$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201504.roa File: AS201504.roa (raw, json) Hash identifier: zBanNN/6Y5cXycJVorBR+Asu9hh/E7OlmvD8S8Ax0yg= Subject key identifier: A0:BA:FE:8F:06:10:BA:2C:88:FA:2F:D2:B2:85:18:5B:00:FE:F3:A1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 181D223BBC3F2C662B2E16D9AE463D5268DFEF0B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201504.roa Signing time: Sun 05 Nov 2023 04:07:02 +0000 ROA not before: Sun 05 Nov 2023 04:02:02 +0000 ROA not after: Sun 03 Nov 2024 04:07:02 +0000 asID: 201504 IP address blocks: 2a0a:6040:da00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:1d:22:3b:bc:3f:2c:66:2b:2e:16:d9:ae:46:3d:52:68:df:ef:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:02 2023 GMT Not After : Nov 3 04:07:02 2024 GMT Subject: CN=A0BAFE8F0610BA2C88FA2FD2B285185B00FEF3A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d6:a6:dd:08:29:f0:cd:60:77:e9:83:ab:5f: ea:42:9f:c3:75:b3:4a:91:72:1f:65:0b:d5:38:f8: bc:80:17:68:91:8d:1c:15:7e:4f:23:94:a0:dd:eb: 9f:63:7a:87:a4:f5:d4:30:ad:4c:df:79:e0:12:2b: 2e:13:b3:0c:01:d1:79:8e:d8:1d:05:6b:d8:69:94: 11:b2:38:8c:43:63:03:93:0b:32:57:dd:f5:aa:8e: e0:4b:af:3e:c8:10:47:2d:24:ff:f4:57:91:54:4a: 3c:3c:2a:a0:77:0d:03:d1:4c:89:9a:03:02:8b:e1: b0:94:2f:b4:a2:99:db:7e:1f:38:00:3d:13:12:f8: e4:52:73:45:b8:76:8f:e2:e1:cf:43:00:1b:7d:95: 5f:74:ff:fe:ad:ab:c3:f6:7b:70:42:b1:6d:ff:e4: 1a:e2:69:00:4e:52:b9:cc:5b:da:e0:3c:58:8d:e1: 73:00:38:e7:bc:49:e4:3a:4d:f9:42:2c:ac:31:9c: 5e:a2:a3:da:72:8f:8a:40:be:5a:bb:84:9f:0f:df: ab:43:5c:1a:f0:fc:59:6c:73:54:66:2c:68:be:f8: 1e:29:4f:5f:6c:78:f7:3d:95:87:f2:aa:fd:40:ba: e8:0e:aa:42:ac:a9:ba:c6:03:f4:da:cf:e9:01:69: ee:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:BA:FE:8F:06:10:BA:2C:88:FA:2F:D2:B2:85:18:5B:00:FE:F3:A1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:da00::/40 Signature Algorithm: sha256WithRSAEncryption af:50:96:75:8a:39:48:86:92:06:0d:33:7e:76:6a:35:ac:76: af:83:ba:7d:1d:f4:1e:17:3c:4a:eb:93:44:1e:31:64:90:a2: 53:8b:d0:15:52:e7:cc:2b:c1:03:e8:f0:58:e6:78:f5:d4:c7: d8:1d:f5:03:19:ff:4c:5f:04:19:35:1e:88:d0:06:75:fa:f5: 91:ab:cb:ce:53:87:9c:70:83:08:04:6d:ea:23:bd:b7:55:ab: 01:30:1f:e4:8d:d4:98:d4:61:05:67:4c:79:5a:37:86:52:fc: 99:84:f2:70:92:35:33:a8:6f:bf:49:ad:80:6b:2e:a1:69:81: 3b:23:7c:48:a4:fb:84:92:87:5f:bf:29:43:e0:5b:58:6a:de: ea:e3:b4:7a:16:de:ae:01:51:6f:ab:5a:f0:1f:32:4d:de:bf: 70:15:34:ef:20:b0:e4:cd:bd:b8:85:6d:85:e1:d8:33:e6:6f: 07:99:65:5f:26:1f:b7:5b:44:24:0c:e5:62:3c:89:34:1a:d0: 41:00:6a:26:52:13:ef:54:4b:08:3e:be:12:bc:8f:e8:5d:36: c7:18:db:c5:11:47:76:b9:1f:29:bc:1e:2f:4c:a4:80:14:8e: 1d:85:0d:d3:e3:34:52:7a:81:b6:28:85:f9:8b:9d:e3:0e:f9: 43:bb:e4:e7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGB0iO7w/LGYrLhbZrkY9Umjf7wswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDJaFw0yNDExMDMwNDA3MDJaMDMxMTAvBgNV BAMTKEEwQkFGRThGMDYxMEJBMkM4OEZBMkZEMkIyODUxODVCMDBGRUYzQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH1qbdCCnwzWB36YOrX+pCn8N1 s0qRch9lC9U4+LyAF2iRjRwVfk8jlKDd659jeoek9dQwrUzfeeASKy4TswwB0XmO 2B0Fa9hplBGyOIxDYwOTCzJX3fWqjuBLrz7IEEctJP/0V5FUSjw8KqB3DQPRTIma AwKL4bCUL7Simdt+HzgAPRMS+ORSc0W4do/i4c9DABt9lV90//6tq8P2e3BCsW3/ 5BriaQBOUrnMW9rgPFiN4XMAOOe8SeQ6TflCLKwxnF6io9pyj4pAvlq7hJ8P36tD XBrw/Flsc1RmLGi++B4pT19sePc9lYfyqv1AuugOqkKsqbrGA/Taz+kBae4PAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUoLr+jwYQuiyI+i/SsoUYWwD+86EwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxNTA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNowDQYJKoZIhvcNAQELBQADggEBAK9Q lnWKOUiGkgYNM352ajWsdq+Dun0d9B4XPErrk0QeMWSQolOL0BVS58wrwQPo8Fjm ePXUx9gd9QMZ/0xfBBk1HojQBnX69ZGry85Th5xwgwgEbeojvbdVqwEwH+SN1JjU YQVnTHlaN4ZS/JmE8nCSNTOob79JrYBrLqFpgTsjfEik+4SSh1+/KUPgW1hq3urj tHoW3q4BUW+rWvAfMk3ev3AVNO8gsOTNvbiFbYXh2DPmbweZZV8mH7dbRCQM5WI8 iTQa0EEAaiZSE+9USwg+vhK8j+hdNscY28URR3a5Hym8Hi9MpIAUjh2FDdPjNFJ6 gbYohfmLneMO+UO75Oc= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org