$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS139328.roa File: AS139328.roa (raw, json) Hash identifier: H/p0zWD9v7CAu39ywm3Rz98+jID2pE7XHTiDYNMZ968= Subject key identifier: 13:20:20:15:4A:BC:7C:28:BA:53:5C:26:72:50:CE:41:5C:76:17:5F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2D36DE348CF60F89D9EC2A4E7ED4AEA6B1524B97 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS139328.roa Signing time: Sun 06 Oct 2024 04:44:58 +0000 ROA not before: Sun 06 Oct 2024 04:39:58 +0000 ROA not after: Sun 05 Oct 2025 04:44:58 +0000 asID: 139328 IP address blocks: 2a0a:6040:7e40::/44 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:36:de:34:8c:f6:0f:89:d9:ec:2a:4e:7e:d4:ae:a6:b1:52:4b:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:58 2024 GMT Not After : Oct 5 04:44:58 2025 GMT Subject: CN=132020154ABC7C28BA535C267250CE415C76175F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:46:a2:f1:f5:73:22:ad:f8:4e:ea:e3:0d:3d: 12:eb:ff:12:6c:8e:43:34:de:6d:2e:e3:8c:fb:5f: 14:e8:37:ba:06:dc:04:87:e9:3a:61:7f:27:bd:01: d5:83:c3:23:76:f4:eb:13:54:61:a3:9d:35:d1:b1: 0f:dc:4b:ed:25:32:6b:b5:a9:86:de:a0:4d:30:91: 39:d3:81:3c:4d:3c:10:6a:cb:8d:36:1b:55:08:ec: 41:03:52:80:f0:2d:20:70:b4:56:ae:77:43:34:83: fe:c3:97:1c:e1:d7:9e:50:a4:1e:dd:66:c9:72:6e: 3f:4c:cb:85:cc:5a:10:70:2d:f5:9f:bd:56:0c:ae: 6c:d3:67:42:71:b9:f3:a6:3e:3d:a6:47:c2:9e:b5: da:df:e4:ba:b3:f7:16:18:86:23:a5:b7:0c:39:3b: da:00:4e:95:c3:ee:73:31:86:26:db:d6:04:5f:65: 2c:a0:13:2a:07:2d:e4:7e:ee:e5:ba:24:58:78:6c: 1f:88:ed:81:d8:9f:25:a9:aa:3a:14:aa:65:5a:69: 24:2d:b3:c1:cf:35:01:36:22:b3:24:15:52:f6:44: 9d:d5:00:3d:5c:dd:66:c3:3b:ab:17:2a:6b:e6:d0: c5:f0:e0:40:f5:2b:5d:33:6a:ad:e3:a5:cb:cd:9a: 00:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:20:20:15:4A:BC:7C:28:BA:53:5C:26:72:50:CE:41:5C:76:17:5F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS139328.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7e40::/44 Signature Algorithm: sha256WithRSAEncryption 53:c0:8e:2f:f1:a6:87:33:7f:6e:53:78:a0:3e:25:4d:e5:b3: 1e:e6:6d:8e:be:66:a6:98:1e:4a:f1:b2:c0:ea:4b:c7:e7:f3: 79:45:aa:48:f6:b9:67:e1:f5:a0:6e:d4:64:db:35:77:6d:f6: 7f:ad:c3:e5:36:6c:18:6e:f8:6a:e2:34:df:ca:9c:de:af:72: a6:1b:1a:67:69:a1:d7:0b:2e:df:d8:f0:62:ca:fb:87:a5:97: 51:83:0a:f4:9a:04:c4:78:ab:e7:01:4a:92:56:d0:8a:78:2a: a7:b2:72:ee:12:f0:04:a3:70:65:28:62:75:83:97:99:b4:a1: 36:14:6b:19:8b:cd:be:85:8e:1e:e7:0e:94:c6:5f:30:59:3f: 72:32:7d:e6:2e:88:be:1b:e7:5a:83:36:b9:0a:98:69:f3:a6: d6:66:75:c3:9d:32:ba:90:ce:f3:f7:22:55:5f:99:1f:61:aa: a7:c6:3c:99:2b:4c:ad:ce:94:62:17:5a:76:b6:13:76:c5:3c: d0:f6:9c:04:0c:4d:1d:64:40:11:33:f1:c5:bd:12:f6:90:fd: 0f:55:9b:a1:9e:c2:0f:43:4b:70:6c:6c:9c:78:7e:50:b9:03: 80:86:c9:55:51:87:5a:5f:25:ab:94:7f:4a:14:74:98:84:aa: 3c:09:1e:35 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIULTbeNIz2D4nZ7CpOftSuprFSS5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NThaFw0yNTEwMDUwNDQ0NThaMDMxMTAvBgNV BAMTKDEzMjAyMDE1NEFCQzdDMjhCQTUzNUMyNjcyNTBDRTQxNUM3NjE3NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNRqLx9XMirfhO6uMNPRLr/xJs jkM03m0u44z7XxToN7oG3ASH6Tphfye9AdWDwyN29OsTVGGjnTXRsQ/cS+0lMmu1 qYbeoE0wkTnTgTxNPBBqy402G1UI7EEDUoDwLSBwtFaud0M0g/7Dlxzh155QpB7d Zslybj9My4XMWhBwLfWfvVYMrmzTZ0JxufOmPj2mR8Ketdrf5Lqz9xYYhiOltww5 O9oATpXD7nMxhibb1gRfZSygEyoHLeR+7uW6JFh4bB+I7YHYnyWpqjoUqmVaaSQt s8HPNQE2IrMkFVL2RJ3VAD1c3WbDO6sXKmvm0MXw4ED1K10zaq3jpcvNmgAfAgMB AAGjggH1MIIB8TAdBgNVHQ4EFgQUEyAgFUq8fCi6U1wmclDOQVx2F18wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTM5MzI4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKgpgQH5AMA0GCSqGSIb3DQEBCwUAA4IBAQBT wI4v8aaHM39uU3igPiVN5bMe5m2OvmammB5K8bLA6kvH5/N5RapI9rln4fWgbtRk 2zV3bfZ/rcPlNmwYbvhq4jTfypzer3KmGxpnaaHXCy7f2PBiyvuHpZdRgwr0mgTE eKvnAUqSVtCKeCqnsnLuEvAEo3BlKGJ1g5eZtKE2FGsZi82+hY4e5w6Uxl8wWT9y Mn3mLoi+G+dagza5Cphp86bWZnXDnTK6kM7z9yJVX5kfYaqnxjyZK0ytzpRiF1p2 thN2xTzQ9pwEDE0dZEARM/HFvRL2kP0PVZuhnsIPQ0twbGyceH5QuQOAhslVUYda XyWrlH9KFHSYhKo8CR41 -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org