$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151349.roa File: AS151349.roa (raw, json) Hash identifier: 9Lt0epEJxvIPywvBikld/LFRmtnQqGZtQ4rTP2kbEq8= Subject key identifier: 43:71:C7:58:CC:F8:69:D5:63:1A:11:4C:03:CB:FB:D9:59:4F:E0:3C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 151840F1BDC48CB3C48AAC9A3813BCBA8171698F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151349.roa Signing time: Wed 30 Oct 2024 22:45:30 +0000 ROA not before: Wed 30 Oct 2024 22:40:30 +0000 ROA not after: Wed 29 Oct 2025 22:45:30 +0000 asID: 151349 IP address blocks: 2a06:9f81:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:18:40:f1:bd:c4:8c:b3:c4:8a:ac:9a:38:13:bc:ba:81:71:69:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 30 22:40:30 2024 GMT Not After : Oct 29 22:45:30 2025 GMT Subject: CN=4371C758CCF869D5631A114C03CBFBD9594FE03C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:73:bd:cf:05:03:3f:48:2d:62:bc:dc:72: 2e:9e:f8:d0:ff:65:12:6a:cc:bc:dc:cc:13:8f:43: 36:59:2a:41:be:48:e3:85:c6:00:bb:5c:d6:e8:16: 29:1d:05:ed:91:49:9c:d3:ed:2c:56:9d:59:b1:18: e7:5f:4b:16:06:c8:2a:01:85:86:fa:dc:ba:49:8e: f9:3a:23:6e:6d:7d:ee:67:db:e3:46:3b:a6:13:58: 06:a8:39:5f:62:b5:fd:c4:b7:08:9c:76:32:33:01: 1b:dc:e3:11:00:7c:60:4f:7c:4f:af:5a:e0:10:31: 1d:60:30:0d:d9:fd:fe:bc:5e:ba:b2:a4:b1:3d:30: 9f:58:2a:b8:ce:d3:2a:2a:29:5c:a3:5f:82:95:9e: af:14:aa:3d:01:6d:db:01:65:a3:ce:d4:93:8a:0a: 0f:82:91:0e:ba:cb:a7:0e:41:44:7b:9d:e2:6b:d7: 9f:03:2b:9b:1a:ce:ff:a7:d4:72:9b:84:7d:8e:5a: f2:31:67:e0:a7:35:af:59:6f:b0:da:df:5e:05:4a: 3f:ca:0c:65:6d:2c:1a:44:82:ff:e1:92:80:f5:a6: 30:8f:ac:b9:0c:21:01:11:08:cd:b3:86:35:50:26: 4f:13:7a:52:4f:5b:f8:11:99:9a:66:d7:fd:b3:a8: 4c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:71:C7:58:CC:F8:69:D5:63:1A:11:4C:03:CB:FB:D9:59:4F:E0:3C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS151349.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3000::/40 Signature Algorithm: sha256WithRSAEncryption 86:db:80:26:20:fa:01:a4:6b:5b:65:6b:64:87:ca:75:34:93: f0:06:12:84:ca:1e:70:45:b6:fe:9b:76:f7:9b:91:0e:0f:45: 4d:7a:42:e3:74:eb:5a:ae:5b:15:c0:88:4f:fd:64:be:51:1d: e0:86:a3:c8:ab:83:7d:59:a4:65:96:3a:b1:52:48:3d:c5:5f: 49:09:76:29:e2:32:6c:85:42:ba:fe:44:e2:36:88:94:b9:27: 49:e4:22:e5:ca:76:07:ca:39:cd:e6:dc:91:c9:2f:46:4a:a9: b1:b8:a6:bb:54:d2:76:13:69:d1:49:8f:93:60:48:05:d9:46: b4:68:95:df:3e:8e:95:2b:6d:5d:e5:d0:17:d8:96:30:23:af: 18:1f:e9:98:d5:43:48:71:bd:0e:38:f8:a8:5b:93:ea:49:05: f3:cb:20:14:a2:7e:1a:1e:11:80:04:87:f8:36:e8:33:98:13: 64:28:50:08:78:46:41:f5:9c:7f:66:d4:89:d5:51:e3:db:2a: 33:3f:5e:0d:42:46:9f:b1:d4:30:bc:26:1b:8f:ee:25:eb:4c: 45:02:a0:9f:55:87:4d:62:d1:88:cc:70:9c:a1:86:8f:5f:11: e0:71:1e:d7:ba:a3:53:27:0d:f1:54:31:8f:36:3f:b7:9d:62: e7:12:a0:12 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFRhA8b3EjLPEiqyaOBO8uoFxaY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMzAyMjQwMzBaFw0yNTEwMjkyMjQ1MzBaMDMxMTAvBgNV BAMTKDQzNzFDNzU4Q0NGODY5RDU2MzFBMTE0QzAzQ0JGQkQ5NTk0RkUwM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh1XO9zwUDP0gtYrzcci6e+ND/ ZRJqzLzczBOPQzZZKkG+SOOFxgC7XNboFikdBe2RSZzT7SxWnVmxGOdfSxYGyCoB hYb63LpJjvk6I25tfe5n2+NGO6YTWAaoOV9itf3EtwicdjIzARvc4xEAfGBPfE+v WuAQMR1gMA3Z/f68XrqypLE9MJ9YKrjO0yoqKVyjX4KVnq8Uqj0BbdsBZaPO1JOK Cg+CkQ66y6cOQUR7neJr158DK5sazv+n1HKbhH2OWvIxZ+CnNa9Zb7Da314FSj/K DGVtLBpEgv/hkoD1pjCPrLkMIQERCM2zhjVQJk8TelJPW/gRmZpm1/2zqEynAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQ3HHWMz4adVjGhFMA8v72VlP4DwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTUxMzQ5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTAwDQYJKoZIhvcNAQELBQADggEBAIbb gCYg+gGka1tla2SHynU0k/AGEoTKHnBFtv6bdvebkQ4PRU16QuN061quWxXAiE/9 ZL5RHeCGo8irg31ZpGWWOrFSSD3FX0kJdiniMmyFQrr+ROI2iJS5J0nkIuXKdgfK Oc3m3JHJL0ZKqbG4prtU0nYTadFJj5NgSAXZRrRold8+jpUrbV3l0BfYljAjrxgf 6ZjVQ0hxvQ44+Khbk+pJBfPLIBSifhoeEYAEh/g26DOYE2QoUAh4RkH1nH9m1InV UePbKjM/Xg1CRp+x1DC8JhuP7iXrTEUCoJ9Vh01i0YjMcJyhho9fEeBxHte6o1Mn DfFUMY82P7edYucSoBI= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org