$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201444.roa File: AS201444.roa (raw, json) Hash identifier: isW5R7Xa97rgS9sz9xUYDWsGprZJyBj3GxPVgFagAq4= Subject key identifier: AC:A8:BF:C0:A9:16:AA:21:7A:7D:07:5C:F9:5E:03:7E:1F:27:FD:09 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 70558420A0D88834FE006EE1BD96DBCED0E84DA7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201444.roa Signing time: Sun 06 Oct 2024 04:45:02 +0000 ROA not before: Sun 06 Oct 2024 04:40:02 +0000 ROA not after: Sun 05 Oct 2025 04:45:02 +0000 asID: 201444 IP address blocks: 2a0a:6040:af00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:55:84:20:a0:d8:88:34:fe:00:6e:e1:bd:96:db:ce:d0:e8:4d:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:02 2024 GMT Not After : Oct 5 04:45:02 2025 GMT Subject: CN=ACA8BFC0A916AA217A7D075CF95E037E1F27FD09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:05:62:bd:f7:51:ef:d8:e1:1b:5a:82:56:bc: 9a:5a:ca:1b:ea:6d:26:79:91:67:fa:1d:d7:dc:7f: 4d:3a:5b:eb:ce:1a:e2:d9:70:ac:1d:90:a7:46:e4: ff:70:8f:85:e3:ec:b7:66:22:ba:98:11:d3:7e:c1: b9:b3:20:15:47:34:79:cf:94:f2:41:4b:36:98:ee: a8:80:2a:09:ad:2a:89:ed:85:b7:f4:ec:77:a2:41: 56:b2:ad:f6:5b:84:14:76:ab:26:52:d1:aa:7a:53: 92:73:21:db:8f:ef:d4:2e:59:17:b5:17:57:3a:0d: 6e:b7:61:b0:22:f2:32:3b:11:3d:5f:84:2c:b0:b9: 94:6c:f9:b4:e3:62:30:c9:64:88:b0:ca:8b:2a:28: b6:12:2e:9b:db:3b:a2:2c:15:cb:e2:18:78:9d:ce: 9d:58:37:99:d5:1a:1b:57:35:da:c2:2f:8b:d4:d6: 82:76:1a:70:fa:43:89:13:4d:80:64:42:70:23:fb: 40:82:4d:10:5d:c9:45:42:3f:75:9d:f1:15:91:82: 2e:31:ac:b3:3f:6e:29:d9:19:9a:a2:83:9c:3d:e3: 19:f7:49:40:bd:02:0b:39:5e:5f:23:8b:46:c8:43: 3b:a1:f7:57:c9:74:90:b2:f3:ec:32:de:cc:dc:79: a5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A8:BF:C0:A9:16:AA:21:7A:7D:07:5C:F9:5E:03:7E:1F:27:FD:09 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:af00::/40 Signature Algorithm: sha256WithRSAEncryption 01:a7:aa:0e:70:0a:b2:4e:38:eb:14:29:da:f8:30:d9:4d:1c: 14:81:72:51:ed:0f:0d:9d:54:76:5e:b1:2a:c7:e8:78:44:9a: f6:59:72:6e:da:ca:77:cc:cf:ca:71:12:e5:7e:6e:5a:09:2a: 6c:36:15:01:14:82:19:6f:c3:e0:21:93:f6:c7:53:68:09:7f: 13:3f:09:96:a6:65:78:db:af:09:57:05:d0:0d:81:82:07:68: 1c:1e:08:79:0c:9a:c6:99:37:01:26:d5:56:4c:b4:dc:9e:e2: 22:e2:58:15:0d:61:fe:c9:fa:1d:8c:8e:83:fc:9f:33:26:ef: 49:70:04:16:09:24:4b:3c:e6:ab:04:2c:21:57:a3:01:a7:5a: a0:28:1b:a8:49:80:8a:cf:52:16:83:07:8b:9e:eb:b1:10:e5: 83:ce:34:ee:48:f3:72:9c:97:29:44:8c:1d:0e:e0:11:3a:83: b6:a6:33:f8:5b:82:a2:01:32:b8:69:51:01:6d:3d:d4:42:1f: 5c:2c:ad:02:d1:b3:48:16:4d:aa:bc:82:a1:f8:c3:1e:9c:b1: b9:2b:ac:d4:44:f1:03:0e:0f:5c:07:d6:c4:a4:e9:87:b3:f3: 84:22:3e:a5:25:eb:83:59:06:54:4b:f2:ff:57:4a:72:4b:dd: 1b:92:cf:1b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcFWEIKDYiDT+AG7hvZbbztDoTacwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDJaFw0yNTEwMDUwNDQ1MDJaMDMxMTAvBgNV BAMTKEFDQThCRkMwQTkxNkFBMjE3QTdEMDc1Q0Y5NUUwMzdFMUYyN0ZEMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZBWK991Hv2OEbWoJWvJpayhvq bSZ5kWf6Hdfcf006W+vOGuLZcKwdkKdG5P9wj4Xj7LdmIrqYEdN+wbmzIBVHNHnP lPJBSzaY7qiAKgmtKonthbf07HeiQVayrfZbhBR2qyZS0ap6U5JzIduP79QuWRe1 F1c6DW63YbAi8jI7ET1fhCywuZRs+bTjYjDJZIiwyosqKLYSLpvbO6IsFcviGHid zp1YN5nVGhtXNdrCL4vU1oJ2GnD6Q4kTTYBkQnAj+0CCTRBdyUVCP3Wd8RWRgi4x rLM/binZGZqig5w94xn3SUC9Ags5Xl8ji0bIQzuh91fJdJCy8+wy3szceaXRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUrKi/wKkWqiF6fQdc+V4Dfh8n/QkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxNDQ0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK8wDQYJKoZIhvcNAQELBQADggEBAAGn qg5wCrJOOOsUKdr4MNlNHBSBclHtDw2dVHZesSrH6HhEmvZZcm7aynfMz8pxEuV+ bloJKmw2FQEUghlvw+Ahk/bHU2gJfxM/CZamZXjbrwlXBdANgYIHaBweCHkMmsaZ NwEm1VZMtNye4iLiWBUNYf7J+h2MjoP8nzMm70lwBBYJJEs85qsELCFXowGnWqAo G6hJgIrPUhaDB4ue67EQ5YPONO5I83KclylEjB0O4BE6g7amM/hbgqIBMrhpUQFt PdRCH1wsrQLRs0gWTaq8gqH4wx6csbkrrNRE8QMOD1wH1sSk6Yez84QiPqUl64NZ BlRL8v9XSnJL3RuSzxs= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org