Route Origin Authorization

$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202939.roa
File:                     AS202939.roa (raw, json)
Hash identifier:          bsvtWzubQ6JrKsNshgfCNPps9ZYC4dpRNWCxLoceo2A=
Subject key identifier:   E2:2F:1F:86:12:BB:1C:F6:59:4D:D6:99:23:45:8E:57:69:AE:3D:91
Certificate issuer:       /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial:       59AD367BA751FD79EB2F3D10317352262DD63FE8
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access:    rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access:      rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202939.roa
Signing time:             Sun 05 Nov 2023 04:07:02 +0000
ROA not before:           Sun 05 Nov 2023 04:02:02 +0000
ROA not after:            Sun 03 Nov 2024 04:07:02 +0000
asID:                     202939
IP address blocks:        2a0a:6040:3500::/40 maxlen: 48

Validation:               OK
Signature path:           rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
                          rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft
                          rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
                          rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
                          rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 28 Mar 2024 21:52:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            59:ad:36:7b:a7:51:fd:79:eb:2f:3d:10:31:73:52:26:2d:d6:3f:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
        Validity
            Not Before: Nov  5 04:02:02 2023 GMT
            Not After : Nov  3 04:07:02 2024 GMT
        Subject: CN=E22F1F8612BB1CF6594DD69923458E5769AE3D91
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:17:9b:7e:31:96:99:fb:87:41:60:db:50:10:
                    18:12:60:81:c9:2a:9a:df:ba:4d:28:34:36:bb:17:
                    2e:b1:22:63:93:3c:a4:37:3c:0b:7a:85:fc:94:2b:
                    5e:1b:28:f5:20:1a:88:ac:67:a4:06:8e:f8:14:9a:
                    29:14:ca:79:e9:66:db:d1:1d:a9:ef:e7:0d:a5:02:
                    53:f8:3f:e3:82:33:14:81:24:34:74:ec:97:95:56:
                    4b:74:3b:04:ed:c9:d5:81:9f:e2:17:3c:91:8d:73:
                    33:01:90:76:ba:db:f7:8e:82:76:b0:7c:be:6c:46:
                    08:67:59:ce:68:5c:ca:2f:af:e8:1e:75:c4:85:07:
                    df:d5:5e:a4:db:31:03:d2:b0:eb:08:a7:56:9b:d3:
                    c9:a5:8e:2b:2f:50:25:8b:1d:62:78:48:d4:49:e5:
                    d8:f7:f9:cf:8c:e0:8f:8a:ac:49:25:37:5b:9b:fe:
                    5a:c4:c9:b3:5a:d0:eb:30:24:76:39:61:ef:b2:fb:
                    2d:b3:31:e8:09:47:65:15:dd:ab:c1:a5:cb:02:d9:
                    e9:47:11:f9:30:2a:ff:7c:57:26:70:5e:69:2f:a3:
                    03:d8:c6:fe:ea:19:70:d3:d8:ff:76:b4:de:46:e2:
                    7d:e8:1b:ad:3c:3f:2e:12:c9:d8:da:14:54:57:c4:
                    16:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:2F:1F:86:12:BB:1C:F6:59:4D:D6:99:23:45:8E:57:69:AE:3D:91
            X509v3 Authority Key Identifier:
                keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer

            Subject Information Access:
                Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202939.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0a:6040:3500::/40

    Signature Algorithm: sha256WithRSAEncryption
         37:d3:71:54:db:c1:34:b4:2a:59:00:73:aa:e5:4d:14:b2:b1:
         73:63:58:34:a5:c9:ad:5d:8b:ca:08:39:8e:0d:77:f6:18:12:
         a6:cb:f5:19:ba:b7:48:4f:1e:2b:c2:cb:2c:71:1a:09:3a:73:
         c4:17:f2:a3:03:ea:b7:4f:d3:51:86:9e:98:ac:59:74:e2:a2:
         39:18:87:e6:8c:0c:76:41:b4:b0:5d:89:69:19:fe:d9:6a:2d:
         4e:fd:b7:ac:b4:bf:b1:b7:84:77:d9:05:18:1b:c4:bd:90:eb:
         7d:61:9d:75:0b:91:18:18:9e:55:67:36:8c:e0:f0:06:cd:85:
         20:ca:4e:bd:5c:b8:fb:31:bc:2c:5c:b7:97:48:6a:3a:c8:a9:
         ff:85:6c:98:30:ec:c0:5c:f3:4a:e2:7a:98:bc:a2:a5:ba:3c:
         cf:05:ad:79:70:8c:c1:29:95:c6:4c:22:6e:2f:ba:1c:6e:14:
         35:c9:58:26:e0:9b:37:f9:24:c0:6e:dd:cf:b8:2f:63:8c:e9:
         ee:5d:5d:07:42:fc:ea:4e:f8:be:ff:e3:3e:d9:a5:06:8e:cc:
         17:16:c1:5f:03:cf:1e:6b:62:5a:66:e1:08:51:cb:da:66:d3:
         3a:b7:3c:65:b3:4d:81:ef:95:f0:aa:20:d7:e8:1b:cc:62:89:
         1f:f4:89:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 08:10:33 2024 by rpki-client on console-ams.rpki-client.org