$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201392.roa File: AS201392.roa (raw, json) Hash identifier: VQqwXi77+t011uQj7CoQUPgpIlHXEyUleGT4AtGIKxI= Subject key identifier: 33:6B:C2:C9:42:D5:30:F5:9E:0B:FA:02:1B:5B:DF:E8:BD:61:E2:74 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0FB94F6D0AB8C6721C9418808FEE3FA2C9F85B41 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201392.roa Signing time: Sun 06 Oct 2024 04:45:04 +0000 ROA not before: Sun 06 Oct 2024 04:40:04 +0000 ROA not after: Sun 05 Oct 2025 04:45:04 +0000 asID: 201392 IP address blocks: 2a0a:6040:fe00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b9:4f:6d:0a:b8:c6:72:1c:94:18:80:8f:ee:3f:a2:c9:f8:5b:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:04 2024 GMT Not After : Oct 5 04:45:04 2025 GMT Subject: CN=336BC2C942D530F59E0BFA021B5BDFE8BD61E274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7c:94:88:4f:ae:74:8d:42:cf:4e:e8:1a:99: 95:00:04:d0:0f:1b:c6:a5:23:84:ef:63:a5:57:9d: 5b:c5:bd:9c:c4:e5:70:f8:54:7b:b0:01:58:6e:b1: 08:67:9f:cb:5b:f5:42:5f:61:7e:7a:b2:ed:37:49: f6:ea:1e:70:b0:bf:26:62:7b:bc:6d:b5:e5:eb:22: 45:d1:ee:a5:37:03:35:d4:27:24:68:17:bb:61:0b: 70:1f:4c:8a:f2:5b:2e:17:04:f7:ec:65:96:9d:64: 25:75:f1:a2:70:2a:3a:6a:0e:12:30:26:f2:d1:c2: 5e:21:1b:87:ba:db:03:45:73:84:bb:44:58:e3:02: ce:28:72:e8:90:f7:f0:29:2a:a2:8e:45:67:5c:a0: 62:3c:76:54:ea:fc:b9:d5:21:03:13:8e:55:4d:a2: 22:2f:3e:37:28:f7:39:14:57:6d:09:e8:d4:53:87: 24:65:14:36:44:74:a7:8b:2a:8f:80:da:3d:f9:5b: 8e:05:a3:7b:d6:a8:b9:58:fc:5b:22:be:01:81:11: 82:39:3c:90:23:d4:fc:5d:c1:5c:1f:ee:d5:1d:fa: 44:1b:76:c8:3b:7b:97:e1:01:d7:d0:3b:59:02:20: 71:93:04:91:88:9c:2c:f8:41:6e:df:af:26:cd:5c: 43:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:6B:C2:C9:42:D5:30:F5:9E:0B:FA:02:1B:5B:DF:E8:BD:61:E2:74 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201392.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fe00::/40 Signature Algorithm: sha256WithRSAEncryption 96:79:46:8b:cb:b8:72:31:8e:78:10:9c:cf:19:73:b3:5f:18: b6:fd:29:50:b2:4f:88:5e:ab:2b:14:f4:08:0e:de:ea:cf:a2: 16:88:a1:f2:7f:6c:54:fb:c2:a1:8a:65:40:67:27:4c:ab:ec: 35:bc:b2:bc:c0:01:be:15:d5:12:73:54:0d:87:9a:b2:b6:47: f2:0d:b5:52:b5:cc:4e:5f:fe:f2:4f:7f:9a:88:dc:47:fb:ae: 62:68:cc:74:5b:39:02:96:96:ab:45:19:37:c1:5a:b8:42:db: 8f:98:e4:5d:23:58:ed:d1:31:ab:4e:bb:94:80:42:c3:cc:58: a1:8d:5f:86:4b:e8:f8:81:19:23:c1:6b:3f:63:f0:19:c0:73: fb:75:63:71:10:c7:c6:74:5d:81:a6:7e:d4:9a:15:02:46:e5: c5:bb:ab:36:76:dc:a1:88:83:11:06:2a:5f:64:5e:50:a8:81: 17:b6:59:8e:75:77:48:3f:bb:e2:ee:5d:d2:a0:e3:d4:3b:c0: 48:d1:ed:2e:77:e7:c3:f3:d9:b6:0c:6f:22:a0:92:46:f2:5f: b1:a2:48:ce:18:8b:ac:9e:60:c7:fc:e7:ce:39:d5:b1:b4:f8: 60:12:5f:fb:0c:64:cd:60:06:aa:33:be:e3:b3:21:29:28:e1: f5:81:24:b2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUD7lPbQq4xnIclBiAj+4/osn4W0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDRaFw0yNTEwMDUwNDQ1MDRaMDMxMTAvBgNV BAMTKDMzNkJDMkM5NDJENTMwRjU5RTBCRkEwMjFCNUJERkU4QkQ2MUUyNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqfJSIT650jULPTugamZUABNAP G8alI4TvY6VXnVvFvZzE5XD4VHuwAVhusQhnn8tb9UJfYX56su03SfbqHnCwvyZi e7xtteXrIkXR7qU3AzXUJyRoF7thC3AfTIryWy4XBPfsZZadZCV18aJwKjpqDhIw JvLRwl4hG4e62wNFc4S7RFjjAs4ocuiQ9/ApKqKORWdcoGI8dlTq/LnVIQMTjlVN oiIvPjco9zkUV20J6NRThyRlFDZEdKeLKo+A2j35W44Fo3vWqLlY/FsivgGBEYI5 PJAj1PxdwVwf7tUd+kQbdsg7e5fhAdfQO1kCIHGTBJGInCz4QW7frybNXEP3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUM2vCyULVMPWeC/oCG1vf6L1h4nQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxMzkyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQP4wDQYJKoZIhvcNAQELBQADggEBAJZ5 RovLuHIxjngQnM8Zc7NfGLb9KVCyT4heqysU9AgO3urPohaIofJ/bFT7wqGKZUBn J0yr7DW8srzAAb4V1RJzVA2HmrK2R/INtVK1zE5f/vJPf5qI3Ef7rmJozHRbOQKW lqtFGTfBWrhC24+Y5F0jWO3RMatOu5SAQsPMWKGNX4ZL6PiBGSPBaz9j8BnAc/t1 Y3EQx8Z0XYGmftSaFQJG5cW7qzZ23KGIgxEGKl9kXlCogRe2WY51d0g/u+LuXdKg 49Q7wEjR7S5358Pz2bYMbyKgkkbyX7GiSM4Yi6yeYMf858451bG0+GASX/sMZM1g BqozvuOzISko4fWBJLI= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org