99:0f:1b:eb:c3:dd:6e:cd:f8:0f:4c:f3:83:f0:8e: be:57:3c:40:27:d0:f2:5a:2a:2d:75:c4:bb:b2:09:e7:8c:b4: d8:09:05:2f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQqxS+BbP1dQTdFAUUv58lrWUyZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTNaFw0yNTEwMDUwNDQ1MTNaMDMxMTAvBgNV BAMTKEUyMTMyN0E4QTRERjIzREEyRkYyNzAzQjlGRTQyMUFBQkQ0N0QzM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfGWNiDwQPLxOSV9d8GKETnijF Q34PvapU5dOReknIfZiQdgIlUNejJ790fQCpkc2vFmY/QN0/LwdaQSoVuDRWVdV0 npK+PS/xcXJ4MgbEvhJom5TTapqJLUKW3M0itX4CziwQeybv35PqeBHxUhIX5RES JMnZkAToaKDWnrP0PLEyGBJJ55QDN08gW4SKBaEfx2pxUr0Q909fxKbKP/uOcs5D d1Dz7nIoiQSBi/u55ZgO2inELHe5h8rrnUpjg2IIHMtOi9UzndwdMrXV4RVeEIzq QROv7k5FQMHwUO8pJ5SV0SbKWeiB4r0bkG1PKiMUv2o3oK3IY+es+7GeJcQPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4hMnqKTfI9ov8nA7n+Qhqr1H0zowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTM0NjY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQE4wDQYJKoZIhvcNAQELBQADggEBAHIp a/iHyAZMQdG16xctTdMwS6gHstckr70rZccKbh3ElOkmOjwPL/lb6Z7/rNwfQ3Qd kKtYmND3QT0MFcTZOwMPePNvSUOWgXpGU1SYUqjXjHToJLR5Lxr9yH9l0CI6oiJq KbkC1Up88ystMNQZ2BxdBExfbTSoaxmAUVZXE41bm6wFOW03DJvYZ9e4xhkBejG3 FXL+LFQDOVEgCsaYuAczAIE1I/Tn5pmajt1V3fMn+D/6kA+ODbmfoQIZhXk8OYLO xo0ag1WdJ3J4UxIIRu7j1AjDe07C2dZzfZkPG+vD3W7N+A9M84Pwjr5XPEAn0PJa Ki11xLuyCeeMtNgJBS8= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org