$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202201.roa File: AS202201.roa (raw, json) Hash identifier: hWPg+cVpwIxO27yprlZ5HtyBzDyXmO8HYtKfEVHoyz8= Subject key identifier: 8E:CF:DF:90:50:7E:CE:7D:E5:96:3A:26:29:CC:44:88:E4:F2:AE:4D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 365C52EE158F50C314FAB77031E0EEA49418F908 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202201.roa Signing time: Sun 05 Nov 2023 04:07:20 +0000 ROA not before: Sun 05 Nov 2023 04:02:20 +0000 ROA not after: Sun 03 Nov 2024 04:07:20 +0000 asID: 202201 IP address blocks: 2a0a:6040:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:5c:52:ee:15:8f:50:c3:14:fa:b7:70:31:e0:ee:a4:94:18:f9:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:20 2023 GMT Not After : Nov 3 04:07:20 2024 GMT Subject: CN=8ECFDF90507ECE7DE5963A2629CC4488E4F2AE4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5c:27:f7:4c:cd:7e:b0:4a:3c:ff:cb:ea:3f: f7:07:6e:4f:7f:a4:ac:e4:0d:58:4d:3c:20:f2:40: 35:19:56:c0:d3:30:89:3c:7d:4a:11:de:d8:c5:94: ec:c9:3c:43:76:d4:6c:0d:ba:ff:dc:42:73:91:eb: f7:0a:33:1c:25:27:2c:7e:d8:88:4b:af:cf:5c:05: 1e:88:d0:dc:bf:20:88:8a:77:80:7b:71:df:33:b3: 3e:6a:87:18:df:8c:85:14:22:f5:0d:72:2c:e4:b6: 66:8a:99:54:56:a6:6f:ac:dc:51:93:e5:f2:a5:6a: 58:0b:a4:88:22:e5:ca:04:14:c9:47:f2:8b:96:17: ad:1a:1b:49:2e:31:ab:1b:e6:67:30:91:24:58:c4: 4e:b3:04:95:af:af:e3:0f:ca:28:06:b6:2e:69:c9: 48:e0:10:61:ab:b9:ca:6e:04:81:40:b6:3f:d8:d1: fd:cb:df:34:ce:96:cd:1c:ab:45:29:cc:76:89:72: 64:fc:19:ad:eb:c1:94:31:7c:46:d2:11:96:a9:ba: 74:72:e8:06:ae:f1:65:1f:df:a0:e8:14:d0:c8:b5: 01:c7:c6:e9:cb:c8:ef:71:f2:85:52:58:df:a0:c7: dc:37:92:e7:b6:bc:7c:25:98:1d:b7:bc:3a:e4:41: 56:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:CF:DF:90:50:7E:CE:7D:E5:96:3A:26:29:CC:44:88:E4:F2:AE:4D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202201.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5400::/40 Signature Algorithm: sha256WithRSAEncryption bc:7e:4c:84:2d:ac:c5:51:94:cd:9d:7e:af:cc:01:73:47:d6: 2c:27:47:72:13:8f:ef:4a:ce:ea:9f:78:81:01:7e:aa:27:11: 25:8a:bd:46:91:d7:fe:a5:69:0b:ea:f3:6e:57:96:66:da:8c: 0a:1a:50:77:de:2a:6b:97:5d:ef:95:f3:62:41:de:99:cc:f5: a4:fa:1a:ab:22:f8:6f:48:92:a8:69:01:58:fd:3d:56:bd:c0: 81:fb:d9:81:6a:11:c0:48:40:5f:0f:b6:67:f8:63:6b:77:c2: f6:df:d1:58:a0:f5:46:9c:bc:4b:8a:ff:a5:db:06:a0:2e:08: 9b:d5:ef:9d:3c:61:df:0c:82:c2:c6:b2:56:aa:db:e0:02:0f: 09:12:11:63:08:c5:11:cb:ff:47:90:1c:9c:0b:0f:72:23:44: b7:7b:92:30:3f:47:d8:2f:0d:e5:c1:69:e1:c9:84:b8:ba:d9: c6:a4:f4:5e:48:e7:61:62:f9:b7:a4:2f:e2:67:e5:70:86:70: fa:17:7b:e2:5a:86:05:b1:06:55:f5:a4:e6:ec:6d:a1:09:67: ed:2a:77:72:b6:36:c1:01:62:2d:2f:61:32:7a:6a:48:28:ef: c3:4a:67:02:e1:88:2e:1c:99:e7:78:f1:00:79:d2:c6:48:97: b1:9c:dc:2c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNlxS7hWPUMMU+rdwMeDupJQY+QgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjBaFw0yNDExMDMwNDA3MjBaMDMxMTAvBgNV BAMTKDhFQ0ZERjkwNTA3RUNFN0RFNTk2M0EyNjI5Q0M0NDg4RTRGMkFFNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPXCf3TM1+sEo8/8vqP/cHbk9/ pKzkDVhNPCDyQDUZVsDTMIk8fUoR3tjFlOzJPEN21GwNuv/cQnOR6/cKMxwlJyx+ 2IhLr89cBR6I0Ny/IIiKd4B7cd8zsz5qhxjfjIUUIvUNcizktmaKmVRWpm+s3FGT 5fKlalgLpIgi5coEFMlH8ouWF60aG0kuMasb5mcwkSRYxE6zBJWvr+MPyigGti5p yUjgEGGrucpuBIFAtj/Y0f3L3zTOls0cq0UpzHaJcmT8Ga3rwZQxfEbSEZapunRy 6Aau8WUf36DoFNDItQHHxunLyO9x8oVSWN+gx9w3kue2vHwlmB23vDrkQVZBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUjs/fkFB+zn3lljomKcxEiOTyrk0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAyMjAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFQwDQYJKoZIhvcNAQELBQADggEBALx+ TIQtrMVRlM2dfq/MAXNH1iwnR3ITj+9KzuqfeIEBfqonESWKvUaR1/6laQvq825X lmbajAoaUHfeKmuXXe+V82JB3pnM9aT6Gqsi+G9IkqhpAVj9PVa9wIH72YFqEcBI QF8Ptmf4Y2t3wvbf0Vig9UacvEuK/6XbBqAuCJvV7508Yd8MgsLGslaq2+ACDwkS EWMIxRHL/0eQHJwLD3IjRLd7kjA/R9gvDeXBaeHJhLi62cak9F5I52Fi+bekL+Jn 5XCGcPoXe+JahgWxBlX1pObsbaEJZ+0qd3K2NsEBYi0vYTJ6akgo78NKZwLhiC4c med48QB50sZIl7Gc3Cw= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org