$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS137409.roa File: AS137409.roa (raw, json) Hash identifier: P4QJcZj5Ah8ElQjhZfzbiPFSbyKSFwpjsUftBCiNUWo= Subject key identifier: 65:EE:BD:72:4E:4D:05:0F:5E:76:AA:20:4A:7C:56:81:3F:48:CE:4B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 39687DE910F4A867012B7ED4354F1604255C7024 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS137409.roa Signing time: Mon 25 Sep 2023 00:32:42 +0000 ROA not before: Mon 25 Sep 2023 00:27:42 +0000 ROA not after: Mon 23 Sep 2024 00:32:42 +0000 asID: 137409 IP address blocks: 2a05:dfc1:9a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:68:7d:e9:10:f4:a8:67:01:2b:7e:d4:35:4f:16:04:25:5c:70:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 25 00:27:42 2023 GMT Not After : Sep 23 00:32:42 2024 GMT Subject: CN=65EEBD724E4D050F5E76AA204A7C56813F48CE4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:46:ec:f9:b1:2a:79:fa:66:23:f1:83:b0:1e: c7:dd:a8:f2:82:97:34:18:21:0d:11:0f:6b:da:83: b5:31:97:f3:e2:49:2a:fd:c0:d8:8f:46:21:88:e0: d5:a5:1f:2e:36:25:11:10:4c:97:ad:54:e4:95:60: bb:ff:4c:5a:4e:a6:23:6c:40:3e:79:4a:5d:1a:7e: 23:28:ba:9b:5f:13:53:fd:81:e2:8d:61:08:f4:e7: 2c:17:61:ab:77:9a:c7:86:6e:2a:cf:95:2a:85:5c: 88:8f:98:35:b0:84:8c:0f:2c:ca:11:cf:06:69:a4: d9:ca:08:0f:ad:e3:29:04:11:a9:58:93:f7:40:92: 3c:c8:a7:0d:ba:4b:06:d2:d1:6f:9d:e7:af:05:43: 6d:e7:25:06:4c:5b:69:c7:29:52:91:a5:76:3e:f4: 2a:c5:8c:6e:b9:49:7b:ce:b4:7d:6c:06:62:06:1e: c8:2d:40:d5:8b:8c:ee:1b:aa:8d:f6:e9:9d:db:a3: 74:8d:a5:08:34:72:c1:71:06:97:2e:88:c4:7b:eb: 8c:5c:51:5a:03:17:8e:98:eb:18:12:95:95:49:0b: 4a:4b:6e:ed:f1:6a:d2:ca:28:7c:c6:ea:d1:f4:7e: a4:05:1b:ea:ba:29:73:8c:10:df:c7:b0:7a:4e:44: e4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:EE:BD:72:4E:4D:05:0F:5E:76:AA:20:4A:7C:56:81:3F:48:CE:4B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS137409.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9a00::/40 Signature Algorithm: sha256WithRSAEncryption 9d:8a:6b:ef:37:62:f8:70:21:e9:59:2d:a5:43:05:df:99:6f: 45:a4:ff:fc:18:1e:fc:35:27:d0:53:e2:a0:56:90:c5:fe:79: 8a:6c:eb:5c:e4:eb:7b:12:a3:69:c1:54:f7:ff:51:99:25:83: 1e:1e:66:4f:7c:57:82:a7:e5:34:30:d5:39:b5:3d:b2:14:36: fb:11:fc:22:29:b5:d2:db:52:9e:9c:e6:da:33:26:e0:11:d3: 41:78:af:f8:3b:34:2d:b2:c8:cc:f9:65:fa:e2:80:00:41:85: 13:78:5f:b9:da:09:70:cd:09:24:10:8f:e5:c3:f4:70:d1:64: 5f:e9:7f:aa:ca:9b:91:29:ee:da:dc:5f:f0:ed:5a:38:ed:b1: 33:39:08:e0:ee:2e:44:de:74:1f:87:bd:58:5c:2d:79:3d:e5: 66:d8:01:b6:ae:b7:43:89:21:33:b3:05:69:8d:46:59:37:ed: 73:9c:2a:16:b4:23:fc:8b:75:c4:20:e0:9d:e8:5c:59:93:77: 23:c9:7c:cf:25:30:8d:9e:1b:74:dc:06:a7:0a:81:93:f8:ea: cb:e0:76:48:94:1c:75:2e:d1:f1:37:57:c9:be:9d:9f:ec:ab: 5a:e5:26:d2:07:25:76:4d:c5:7c:e8:d4:fe:15:22:44:5a:13: 13:4f:de:67 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOWh96RD0qGcBK37UNU8WBCVccCQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA5MjUwMDI3NDJaFw0yNDA5MjMwMDMyNDJaMDMxMTAvBgNV BAMTKDY1RUVCRDcyNEU0RDA1MEY1RTc2QUEyMDRBN0M1NjgxM0Y0OENFNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKRuz5sSp5+mYj8YOwHsfdqPKC lzQYIQ0RD2vag7Uxl/PiSSr9wNiPRiGI4NWlHy42JREQTJetVOSVYLv/TFpOpiNs QD55Sl0afiMouptfE1P9geKNYQj05ywXYat3mseGbirPlSqFXIiPmDWwhIwPLMoR zwZppNnKCA+t4ykEEalYk/dAkjzIpw26SwbS0W+d568FQ23nJQZMW2nHKVKRpXY+ 9CrFjG65SXvOtH1sBmIGHsgtQNWLjO4bqo326Z3bo3SNpQg0csFxBpcuiMR764xc UVoDF46Y6xgSlZVJC0pLbu3xatLKKHzG6tH0fqQFG+q6KXOMEN/HsHpOROSzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZe69ck5NBQ9edqogSnxWgT9IzkswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTM3NDA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwZowDQYJKoZIhvcNAQELBQADggEBAJ2K a+83YvhwIelZLaVDBd+Zb0Wk//wYHvw1J9BT4qBWkMX+eYps61zk63sSo2nBVPf/ UZklgx4eZk98V4Kn5TQw1Tm1PbIUNvsR/CIptdLbUp6c5tozJuAR00F4r/g7NC2y yMz5ZfrigABBhRN4X7naCXDNCSQQj+XD9HDRZF/pf6rKm5Ep7trcX/DtWjjtsTM5 CODuLkTedB+HvVhcLXk95WbYAbaut0OJITOzBWmNRlk37XOcKha0I/yLdcQg4J3o XFmTdyPJfM8lMI2eG3TcBqcKgZP46svgdkiUHHUu0fE3V8m+nZ/sq1rlJtIHJXZN xXzo1P4VIkRaExNP3mc= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org