$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151194.roa File: AS151194.roa (raw, json) Hash identifier: A3S740ilPv32kZN0USf7FaEaeYyrgiTnpVZr6OhyCuI= Subject key identifier: 73:EE:BF:88:76:63:5F:36:A3:B6:C0:8B:A7:D2:3F:B0:6E:8D:C2:91 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6994D26A9E1F6FC37B17B79CBCB89843BEA08269 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151194.roa Signing time: Tue 28 May 2024 10:59:42 +0000 ROA not before: Tue 28 May 2024 10:54:42 +0000 ROA not after: Tue 27 May 2025 10:59:42 +0000 asID: 151194 IP address blocks: 2a05:dfc1:5980::/41 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:94:d2:6a:9e:1f:6f:c3:7b:17:b7:9c:bc:b8:98:43:be:a0:82:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 28 10:54:42 2024 GMT Not After : May 27 10:59:42 2025 GMT Subject: CN=73EEBF8876635F36A3B6C08BA7D23FB06E8DC291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e1:f2:31:2d:9a:5e:6e:1f:a6:a9:41:5a:48: 95:00:c7:75:a8:8b:85:e7:59:a5:c6:b5:f6:f4:14: d2:25:72:f9:79:20:a7:d6:ce:06:28:4a:b3:63:d4: 5d:db:62:90:9c:cd:85:1a:76:75:3b:1e:b2:0f:74: ef:54:82:99:30:4e:ba:aa:52:9c:d1:26:96:46:fb: 25:5f:70:d5:08:6a:00:50:4e:8f:0d:9e:16:01:6c: 9c:d1:79:76:ef:57:9b:cd:1a:a3:64:f2:ce:5b:7d: 8c:a4:c1:41:96:79:85:6e:81:f7:f9:50:f1:f6:1c: 23:8b:b6:d1:ff:a0:70:3f:e2:ba:e5:a8:24:b7:ba: 5b:88:1c:90:69:d3:88:e6:70:8a:62:fa:2e:2b:8b: ba:d3:22:b6:84:72:19:6d:1f:f5:d2:4b:e6:82:d8: 46:8c:69:6e:86:b9:1d:ec:69:d1:b6:f1:41:48:a9: 0e:02:0d:99:0d:d4:97:61:5c:6a:11:e0:34:c6:ab: 70:8a:d3:91:21:6e:b8:1d:72:aa:54:9f:38:ad:1e: b7:27:a6:00:ac:97:cd:45:39:5f:7f:cd:8e:f2:5c: 90:a2:72:0d:32:5f:40:06:49:4c:88:31:aa:a8:c1: dd:d7:b6:38:7e:36:32:0c:87:3b:77:d1:95:e8:44: dd:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:EE:BF:88:76:63:5F:36:A3:B6:C0:8B:A7:D2:3F:B0:6E:8D:C2:91 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151194.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5980::/41 Signature Algorithm: sha256WithRSAEncryption 3a:7f:74:5d:b9:32:cf:60:3d:ba:98:71:2e:be:37:e1:19:62: cf:ca:8e:97:a7:b3:e5:40:10:64:45:e8:aa:22:dd:04:21:4d: 06:f5:69:e7:0f:81:25:1f:87:fa:f2:12:5a:ba:0c:17:40:74: 91:b2:f9:f0:ce:b8:6f:f0:be:93:ef:d4:f9:78:56:c5:fa:c7: 4d:1d:89:9b:31:de:21:72:d1:c7:f9:7a:f2:0a:bc:32:ad:16: f1:b5:a6:a4:fc:e5:67:c5:e2:d7:06:52:c3:75:a5:f0:fe:6d: e0:f5:a5:71:b5:ee:4d:20:39:93:0a:ea:e2:25:08:be:a5:02: 1f:82:73:d0:8b:2b:b7:07:85:ac:38:f5:0d:b0:a1:ed:0a:0f: 8e:48:3d:41:02:42:81:3b:d6:91:9a:44:1c:e6:9f:1e:a4:b1: 04:75:e5:fb:b6:71:68:79:a1:8a:a1:1f:69:e9:20:f4:86:8c: 22:51:28:4d:de:e6:c1:79:d0:51:9f:aa:c5:2b:9e:3e:e0:78: 20:d4:28:07:ba:71:83:bb:54:f4:20:85:09:85:2d:18:39:72: 43:50:81:56:78:e1:9a:f6:75:3a:7d:63:12:3e:40:50:de:c5: aa:2d:45:f6:37:79:6a:d5:47:ad:af:b7:87:26:7d:c4:4c:88: 72:0e:cb:a9 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUaZTSap4fb8N7F7ecvLiYQ76ggmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MjgxMDU0NDJaFw0yNTA1MjcxMDU5NDJaMDMxMTAvBgNV BAMTKDczRUVCRjg4NzY2MzVGMzZBM0I2QzA4QkE3RDIzRkIwNkU4REMyOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/4fIxLZpebh+mqUFaSJUAx3Wo i4XnWaXGtfb0FNIlcvl5IKfWzgYoSrNj1F3bYpCczYUadnU7HrIPdO9UgpkwTrqq UpzRJpZG+yVfcNUIagBQTo8NnhYBbJzReXbvV5vNGqNk8s5bfYykwUGWeYVugff5 UPH2HCOLttH/oHA/4rrlqCS3uluIHJBp04jmcIpi+i4ri7rTIraEchltH/XSS+aC 2EaMaW6GuR3sadG28UFIqQ4CDZkN1JdhXGoR4DTGq3CK05EhbrgdcqpUnzitHrcn pgCsl81FOV9/zY7yXJCicg0yX0AGSUyIMaqowd3Xtjh+NjIMhzt30ZXoRN1RAgMB AAGjggH1MIIB8TAdBgNVHQ4EFgQUc+6/iHZjXzajtsCLp9I/sG6NwpEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTUxMTk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcHKgXfwVmAMA0GCSqGSIb3DQEBCwUAA4IBAQA6 f3RduTLPYD26mHEuvjfhGWLPyo6Xp7PlQBBkReiqIt0EIU0G9WnnD4ElH4f68hJa ugwXQHSRsvnwzrhv8L6T79T5eFbF+sdNHYmbMd4hctHH+XryCrwyrRbxtaak/OVn xeLXBlLDdaXw/m3g9aVxte5NIDmTCuriJQi+pQIfgnPQiyu3B4WsOPUNsKHtCg+O SD1BAkKBO9aRmkQc5p8epLEEdeX7tnFoeaGKoR9p6SD0howiUShN3ubBedBRn6rF K54+4Hgg1CgHunGDu1T0IIUJhS0YOXJDUIFWeOGa9nU6fWMSPkBQ3sWqLUX2N3lq 1Uetr7eHJn3ETIhyDsup -----END CERTIFICATE-----Generated at Fri Apr 4 17:02:04 2025 by rpki-client