$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202467.roa File: AS202467.roa (raw, json) Hash identifier: du5kfvfV+ITyVrc5F8WyNBu/bgDFEIojevdmcELdo4k= Subject key identifier: 8E:78:C2:89:0D:09:1F:65:9D:03:42:61:14:75:CB:CA:FE:EF:64:F3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 06E1F9847CC051FF8EED3DD9DD168F6FC8E6DA45 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202467.roa Signing time: Sun 06 Oct 2024 04:45:03 +0000 ROA not before: Sun 06 Oct 2024 04:40:03 +0000 ROA not after: Sun 05 Oct 2025 04:45:03 +0000 asID: 202467 IP address blocks: 2a0a:6040:a600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e1:f9:84:7c:c0:51:ff:8e:ed:3d:d9:dd:16:8f:6f:c8:e6:da:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:03 2024 GMT Not After : Oct 5 04:45:03 2025 GMT Subject: CN=8E78C2890D091F659D0342611475CBCAFEEF64F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:da:8e:63:8e:d0:fe:71:62:48:40:85:e8: 9c:f4:31:2a:d8:e0:d4:86:02:58:b4:fa:40:b3:5e: e3:26:a6:24:12:55:48:00:b8:5c:a3:24:d6:c4:f4: 41:07:5c:fd:cf:ad:ac:9e:a4:f3:2b:40:63:38:78: de:7e:c3:ff:39:8b:f0:92:a4:a6:ca:5b:4c:ff:fc: 57:00:4b:1a:b8:d0:0c:e5:8b:cc:59:3e:c0:d4:ae: f2:9b:82:60:9d:34:bc:89:42:b7:cf:da:15:d9:37: 79:dc:22:59:f9:1a:4a:1c:3b:90:45:8c:e4:02:da: cb:2e:56:89:be:f5:25:6d:50:1f:e9:61:6d:3d:d1: dc:38:ad:5e:14:53:be:b9:7a:99:ae:6e:ad:3d:0e: 5b:7a:15:f0:e3:6e:34:aa:14:b0:97:f2:31:db:0e: ab:0d:58:40:37:f2:12:de:bc:4c:3b:00:48:6e:ce: 70:a9:3a:46:6c:e3:19:43:3f:23:d9:f0:1f:e8:44: 5c:4c:79:b4:ae:70:b4:3c:22:dd:13:ee:1a:ce:51: f9:95:25:e6:1f:8b:cb:22:32:a5:17:bc:1f:40:aa: 13:9c:c8:19:96:8b:67:31:ad:7d:ac:87:a5:4b:ab: 9c:6c:d7:79:3c:04:cb:7f:1d:5a:37:42:f4:1e:23: 13:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:78:C2:89:0D:09:1F:65:9D:03:42:61:14:75:CB:CA:FE:EF:64:F3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202467.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a600::/40 Signature Algorithm: sha256WithRSAEncryption 6a:48:e2:cb:23:b3:09:80:15:34:47:2f:3c:ea:3c:1c:a1:a1: bb:6d:d5:e3:fb:69:9e:76:54:20:e9:47:ed:67:03:72:63:f3: f2:bc:82:96:ef:dd:4d:bc:6c:bf:76:f7:0c:a1:a5:8e:67:df: 39:16:a6:28:c6:d9:8c:35:77:20:e8:f0:30:cc:45:21:f7:87: b0:ef:73:05:01:17:02:cb:75:e7:49:63:0b:03:64:fa:44:a0: 3e:a3:ea:13:be:ac:eb:47:1a:a2:c6:58:13:f3:74:56:69:91: fe:97:6e:08:28:7d:90:66:fa:fc:61:85:08:43:29:b0:f2:77: eb:73:95:bd:26:c0:8b:50:23:73:cf:cb:60:fb:2b:65:d1:1a: e0:25:73:74:f8:8a:b7:4c:03:49:fa:26:8e:50:3e:d1:f2:93: 59:23:0d:a7:65:85:1a:08:cf:18:c9:35:e4:93:a9:54:45:e4: f2:ce:d3:15:a9:20:39:65:60:08:93:ed:28:ef:64:2b:02:0a: e7:d2:47:70:a7:3b:6f:57:d7:a7:20:ab:6f:6a:2f:ed:00:41: 91:2d:64:60:36:03:20:6f:1f:71:31:35:19:a6:3e:04:82:ab: 17:a5:98:21:2b:ea:51:66:63:86:cb:71:0a:07:9c:2f:bc:c8: a5:ee:cc:68 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBuH5hHzAUf+O7T3Z3RaPb8jm2kUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDNaFw0yNTEwMDUwNDQ1MDNaMDMxMTAvBgNV BAMTKDhFNzhDMjg5MEQwOTFGNjU5RDAzNDI2MTE0NzVDQkNBRkVFRjY0RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB+dqOY47Q/nFiSECF6Jz0MSrY 4NSGAli0+kCzXuMmpiQSVUgAuFyjJNbE9EEHXP3PrayepPMrQGM4eN5+w/85i/CS pKbKW0z//FcASxq40Azli8xZPsDUrvKbgmCdNLyJQrfP2hXZN3ncIln5GkocO5BF jOQC2ssuVom+9SVtUB/pYW090dw4rV4UU765epmubq09Dlt6FfDjbjSqFLCX8jHb DqsNWEA38hLevEw7AEhuznCpOkZs4xlDPyPZ8B/oRFxMebSucLQ8It0T7hrOUfmV JeYfi8siMqUXvB9AqhOcyBmWi2cxrX2sh6VLq5xs13k8BMt/HVo3QvQeIxNvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUjnjCiQ0JH2WdA0JhFHXLyv7vZPMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAyNDY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKYwDQYJKoZIhvcNAQELBQADggEBAGpI 4ssjswmAFTRHLzzqPByhobtt1eP7aZ52VCDpR+1nA3Jj8/K8gpbv3U28bL929wyh pY5n3zkWpijG2Yw1dyDo8DDMRSH3h7DvcwUBFwLLdedJYwsDZPpEoD6j6hO+rOtH GqLGWBPzdFZpkf6XbggofZBm+vxhhQhDKbDyd+tzlb0mwItQI3PPy2D7K2XRGuAl c3T4irdMA0n6Jo5QPtHyk1kjDadlhRoIzxjJNeSTqVRF5PLO0xWpIDllYAiT7Sjv ZCsCCufSR3CnO29X16cgq29qL+0AQZEtZGA2AyBvH3ExNRmmPgSCqxelmCEr6lFm Y4bLcQoHnC+8yKXuzGg= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org