$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151349.roa File: AS151349.roa (raw, json) Hash identifier: p4140XJ2ECe9tSyXHSfwH/HVFe+Eafe4ytFwhhlixdU= Subject key identifier: 15:D3:1C:A2:88:6C:56:C1:4B:A8:C6:72:01:CB:AC:42:D5:3E:7D:FE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3856A1F4CEEC30C4C9EC52E14D8FD18A95F15430 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151349.roa Signing time: Wed 29 Nov 2023 22:45:00 +0000 ROA not before: Wed 29 Nov 2023 22:40:00 +0000 ROA not after: Wed 27 Nov 2024 22:45:00 +0000 asID: 151349 IP address blocks: 2a06:9f81:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:56:a1:f4:ce:ec:30:c4:c9:ec:52:e1:4d:8f:d1:8a:95:f1:54:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 29 22:40:00 2023 GMT Not After : Nov 27 22:45:00 2024 GMT Subject: CN=15D31CA2886C56C14BA8C67201CBAC42D53E7DFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1a:2a:97:94:5e:b8:98:e9:78:fd:01:c4:ce: f7:1f:84:64:29:0d:26:9d:39:a4:ec:14:89:79:f7: b3:c1:18:14:f7:cb:3a:ce:83:b6:ef:79:fd:10:c1: e6:a9:52:2e:5e:d7:d4:5c:9e:38:18:14:8b:b7:4a: 79:16:bd:76:16:3f:6a:02:74:a4:54:a1:ce:a4:61: 30:ce:5c:00:8e:a8:bc:0b:0f:21:14:06:ae:59:7b: f9:d7:dd:f6:63:46:b7:4c:65:a8:18:56:4b:cd:e9: 51:c3:8d:f6:5f:ca:44:3f:27:82:c2:c5:94:05:cb: 5e:98:a6:9e:3e:5f:7a:b5:4a:90:50:01:9a:a6:91: db:06:f0:13:68:e7:5c:a7:f9:f5:51:e5:05:31:1a: c7:f6:69:1d:84:e1:82:43:3a:10:ad:c3:3b:55:cf: 2f:40:bb:fa:f3:2f:ff:57:d6:c5:0a:bb:ee:dc:6c: 52:90:51:63:f6:77:85:e8:30:01:f3:06:f9:e2:15: c7:63:96:e7:ed:61:d4:bd:27:5f:61:b0:e3:2d:e7: d6:88:61:af:fb:82:73:ab:8d:78:5f:e9:7e:c0:5f: 17:93:34:ce:15:f0:29:ec:ba:ce:75:9a:ed:e5:ed: 6b:bb:68:0a:7d:d6:bf:68:54:f8:9c:30:8d:32:c5: c0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D3:1C:A2:88:6C:56:C1:4B:A8:C6:72:01:CB:AC:42:D5:3E:7D:FE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151349.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3000::/40 Signature Algorithm: sha256WithRSAEncryption 8e:4e:70:16:cb:52:8b:0b:54:9f:eb:d0:ff:f8:93:3e:a6:b0: 8c:0c:71:e3:c2:28:fd:ff:d5:f7:8d:4a:63:ec:a3:42:5f:2f: f9:35:8c:78:89:97:19:40:b3:14:1a:e5:7b:de:d1:d3:c6:1f: 44:7c:99:12:ff:62:f6:b7:dd:c9:66:83:c5:02:ab:19:24:93: c9:1e:3d:09:89:6e:4f:a5:8a:93:08:34:20:f4:42:d8:be:0f: 0d:f1:d8:47:95:f8:3e:8a:a9:14:49:f0:cc:64:24:fd:5b:db: b1:b7:7c:03:35:9d:fc:df:18:12:ca:81:6d:3b:d1:0b:12:70: ff:23:79:dd:b5:55:79:a6:2d:b6:87:44:a0:d2:58:cf:ad:cf: 80:43:55:03:3b:66:fd:e7:fc:f0:1b:fd:e6:bf:48:f0:f0:d6: 67:33:66:6a:76:7e:be:f0:3e:ae:05:b2:32:37:53:d1:db:a5: 47:4c:57:b4:7f:11:8d:16:a1:ef:8f:a1:b6:55:d7:da:bb:81: 86:ed:e1:a7:98:aa:49:0c:49:e0:26:f1:1e:87:2a:e3:5d:98: 22:36:3c:e9:9e:03:31:fe:75:7d:f9:f3:7a:ac:24:9a:e0:76: f3:a7:08:fa:8c:ee:b2:bd:ab:e4:e8:ec:03:7a:68:25:5a:c6: 28:ea:66:b5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOFah9M7sMMTJ7FLhTY/RipXxVDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMjkyMjQwMDBaFw0yNDExMjcyMjQ1MDBaMDMxMTAvBgNV BAMTKDE1RDMxQ0EyODg2QzU2QzE0QkE4QzY3MjAxQ0JBQzQyRDUzRTdERkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVGiqXlF64mOl4/QHEzvcfhGQp DSadOaTsFIl597PBGBT3yzrOg7bvef0QweapUi5e19RcnjgYFIu3SnkWvXYWP2oC dKRUoc6kYTDOXACOqLwLDyEUBq5Ze/nX3fZjRrdMZagYVkvN6VHDjfZfykQ/J4LC xZQFy16Ypp4+X3q1SpBQAZqmkdsG8BNo51yn+fVR5QUxGsf2aR2E4YJDOhCtwztV zy9Au/rzL/9X1sUKu+7cbFKQUWP2d4XoMAHzBvniFcdjluftYdS9J19hsOMt59aI Ya/7gnOrjXhf6X7AXxeTNM4V8Cnsus51mu3l7Wu7aAp91r9oVPicMI0yxcChAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFdMcoohsVsFLqMZyAcusQtU+ff4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTUxMzQ5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTAwDQYJKoZIhvcNAQELBQADggEBAI5O cBbLUosLVJ/r0P/4kz6msIwMcePCKP3/1feNSmPso0JfL/k1jHiJlxlAsxQa5Xve 0dPGH0R8mRL/Yva33clmg8UCqxkkk8kePQmJbk+lipMINCD0Qti+Dw3x2EeV+D6K qRRJ8MxkJP1b27G3fAM1nfzfGBLKgW070QsScP8jed21VXmmLbaHRKDSWM+tz4BD VQM7Zv3n/PAb/ea/SPDw1mczZmp2fr7wPq4FsjI3U9HbpUdMV7R/EY0Woe+PobZV 19q7gYbt4aeYqkkMSeAm8R6HKuNdmCI2POmeAzH+dX3583qsJJrgdvOnCPqM7rK9 q+To7AN6aCVaxijqZrU= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org