$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS139648.roa File: AS139648.roa (raw, json) Hash identifier: Rh+JTXQs0j1gdEeKmiElmqW9hg32BY5/V2Vnz3Rqa/I= Subject key identifier: 7B:19:60:8E:F3:67:01:12:F7:AE:E4:AB:D8:00:00:87:49:3B:56:81 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 73F07CEF512A0AD7B64FE2F34B024B3BE169A747 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS139648.roa Signing time: Fri 30 Aug 2024 08:51:41 +0000 ROA not before: Fri 30 Aug 2024 08:46:41 +0000 ROA not after: Fri 29 Aug 2025 08:51:41 +0000 asID: 139648 IP address blocks: 2a06:9f81:5200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:f0:7c:ef:51:2a:0a:d7:b6:4f:e2:f3:4b:02:4b:3b:e1:69:a7:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 30 08:46:41 2024 GMT Not After : Aug 29 08:51:41 2025 GMT Subject: CN=7B19608EF3670112F7AEE4ABD8000087493B5681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:54:47:60:ed:be:0f:79:b7:44:ba:6a:9f:95: a3:10:fe:29:16:df:37:5d:1e:c5:bb:5b:69:14:82: 47:e4:6e:17:0d:2a:8f:64:11:0c:62:7b:7d:7f:66: d6:44:7c:d0:af:0e:5f:7d:4a:ae:cb:f7:d8:fa:b5: 15:74:6b:cf:93:27:f8:cb:27:73:4b:e5:9f:1a:16: b4:3d:13:f6:ac:af:9d:85:95:6a:7a:14:60:42:e2: ce:9d:fd:94:09:54:e8:79:25:fe:0c:a3:a4:7f:e8: a6:47:5f:e6:2e:d1:86:f7:39:df:60:04:b7:14:75: 0a:54:d1:65:e1:3a:93:15:53:4f:8c:89:87:72:38: 14:47:ae:a2:57:08:42:3d:53:aa:e4:51:f1:b7:60: 59:87:58:72:e0:47:ea:82:77:26:2d:b5:15:fe:67: 61:6f:67:d5:72:e0:c1:09:8b:82:02:6b:60:68:29: 8e:74:f4:1a:6a:ec:ef:3a:14:66:f8:e0:31:50:d1: 53:8f:45:93:0c:c3:c6:77:22:94:84:12:34:cc:74: 06:39:4c:46:23:af:a2:b0:b8:8b:f5:c2:3d:dc:4e: a4:b3:a8:ba:bc:39:60:4e:80:08:8c:c6:60:8d:58: b6:9a:88:2e:7e:8b:7c:94:14:b3:80:ff:6a:51:53: 30:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:19:60:8E:F3:67:01:12:F7:AE:E4:AB:D8:00:00:87:49:3B:56:81 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS139648.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5200::/40 Signature Algorithm: sha256WithRSAEncryption 84:48:b5:23:df:37:3a:63:62:1e:99:88:26:fa:88:30:b2:94: f6:b6:4a:51:d7:9c:3e:9a:1a:66:ca:80:f6:f5:44:3a:c2:ca: 66:fb:e6:c4:67:ba:52:19:96:3e:a5:1e:5d:43:25:ef:e2:e3: 1f:a6:c0:ad:77:d8:c9:d8:ed:34:19:ff:03:5c:23:5f:26:fa: 80:a3:61:dc:0a:a9:88:5a:13:ee:de:60:18:9d:0c:88:04:2a: f9:6c:6a:96:72:c3:bf:8a:fe:52:3f:4d:7a:c4:e9:82:c4:25: 36:8f:c8:d5:69:9d:5a:90:b8:af:d7:f3:5b:4f:2e:69:03:3b: 13:1b:aa:89:91:4c:b7:7e:d5:43:5c:28:53:93:d9:a8:05:bf: 79:9d:f4:79:62:ee:7d:93:b9:e0:48:8d:08:51:fe:d6:58:35: a8:ea:e4:f8:c8:72:ca:fa:c7:13:68:7a:bd:1a:31:e6:75:f9: 47:c9:3f:29:5d:8c:3c:f1:30:86:57:dd:00:07:bc:45:d5:72: f2:7a:b1:ee:71:44:a7:c2:d6:67:99:a1:50:c6:1b:e0:94:36: ef:c0:f2:dd:3a:56:bf:bb:35:33:db:96:5e:6b:a9:87:7c:f6: 28:47:76:92:ea:c7:2d:2e:28:d6:91:12:ac:25:84:c0:97:ea: 50:c4:28:0b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUc/B871EqCte2T+LzSwJLO+Fpp0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MzAwODQ2NDFaFw0yNTA4MjkwODUxNDFaMDMxMTAvBgNV BAMTKDdCMTk2MDhFRjM2NzAxMTJGN0FFRTRBQkQ4MDAwMDg3NDkzQjU2ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQVEdg7b4PebdEumqflaMQ/ikW 3zddHsW7W2kUgkfkbhcNKo9kEQxie31/ZtZEfNCvDl99Sq7L99j6tRV0a8+TJ/jL J3NL5Z8aFrQ9E/asr52FlWp6FGBC4s6d/ZQJVOh5Jf4Mo6R/6KZHX+Yu0Yb3Od9g BLcUdQpU0WXhOpMVU0+MiYdyOBRHrqJXCEI9U6rkUfG3YFmHWHLgR+qCdyYttRX+ Z2FvZ9Vy4MEJi4ICa2BoKY509Bpq7O86FGb44DFQ0VOPRZMMw8Z3IpSEEjTMdAY5 TEYjr6KwuIv1wj3cTqSzqLq8OWBOgAiMxmCNWLaaiC5+i3yUFLOA/2pRUzA1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUexlgjvNnARL3ruSr2AAAh0k7VoEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTM5NjQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVIwDQYJKoZIhvcNAQELBQADggEBAIRI tSPfNzpjYh6ZiCb6iDCylPa2SlHXnD6aGmbKgPb1RDrCymb75sRnulIZlj6lHl1D Je/i4x+mwK132MnY7TQZ/wNcI18m+oCjYdwKqYhaE+7eYBidDIgEKvlsapZyw7+K /lI/TXrE6YLEJTaPyNVpnVqQuK/X81tPLmkDOxMbqomRTLd+1UNcKFOT2agFv3md 9Hli7n2TueBIjQhR/tZYNajq5PjIcsr6xxNoer0aMeZ1+UfJPyldjDzxMIZX3QAH vEXVcvJ6se5xRKfC1meZoVDGG+CUNu/A8t06Vr+7NTPbll5rqYd89ihHdpLqxy0u KNaREqwlhMCX6lDEKAs= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org