$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201504.roa File: AS201504.roa (raw, json) Hash identifier: /+JFPxHzESVe7fL9e/ez/aON+iVx5rrUGNZuF6WbU+c= Subject key identifier: 35:B7:F1:ED:CD:4F:64:8F:5B:CA:78:A7:C6:5F:D2:F8:21:70:5F:57 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3E11CFE086CF5F9D9305351BF07F01F12EA7EEF1 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201504.roa Signing time: Sun 06 Oct 2024 04:44:55 +0000 ROA not before: Sun 06 Oct 2024 04:39:55 +0000 ROA not after: Sun 05 Oct 2025 04:44:55 +0000 asID: 201504 IP address blocks: 2a0a:6040:da00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:11:cf:e0:86:cf:5f:9d:93:05:35:1b:f0:7f:01:f1:2e:a7:ee:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:55 2024 GMT Not After : Oct 5 04:44:55 2025 GMT Subject: CN=35B7F1EDCD4F648F5BCA78A7C65FD2F821705F57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2d:34:55:05:a6:b7:dc:81:32:75:fd:f5:b1: 02:f3:48:2d:ff:a6:aa:e6:44:c9:4a:6c:38:5b:0c: fe:09:6f:c8:b6:6f:64:6a:30:81:72:30:d9:17:41: 4b:0a:02:a0:28:29:90:a3:47:49:a5:b7:e7:3b:28: 1a:14:ba:37:bf:8d:da:33:4f:a4:76:26:8e:5a:fe: 4c:77:4a:fe:38:02:c2:3a:23:24:cc:83:8c:d3:87: c2:da:f7:a4:1a:f5:3e:e0:d5:52:0e:1d:60:f7:a2: 23:89:be:93:28:4b:a5:c7:6f:4b:ac:cf:24:9d:5d: fa:84:32:60:dc:33:21:39:a8:0f:2d:88:91:b7:f1: 8c:1a:3b:9f:2e:18:d6:b0:d1:6e:f3:df:b1:3c:e3: f0:f3:2b:01:98:94:b2:6b:c2:00:85:76:9c:d9:6c: a5:66:51:dc:b7:74:fd:e6:c6:48:98:22:d4:1e:d9: 43:38:11:09:33:e3:ad:da:6e:ee:f5:81:08:08:ed: 95:69:78:ff:9e:23:3d:e3:1d:23:40:16:e3:8a:a3: 8e:93:0f:27:cd:af:b9:6f:c8:2c:60:67:66:1b:f3: 53:df:4f:91:7e:0f:34:2f:c3:74:5a:52:f3:2a:1a: 72:74:7c:e9:f2:69:de:26:4b:65:f4:cc:fe:43:24: 9a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B7:F1:ED:CD:4F:64:8F:5B:CA:78:A7:C6:5F:D2:F8:21:70:5F:57 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:da00::/40 Signature Algorithm: sha256WithRSAEncryption 51:64:da:d7:74:c7:8d:f1:0a:00:6c:91:25:da:4f:84:05:35: eb:27:a1:88:ae:a3:c3:1e:a5:ac:02:15:85:7e:f5:30:a8:64: 33:7d:11:f3:06:36:4c:95:12:6e:46:24:50:51:62:f6:38:23: 89:03:61:50:ae:77:a1:63:b7:82:a5:a2:85:57:ed:78:2f:9b: fb:ff:23:0a:6e:37:69:e0:34:19:9d:c8:3a:2d:52:de:62:02: 9a:99:c7:ac:fa:96:0e:d4:6f:47:7d:5e:03:64:47:cb:54:b9: 95:a0:65:ce:de:83:81:f4:8a:ba:f2:01:e8:7d:b3:81:42:61: e3:8f:66:68:f9:5b:9e:0b:56:35:c5:21:2e:db:be:59:d1:01: 71:db:e1:f5:ca:87:83:2b:99:bd:4a:5e:56:7d:14:4c:08:f0: c7:63:55:b2:15:1a:73:88:cb:8f:e6:76:ae:6d:12:e2:83:4d: f7:5c:15:c6:d6:c4:4b:de:04:ce:79:ef:92:69:4c:17:4d:e7: c6:f6:c4:5c:ce:c4:e0:1b:3f:c4:fe:d8:e5:be:4d:de:b0:5c: 9f:b9:4b:7b:af:aa:bf:b8:7c:cc:10:46:d2:d2:25:a6:9b:3e: 86:4f:43:ab:ec:5f:5a:c8:90:47:20:03:d2:e1:c8:30:4d:cb: 32:be:8a:b6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPhHP4IbPX52TBTUb8H8B8S6n7vEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTVaFw0yNTEwMDUwNDQ0NTVaMDMxMTAvBgNV BAMTKDM1QjdGMUVEQ0Q0RjY0OEY1QkNBNzhBN0M2NUZEMkY4MjE3MDVGNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+LTRVBaa33IEydf31sQLzSC3/ pqrmRMlKbDhbDP4Jb8i2b2RqMIFyMNkXQUsKAqAoKZCjR0mlt+c7KBoUuje/jdoz T6R2Jo5a/kx3Sv44AsI6IyTMg4zTh8La96Qa9T7g1VIOHWD3oiOJvpMoS6XHb0us zySdXfqEMmDcMyE5qA8tiJG38YwaO58uGNaw0W7z37E84/DzKwGYlLJrwgCFdpzZ bKVmUdy3dP3mxkiYItQe2UM4EQkz463abu71gQgI7ZVpeP+eIz3jHSNAFuOKo46T DyfNr7lvyCxgZ2Yb81PfT5F+DzQvw3RaUvMqGnJ0fOnyad4mS2X0zP5DJJqzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUNbfx7c1PZI9byninxl/S+CFwX1cwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxNTA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNowDQYJKoZIhvcNAQELBQADggEBAFFk 2td0x43xCgBskSXaT4QFNesnoYiuo8MepawCFYV+9TCoZDN9EfMGNkyVEm5GJFBR YvY4I4kDYVCud6Fjt4KlooVX7Xgvm/v/IwpuN2ngNBmdyDotUt5iApqZx6z6lg7U b0d9XgNkR8tUuZWgZc7eg4H0irryAeh9s4FCYeOPZmj5W54LVjXFIS7bvlnRAXHb 4fXKh4Mrmb1KXlZ9FEwI8MdjVbIVGnOIy4/mdq5tEuKDTfdcFcbWxEveBM5575Jp TBdN58b2xFzOxOAbP8T+2OW+Td6wXJ+5S3uvqr+4fMwQRtLSJaabPoZPQ6vsX1rI kEcgA9LhyDBNyzK+irY= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org