$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151194.roa File: AS151194.roa (raw, json) Hash identifier: AsoOxOl5XTgBaljYip+6iKdqJ+vFkQCo0UYWfp422JY= Subject key identifier: 52:A4:ED:8C:D6:44:25:EF:BE:0E:DD:D0:1E:42:BB:0E:0F:26:8D:0C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6E6B91DE893FA2558F322B1B8BD234BB4F7194E4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151194.roa Signing time: Tue 27 Jun 2023 10:29:24 +0000 ROA not before: Tue 27 Jun 2023 10:24:24 +0000 ROA not after: Tue 25 Jun 2024 10:29:24 +0000 asID: 151194 IP address blocks: 2a05:dfc1:5980::/41 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:6b:91:de:89:3f:a2:55:8f:32:2b:1b:8b:d2:34:bb:4f:71:94:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 27 10:24:24 2023 GMT Not After : Jun 25 10:29:24 2024 GMT Subject: CN=52A4ED8CD64425EFBE0EDDD01E42BB0E0F268D0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5c:d4:71:ac:2b:c3:c9:9c:94:07:e1:62:79: 6e:d6:a7:6d:92:a2:ad:16:c7:5e:f6:8d:92:64:ab: 3d:93:43:33:34:61:00:fe:73:ff:83:ca:92:54:72: 88:19:3c:be:43:9f:27:49:3a:9c:45:c9:a2:34:d0: de:c4:60:03:aa:3a:d9:2f:6f:43:37:f2:38:d6:6d: e7:08:7e:cb:1f:1e:d0:3d:79:dd:13:b5:93:b0:c7: 72:28:9b:ed:f0:32:31:7a:92:18:96:aa:87:8f:df: f5:8a:8f:51:03:2b:9f:f8:2c:1a:f3:a4:d0:96:c2: d5:97:1a:60:d7:13:96:11:23:03:98:2b:dc:0a:9e: 5b:3a:89:ba:1a:33:ff:d9:a2:fb:57:f2:c0:b9:c3: ad:d1:be:5b:98:ae:3c:5b:df:d1:45:d0:1d:7f:61: 70:60:2e:3e:ff:cd:18:d1:be:04:ff:41:31:ff:33: 79:cb:44:a8:49:e7:b2:31:87:62:34:b8:af:ea:47: 5d:8b:df:6d:07:85:27:3c:34:6f:30:98:a9:b3:70: c4:23:d8:ce:ef:23:d9:50:28:3f:79:3a:c8:0e:21: 54:db:65:ae:5d:bd:81:de:5c:b7:6a:22:19:99:bc: 5f:a4:3f:7b:fd:79:d2:26:ec:bc:e9:a0:aa:6d:f9: f2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A4:ED:8C:D6:44:25:EF:BE:0E:DD:D0:1E:42:BB:0E:0F:26:8D:0C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151194.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5980::/41 Signature Algorithm: sha256WithRSAEncryption bc:fd:34:0b:7c:0b:76:e1:7a:41:f6:bf:61:b5:28:fc:08:1c: 52:d1:2c:76:56:33:55:44:85:ad:3c:27:b1:40:4b:72:ec:e5: 7c:60:44:43:90:74:2f:3f:08:9d:d0:ca:c8:f8:32:2b:81:84: e1:d1:c3:69:c9:2a:29:90:61:6b:02:bd:b9:6e:6d:c2:0f:c2: bf:55:b2:0d:d2:06:8c:33:6c:22:e7:ae:1b:4a:a6:1c:e9:1b: 1f:7d:bb:e0:a1:b3:57:b5:d0:8e:d3:de:9e:7c:79:b6:02:8e: 4d:0e:9c:b1:5e:72:0d:65:06:6f:b6:29:25:5a:73:f6:5e:78: c2:ef:9e:d5:8b:f9:7f:b5:68:b7:77:80:45:5b:eb:c5:49:b8: a8:b3:c0:66:e3:14:01:26:83:68:ce:c0:e4:07:98:0c:f4:5b: d8:43:cd:f3:c6:ff:81:10:e0:fe:06:dc:00:ee:8c:d4:6b:41: 4e:6a:dc:08:aa:82:6c:ea:35:79:4d:3e:9e:15:80:ca:61:9f: 9b:ca:a1:a7:9b:86:ac:53:38:8c:90:fc:21:c7:a2:ed:5a:94: c2:3e:a8:e2:66:7a:2e:d8:56:92:28:67:03:fd:57:d0:cd:38: 05:8a:03:a2:c5:f1:8c:42:d8:5b:8b:d9:f8:63:43:00:b1:dd: c8:d8:ad:b5 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUbmuR3ok/olWPMisbi9I0u09xlOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA2MjcxMDI0MjRaFw0yNDA2MjUxMDI5MjRaMDMxMTAvBgNV BAMTKDUyQTRFRDhDRDY0NDI1RUZCRTBFREREMDFFNDJCQjBFMEYyNjhEMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPXNRxrCvDyZyUB+FieW7Wp22S oq0Wx172jZJkqz2TQzM0YQD+c/+DypJUcogZPL5DnydJOpxFyaI00N7EYAOqOtkv b0M38jjWbecIfssfHtA9ed0TtZOwx3Iom+3wMjF6khiWqoeP3/WKj1EDK5/4LBrz pNCWwtWXGmDXE5YRIwOYK9wKnls6iboaM//ZovtX8sC5w63RvluYrjxb39FF0B1/ YXBgLj7/zRjRvgT/QTH/M3nLRKhJ57Ixh2I0uK/qR12L320HhSc8NG8wmKmzcMQj 2M7vI9lQKD95OsgOIVTbZa5dvYHeXLdqIhmZvF+kP3v9edIm7LzpoKpt+fK1AgMB AAGjggH1MIIB8TAdBgNVHQ4EFgQUUqTtjNZEJe++Dt3QHkK7Dg8mjQwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTUxMTk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcHKgXfwVmAMA0GCSqGSIb3DQEBCwUAA4IBAQC8 /TQLfAt24XpB9r9htSj8CBxS0Sx2VjNVRIWtPCexQEty7OV8YERDkHQvPwid0MrI +DIrgYTh0cNpySopkGFrAr25bm3CD8K/VbIN0gaMM2wi564bSqYc6RsffbvgobNX tdCO096efHm2Ao5NDpyxXnINZQZvtiklWnP2XnjC757Vi/l/tWi3d4BFW+vFSbio s8Bm4xQBJoNozsDkB5gM9FvYQ83zxv+BEOD+BtwA7ozUa0FOatwIqoJs6jV5TT6e FYDKYZ+byqGnm4asUziMkPwhx6LtWpTCPqjiZnou2FaSKGcD/VfQzTgFigOixfGM Qthbi9n4Y0MAsd3I2K21 -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org