$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201444.roa File: AS201444.roa (raw, json) Hash identifier: NVcLe29tPceej9aeK1tTU9s8/tLGlF4H4TWhG8PlSQQ= Subject key identifier: 4C:0A:EF:D8:46:55:13:F8:69:E4:FA:EE:0D:B8:AD:22:65:DD:C7:46 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7537B5ABEBC5012858EC0A6C2F13F3081F6DDE28 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201444.roa Signing time: Sun 05 Nov 2023 04:06:57 +0000 ROA not before: Sun 05 Nov 2023 04:01:57 +0000 ROA not after: Sun 03 Nov 2024 04:06:57 +0000 asID: 201444 IP address blocks: 2a0a:6040:af00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:37:b5:ab:eb:c5:01:28:58:ec:0a:6c:2f:13:f3:08:1f:6d:de:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:57 2023 GMT Not After : Nov 3 04:06:57 2024 GMT Subject: CN=4C0AEFD8465513F869E4FAEE0DB8AD2265DDC746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e4:82:8b:f0:41:71:27:95:53:3f:db:6b:e1: 87:fd:f5:8c:94:61:b6:ff:f9:ce:32:46:f7:b4:f2: ff:3f:c2:2a:c2:e9:06:b5:ed:62:fa:45:2b:68:a1: b6:65:45:01:1e:05:cd:14:26:8e:93:8a:dd:79:f4: 45:50:0e:32:2d:20:7c:d5:3f:72:ed:22:3c:9b:2a: d5:c2:ad:06:70:04:63:4c:33:fa:5b:17:6c:4e:14: f9:95:0b:cf:cd:7f:8d:06:5e:96:62:5e:29:9a:bd: 41:b1:2c:d9:35:33:62:e7:2e:9c:fb:f1:de:9c:ba: 88:98:e1:e9:5a:13:84:ec:53:28:d6:b1:3f:24:7d: 8b:c0:d5:fa:3f:37:bb:7f:0f:00:c3:b4:92:ca:07: 33:cc:14:2a:c3:4e:0f:97:ac:cd:00:ce:f9:94:ce: 1a:ad:1a:8a:49:14:dd:39:44:1b:bb:ff:fe:51:a9: 2e:ed:03:84:79:c2:d6:28:1a:04:ba:78:dd:ae:89: cd:19:fe:0a:ef:0e:0f:c7:9f:de:13:89:7e:78:55: 90:8e:40:69:ec:ca:31:7b:0a:5a:9b:90:10:b3:b4: 2e:d0:64:b2:36:11:69:8e:df:52:77:4c:93:80:fb: 8e:63:c4:10:92:42:55:b8:c6:e1:c3:a8:2d:e1:ca: 3e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:0A:EF:D8:46:55:13:F8:69:E4:FA:EE:0D:B8:AD:22:65:DD:C7:46 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:af00::/40 Signature Algorithm: sha256WithRSAEncryption 11:a9:30:4f:e9:91:44:e4:6b:8b:86:b5:5e:af:96:fd:63:dd: 89:1c:c5:5b:6a:b0:78:aa:84:87:b4:6c:c2:a9:71:4f:d1:fc: 18:34:bf:ee:a6:c7:ba:ab:24:2f:77:27:4a:1b:f8:3d:89:54: 22:1e:39:a5:2a:f2:8e:fd:10:dc:b6:e4:3b:a9:1e:81:36:71: a1:a1:d0:c1:65:4f:f2:10:e3:e5:6d:5c:ee:1b:06:d4:28:a9: 87:81:be:dd:96:8c:de:e2:58:24:3b:2f:c8:1a:e0:03:12:b4: 60:4f:72:3c:d6:bf:3d:02:2d:86:b6:ab:25:52:e9:89:5d:45: c6:de:f4:83:1d:7f:35:d8:63:32:1d:58:dc:90:56:0a:17:a5: 19:70:d2:6d:12:da:bb:ad:2f:b7:96:1e:49:8e:71:c0:bf:ad: 12:d0:d7:f3:c7:aa:a7:4e:af:8e:68:c6:9f:2e:85:40:e3:5e: c9:84:47:b6:1d:74:73:50:55:05:52:60:e5:da:25:e1:32:a2: 04:e1:a7:27:14:8f:04:1e:d3:06:d5:02:c4:67:d8:cc:f1:19: 3e:2f:41:77:75:5f:c6:08:6f:aa:09:15:d8:3f:4a:65:43:1d: 42:55:23:af:67:6a:3d:4b:09:a1:02:76:ee:ea:3f:79:c6:bf: 71:8b:8d:e6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdTe1q+vFAShY7ApsLxPzCB9t3igwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNTdaFw0yNDExMDMwNDA2NTdaMDMxMTAvBgNV BAMTKDRDMEFFRkQ4NDY1NTEzRjg2OUU0RkFFRTBEQjhBRDIyNjVEREM3NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI5IKL8EFxJ5VTP9tr4Yf99YyU Ybb/+c4yRve08v8/wirC6Qa17WL6RStoobZlRQEeBc0UJo6Tit159EVQDjItIHzV P3LtIjybKtXCrQZwBGNMM/pbF2xOFPmVC8/Nf40GXpZiXimavUGxLNk1M2LnLpz7 8d6cuoiY4elaE4TsUyjWsT8kfYvA1fo/N7t/DwDDtJLKBzPMFCrDTg+XrM0AzvmU zhqtGopJFN05RBu7//5RqS7tA4R5wtYoGgS6eN2uic0Z/grvDg/Hn94TiX54VZCO QGnsyjF7ClqbkBCztC7QZLI2EWmO31J3TJOA+45jxBCSQlW4xuHDqC3hyj7PAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTArv2EZVE/hp5PruDbitImXdx0YwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxNDQ0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK8wDQYJKoZIhvcNAQELBQADggEBABGp ME/pkUTka4uGtV6vlv1j3YkcxVtqsHiqhIe0bMKpcU/R/Bg0v+6mx7qrJC93J0ob +D2JVCIeOaUq8o79ENy25DupHoE2caGh0MFlT/IQ4+VtXO4bBtQoqYeBvt2WjN7i WCQ7L8ga4AMStGBPcjzWvz0CLYa2qyVS6YldRcbe9IMdfzXYYzIdWNyQVgoXpRlw 0m0S2rutL7eWHkmOccC/rRLQ1/PHqqdOr45oxp8uhUDjXsmER7YddHNQVQVSYOXa JeEyogThpycUjwQe0wbVAsRn2MzxGT4vQXd1X8YIb6oJFdg/SmVDHUJVI69naj1L CaECdu7qP3nGv3GLjeY= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org