$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202467.roa File: AS202467.roa (raw, json) Hash identifier: j/zXrtBj2ZnGGmHJV4oAyYJ+/Cs++0f/NAd+xo6omYc= Subject key identifier: 61:78:23:5A:E1:FC:AB:01:FD:6E:34:4B:9D:1E:35:65:3D:D6:26:F8 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1DA1CA62ADDFC4734A6C4A57F34AAA25D2EB770B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202467.roa Signing time: Sun 05 Nov 2023 04:06:59 +0000 ROA not before: Sun 05 Nov 2023 04:01:59 +0000 ROA not after: Sun 03 Nov 2024 04:06:59 +0000 asID: 202467 IP address blocks: 2a0a:6040:a600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a1:ca:62:ad:df:c4:73:4a:6c:4a:57:f3:4a:aa:25:d2:eb:77:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:59 2023 GMT Not After : Nov 3 04:06:59 2024 GMT Subject: CN=6178235AE1FCAB01FD6E344B9D1E35653DD626F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:65:79:98:fb:af:e2:60:67:a7:1f:e1:9a:60: 34:5c:a3:19:bc:63:42:c1:f6:ac:59:ca:56:96:9b: 80:df:26:ae:59:96:1d:67:13:41:58:e4:bd:ab:41: 5b:88:5a:d5:17:60:ba:77:93:56:5b:c9:8e:f6:d0: cb:c1:2a:98:f6:0f:25:10:f4:e9:bf:b6:53:b4:3b: f0:55:10:53:4b:ba:d5:6e:0d:c5:9f:17:33:4d:df: 3b:a5:d6:93:a8:cf:a3:dc:0c:03:c1:48:01:a8:5e: 66:d3:c3:bd:83:07:89:b3:d3:4b:7d:a0:fd:b2:78: db:21:85:5c:4f:9b:b1:4e:8a:91:0b:02:fd:ac:57: 03:c1:a7:e4:3d:9f:56:19:37:af:89:e0:46:fb:1e: 59:d3:c0:fd:62:21:6c:4c:6e:21:72:32:76:81:38: c9:62:36:a9:51:2f:11:1e:c9:ca:6f:3e:6a:b5:3f: 72:ec:f1:6c:96:40:d3:34:76:be:a2:80:4d:0a:cc: 30:d9:b5:f9:39:e5:3e:ab:66:82:f4:b4:3d:e9:fb: 64:f5:f0:d9:f0:1e:4e:79:ff:14:c5:be:fc:50:1f: 3b:7c:0a:1d:4a:24:9e:4b:bc:d1:09:1f:7e:5e:38: 53:ef:23:ae:04:18:8c:27:f0:5d:16:63:04:74:6f: 2e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:78:23:5A:E1:FC:AB:01:FD:6E:34:4B:9D:1E:35:65:3D:D6:26:F8 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202467.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a600::/40 Signature Algorithm: sha256WithRSAEncryption 3f:cc:f9:1c:c0:35:ad:25:c5:75:1d:7a:cc:f8:fc:cc:26:33: 3b:6b:eb:02:39:74:37:fe:f8:b5:3c:11:16:f9:e6:47:82:ff: c8:20:d8:cc:16:7e:b5:75:e0:94:48:46:3f:b6:19:50:37:5d: 7e:27:89:ab:d4:b2:d5:43:da:71:a3:9c:08:f4:43:5c:93:98: f7:12:b5:b1:35:e3:aa:1d:8a:53:1c:61:d6:fb:02:ae:1b:14: 40:d4:1f:a5:f2:b7:70:93:38:a7:09:40:b8:71:7b:21:8c:b6: 6f:5f:58:35:c7:cd:86:dd:99:73:22:18:7d:cb:57:6f:00:47: 81:01:40:2c:d2:69:f3:3d:d8:8b:9f:92:7c:7e:e8:03:16:08: 07:28:18:81:09:de:d4:00:1a:bd:7e:9a:4c:8b:8a:6f:89:24: 95:1a:24:37:22:9d:7b:7c:4b:f8:e5:60:02:16:c2:8f:88:b7: 60:14:80:17:c0:ac:ba:e7:22:df:72:e1:f7:d8:6f:e4:4b:5e: 5e:0f:57:bf:32:50:90:86:04:f9:d1:6a:4a:30:86:59:a5:ed: c3:b9:f0:f7:ec:ab:c5:48:65:bd:03:b0:0a:ba:7d:bb:28:ed: 02:3e:21:18:32:98:85:9a:2b:04:08:17:d2:bb:0c:0c:37:c7: a7:e3:cc:41 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHaHKYq3fxHNKbEpX80qqJdLrdwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNTlaFw0yNDExMDMwNDA2NTlaMDMxMTAvBgNV BAMTKDYxNzgyMzVBRTFGQ0FCMDFGRDZFMzQ0QjlEMUUzNTY1M0RENjI2RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeZXmY+6/iYGenH+GaYDRcoxm8 Y0LB9qxZylaWm4DfJq5Zlh1nE0FY5L2rQVuIWtUXYLp3k1ZbyY720MvBKpj2DyUQ 9Om/tlO0O/BVEFNLutVuDcWfFzNN3zul1pOoz6PcDAPBSAGoXmbTw72DB4mz00t9 oP2yeNshhVxPm7FOipELAv2sVwPBp+Q9n1YZN6+J4Eb7HlnTwP1iIWxMbiFyMnaB OMliNqlRLxEeycpvPmq1P3Ls8WyWQNM0dr6igE0KzDDZtfk55T6rZoL0tD3p+2T1 8NnwHk55/xTFvvxQHzt8Ch1KJJ5LvNEJH35eOFPvI64EGIwn8F0WYwR0by4VAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUYXgjWuH8qwH9bjRLnR41ZT3WJvgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAyNDY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKYwDQYJKoZIhvcNAQELBQADggEBAD/M +RzANa0lxXUdesz4/MwmMztr6wI5dDf++LU8ERb55keC/8gg2MwWfrV14JRIRj+2 GVA3XX4niavUstVD2nGjnAj0Q1yTmPcStbE146odilMcYdb7Aq4bFEDUH6Xyt3CT OKcJQLhxeyGMtm9fWDXHzYbdmXMiGH3LV28AR4EBQCzSafM92Iufknx+6AMWCAco GIEJ3tQAGr1+mkyLim+JJJUaJDcinXt8S/jlYAIWwo+It2AUgBfArLrnIt9y4ffY b+RLXl4PV78yUJCGBPnRakowhlml7cO58Pfsq8VIZb0DsAq6fbso7QI+IRgymIWa KwQIF9K7DAw3x6fjzEE= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org