$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201517.roa File: AS201517.roa (raw, json) Hash identifier: 8aS8ubr/7IlGex3bQdyNep/8a4GL1yI5WnVnovwmWyk= Subject key identifier: 49:53:2B:49:0F:3C:F2:32:BA:AD:63:DA:77:4D:7C:4F:B7:7A:D3:C6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 113A9D173BDD1A56078E22EBD98B893C16D9ECB2 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201517.roa Signing time: Sun 06 Oct 2024 04:45:17 +0000 ROA not before: Sun 06 Oct 2024 04:40:17 +0000 ROA not after: Sun 05 Oct 2025 04:45:17 +0000 asID: 201517 IP address blocks: 2a0a:6040:fd00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:3a:9d:17:3b:dd:1a:56:07:8e:22:eb:d9:8b:89:3c:16:d9:ec:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:17 2024 GMT Not After : Oct 5 04:45:17 2025 GMT Subject: CN=49532B490F3CF232BAAD63DA774D7C4FB77AD3C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:94:ac:e9:ea:b8:34:2b:28:5f:94:9b:cc:1e: e1:33:3f:35:1c:ba:07:26:41:65:53:c7:52:bd:92: 83:88:e3:2e:1a:10:08:8d:2f:a4:f3:d5:94:54:44: d9:55:22:32:a7:0f:dd:36:a1:77:ce:89:d0:df:e4: 56:ec:53:40:1e:0e:9d:15:4b:80:0d:9e:25:7e:cc: 88:73:c2:3f:bd:7a:b2:01:ef:63:5b:39:81:0f:0d: 09:8c:13:82:2b:11:34:49:37:dd:99:41:03:c4:6c: 92:d9:fb:15:cf:c1:a4:02:3a:d4:82:5e:2a:e0:ec: ae:2a:7d:28:b6:7c:50:49:49:47:6a:02:95:fb:fc: 40:64:56:f3:4d:38:ec:59:c3:b1:d8:32:68:43:a1: d6:7a:d4:b9:4f:87:b7:f4:e8:ef:e0:2b:b5:79:87: 0e:72:d7:44:35:c2:c3:a4:fa:e9:a2:66:a4:df:7a: bc:58:77:92:4e:4f:54:bd:17:e4:d8:82:81:6a:2f: eb:90:76:f8:71:0c:5e:9c:42:da:3d:0a:7b:43:a5: d6:de:bf:c7:77:41:7f:c2:a9:b3:87:4d:2b:01:14: 69:43:01:07:4e:3b:ad:84:da:8d:63:c6:b7:87:be: 17:64:27:ca:4f:30:05:41:b5:d7:75:36:28:68:a0: 0f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:53:2B:49:0F:3C:F2:32:BA:AD:63:DA:77:4D:7C:4F:B7:7A:D3:C6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fd00::/40 Signature Algorithm: sha256WithRSAEncryption 00:16:78:f3:6d:53:1d:a2:0e:1c:e8:b0:49:69:8d:36:bd:a4: b0:a7:97:aa:83:11:ef:7f:e8:e1:a4:f8:86:37:de:14:94:d9: 1b:c2:d3:29:bd:70:69:0a:f6:ee:7a:bf:14:77:3f:84:16:2b: 25:78:cb:47:e1:98:e3:91:bd:79:1d:98:8e:77:34:d3:00:d8: 9e:7f:93:7c:c7:84:22:19:7d:80:a2:bc:e7:84:e9:99:67:87: 2a:12:87:0d:5e:09:02:8a:b8:4a:48:5e:31:de:11:91:a6:9b: c2:3c:68:4f:e3:01:86:35:16:47:70:28:91:f0:4c:1e:49:24: 78:37:00:10:12:04:be:69:54:40:22:3b:95:83:fc:f8:02:62: 90:b5:45:ce:d8:69:de:cf:9f:da:5f:60:38:00:42:5e:dd:0b: 86:6c:57:30:2f:7a:5a:c9:b6:b9:6d:4a:13:45:cf:bc:02:cc: 2e:2a:5e:dd:d6:db:5e:a4:ba:8a:5f:d0:47:41:62:8d:61:db: 30:e1:60:d5:cb:ca:36:a9:00:d1:07:65:81:90:f4:7a:10:51: bd:e5:31:c1:47:3f:b9:99:91:b8:6d:a4:b6:26:b0:1b:44:d0: 31:3e:37:77:0e:f3:ba:aa:97:ed:3e:d4:bb:b0:a9:96:dd:6f: 33:2e:bd:ec -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUETqdFzvdGlYHjiLr2YuJPBbZ7LIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTdaFw0yNTEwMDUwNDQ1MTdaMDMxMTAvBgNV BAMTKDQ5NTMyQjQ5MEYzQ0YyMzJCQUFENjNEQTc3NEQ3QzRGQjc3QUQzQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1lKzp6rg0KyhflJvMHuEzPzUc ugcmQWVTx1K9koOI4y4aEAiNL6Tz1ZRURNlVIjKnD902oXfOidDf5FbsU0AeDp0V S4ANniV+zIhzwj+9erIB72NbOYEPDQmME4IrETRJN92ZQQPEbJLZ+xXPwaQCOtSC Xirg7K4qfSi2fFBJSUdqApX7/EBkVvNNOOxZw7HYMmhDodZ61LlPh7f06O/gK7V5 hw5y10Q1wsOk+umiZqTferxYd5JOT1S9F+TYgoFqL+uQdvhxDF6cQto9CntDpdbe v8d3QX/CqbOHTSsBFGlDAQdOO62E2o1jxreHvhdkJ8pPMAVBtdd1NihooA/3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUSVMrSQ888jK6rWPad018T7d608YwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxNTE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQP0wDQYJKoZIhvcNAQELBQADggEBAAAW ePNtUx2iDhzosElpjTa9pLCnl6qDEe9/6OGk+IY33hSU2RvC0ym9cGkK9u56vxR3 P4QWKyV4y0fhmOORvXkdmI53NNMA2J5/k3zHhCIZfYCivOeE6ZlnhyoShw1eCQKK uEpIXjHeEZGmm8I8aE/jAYY1FkdwKJHwTB5JJHg3ABASBL5pVEAiO5WD/PgCYpC1 Rc7Yad7Pn9pfYDgAQl7dC4ZsVzAvelrJtrltShNFz7wCzC4qXt3W216kuopf0EdB Yo1h2zDhYNXLyjapANEHZYGQ9HoQUb3lMcFHP7mZkbhtpLYmsBtE0DE+N3cO87qq l+0+1LuwqZbdbzMuvew= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org