$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201097.roa File: AS201097.roa (raw, json) Hash identifier: aHYqDCVQlI6HTQ0fW5Egvg5ciepJMEtoWVLwnIVMZQw= Subject key identifier: 76:9F:65:49:27:6C:79:FC:FC:91:F0:D3:62:BA:41:F5:02:DB:4A:29 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 700D243A2627870201482FE5D7F90F41E6B9951C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201097.roa Signing time: Sun 06 Oct 2024 04:45:03 +0000 ROA not before: Sun 06 Oct 2024 04:40:03 +0000 ROA not after: Sun 05 Oct 2025 04:45:03 +0000 asID: 201097 IP address blocks: 2a0a:6040:2a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:0d:24:3a:26:27:87:02:01:48:2f:e5:d7:f9:0f:41:e6:b9:95:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:03 2024 GMT Not After : Oct 5 04:45:03 2025 GMT Subject: CN=769F6549276C79FCFC91F0D362BA41F502DB4A29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c9:79:e1:fd:24:1e:af:98:d3:48:24:8a:12: f1:54:34:0a:c8:23:1a:3b:67:f9:1b:80:54:86:15: 42:8b:f4:21:05:ad:44:fb:8f:bb:c9:0f:be:5a:fe: da:b9:fe:c2:1f:68:b1:13:e0:26:4d:9b:4d:43:ef: 94:d2:92:27:0a:32:81:2f:27:8e:87:10:29:6f:56: 57:fb:a6:63:25:fb:91:32:48:62:54:d2:dd:92:90: 26:00:6c:88:bf:24:e8:d8:f1:af:68:2c:ef:84:7d: 57:3e:f7:f5:fd:e3:32:6a:74:64:c4:b4:4e:4f:6d: c6:75:47:98:bb:d5:4b:88:78:3f:42:e1:d3:3c:47: 12:c9:7b:d6:0e:c9:9c:f6:f2:75:77:6a:ac:17:3e: 06:7b:42:68:55:71:63:0f:86:2d:2c:64:87:89:a2: db:70:96:82:22:d0:51:ed:f7:be:be:2b:db:37:2f: 81:04:bb:74:43:fd:9d:e4:27:e3:c4:3d:7a:f0:44: f8:8a:8e:11:ac:e9:96:e7:95:42:b3:b9:0d:8f:4f: 20:8e:34:85:87:a0:05:c7:08:61:68:7a:8c:b0:99: 61:d4:36:65:b7:38:16:3e:d5:f3:2f:12:e3:9d:96: ed:a6:b1:2e:42:06:d3:43:7a:f0:81:55:26:5f:6c: d6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9F:65:49:27:6C:79:FC:FC:91:F0:D3:62:BA:41:F5:02:DB:4A:29 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201097.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2a00::/40 Signature Algorithm: sha256WithRSAEncryption 57:c1:ac:64:dd:fb:65:55:2a:70:fa:4e:01:da:99:63:77:75: b0:fd:c2:38:0a:8d:7d:1a:06:4a:93:35:b4:44:d8:f7:01:43: 5e:9d:b8:9a:65:b0:b0:30:32:6f:97:d1:6b:ac:80:88:73:5d: b8:73:e5:89:61:2c:97:8c:10:de:11:bb:1c:a3:46:4b:6f:17: f0:6c:20:0f:05:3c:5b:92:bc:a8:9c:3e:7b:c8:79:86:63:ff: 44:58:8e:2f:79:5c:20:9c:df:32:5f:d7:b6:92:94:d0:84:5d: 02:da:3d:92:68:2e:b5:a8:64:64:c8:0e:3e:98:cb:93:9c:56: e7:b1:56:9d:34:b0:cf:6c:62:ef:97:ec:a3:9f:d7:ed:86:54: 96:4a:91:7b:c4:bb:e3:60:9c:57:5d:e7:ae:ec:69:c3:23:26: 4c:c5:af:2e:99:f1:7f:b2:63:53:58:6b:dc:8d:81:d6:e2:e9: e9:1e:17:1b:d1:ba:50:2c:65:bc:dc:a2:06:5d:74:25:a2:d2: 35:16:06:af:d8:37:70:64:4b:43:eb:16:a9:43:c6:0f:52:58: c1:43:9b:c3:6b:c7:a0:38:eb:4a:cf:27:cb:46:03:9d:75:30: 0e:b4:15:4a:cd:81:56:9a:c3:f2:70:a3:7a:03:2c:19:ef:1b: 61:d2:2f:c1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcA0kOiYnhwIBSC/l1/kPQea5lRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDNaFw0yNTEwMDUwNDQ1MDNaMDMxMTAvBgNV BAMTKDc2OUY2NTQ5Mjc2Qzc5RkNGQzkxRjBEMzYyQkE0MUY1MDJEQjRBMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGyXnh/SQer5jTSCSKEvFUNArI Ixo7Z/kbgFSGFUKL9CEFrUT7j7vJD75a/tq5/sIfaLET4CZNm01D75TSkicKMoEv J46HEClvVlf7pmMl+5EySGJU0t2SkCYAbIi/JOjY8a9oLO+EfVc+9/X94zJqdGTE tE5PbcZ1R5i71UuIeD9C4dM8RxLJe9YOyZz28nV3aqwXPgZ7QmhVcWMPhi0sZIeJ ottwloIi0FHt976+K9s3L4EEu3RD/Z3kJ+PEPXrwRPiKjhGs6ZbnlUKzuQ2PTyCO NIWHoAXHCGFoeoywmWHUNmW3OBY+1fMvEuOdlu2msS5CBtNDevCBVSZfbNY3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdp9lSSdsefz8kfDTYrpB9QLbSikwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxMDk3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCowDQYJKoZIhvcNAQELBQADggEBAFfB rGTd+2VVKnD6TgHamWN3dbD9wjgKjX0aBkqTNbRE2PcBQ16duJplsLAwMm+X0Wus gIhzXbhz5YlhLJeMEN4RuxyjRktvF/BsIA8FPFuSvKicPnvIeYZj/0RYji95XCCc 3zJf17aSlNCEXQLaPZJoLrWoZGTIDj6Yy5OcVuexVp00sM9sYu+X7KOf1+2GVJZK kXvEu+NgnFdd567sacMjJkzFry6Z8X+yY1NYa9yNgdbi6ekeFxvRulAsZbzcogZd dCWi0jUWBq/YN3BkS0PrFqlDxg9SWMFDm8Nrx6A460rPJ8tGA511MA60FUrNgVaa w/Jwo3oDLBnvG2HSL8E= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org