$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: 5sS2Md4NvGZgH+7FJAnYuqGyowvUE5KH2oEx7mumto4= Subject key identifier: BE:51:99:B0:5B:EB:BC:9E:C1:BB:F6:53:19:B6:B6:7F:88:A3:17:AF Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 120B3D440586A0468DCBE2EB5003A44DA12D7622 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS14618.roa Signing time: Sun 01 Sep 2024 02:49:53 +0000 ROA not before: Sun 01 Sep 2024 02:44:53 +0000 ROA not after: Sun 31 Aug 2025 02:49:53 +0000 asID: 14618 IP address blocks: 2a05:dfc1:a400::/44 maxlen: 44 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:0b:3d:44:05:86:a0:46:8d:cb:e2:eb:50:03:a4:4d:a1:2d:76:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 1 02:44:53 2024 GMT Not After : Aug 31 02:49:53 2025 GMT Subject: CN=BE5199B05BEBBC9EC1BBF65319B6B67F88A317AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:11:4f:1a:14:e5:f9:ac:bd:35:8e:fe:b3:05: 93:33:40:71:9d:fe:60:19:5c:ca:96:cc:af:80:09: 7c:cc:05:0f:b0:7d:07:4e:70:d8:24:76:0a:0f:48: ca:62:bb:7d:89:50:e7:38:e4:06:2a:6a:74:10:b6: 11:c6:c9:a4:e7:2b:b9:fb:26:68:eb:58:b6:13:63: c6:94:91:f6:0e:be:f8:1a:b8:59:d0:93:3e:4b:7c: 57:94:91:d0:ba:25:7b:36:30:36:9a:cb:0a:65:33: 55:4e:fa:44:3f:93:86:46:85:03:21:ed:77:81:91: f4:d0:f7:27:98:4a:17:d3:12:38:c9:1f:c9:28:5a: 2a:1a:59:f8:e4:a5:e7:2c:9d:6d:f5:e4:40:18:b5: 5e:e6:a0:85:05:3d:d6:d5:b1:0b:67:74:9d:ee:ee: 6a:29:97:22:51:56:b8:48:a8:e8:eb:e5:44:b2:64: da:5a:a5:97:5b:c4:11:49:0c:f7:6e:d9:68:06:ca: ba:c7:8d:18:ea:04:d2:54:32:25:a9:04:97:56:a0: f6:f8:09:c9:22:c2:e8:86:3c:33:19:ca:27:69:58: d7:3f:2f:45:2b:be:82:05:86:75:4b:09:3b:7b:d4: 24:73:93:35:01:10:b4:d5:4b:79:62:78:fa:cb:7f: 54:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:51:99:B0:5B:EB:BC:9E:C1:BB:F6:53:19:B6:B6:7F:88:A3:17:AF X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a400::/44 Signature Algorithm: sha256WithRSAEncryption b9:f8:d7:23:41:c0:5f:dd:b9:bd:8b:6c:5d:58:08:f3:df:4e: 45:5c:2d:e4:c9:35:7c:89:90:b8:ed:50:4a:bf:cf:27:d1:9c: 05:d6:34:82:aa:c0:e6:50:ac:3c:c1:70:53:d2:a7:49:92:f7: 7a:a3:83:25:c6:3d:29:0a:43:65:39:67:1b:d6:2f:a9:e5:57: c6:0d:57:38:67:f3:09:62:7c:d8:a0:4f:52:5c:ec:1a:40:38: 7a:41:71:a3:33:5b:be:09:56:cd:96:f0:ab:08:53:b2:d6:5d: a4:7a:6a:d9:0a:bc:05:08:f2:6c:a1:6f:92:28:e4:58:5d:59: 8a:b6:85:b6:e7:77:98:4f:44:21:95:88:cb:67:45:5a:af:9a: e2:75:db:b0:3c:6c:44:0d:30:a3:21:e9:f2:b3:c1:06:34:7c: 69:69:0a:74:e3:8e:63:f5:ab:71:13:3b:2f:3c:fc:f0:4f:8b: d9:28:a9:65:57:18:32:51:67:cf:7b:63:6c:99:4e:84:f0:47: 53:e7:8d:47:14:9c:3f:65:f5:b7:2d:07:61:43:60:6f:0d:97: ea:46:2d:61:88:df:fe:48:0f:b2:ec:2e:0b:90:c4:e7:6a:22: fb:9a:bf:00:a1:c4:81:ad:48:72:3f:69:c9:96:3f:b1:94:1a: 60:d2:4a:2c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEgs9RAWGoEaNy+LrUAOkTaEtdiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MDEwMjQ0NTNaFw0yNTA4MzEwMjQ5NTNaMDMxMTAvBgNV BAMTKEJFNTE5OUIwNUJFQkJDOUVDMUJCRjY1MzE5QjZCNjdGODhBMzE3QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxEU8aFOX5rL01jv6zBZMzQHGd /mAZXMqWzK+ACXzMBQ+wfQdOcNgkdgoPSMpiu32JUOc45AYqanQQthHGyaTnK7n7 JmjrWLYTY8aUkfYOvvgauFnQkz5LfFeUkdC6JXs2MDaaywplM1VO+kQ/k4ZGhQMh 7XeBkfTQ9yeYShfTEjjJH8koWioaWfjkpecsnW315EAYtV7moIUFPdbVsQtndJ3u 7moplyJRVrhIqOjr5USyZNpapZdbxBFJDPdu2WgGyrrHjRjqBNJUMiWpBJdWoPb4 CckiwuiGPDMZyidpWNc/L0UrvoIFhnVLCTt71CRzkzUBELTVS3liePrLf1RFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUvlGZsFvrvJ7Bu/ZTGba2f4ijF68wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUH AQcBAf8EEzARMA8EAgACMAkDBwQqBd/BpAAwDQYJKoZIhvcNAQELBQADggEBALn4 1yNBwF/dub2LbF1YCPPfTkVcLeTJNXyJkLjtUEq/zyfRnAXWNIKqwOZQrDzBcFPS p0mS93qjgyXGPSkKQ2U5ZxvWL6nlV8YNVzhn8wlifNigT1Jc7BpAOHpBcaMzW74J Vs2W8KsIU7LWXaR6atkKvAUI8myhb5Io5FhdWYq2hbbnd5hPRCGViMtnRVqvmuJ1 27A8bEQNMKMh6fKzwQY0fGlpCnTjjmP1q3ETOy88/PBPi9koqWVXGDJRZ897Y2yZ ToTwR1PnjUcUnD9l9bctB2FDYG8Nl+pGLWGI3/5ID7LsLguQxOdqIvuavwChxIGt SHI/acmWP7GUGmDSSiw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org