$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: ArEuGmGFjhb3j66ikjp+Ng9/bTLgZP6zzClFHRn22uY= Subject key identifier: 1F:33:54:58:79:A7:2F:57:15:A8:D1:8D:E7:8F:64:12:21:DB:15:F1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 319F7793CCAA43521E481AF86F8132A67820AC9E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS14618.roa Signing time: Sun 01 Oct 2023 02:10:31 +0000 ROA not before: Sun 01 Oct 2023 02:05:31 +0000 ROA not after: Sun 29 Sep 2024 02:10:31 +0000 asID: 14618 IP address blocks: 2a05:dfc1:a400::/44 maxlen: 44 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 02 May 2024 00:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9f:77:93:cc:aa:43:52:1e:48:1a:f8:6f:81:32:a6:78:20:ac:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 1 02:05:31 2023 GMT Not After : Sep 29 02:10:31 2024 GMT Subject: CN=1F33545879A72F5715A8D18DE78F641221DB15F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:43:f8:39:43:58:85:d6:3b:cc:52:7e:b0:c5: 66:47:d0:5a:66:8c:2b:7a:f6:40:39:68:b4:3e:a3: 1f:6f:ec:fb:c1:48:0e:c1:b9:81:5f:b9:46:30:20: 1d:58:de:2d:62:ce:f9:6f:58:47:29:12:38:15:38: 81:a5:42:ed:1c:a4:2a:97:ad:3d:3e:47:9b:fa:73: 53:31:a7:fe:b1:d6:06:6f:aa:dd:9e:b6:4d:e7:25: bd:1d:bc:80:eb:45:cf:cd:45:95:7a:39:bd:86:a7: e5:05:57:0a:df:c3:9b:01:6d:53:3c:ff:27:42:f2: 9a:d9:54:70:9b:4a:fc:1f:6e:ce:29:d8:4e:e4:e3: 68:52:11:7a:ae:7b:b0:fb:93:89:54:91:fd:1d:26: 0a:8c:fd:56:d6:fb:71:20:18:47:d8:51:09:58:da: 4d:be:3e:84:8c:49:1a:00:de:b7:d8:62:fb:47:77: b5:fe:36:47:03:00:19:aa:9d:34:c4:4a:eb:93:cf: 01:fe:f7:a5:20:a4:b7:4e:f5:eb:53:57:6d:87:3b: 18:1c:87:06:3f:bb:7e:cc:a6:95:47:59:87:b4:19: fc:c6:55:76:5e:20:17:b0:9f:15:8c:5c:00:ee:de: c7:9d:28:f3:9d:9e:99:4c:cc:a6:ed:5c:03:bb:14: 04:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:33:54:58:79:A7:2F:57:15:A8:D1:8D:E7:8F:64:12:21:DB:15:F1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a400::/44 Signature Algorithm: sha256WithRSAEncryption 15:94:66:52:67:c8:b3:cb:ba:32:3b:88:44:08:d0:58:72:41: 4c:8f:ad:be:98:64:f5:c1:91:2f:48:ad:2a:b3:4c:91:1c:20: 80:ea:81:1c:0a:a8:c0:36:17:47:d7:03:83:34:7c:7f:a6:f1: e9:ec:cf:63:5c:bc:92:00:a0:d6:70:1a:6b:18:a6:19:c8:65: 75:c2:c5:62:77:19:f5:e8:fd:4b:cb:06:f0:b0:02:ed:2a:92: f6:11:74:d5:23:ac:a2:fc:a6:6d:59:99:e0:70:37:ec:2b:f5: d7:12:36:5f:e0:05:e9:06:84:55:a0:62:3c:3e:ae:92:39:10: fb:29:f1:5b:9a:ad:be:7d:bb:a8:53:37:f7:cb:28:71:e0:7e: 05:99:bb:23:26:25:d4:e3:18:13:3c:49:39:01:2d:29:7a:dc: a8:6b:cc:d8:af:2e:6c:64:65:f0:82:34:80:04:88:90:50:64: d5:a1:44:72:63:d8:5a:e3:42:d9:44:d1:f0:47:30:14:51:05: 64:8a:83:92:31:6b:ae:59:aa:09:ac:6c:0f:b4:45:51:10:38: 23:44:0b:38:fb:6a:55:15:ff:54:10:45:1e:b9:c2:56:18:4e: 8d:da:98:62:3f:40:85:a9:37:35:da:9b:4e:02:62:7b:41:d9: b0:b7:24:f6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMZ93k8yqQ1IeSBr4b4EypnggrJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMDEwMjA1MzFaFw0yNDA5MjkwMjEwMzFaMDMxMTAvBgNV BAMTKDFGMzM1NDU4NzlBNzJGNTcxNUE4RDE4REU3OEY2NDEyMjFEQjE1RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHQ/g5Q1iF1jvMUn6wxWZH0Fpm jCt69kA5aLQ+ox9v7PvBSA7BuYFfuUYwIB1Y3i1izvlvWEcpEjgVOIGlQu0cpCqX rT0+R5v6c1Mxp/6x1gZvqt2etk3nJb0dvIDrRc/NRZV6Ob2Gp+UFVwrfw5sBbVM8 /ydC8prZVHCbSvwfbs4p2E7k42hSEXque7D7k4lUkf0dJgqM/VbW+3EgGEfYUQlY 2k2+PoSMSRoA3rfYYvtHd7X+NkcDABmqnTTESuuTzwH+96UgpLdO9etTV22HOxgc hwY/u37MppVHWYe0GfzGVXZeIBewnxWMXADu3sedKPOdnplMzKbtXAO7FAQTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUHzNUWHmnL1cVqNGN549kEiHbFfEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUH AQcBAf8EEzARMA8EAgACMAkDBwQqBd/BpAAwDQYJKoZIhvcNAQELBQADggEBABWU ZlJnyLPLujI7iEQI0FhyQUyPrb6YZPXBkS9IrSqzTJEcIIDqgRwKqMA2F0fXA4M0 fH+m8ensz2NcvJIAoNZwGmsYphnIZXXCxWJ3GfXo/UvLBvCwAu0qkvYRdNUjrKL8 pm1ZmeBwN+wr9dcSNl/gBekGhFWgYjw+rpI5EPsp8Vuarb59u6hTN/fLKHHgfgWZ uyMmJdTjGBM8STkBLSl63KhrzNivLmxkZfCCNIAEiJBQZNWhRHJj2FrjQtlE0fBH MBRRBWSKg5Ixa65ZqgmsbA+0RVEQOCNECzj7alUV/1QQRR65wlYYTo3amGI/QIWp NzXam04CYntB2bC3JPY= -----END CERTIFICATE-----Generated at Wed May 1 12:16:01 2024 by rpki-client on console-ams.rpki-client.org