$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202338.roa File: AS202338.roa (raw, json) Hash identifier: WSKBKfGERW1rpPv/UfylHJ1l/Q1rAiUsWHgX4+49g70= Subject key identifier: B6:4A:FB:23:B4:E8:0D:9E:63:0B:FB:5F:7F:26:F1:5B:07:61:0F:79 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7AE596F7A92650CFBB7E5B739DE22F3DCE3C770C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202338.roa Signing time: Fri 10 May 2024 12:59:34 +0000 ROA not before: Fri 10 May 2024 12:54:34 +0000 ROA not after: Fri 09 May 2025 12:59:34 +0000 asID: 202338 IP address blocks: 2a05:dfc1:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:e5:96:f7:a9:26:50:cf:bb:7e:5b:73:9d:e2:2f:3d:ce:3c:77:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 10 12:54:34 2024 GMT Not After : May 9 12:59:34 2025 GMT Subject: CN=B64AFB23B4E80D9E630BFB5F7F26F15B07610F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c3:98:27:1f:f5:e3:a5:71:35:9c:43:eb:96: 2b:2b:69:e6:86:9f:7e:50:0d:dc:b2:59:92:d2:94: d8:5f:ee:1e:c1:d0:b7:8c:91:7a:68:57:99:dd:2a: 7a:05:27:3d:05:c2:23:cc:14:aa:fd:50:e9:df:42: b7:39:78:e9:81:69:9e:6a:1d:92:4c:a8:02:79:00: ff:da:b9:9b:6b:b5:d5:4d:a6:c6:02:b8:f8:a1:85: 68:b1:74:b2:17:87:3a:ac:12:1b:6d:09:67:1d:4c: b4:5c:3e:bb:8f:a9:3c:8a:07:e8:d3:fb:ae:64:86: d8:d6:57:8d:0b:3a:34:92:cf:51:1e:22:ae:f5:a3: 21:68:5d:a8:7e:9a:b3:58:7b:d6:fe:da:8c:20:b8: 68:0e:a7:cb:0b:d8:83:80:3b:d0:ce:8d:3e:56:af: d3:35:70:1c:74:da:b0:e3:1f:08:84:ff:95:a2:f9: f1:e5:3c:08:60:83:10:f7:6f:6d:ec:f9:ed:1a:3d: 8b:d5:d0:58:09:43:27:8b:55:78:ea:c7:1f:8b:ad: 51:f0:53:de:d1:75:0a:a4:02:78:c8:7f:32:2d:c5: 9f:2d:17:f0:7c:f3:31:07:98:c1:e9:ac:ff:e3:70: e0:06:b0:92:de:e2:ac:54:81:3b:4d:26:d5:da:30: b6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:4A:FB:23:B4:E8:0D:9E:63:0B:FB:5F:7F:26:F1:5B:07:61:0F:79 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8800::/40 Signature Algorithm: sha256WithRSAEncryption 45:64:4b:1e:89:77:6c:67:54:cd:c9:2b:f5:9c:35:38:b0:da: 24:ed:79:1c:f4:f2:cf:3a:26:e7:c4:e6:53:7b:b3:3d:eb:b2: fd:ee:88:dc:f6:55:e7:f9:a7:60:73:e5:72:57:45:08:c2:9a: 1a:0e:1d:a0:78:18:8b:25:11:d7:ea:75:79:d7:c4:f1:d5:d4: 4b:ae:aa:ad:e5:7e:33:75:77:6b:cc:e4:b6:ed:2d:c6:65:0b: e5:dd:aa:d6:a6:59:c1:37:ad:61:f6:da:ca:66:8f:73:c8:ac: f1:4d:f3:20:5d:77:38:38:a4:6b:ea:dd:80:58:77:fb:43:3c: 63:c9:04:73:d2:d4:2c:38:f2:21:1f:49:01:9d:3c:35:30:f4: 5f:24:43:49:98:ac:4c:66:14:14:12:ac:9c:4f:6a:3d:20:7a: ef:93:b5:6f:a5:ff:6f:74:d6:93:1a:cd:92:1f:a9:d3:21:c6: 94:2e:0e:63:94:2f:5e:17:af:c4:a6:1e:94:9b:73:2e:d6:bb: 34:81:05:69:ca:9c:a6:d8:35:67:97:42:b7:bc:3e:21:4e:84: 9d:42:dc:ee:eb:c9:e1:16:22:5b:a2:16:51:1e:61:db:1c:9f: c3:b2:e3:9c:e2:3d:61:7e:a5:4b:f5:f0:a3:0f:8e:a4:64:f5: ff:fe:eb:f1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUeuWW96kmUM+7fltzneIvPc48dwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MTAxMjU0MzRaFw0yNTA1MDkxMjU5MzRaMDMxMTAvBgNV BAMTKEI2NEFGQjIzQjRFODBEOUU2MzBCRkI1RjdGMjZGMTVCMDc2MTBGNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDw5gnH/XjpXE1nEPrlisraeaG n35QDdyyWZLSlNhf7h7B0LeMkXpoV5ndKnoFJz0FwiPMFKr9UOnfQrc5eOmBaZ5q HZJMqAJ5AP/auZtrtdVNpsYCuPihhWixdLIXhzqsEhttCWcdTLRcPruPqTyKB+jT +65khtjWV40LOjSSz1EeIq71oyFoXah+mrNYe9b+2owguGgOp8sL2IOAO9DOjT5W r9M1cBx02rDjHwiE/5Wi+fHlPAhggxD3b23s+e0aPYvV0FgJQyeLVXjqxx+LrVHw U97RdQqkAnjIfzItxZ8tF/B88zEHmMHprP/jcOAGsJLe4qxUgTtNJtXaMLYRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUtkr7I7ToDZ5jC/tffybxWwdhD3kwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAyMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYgwDQYJKoZIhvcNAQELBQADggEBAEVk Sx6Jd2xnVM3JK/WcNTiw2iTteRz08s86JufE5lN7sz3rsv3uiNz2Vef5p2Bz5XJX RQjCmhoOHaB4GIslEdfqdXnXxPHV1Euuqq3lfjN1d2vM5LbtLcZlC+XdqtamWcE3 rWH22spmj3PIrPFN8yBddzg4pGvq3YBYd/tDPGPJBHPS1Cw48iEfSQGdPDUw9F8k Q0mYrExmFBQSrJxPaj0geu+TtW+l/2901pMazZIfqdMhxpQuDmOUL14Xr8SmHpSb cy7WuzSBBWnKnKbYNWeXQre8PiFOhJ1C3O7ryeEWIluiFlEeYdscn8Oy45ziPWF+ pUv18KMPjqRk9f/+6/E= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org