$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151338.roa File: AS151338.roa (raw, json) Hash identifier: bGbsME2iAZFZe6HKgGAZ3O48HPEHv9fHB5hnRbYAoSU= Subject key identifier: 1E:F0:8B:78:99:C4:73:1A:BF:8E:70:F5:A3:F2:4E:B5:8F:45:98:F7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3B06C874D71ADE95AD7079E5CD993E82FFD3A926 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151338.roa Signing time: Wed 05 Jul 2023 10:58:57 +0000 ROA not before: Wed 05 Jul 2023 10:53:57 +0000 ROA not after: Wed 03 Jul 2024 10:58:57 +0000 asID: 151338 IP address blocks: 2a05:dfc1:6700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:06:c8:74:d7:1a:de:95:ad:70:79:e5:cd:99:3e:82:ff:d3:a9:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 5 10:53:57 2023 GMT Not After : Jul 3 10:58:57 2024 GMT Subject: CN=1EF08B7899C4731ABF8E70F5A3F24EB58F4598F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:09:b5:10:72:00:ac:c0:d1:76:ec:49:88:00: 37:a7:b7:d9:87:c8:5b:cd:90:01:7e:d9:ee:95:a5: 7d:ff:05:48:91:86:6c:78:99:c7:9f:da:5f:89:c7: 2f:e2:80:c9:41:88:4e:f3:ad:d3:fb:96:b0:f5:d9: bf:d4:68:00:b1:01:7e:ab:6e:d0:0a:36:ee:dc:89: 16:b8:bf:cf:af:cb:30:78:49:3c:26:a5:c8:e7:a1: ae:9a:6a:93:9e:8b:3c:3e:f1:07:81:05:ff:bf:b7: 27:4a:21:ec:2c:b3:f2:21:5b:81:f1:2d:d7:41:a0: d0:7c:5c:7d:ea:ef:eb:be:6b:3f:a6:33:d3:d4:24: 22:59:8a:8f:8a:21:27:f7:11:e2:a8:be:f9:e4:b9: 36:8a:b3:69:93:f0:b0:15:85:a5:00:34:0e:b8:dc: f7:8c:96:24:ef:2f:5e:ac:82:05:32:d3:94:fd:9f: 8d:8a:74:d0:c5:2e:05:cd:26:7b:7f:b6:36:39:40: 2f:8e:a2:9b:87:85:3b:c5:8b:46:ab:54:4d:31:0e: 6e:8c:a2:12:b4:1f:3f:bb:a3:c1:9b:e4:fe:bb:8e: 55:53:94:c7:36:75:65:bf:c0:93:cc:66:8e:db:23: 77:77:6a:eb:bf:09:2d:ac:fa:0d:29:af:77:96:38: f2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F0:8B:78:99:C4:73:1A:BF:8E:70:F5:A3:F2:4E:B5:8F:45:98:F7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6700::/40 Signature Algorithm: sha256WithRSAEncryption 1a:56:1e:b5:12:50:20:55:7d:23:a8:91:19:72:11:4a:68:7b: 45:b6:7b:22:05:12:9c:ba:c3:09:ff:f5:77:46:66:78:46:79: 99:cd:22:b0:24:29:ad:2f:7d:77:1f:46:16:ef:6a:ce:eb:10: f4:a1:33:80:bf:ca:99:4e:d0:71:31:19:be:40:3b:8b:a0:ac: ab:1e:3d:d0:6f:5d:79:02:58:58:87:54:b5:8c:27:f7:c3:66: 98:6b:4f:26:0f:aa:87:06:0e:ac:26:1a:d4:46:6a:83:a9:d3: a7:9d:90:12:72:ed:b8:b3:3a:29:06:88:e7:4b:b2:c3:b3:e4: ab:ab:39:86:b0:6a:cd:5b:39:81:e8:0c:2b:41:6c:d5:fd:c7: f9:40:2c:38:28:c5:dd:74:1a:52:8f:06:38:bb:5a:43:80:6b: da:1c:f6:c2:4e:8c:81:65:a1:c4:d4:92:7b:d7:b7:62:1e:b5: 69:a7:e7:7c:93:1f:b2:a7:5b:e0:aa:b4:d9:e2:dc:d2:f2:16: b4:4e:42:b1:fd:8d:84:6a:98:62:3e:37:64:54:f3:e1:b3:0e: 33:d6:25:9a:01:a8:47:c8:77:9c:f0:01:9e:3d:25:3a:b5:c1: 5b:dd:c8:d2:28:e9:90:c8:7e:99:97:cb:1c:f6:a3:e6:f0:4f: d9:f1:3d:4f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOwbIdNca3pWtcHnlzZk+gv/TqSYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MDUxMDUzNTdaFw0yNDA3MDMxMDU4NTdaMDMxMTAvBgNV BAMTKDFFRjA4Qjc4OTlDNDczMUFCRjhFNzBGNUEzRjI0RUI1OEY0NTk4RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGCbUQcgCswNF27EmIADent9mH yFvNkAF+2e6VpX3/BUiRhmx4mcef2l+Jxy/igMlBiE7zrdP7lrD12b/UaACxAX6r btAKNu7ciRa4v8+vyzB4STwmpcjnoa6aapOeizw+8QeBBf+/tydKIewss/IhW4Hx LddBoNB8XH3q7+u+az+mM9PUJCJZio+KISf3EeKovvnkuTaKs2mT8LAVhaUANA64 3PeMliTvL16sggUy05T9n42KdNDFLgXNJnt/tjY5QC+OopuHhTvFi0arVE0xDm6M ohK0Hz+7o8Gb5P67jlVTlMc2dWW/wJPMZo7bI3d3auu/CS2s+g0pr3eWOPKlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUHvCLeJnEcxq/jnD1o/JOtY9FmPcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTUxMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWcwDQYJKoZIhvcNAQELBQADggEBABpW HrUSUCBVfSOokRlyEUpoe0W2eyIFEpy6wwn/9XdGZnhGeZnNIrAkKa0vfXcfRhbv as7rEPShM4C/yplO0HExGb5AO4ugrKsePdBvXXkCWFiHVLWMJ/fDZphrTyYPqocG DqwmGtRGaoOp06edkBJy7bizOikGiOdLssOz5KurOYawas1bOYHoDCtBbNX9x/lA LDgoxd10GlKPBji7WkOAa9oc9sJOjIFlocTUknvXt2IetWmn53yTH7KnW+CqtNni 3NLyFrROQrH9jYRqmGI+N2RU8+GzDjPWJZoBqEfId5zwAZ49JTq1wVvdyNIo6ZDI fpmXyxz2o+bwT9nxPU8= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org