$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS150787.roa File: AS150787.roa (raw, json) Hash identifier: Z/j+7ZBfyndVegLMi+Qlc0ljMUfSoFDl6LK9J3YtX3U= Subject key identifier: 43:A5:4A:0C:CC:22:07:61:E7:65:81:16:D5:DA:30:B5:D5:B3:FF:EF Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 759DD55E23BFC38A6FB982EFD3667CD86D560999 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS150787.roa Signing time: Tue 02 Jul 2024 00:20:49 +0000 ROA not before: Tue 02 Jul 2024 00:15:49 +0000 ROA not after: Tue 01 Jul 2025 00:20:49 +0000 asID: 150787 IP address blocks: 2a06:9f81:5300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:9d:d5:5e:23:bf:c3:8a:6f:b9:82:ef:d3:66:7c:d8:6d:56:09:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 2 00:15:49 2024 GMT Not After : Jul 1 00:20:49 2025 GMT Subject: CN=43A54A0CCC220761E7658116D5DA30B5D5B3FFEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f1:09:37:1d:5f:18:0f:f1:aa:5d:f5:ee:08: bf:fe:ce:34:67:24:57:d8:e0:17:6d:e1:29:9b:5f: 0c:c7:f0:4b:33:ba:08:3d:14:9d:e7:0d:74:1d:d2: 4c:cf:ad:8d:a0:b3:fc:db:10:75:d1:42:3c:e5:36: 59:2b:b3:e9:e9:e2:77:cc:cb:ad:de:e7:f7:ca:70: ce:d0:36:bd:9e:c8:7f:bd:3c:82:dd:86:ae:0a:31: 24:3e:95:00:84:cf:ad:f1:39:2f:aa:44:9d:ab:95: b8:0c:de:7b:4e:91:1a:e1:f1:96:db:cb:0d:2f:7b: de:0a:fc:55:66:30:0e:34:03:50:0c:ff:70:99:fc: d5:cd:af:d8:9b:c6:81:67:75:de:c3:96:89:4b:38: 68:46:fd:63:fb:ef:12:41:eb:df:91:29:be:61:9d: 71:d1:31:1b:f3:cf:30:15:5e:75:3d:77:53:33:70: 11:7a:76:11:c0:2b:d1:66:16:6d:40:ae:15:59:ff: cc:25:c0:5b:05:64:1f:73:c9:d4:5e:8b:94:5e:80: 8e:26:6d:4e:b9:ea:f4:06:d1:3a:3a:07:e6:e7:16: be:cd:69:06:44:c5:64:6d:8c:66:a0:58:5d:fa:93: 96:ab:d7:01:13:64:a3:99:45:ea:24:f1:9c:46:60: 91:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A5:4A:0C:CC:22:07:61:E7:65:81:16:D5:DA:30:B5:D5:B3:FF:EF X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS150787.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5300::/40 Signature Algorithm: sha256WithRSAEncryption bb:07:9e:a7:0c:e3:50:82:d0:75:c4:4e:07:2f:e1:e0:00:1e: 54:a6:ca:12:0b:86:3e:ac:20:42:8e:97:13:63:d3:30:4b:4f: 55:2d:04:c3:7c:58:8b:98:57:12:92:fd:1f:74:64:12:47:33: 73:db:8f:b8:1b:ff:8f:e3:d0:b5:04:88:4e:78:ff:fc:c8:1a: 50:53:4f:e2:21:ab:1e:3e:3a:e2:13:24:d6:84:8d:8a:46:a1: e5:32:f4:44:a1:2a:03:94:f4:e1:90:ad:e0:52:94:b9:23:b7: 67:68:11:e0:f8:0a:12:03:7e:95:b1:6b:2b:da:35:c5:50:26: e3:70:61:61:da:48:55:86:a2:ce:9a:63:24:fe:1a:31:79:54: 10:3d:a5:b5:96:de:c3:87:3c:83:e4:5b:45:b9:d3:e1:ed:85: 43:1d:b5:22:b8:3c:0c:94:41:c6:cd:73:c4:4b:2a:d2:d4:39: 1a:df:be:0f:af:f5:50:65:96:41:dd:02:b6:b8:92:6a:11:f5: 8a:f4:b6:0d:5e:0d:28:93:79:61:72:fc:4f:c4:4e:60:a4:bc: d2:ce:89:5c:35:a3:46:e5:f9:28:d8:73:de:cf:58:64:32:95: 32:2b:43:b6:4e:88:32:80:1d:00:a2:1d:8f:76:c5:39:0d:87: ff:df:a9:f5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdZ3VXiO/w4pvuYLv02Z82G1WCZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MDIwMDE1NDlaFw0yNTA3MDEwMDIwNDlaMDMxMTAvBgNV BAMTKDQzQTU0QTBDQ0MyMjA3NjFFNzY1ODExNkQ1REEzMEI1RDVCM0ZGRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx8Qk3HV8YD/GqXfXuCL/+zjRn JFfY4Bdt4SmbXwzH8Eszugg9FJ3nDXQd0kzPrY2gs/zbEHXRQjzlNlkrs+np4nfM y63e5/fKcM7QNr2eyH+9PILdhq4KMSQ+lQCEz63xOS+qRJ2rlbgM3ntOkRrh8Zbb yw0ve94K/FVmMA40A1AM/3CZ/NXNr9ibxoFndd7DlolLOGhG/WP77xJB69+RKb5h nXHRMRvzzzAVXnU9d1MzcBF6dhHAK9FmFm1ArhVZ/8wlwFsFZB9zydRei5RegI4m bU656vQG0To6B+bnFr7NaQZExWRtjGagWF36k5ar1wETZKOZReok8ZxGYJEfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQ6VKDMwiB2HnZYEW1dowtdWz/+8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTUwNzg3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVMwDQYJKoZIhvcNAQELBQADggEBALsH nqcM41CC0HXETgcv4eAAHlSmyhILhj6sIEKOlxNj0zBLT1UtBMN8WIuYVxKS/R90 ZBJHM3Pbj7gb/4/j0LUEiE54//zIGlBTT+Ihqx4+OuITJNaEjYpGoeUy9EShKgOU 9OGQreBSlLkjt2doEeD4ChIDfpWxayvaNcVQJuNwYWHaSFWGos6aYyT+GjF5VBA9 pbWW3sOHPIPkW0W50+HthUMdtSK4PAyUQcbNc8RLKtLUORrfvg+v9VBllkHdAra4 kmoR9Yr0tg1eDSiTeWFy/E/ETmCkvNLOiVw1o0bl+SjYc97PWGQylTIrQ7ZOiDKA HQCiHY92xTkNh//fqfU= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org