$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS13627.roa File: AS13627.roa (raw, json) Hash identifier: YTOB74TxuZRJw6LdgLsG0SknFvrVM8EL1uz14YkB+AA= Subject key identifier: A8:AE:B9:91:C9:2E:01:82:D3:AB:8B:46:6F:33:07:CC:28:23:D1:5A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 585FB58573D3F9767281B8A3BC3EEE078883DE9B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS13627.roa Signing time: Sun 05 Nov 2023 04:07:10 +0000 ROA not before: Sun 05 Nov 2023 04:02:10 +0000 ROA not after: Sun 03 Nov 2024 04:07:10 +0000 asID: 13627 IP address blocks: 2a0a:6040:4d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:5f:b5:85:73:d3:f9:76:72:81:b8:a3:bc:3e:ee:07:88:83:de:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:10 2023 GMT Not After : Nov 3 04:07:10 2024 GMT Subject: CN=A8AEB991C92E0182D3AB8B466F3307CC2823D15A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1e:fb:8d:df:f5:c1:e4:15:46:31:49:ae:80: 1f:ff:0d:f4:28:cd:a2:c7:67:15:90:64:6d:63:8b: 20:6c:92:57:25:69:f4:ba:dc:69:fc:3e:1c:24:3d: d1:90:45:3e:75:f4:fa:65:c0:d1:d1:5b:55:f0:6a: 87:48:0a:09:81:65:19:c4:98:0f:64:b0:33:22:96: 4a:cf:42:4b:cb:2b:21:d8:d2:5d:27:da:96:b5:90: fa:b5:0e:15:5e:8a:56:c8:82:06:13:20:80:48:6d: 71:f0:07:aa:14:c6:19:bd:1f:d9:28:59:b5:2b:2f: 7f:7f:a1:11:ad:0f:d3:12:fb:24:62:b0:55:65:80: 16:81:d0:aa:b5:b3:54:c5:4b:da:66:7b:f1:f6:67: 4f:33:fa:78:79:d7:32:3a:17:e9:12:9d:6e:4f:a5: b0:16:04:3b:e7:9e:43:af:bb:b0:aa:d8:49:6f:fd: ac:38:6d:67:1a:01:67:cd:4e:69:d2:8f:fa:33:57: 35:bf:99:02:c4:0f:49:f6:56:46:24:9a:52:5d:82: 3c:b5:ea:20:f2:df:e2:6f:e0:1c:4d:c2:e4:d3:82: 4e:2d:7c:df:e7:32:8a:06:74:c6:96:27:77:f5:5c: 4c:fd:13:d4:95:f1:5d:7e:2c:cf:5a:0e:cd:47:b0: a7:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:AE:B9:91:C9:2E:01:82:D3:AB:8B:46:6F:33:07:CC:28:23:D1:5A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS13627.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4d00::/40 Signature Algorithm: sha256WithRSAEncryption 15:3d:fd:b5:00:2b:8b:2b:92:61:b9:5f:c6:48:ff:fb:92:5e: e9:63:c6:d2:28:0a:9e:23:9e:f6:fc:6a:83:af:21:90:6b:70: 64:65:6d:e7:aa:d3:d9:a8:f2:71:f6:b7:17:86:d8:ac:cf:c8: 0a:1a:b0:34:96:79:f4:9d:19:a5:22:b8:1b:0e:f1:12:50:e9: 53:5d:42:4b:09:b3:f7:6e:7a:5f:57:c6:33:6b:3a:cf:aa:a9: 55:72:a3:25:0a:16:95:a1:89:b3:09:69:9e:86:c4:91:4a:24: 7b:ed:d9:ea:ed:16:71:5d:0f:62:c7:52:aa:87:e1:be:75:8e: 5a:36:98:39:3c:d1:60:73:4b:a3:0d:ad:a0:91:29:08:36:17: 5d:dd:3b:75:32:9f:4c:2b:2d:c8:f9:3c:75:10:87:d8:a0:0d: b5:ad:e3:bf:78:be:d2:bc:b4:f4:dc:85:76:57:a4:a8:d8:53: e6:79:2f:4c:46:2e:0b:74:00:6a:3a:94:a1:0e:2f:74:97:27: 80:af:2f:d8:25:97:17:ab:8d:f2:48:a7:bc:77:62:45:0b:51: 2e:cd:d9:73:df:29:a4:fd:28:66:f6:7b:38:4b:e3:2f:1f:b3: e8:df:7e:37:c4:aa:aa:4c:2a:62:f2:66:f2:42:17:70:ca:df: 67:8a:20:27 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUWF+1hXPT+XZygbijvD7uB4iD3pswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTBaFw0yNDExMDMwNDA3MTBaMDMxMTAvBgNV BAMTKEE4QUVCOTkxQzkyRTAxODJEM0FCOEI0NjZGMzMwN0NDMjgyM0QxNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8HvuN3/XB5BVGMUmugB//DfQo zaLHZxWQZG1jiyBsklclafS63Gn8PhwkPdGQRT519PplwNHRW1XwaodICgmBZRnE mA9ksDMilkrPQkvLKyHY0l0n2pa1kPq1DhVeilbIggYTIIBIbXHwB6oUxhm9H9ko WbUrL39/oRGtD9MS+yRisFVlgBaB0Kq1s1TFS9pme/H2Z08z+nh51zI6F+kSnW5P pbAWBDvnnkOvu7Cq2Elv/aw4bWcaAWfNTmnSj/ozVzW/mQLED0n2VkYkmlJdgjy1 6iDy3+Jv4BxNwuTTgk4tfN/nMooGdMaWJ3f1XEz9E9SV8V1+LM9aDs1HsKdbAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUqK65kckuAYLTq4tGbzMHzCgj0VowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTM2Mjcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBATTANBgkqhkiG9w0BAQsFAAOCAQEAFT39 tQAriyuSYblfxkj/+5Je6WPG0igKniOe9vxqg68hkGtwZGVt56rT2ajycfa3F4bY rM/IChqwNJZ59J0ZpSK4Gw7xElDpU11CSwmz9256X1fGM2s6z6qpVXKjJQoWlaGJ swlpnobEkUoke+3Z6u0WcV0PYsdSqofhvnWOWjaYOTzRYHNLow2toJEpCDYXXd07 dTKfTCstyPk8dRCH2KANta3jv3i+0ry09NyFdlekqNhT5nkvTEYuC3QAajqUoQ4v dJcngK8v2CWXF6uN8kinvHdiRQtRLs3Zc98ppP0oZvZ7OEvjLx+z6N9+N8Sqqkwq YvJm8kIXcMrfZ4ogJw== -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org