$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201392.roa File: AS201392.roa (raw, json) Hash identifier: Ws1VSBdhVWtLVoZXlqo5kTJkW94uZVpTTfyPlLxeTDA= Subject key identifier: 0F:89:12:DB:C2:B3:5F:B7:7F:77:2D:9E:9D:77:76:6D:EA:55:98:F4 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 700F614EAEA419CED4733012658B757DCC5876B3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201392.roa Signing time: Sun 05 Nov 2023 04:07:08 +0000 ROA not before: Sun 05 Nov 2023 04:02:08 +0000 ROA not after: Sun 03 Nov 2024 04:07:08 +0000 asID: 201392 IP address blocks: 2a0a:6040:fe00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:0f:61:4e:ae:a4:19:ce:d4:73:30:12:65:8b:75:7d:cc:58:76:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:08 2023 GMT Not After : Nov 3 04:07:08 2024 GMT Subject: CN=0F8912DBC2B35FB77F772D9E9D77766DEA5598F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f6:84:9b:22:52:5e:ac:12:9e:d0:ab:57:0e: ff:ab:c8:44:f9:db:f8:7b:ca:4d:90:3f:52:f5:e6: b7:77:da:44:20:0e:d2:a4:99:25:27:00:c5:38:a0: ee:e9:4a:f4:71:f5:1f:f5:62:48:5b:0d:e8:88:e5: cb:dc:58:0a:e2:58:75:b1:13:03:e7:ab:d3:c3:07: b2:c2:16:33:fe:a9:8f:fd:59:cb:20:76:3e:73:b6: 3e:c2:5f:78:21:70:d5:84:3b:6b:68:17:b0:52:09: 21:67:6d:94:eb:3b:da:7a:6c:b8:d2:62:30:24:99: ae:51:23:22:c9:b8:e2:b4:34:2a:7f:9e:b9:cb:a4: ab:01:1b:6c:d1:33:dc:38:67:56:5b:5e:77:97:48: 9b:89:81:87:c3:0d:5b:6a:58:46:ba:4f:42:ed:53: 40:a7:4d:b3:ac:e9:8c:55:77:e8:64:58:d0:10:0d: 98:91:a1:99:22:0a:fd:9c:6a:4e:d1:86:39:6e:df: 05:e9:27:c4:08:49:08:28:21:49:3a:83:42:45:8f: 75:63:55:9e:91:d8:3e:2c:be:58:24:64:04:6f:cf: b5:76:fe:53:22:1d:c6:73:d3:5b:4a:78:90:13:d5: 81:4c:c2:f7:c1:89:d5:16:19:a9:b3:49:a9:75:3c: 85:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:89:12:DB:C2:B3:5F:B7:7F:77:2D:9E:9D:77:76:6D:EA:55:98:F4 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201392.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fe00::/40 Signature Algorithm: sha256WithRSAEncryption ac:63:b2:22:a8:9f:5e:ee:b7:1e:bf:10:fa:51:8b:e7:1e:86: f7:b9:ca:d6:28:5e:93:3a:c1:30:a0:80:62:db:f5:87:a0:61: 2f:09:52:d2:21:b2:e7:7d:77:11:e4:4a:80:40:41:fa:cf:fd: 2d:c2:ad:8a:81:e5:bb:93:29:08:19:5f:ea:7e:9d:d2:43:98: b9:6e:d4:99:8d:63:8f:e8:80:dc:5e:e2:be:96:21:ec:52:3d: cc:70:d7:85:01:75:8a:83:b9:33:03:e8:9d:08:13:4b:88:bc: 37:7f:cc:57:1f:a2:01:86:e2:c0:df:f6:a1:66:66:67:03:09: e0:b1:c2:6a:c0:39:ac:5f:06:2f:75:2f:b1:f3:99:48:b1:3a: df:60:38:ff:ce:10:37:2a:15:02:81:4c:b3:b4:5d:e2:95:a9: 27:c5:5d:67:70:33:de:3e:8e:51:73:97:ad:99:e1:fd:44:f7: b2:6a:91:34:32:a2:10:1c:5f:21:ac:47:10:f9:68:ca:87:2e: 84:9e:7c:3b:fe:a6:32:57:70:d0:bc:10:6f:6b:40:9e:b9:dc: c1:39:57:b7:49:d9:5c:f5:63:ec:89:b0:da:82:ae:57:16:4a: 78:37:cc:ee:ef:d0:6f:52:c9:ff:fe:49:30:0f:df:37:de:f0: 01:f9:f8:b0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcA9hTq6kGc7UczASZYt1fcxYdrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDhaFw0yNDExMDMwNDA3MDhaMDMxMTAvBgNV BAMTKDBGODkxMkRCQzJCMzVGQjc3Rjc3MkQ5RTlENzc3NjZERUE1NTk4RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz9oSbIlJerBKe0KtXDv+ryET5 2/h7yk2QP1L15rd32kQgDtKkmSUnAMU4oO7pSvRx9R/1YkhbDeiI5cvcWAriWHWx EwPnq9PDB7LCFjP+qY/9Wcsgdj5ztj7CX3ghcNWEO2toF7BSCSFnbZTrO9p6bLjS YjAkma5RIyLJuOK0NCp/nrnLpKsBG2zRM9w4Z1ZbXneXSJuJgYfDDVtqWEa6T0Lt U0CnTbOs6YxVd+hkWNAQDZiRoZkiCv2cak7Rhjlu3wXpJ8QISQgoIUk6g0JFj3Vj VZ6R2D4svlgkZARvz7V2/lMiHcZz01tKeJAT1YFMwvfBidUWGamzSal1PIUzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUD4kS28KzX7d/dy2enXd2bepVmPQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxMzkyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQP4wDQYJKoZIhvcNAQELBQADggEBAKxj siKon17utx6/EPpRi+cehve5ytYoXpM6wTCggGLb9YegYS8JUtIhsud9dxHkSoBA QfrP/S3CrYqB5buTKQgZX+p+ndJDmLlu1JmNY4/ogNxe4r6WIexSPcxw14UBdYqD uTMD6J0IE0uIvDd/zFcfogGG4sDf9qFmZmcDCeCxwmrAOaxfBi91L7HzmUixOt9g OP/OEDcqFQKBTLO0XeKVqSfFXWdwM94+jlFzl62Z4f1E97JqkTQyohAcXyGsRxD5 aMqHLoSefDv+pjJXcNC8EG9rQJ653ME5V7dJ2Vz1Y+yJsNqCrlcWSng3zO7v0G9S yf/+STAP3zfe8AH5+LA= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org