$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202732.roa File: AS202732.roa (raw, json) Hash identifier: jxRzGMGmRBSOHWPdnpo4e9hIA5ik0WvpX0Q6g2OHzx0= Subject key identifier: D5:0E:DF:91:D0:D3:FC:49:8D:34:C9:08:7F:06:10:DE:77:50:B2:52 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 10A6DA707E2CBE9D5EFC8834C9C867472E27AAA8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202732.roa Signing time: Sun 06 Oct 2024 04:45:06 +0000 ROA not before: Sun 06 Oct 2024 04:40:06 +0000 ROA not after: Sun 05 Oct 2025 04:45:06 +0000 asID: 202732 IP address blocks: 2a0a:6040:c800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a6:da:70:7e:2c:be:9d:5e:fc:88:34:c9:c8:67:47:2e:27:aa:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:06 2024 GMT Not After : Oct 5 04:45:06 2025 GMT Subject: CN=D50EDF91D0D3FC498D34C9087F0610DE7750B252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ec:66:76:80:de:34:c5:b1:11:a2:bb:01:ff: ac:a0:91:a0:ff:f0:af:02:ce:22:f8:38:56:69:7b: f2:dd:a2:1b:e0:a6:44:66:09:58:aa:6c:cc:44:03: 03:82:21:6f:4e:0a:b0:e5:78:95:53:e2:c2:9d:00: 76:a4:90:7b:da:a9:e4:48:a9:1a:ad:db:84:14:ba: 13:9c:f7:75:16:0f:cd:19:cb:ad:78:65:ac:c1:8c: 89:2f:cb:55:01:9b:16:69:a3:00:b9:00:3c:8f:f0: 7c:ef:2c:74:fc:50:fc:57:bc:bc:ab:a7:2f:28:fc: 51:9b:82:72:97:a3:72:f3:1f:d8:2f:38:e7:b3:78: cf:6b:8e:c7:86:3e:95:4e:9c:ac:01:bc:ad:38:0a: 6e:49:20:e8:15:4c:91:d7:f8:7e:70:45:59:22:8a: bd:26:ed:23:59:21:e9:c1:76:78:cb:85:fe:4a:7d: 06:e6:a9:14:a8:66:9e:e7:71:42:e7:bb:19:62:09: b9:d5:c8:1f:26:ee:ec:2a:f8:24:31:09:e1:68:d8: 80:dd:69:24:8e:71:58:20:fb:36:92:5a:68:40:33: 69:7e:9b:18:f9:cf:dd:78:89:ba:a2:f1:41:04:26: da:8a:cc:8e:ed:13:c7:ec:77:1a:aa:12:2d:ca:26: 80:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0E:DF:91:D0:D3:FC:49:8D:34:C9:08:7F:06:10:DE:77:50:B2:52 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c800::/40 Signature Algorithm: sha256WithRSAEncryption 9c:10:66:c5:61:f8:b1:b1:91:7c:83:2a:4f:d6:8a:34:10:ce: 9c:22:ff:a0:ce:f0:61:f5:2d:18:7f:29:8c:c5:0c:b7:76:4d: bc:cf:18:4d:e3:73:17:8c:7b:cb:2b:4b:29:64:37:6d:b4:d9: 6f:2e:e0:23:37:56:4d:e0:4d:97:90:8f:b7:46:fa:2d:0b:85: 85:bf:72:3d:a4:0c:a7:3f:71:ee:ca:ad:ea:dc:f3:4e:fc:1b: 26:40:c6:81:d2:9c:36:29:02:73:e8:e2:c9:66:9c:35:a9:19: c3:7f:e6:8c:29:37:a5:9f:1a:a2:a1:72:82:84:ff:c5:5a:47: e8:a8:d3:f1:e2:09:04:78:16:b4:99:75:b8:28:3a:29:49:ec: 24:9e:4b:32:40:c0:46:72:0f:fd:92:31:cd:e5:4e:f3:8d:a1: 53:82:35:30:53:88:7c:c3:60:d4:69:8b:bb:91:45:ff:a5:09: 95:fb:f2:67:be:f4:a2:f4:8a:38:80:6f:66:1c:bb:66:9e:6b: 0e:fc:f9:35:13:96:52:70:f7:f4:c4:c5:25:a0:05:dd:5a:0b: 92:2f:e7:cd:33:a8:c0:ac:33:f4:65:55:db:d7:5a:72:44:eb: 4e:91:d3:52:aa:d2:a2:a4:74:52:d6:27:72:5a:9c:53:e7:34: 29:81:ea:55 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEKbacH4svp1e/Ig0ychnRy4nqqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDZaFw0yNTEwMDUwNDQ1MDZaMDMxMTAvBgNV BAMTKEQ1MEVERjkxRDBEM0ZDNDk4RDM0QzkwODdGMDYxMERFNzc1MEIyNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq7GZ2gN40xbERorsB/6ygkaD/ 8K8CziL4OFZpe/LdohvgpkRmCViqbMxEAwOCIW9OCrDleJVT4sKdAHakkHvaqeRI qRqt24QUuhOc93UWD80Zy614ZazBjIkvy1UBmxZpowC5ADyP8HzvLHT8UPxXvLyr py8o/FGbgnKXo3LzH9gvOOezeM9rjseGPpVOnKwBvK04Cm5JIOgVTJHX+H5wRVki ir0m7SNZIenBdnjLhf5KfQbmqRSoZp7ncULnuxliCbnVyB8m7uwq+CQxCeFo2IDd aSSOcVgg+zaSWmhAM2l+mxj5z914ibqi8UEEJtqKzI7tE8fsdxqqEi3KJoBvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1Q7fkdDT/EmNNMkIfwYQ3ndQslIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAyNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMgwDQYJKoZIhvcNAQELBQADggEBAJwQ ZsVh+LGxkXyDKk/WijQQzpwi/6DO8GH1LRh/KYzFDLd2TbzPGE3jcxeMe8srSylk N2202W8u4CM3Vk3gTZeQj7dG+i0LhYW/cj2kDKc/ce7Krerc8078GyZAxoHSnDYp AnPo4slmnDWpGcN/5owpN6WfGqKhcoKE/8VaR+io0/HiCQR4FrSZdbgoOilJ7CSe SzJAwEZyD/2SMc3lTvONoVOCNTBTiHzDYNRpi7uRRf+lCZX78me+9KL0ijiAb2Yc u2aeaw78+TUTllJw9/TExSWgBd1aC5Iv580zqMCsM/RlVdvXWnJE606R01Kq0qKk dFLWJ3JanFPnNCmB6lU= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org