$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS17024.roa File: AS17024.roa (raw, json) Hash identifier: WQo6AWNRTovDOa+sGJli5SeGC8ViWdhfwOnJmilXoUo= Subject key identifier: 7C:9B:B0:91:2A:24:53:49:E0:72:9F:DA:2A:74:17:C9:AF:94:FB:73 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7C523C21D7975B33387CCCBDAC1ABDD56BA4F994 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS17024.roa Signing time: Thu 08 Feb 2024 08:03:21 +0000 ROA not before: Thu 08 Feb 2024 07:58:21 +0000 ROA not after: Thu 06 Feb 2025 08:03:21 +0000 asID: 17024 IP address blocks: 2a05:dfc1:8600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:52:3c:21:d7:97:5b:33:38:7c:cc:bd:ac:1a:bd:d5:6b:a4:f9:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 8 07:58:21 2024 GMT Not After : Feb 6 08:03:21 2025 GMT Subject: CN=7C9BB0912A245349E0729FDA2A7417C9AF94FB73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bf:6c:42:1e:e8:4c:0c:cb:33:5d:24:02:74: 0f:43:07:57:33:a1:84:1c:79:e9:23:aa:4c:b3:92: 66:92:1f:4e:8e:53:a7:37:a2:24:70:f2:40:91:25: 0d:39:fe:d2:ea:2b:bd:33:da:fd:a8:0a:03:9b:fb: 92:32:77:a4:52:93:3e:0e:9d:f8:87:71:15:0c:6c: 4f:3d:a0:25:22:4b:7a:97:42:7b:c7:e8:d8:0d:93: 0a:9b:bf:2e:ad:42:e8:9b:e4:af:f8:98:26:dd:a9: cc:97:16:87:a4:ae:7f:22:1d:a3:f1:11:fb:63:4b: 0d:76:b9:40:e5:24:c1:1b:25:9c:07:83:54:c9:f6: 5b:ae:f2:96:b4:ed:4b:00:42:b9:9c:e2:5b:65:25: 6d:4a:38:e3:f5:17:4b:ef:4e:99:0f:56:82:b2:c3: 11:d3:e4:eb:14:8d:75:c9:cb:d5:76:52:3f:ba:aa: 47:84:95:2b:18:98:76:31:0b:37:82:92:b1:2a:6a: c1:cc:c0:ef:ad:bb:1d:f8:8b:f7:76:de:2d:5c:e8: 43:fe:69:be:fd:55:af:af:a5:f8:83:97:6e:34:b4: 3f:c0:cc:a3:42:cf:a0:a9:be:39:fc:41:55:2d:8b: 1b:3b:30:7d:44:51:6d:45:53:8b:7e:25:c6:1d:27: 79:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9B:B0:91:2A:24:53:49:E0:72:9F:DA:2A:74:17:C9:AF:94:FB:73 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS17024.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8600::/40 Signature Algorithm: sha256WithRSAEncryption 28:b3:ed:06:3b:f8:82:5c:c2:eb:48:3c:41:1e:2a:f0:2b:17: 86:2e:2e:15:f8:66:16:ae:e6:6e:4f:42:77:fc:72:7f:b9:59: 7e:29:f7:b6:89:a8:16:42:35:5e:8e:b0:29:8e:35:cf:88:94: d2:7e:1e:7d:21:db:5d:31:86:f9:e5:5f:4a:7c:3f:59:0c:f9: 00:66:27:73:63:32:7f:17:ce:02:ef:a3:58:b7:b3:b1:81:66: 94:34:29:32:a9:33:ed:97:5d:5a:b7:ae:c4:bd:92:79:3b:00: d7:e4:1d:1a:54:5c:98:92:00:85:86:2c:3a:1b:18:2c:11:e8: 4a:e3:33:8f:6a:a6:12:6b:f6:87:eb:ac:75:3d:bb:f6:91:5e: 50:38:c3:4d:36:d0:7f:02:a6:e3:de:2e:03:89:ff:6f:05:e0: 2a:c4:7a:78:45:a8:de:d5:e5:e1:df:ab:e0:d3:59:12:af:bb: fc:e0:72:d6:90:e9:ff:52:05:03:32:20:64:80:84:d0:31:2d: 0e:10:8a:d1:14:df:91:ba:62:a5:bc:da:42:f8:29:c3:ee:51: 85:24:08:60:7f:e6:df:e0:92:15:ab:7c:2c:c7:e8:0d:0e:d7: 42:2c:32:1e:8a:e4:1a:9a:bf:04:73:b0:6f:a5:3d:4a:06:b4: 4d:07:92:fb -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUfFI8IdeXWzM4fMy9rBq91Wuk+ZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMDgwNzU4MjFaFw0yNTAyMDYwODAzMjFaMDMxMTAvBgNV BAMTKDdDOUJCMDkxMkEyNDUzNDlFMDcyOUZEQTJBNzQxN0M5QUY5NEZCNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzv2xCHuhMDMszXSQCdA9DB1cz oYQceekjqkyzkmaSH06OU6c3oiRw8kCRJQ05/tLqK70z2v2oCgOb+5Iyd6RSkz4O nfiHcRUMbE89oCUiS3qXQnvH6NgNkwqbvy6tQuib5K/4mCbdqcyXFoekrn8iHaPx EftjSw12uUDlJMEbJZwHg1TJ9luu8pa07UsAQrmc4ltlJW1KOOP1F0vvTpkPVoKy wxHT5OsUjXXJy9V2Uj+6qkeElSsYmHYxCzeCkrEqasHMwO+tux34i/d23i1c6EP+ ab79Va+vpfiDl240tD/AzKNCz6Cpvjn8QVUtixs7MH1EUW1FU4t+JcYdJ3nBAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUfJuwkSokU0ngcp/aKnQXya+U+3MwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTcwMjQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BhjANBgkqhkiG9w0BAQsFAAOCAQEAKLPt Bjv4glzC60g8QR4q8CsXhi4uFfhmFq7mbk9Cd/xyf7lZfin3tomoFkI1Xo6wKY41 z4iU0n4efSHbXTGG+eVfSnw/WQz5AGYnc2MyfxfOAu+jWLezsYFmlDQpMqkz7Zdd WreuxL2SeTsA1+QdGlRcmJIAhYYsOhsYLBHoSuMzj2qmEmv2h+usdT279pFeUDjD TTbQfwKm494uA4n/bwXgKsR6eEWo3tXl4d+r4NNZEq+7/OBy1pDp/1IFAzIgZICE 0DEtDhCK0RTfkbpipbzaQvgpw+5RhSQIYH/m3+CSFat8LMfoDQ7XQiwyHorkGpq/ BHOwb6U9Sga0TQeS+w== -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org