$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS137409.roa File: AS137409.roa (raw, json) Hash identifier: Sb9lwoWMX8fv+G1z5QttlYfU5XxRA3a4tB6iTBYh9+M= Subject key identifier: 01:99:9B:F7:7F:F0:3D:3C:1C:F3:FF:7E:CB:20:9F:37:2C:EA:1C:6C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3ED00649B2BF2B18FE8514932910966B10B0996D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS137409.roa Signing time: Mon 26 Aug 2024 00:49:52 +0000 ROA not before: Mon 26 Aug 2024 00:44:52 +0000 ROA not after: Mon 25 Aug 2025 00:49:52 +0000 asID: 137409 IP address blocks: 2a05:dfc1:9a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:d0:06:49:b2:bf:2b:18:fe:85:14:93:29:10:96:6b:10:b0:99:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 26 00:44:52 2024 GMT Not After : Aug 25 00:49:52 2025 GMT Subject: CN=01999BF77FF03D3C1CF3FF7ECB209F372CEA1C6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fe:d4:6b:eb:cc:2d:6c:1d:b0:21:63:c0:d8: 25:0f:89:88:5c:73:65:a4:42:a5:be:cf:60:6d:62: a5:4b:0b:49:b3:23:7b:de:e9:76:5f:73:cf:af:50: f4:fd:d2:0a:ba:0e:9f:1a:44:2a:b6:22:df:ee:9a: cb:90:4d:cb:02:ac:bc:e1:13:23:04:64:19:66:a5: 31:62:c0:1d:7b:ce:ab:ca:cd:12:d6:6d:6a:c5:5b: dd:10:bb:7c:a4:e8:07:fa:af:6c:c7:c8:ef:e3:60: fc:07:36:5b:65:56:6f:74:19:51:fa:41:45:b2:81: ed:93:aa:7e:a5:72:04:a5:c0:f1:34:7d:62:48:d1: 30:ef:89:73:2a:1d:9a:a4:cf:a1:8d:20:93:56:a9: 73:a1:a6:c7:06:13:13:62:18:43:6b:43:cf:18:c3: fe:3a:1d:b7:a1:22:8a:b2:7c:1a:61:e2:2c:cc:70: 34:e9:8f:4d:9e:aa:c4:90:cb:3c:dd:4b:49:3b:9b: 43:b8:1b:9e:fd:01:12:f2:cd:91:03:37:1f:2d:c5: bb:76:67:4f:27:eb:f2:fd:2e:c6:28:16:96:30:9d: 1d:88:cd:d6:f1:7e:78:e0:c4:be:de:9e:3e:ab:3d: 51:ec:89:b8:97:02:48:34:41:07:96:f0:34:cd:c6: 32:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:99:9B:F7:7F:F0:3D:3C:1C:F3:FF:7E:CB:20:9F:37:2C:EA:1C:6C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS137409.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9a00::/40 Signature Algorithm: sha256WithRSAEncryption 18:83:63:06:66:d4:6c:04:d4:3b:5b:b3:4f:b8:e7:52:da:67: b0:4a:0e:90:22:fe:86:c9:c6:e0:de:c2:fb:3a:8f:c8:f5:42: 52:99:7f:df:5b:e4:65:a0:90:c9:69:f1:a9:d4:07:97:8b:6a: 20:49:f3:6d:7a:cb:d7:8a:b9:59:72:18:3a:66:3a:32:56:f7: b4:6e:da:62:0a:2a:57:b8:48:9b:4b:59:d1:91:54:fb:8d:23: 11:16:76:8e:af:e3:99:8e:d5:2d:7a:1e:01:06:a1:a9:0e:79: 80:55:71:6c:e9:03:d8:f0:44:b4:5b:db:bf:bd:3c:47:63:4c: d7:d9:eb:b3:41:be:68:f5:ae:8d:01:fb:45:8d:86:20:22:eb: 15:5b:fa:d2:00:51:5b:19:3f:cd:e0:60:ca:03:26:d4:f1:15: cc:ac:94:64:bc:e0:44:67:7d:50:74:40:f5:e0:e2:31:b6:a1: 04:96:20:e5:ee:56:5e:5d:83:1d:95:74:be:2b:02:bf:10:df: 51:f1:1b:54:6a:28:ea:ca:ed:32:61:8a:03:34:e8:11:f6:4a: db:d6:80:bc:67:ae:14:18:c0:96:9d:cf:80:dd:68:d5:bb:90: b4:ce:81:67:6b:1b:aa:77:d0:9c:bb:6c:74:ff:72:7d:de:82: 40:fa:5a:87 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPtAGSbK/Kxj+hRSTKRCWaxCwmW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MjYwMDQ0NTJaFw0yNTA4MjUwMDQ5NTJaMDMxMTAvBgNV BAMTKDAxOTk5QkY3N0ZGMDNEM0MxQ0YzRkY3RUNCMjA5RjM3MkNFQTFDNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM/tRr68wtbB2wIWPA2CUPiYhc c2WkQqW+z2BtYqVLC0mzI3ve6XZfc8+vUPT90gq6Dp8aRCq2It/umsuQTcsCrLzh EyMEZBlmpTFiwB17zqvKzRLWbWrFW90Qu3yk6Af6r2zHyO/jYPwHNltlVm90GVH6 QUWyge2Tqn6lcgSlwPE0fWJI0TDviXMqHZqkz6GNIJNWqXOhpscGExNiGENrQ88Y w/46HbehIoqyfBph4izMcDTpj02eqsSQyzzdS0k7m0O4G579ARLyzZEDNx8txbt2 Z08n6/L9LsYoFpYwnR2IzdbxfnjgxL7enj6rPVHsibiXAkg0QQeW8DTNxjIhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUAZmb93/wPTwc8/9+yyCfNyzqHGwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTM3NDA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwZowDQYJKoZIhvcNAQELBQADggEBABiD YwZm1GwE1Dtbs0+451LaZ7BKDpAi/obJxuDewvs6j8j1QlKZf99b5GWgkMlp8anU B5eLaiBJ8216y9eKuVlyGDpmOjJW97Ru2mIKKle4SJtLWdGRVPuNIxEWdo6v45mO 1S16HgEGoakOeYBVcWzpA9jwRLRb27+9PEdjTNfZ67NBvmj1ro0B+0WNhiAi6xVb +tIAUVsZP83gYMoDJtTxFcyslGS84ERnfVB0QPXg4jG2oQSWIOXuVl5dgx2VdL4r Ar8Q31HxG1RqKOrK7TJhigM06BH2StvWgLxnrhQYwJadz4DdaNW7kLTOgWdrG6p3 0Jy7bHT/cn3egkD6Woc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org