$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201517.roa File: AS201517.roa (raw, json) Hash identifier: mr56KB/TNeZqP8yhhgfqsuSoQ0fiVZggW3mwBYxzkK8= Subject key identifier: 6A:AA:10:26:BC:DB:4F:C2:8A:AE:CC:5B:51:7B:A9:AE:5E:76:2B:E8 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 52FB4E38E6313259536C9196E24E70CDADAC66CE Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201517.roa Signing time: Sun 05 Nov 2023 04:07:00 +0000 ROA not before: Sun 05 Nov 2023 04:02:00 +0000 ROA not after: Sun 03 Nov 2024 04:07:00 +0000 asID: 201517 IP address blocks: 2a0a:6040:fd00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:fb:4e:38:e6:31:32:59:53:6c:91:96:e2:4e:70:cd:ad:ac:66:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:00 2023 GMT Not After : Nov 3 04:07:00 2024 GMT Subject: CN=6AAA1026BCDB4FC28AAECC5B517BA9AE5E762BE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5c:82:88:f4:3d:13:fb:c9:de:b9:73:29:24: b4:4d:fa:d4:63:ef:07:52:a9:c2:94:58:f5:88:13: ed:8e:ef:65:14:8a:fa:7e:6b:a0:8b:36:da:54:84: 3c:d9:cb:e7:33:f2:05:bc:97:6c:13:cb:e0:cc:08: ad:f3:76:22:78:0f:0d:0a:de:2e:e7:3d:ab:91:50: 80:80:b9:1e:a1:ac:91:ec:16:74:35:62:44:57:cd: bb:9e:fc:38:b4:25:94:32:f0:6e:4a:9b:d6:7a:10: 55:32:fa:61:4a:6b:07:94:9a:e7:4b:5f:f0:5f:85: cc:3b:f9:8f:43:80:6f:2b:fe:4a:6e:79:de:9f:25: be:c4:6b:aa:f7:90:66:97:39:a1:54:19:6c:b9:28: ac:c2:2c:54:d2:f2:f2:c7:74:19:69:ef:f5:ee:20: f0:b4:ac:08:21:79:1c:bb:b6:7a:7d:ce:06:df:cb: 4b:cf:76:0f:97:a2:1b:f3:dc:80:86:cd:c0:c0:f3: c4:47:ae:ed:76:b1:a4:76:d6:5f:58:e1:a7:78:d0: 3a:2f:06:a8:67:99:ae:7e:2b:b9:af:70:71:dc:d1: 49:a1:46:71:b0:b1:52:94:72:a8:a0:7e:77:d1:8c: 72:99:66:de:0b:9e:e8:e2:25:1c:0e:e4:bb:c0:fc: eb:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AA:10:26:BC:DB:4F:C2:8A:AE:CC:5B:51:7B:A9:AE:5E:76:2B:E8 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fd00::/40 Signature Algorithm: sha256WithRSAEncryption a2:21:40:cd:f6:1b:04:3b:fa:eb:26:d6:7a:92:cb:d1:9e:07: fa:61:3f:b2:1f:35:94:2a:d7:e0:59:67:ca:2f:0a:68:db:7e: bb:87:83:35:0d:9a:b3:47:4e:8d:37:c6:3a:cc:74:c9:d5:5d: ef:bf:88:15:ef:32:da:bf:01:f8:be:f8:84:1a:65:25:58:eb: 52:9e:fe:7d:0e:4c:19:b3:50:26:5b:a9:01:91:fb:4c:d5:e1: 92:d1:a5:39:f3:dc:fb:15:d9:05:77:c0:2f:6d:3c:bb:ee:0e: 7a:94:71:78:bc:b4:53:d3:08:b4:c2:20:d8:de:1b:4f:33:17: e4:76:1d:d9:d2:3e:a5:62:e9:e6:33:e1:0f:0d:c0:88:5a:4c: 5b:3a:55:4b:44:83:21:6e:1b:d9:61:0e:01:34:ea:d4:9b:7d: 84:67:4e:ce:23:b8:c1:11:5e:d1:c3:71:2a:3d:9c:1b:8d:c9: c7:67:2a:2c:df:93:fc:a8:51:9d:26:d9:2f:9a:c4:a4:25:c5: bd:f7:a0:45:8c:3d:71:f9:2b:96:03:9e:02:9f:3f:5c:66:b3: 18:37:c2:b3:86:3e:06:8d:e9:ea:8b:5c:60:78:aa:be:04:ef: 36:29:63:a2:84:0e:7a:38:ec:dc:72:a6:e0:36:fa:8f:6a:9e: c4:e0:8c:2d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUvtOOOYxMllTbJGW4k5wza2sZs4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDBaFw0yNDExMDMwNDA3MDBaMDMxMTAvBgNV BAMTKDZBQUExMDI2QkNEQjRGQzI4QUFFQ0M1QjUxN0JBOUFFNUU3NjJCRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmXIKI9D0T+8neuXMpJLRN+tRj 7wdSqcKUWPWIE+2O72UUivp+a6CLNtpUhDzZy+cz8gW8l2wTy+DMCK3zdiJ4Dw0K 3i7nPauRUICAuR6hrJHsFnQ1YkRXzbue/Di0JZQy8G5Km9Z6EFUy+mFKaweUmudL X/Bfhcw7+Y9DgG8r/kpued6fJb7Ea6r3kGaXOaFUGWy5KKzCLFTS8vLHdBlp7/Xu IPC0rAgheRy7tnp9zgbfy0vPdg+Xohvz3ICGzcDA88RHru12saR21l9Y4ad40Dov Bqhnma5+K7mvcHHc0UmhRnGwsVKUcqigfnfRjHKZZt4LnujiJRwO5LvA/OvPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaqoQJrzbT8KKrsxbUXuprl52K+gwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxNTE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQP0wDQYJKoZIhvcNAQELBQADggEBAKIh QM32GwQ7+usm1nqSy9GeB/phP7IfNZQq1+BZZ8ovCmjbfruHgzUNmrNHTo03xjrM dMnVXe+/iBXvMtq/Afi++IQaZSVY61Ke/n0OTBmzUCZbqQGR+0zV4ZLRpTnz3PsV 2QV3wC9tPLvuDnqUcXi8tFPTCLTCINjeG08zF+R2HdnSPqVi6eYz4Q8NwIhaTFs6 VUtEgyFuG9lhDgE06tSbfYRnTs4juMERXtHDcSo9nBuNycdnKizfk/yoUZ0m2S+a xKQlxb33oEWMPXH5K5YDngKfP1xmsxg3wrOGPgaN6eqLXGB4qr4E7zYpY6KEDno4 7NxypuA2+o9qnsTgjC0= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org