$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS13627.roa File: AS13627.roa (raw, json) Hash identifier: UvxHewbAuu8HucL3iS50Z2XaAW3ueTEOD7E+QNSNzeg= Subject key identifier: 01:96:19:80:74:62:85:14:55:8B:89:A9:11:3B:0D:AC:EE:FF:59:EC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 41DA7A961E0AE76D5361AB11E1075DCE2EE0F465 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS13627.roa Signing time: Sun 06 Oct 2024 04:45:01 +0000 ROA not before: Sun 06 Oct 2024 04:40:01 +0000 ROA not after: Sun 05 Oct 2025 04:45:01 +0000 asID: 13627 IP address blocks: 2a0a:6040:4d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:da:7a:96:1e:0a:e7:6d:53:61:ab:11:e1:07:5d:ce:2e:e0:f4:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:01 2024 GMT Not After : Oct 5 04:45:01 2025 GMT Subject: CN=0196198074628514558B89A9113B0DACEEFF59EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:0b:af:0b:27:74:b4:a0:e3:3f:73:7e:65:a3: 4c:71:98:bd:db:43:80:e0:3d:90:fa:63:74:38:3a: ed:5d:72:88:01:56:1e:81:09:26:b8:ea:e9:7e:1e: 69:fb:2f:24:bc:60:20:a7:e0:c0:17:a3:cd:14:d6: 9d:7e:56:70:c5:02:48:b7:64:de:c8:e1:df:eb:86: 7a:6b:80:34:93:9e:dd:e3:9d:b4:45:f3:a1:03:f6: 9c:09:5e:34:63:44:e8:d4:5b:a5:74:39:c5:75:64: 85:2d:b6:de:10:3b:10:e8:7d:4d:4c:25:b8:07:14: 37:cf:4c:2b:15:e4:90:db:2a:5f:eb:40:20:77:bd: 9a:da:4a:f5:8c:a3:5a:72:a2:94:69:6d:9f:5e:85: c9:95:be:ee:4f:90:cf:d6:2e:ed:3a:29:e1:e4:3c: 7e:f1:07:fe:ec:cf:4f:90:07:d0:cd:77:4e:c7:5f: 85:a6:eb:77:70:c3:97:3d:55:87:c0:b1:65:a6:be: 98:85:41:d4:83:f7:91:d6:0b:82:32:0b:64:d4:21: 95:c3:88:4d:e5:d2:43:74:18:98:d9:8d:c8:2b:81: e5:7e:0b:d1:70:fe:34:48:81:36:48:c2:ee:71:85: 39:27:b5:53:8c:bc:1b:f1:6c:64:68:b8:0f:d1:a3: 72:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:96:19:80:74:62:85:14:55:8B:89:A9:11:3B:0D:AC:EE:FF:59:EC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS13627.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4d00::/40 Signature Algorithm: sha256WithRSAEncryption 63:29:95:84:f7:4a:d3:3f:9d:be:a1:79:e8:1d:11:b5:5a:a3: ce:28:93:0a:39:02:a1:4a:2c:95:75:9a:c4:1c:01:e9:30:c1: e5:43:6d:5b:ce:43:4c:37:9e:24:21:7a:e7:2c:56:9d:df:96: 38:ff:45:03:a9:c8:af:85:26:ec:50:41:1d:85:8b:d5:ff:3b: a1:92:92:c5:af:82:8f:73:8a:a2:71:ff:2e:a3:1b:df:cb:f7: c8:3a:6f:0f:d2:6b:13:0a:d9:8f:ac:90:c7:2b:e8:e2:4f:4c: 16:98:dd:99:66:3b:33:1d:ba:00:26:06:84:66:4c:f6:b8:d9: 19:1d:73:05:da:7d:41:12:11:d5:7c:53:a6:e2:68:aa:ae:4e: 95:12:00:d0:0a:46:1b:2f:51:f2:45:de:7d:0c:30:e8:10:78: 5b:55:a6:b7:48:c6:41:58:85:9d:af:84:7d:d5:fb:50:73:26: 39:ed:50:75:aa:7d:7f:7a:e5:18:75:1f:99:f9:f1:79:99:9c: ad:be:96:df:93:99:4a:ff:88:a6:b9:7e:09:58:fe:1c:d9:cd: 3f:ed:0a:d4:f8:f0:a3:79:38:44:6d:5a:4c:9f:fd:5d:70:b4: 06:a4:68:74:c8:05:80:bf:e4:4b:a0:ef:60:59:8a:bd:7e:b2: f4:36:9b:2e -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUQdp6lh4K521TYasR4Qddzi7g9GUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDFaFw0yNTEwMDUwNDQ1MDFaMDMxMTAvBgNV BAMTKDAxOTYxOTgwNzQ2Mjg1MTQ1NThCODlBOTExM0IwREFDRUVGRjU5RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6C68LJ3S0oOM/c35lo0xxmL3b Q4DgPZD6Y3Q4Ou1dcogBVh6BCSa46ul+Hmn7LyS8YCCn4MAXo80U1p1+VnDFAki3 ZN7I4d/rhnprgDSTnt3jnbRF86ED9pwJXjRjROjUW6V0OcV1ZIUttt4QOxDofU1M JbgHFDfPTCsV5JDbKl/rQCB3vZraSvWMo1pyopRpbZ9ehcmVvu5PkM/WLu06KeHk PH7xB/7sz0+QB9DNd07HX4Wm63dww5c9VYfAsWWmvpiFQdSD95HWC4IyC2TUIZXD iE3l0kN0GJjZjcgrgeV+C9Fw/jRIgTZIwu5xhTkntVOMvBvxbGRouA/Ro3KLAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUAZYZgHRihRRVi4mpETsNrO7/WewwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTM2Mjcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBATTANBgkqhkiG9w0BAQsFAAOCAQEAYymV hPdK0z+dvqF56B0RtVqjziiTCjkCoUoslXWaxBwB6TDB5UNtW85DTDeeJCF65yxW nd+WOP9FA6nIr4Um7FBBHYWL1f87oZKSxa+Cj3OKonH/LqMb38v3yDpvD9JrEwrZ j6yQxyvo4k9MFpjdmWY7Mx26ACYGhGZM9rjZGR1zBdp9QRIR1XxTpuJoqq5OlRIA 0ApGGy9R8kXefQww6BB4W1Wmt0jGQViFna+EfdX7UHMmOe1Qdap9f3rlGHUfmfnx eZmcrb6W35OZSv+Iprl+CVj+HNnNP+0K1Pjwo3k4RG1aTJ/9XXC0BqRodMgFgL/k S6DvYFmKvX6y9DabLg== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org