$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202939.roa File: AS202939.roa (raw, json) Hash identifier: bsvtWzubQ6JrKsNshgfCNPps9ZYC4dpRNWCxLoceo2A= Subject key identifier: E2:2F:1F:86:12:BB:1C:F6:59:4D:D6:99:23:45:8E:57:69:AE:3D:91 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 59AD367BA751FD79EB2F3D10317352262DD63FE8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202939.roa Signing time: Sun 05 Nov 2023 04:07:02 +0000 ROA not before: Sun 05 Nov 2023 04:02:02 +0000 ROA not after: Sun 03 Nov 2024 04:07:02 +0000 asID: 202939 IP address blocks: 2a0a:6040:3500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 28 Mar 2024 21:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ad:36:7b:a7:51:fd:79:eb:2f:3d:10:31:73:52:26:2d:d6:3f:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:02 2023 GMT Not After : Nov 3 04:07:02 2024 GMT Subject: CN=E22F1F8612BB1CF6594DD69923458E5769AE3D91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:17:9b:7e:31:96:99:fb:87:41:60:db:50:10: 18:12:60:81:c9:2a:9a:df:ba:4d:28:34:36:bb:17: 2e:b1:22:63:93:3c:a4:37:3c:0b:7a:85:fc:94:2b: 5e:1b:28:f5:20:1a:88:ac:67:a4:06:8e:f8:14:9a: 29:14:ca:79:e9:66:db:d1:1d:a9:ef:e7:0d:a5:02: 53:f8:3f:e3:82:33:14:81:24:34:74:ec:97:95:56: 4b:74:3b:04:ed:c9:d5:81:9f:e2:17:3c:91:8d:73: 33:01:90:76:ba:db:f7:8e:82:76:b0:7c:be:6c:46: 08:67:59:ce:68:5c:ca:2f:af:e8:1e:75:c4:85:07: df:d5:5e:a4:db:31:03:d2:b0:eb:08:a7:56:9b:d3: c9:a5:8e:2b:2f:50:25:8b:1d:62:78:48:d4:49:e5: d8:f7:f9:cf:8c:e0:8f:8a:ac:49:25:37:5b:9b:fe: 5a:c4:c9:b3:5a:d0:eb:30:24:76:39:61:ef:b2:fb: 2d:b3:31:e8:09:47:65:15:dd:ab:c1:a5:cb:02:d9: e9:47:11:f9:30:2a:ff:7c:57:26:70:5e:69:2f:a3: 03:d8:c6:fe:ea:19:70:d3:d8:ff:76:b4:de:46:e2: 7d:e8:1b:ad:3c:3f:2e:12:c9:d8:da:14:54:57:c4: 16:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2F:1F:86:12:BB:1C:F6:59:4D:D6:99:23:45:8E:57:69:AE:3D:91 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3500::/40 Signature Algorithm: sha256WithRSAEncryption 37:d3:71:54:db:c1:34:b4:2a:59:00:73:aa:e5:4d:14:b2:b1: 73:63:58:34:a5:c9:ad:5d:8b:ca:08:39:8e:0d:77:f6:18:12: a6:cb:f5:19:ba:b7:48:4f:1e:2b:c2:cb:2c:71:1a:09:3a:73: c4:17:f2:a3:03:ea:b7:4f:d3:51:86:9e:98:ac:59:74:e2:a2: 39:18:87:e6:8c:0c:76:41:b4:b0:5d:89:69:19:fe:d9:6a:2d: 4e:fd:b7:ac:b4:bf:b1:b7:84:77:d9:05:18:1b:c4:bd:90:eb: 7d:61:9d:75:0b:91:18:18:9e:55:67:36:8c:e0:f0:06:cd:85: 20:ca:4e:bd:5c:b8:fb:31:bc:2c:5c:b7:97:48:6a:3a:c8:a9: ff:85:6c:98:30:ec:c0:5c:f3:4a:e2:7a:98:bc:a2:a5:ba:3c: cf:05:ad:79:70:8c:c1:29:95:c6:4c:22:6e:2f:ba:1c:6e:14: 35:c9:58:26:e0:9b:37:f9:24:c0:6e:dd:cf:b8:2f:63:8c:e9: ee:5d:5d:07:42:fc:ea:4e:f8:be:ff:e3:3e:d9:a5:06:8e:cc: 17:16:c1:5f:03:cf:1e:6b:62:5a:66:e1:08:51:cb:da:66:d3: 3a:b7:3c:65:b3:4d:81:ef:95:f0:aa:20:d7:e8:1b:cc:62:89: 1f:f4:89:df -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWa02e6dR/XnrLz0QMXNSJi3WP+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDJaFw0yNDExMDMwNDA3MDJaMDMxMTAvBgNV BAMTKEUyMkYxRjg2MTJCQjFDRjY1OTRERDY5OTIzNDU4RTU3NjlBRTNEOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1F5t+MZaZ+4dBYNtQEBgSYIHJ Kprfuk0oNDa7Fy6xImOTPKQ3PAt6hfyUK14bKPUgGoisZ6QGjvgUmikUynnpZtvR Hanv5w2lAlP4P+OCMxSBJDR07JeVVkt0OwTtydWBn+IXPJGNczMBkHa62/eOgnaw fL5sRghnWc5oXMovr+gedcSFB9/VXqTbMQPSsOsIp1ab08mljisvUCWLHWJ4SNRJ 5dj3+c+M4I+KrEklN1ub/lrEybNa0OswJHY5Ye+y+y2zMegJR2UV3avBpcsC2elH EfkwKv98VyZwXmkvowPYxv7qGXDT2P92tN5G4n3oG608Py4SydjaFFRXxBY5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4i8fhhK7HPZZTdaZI0WOV2muPZEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAyOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDUwDQYJKoZIhvcNAQELBQADggEBADfT cVTbwTS0KlkAc6rlTRSysXNjWDSlya1di8oIOY4Nd/YYEqbL9Rm6t0hPHivCyyxx Ggk6c8QX8qMD6rdP01GGnpisWXTiojkYh+aMDHZBtLBdiWkZ/tlqLU79t6y0v7G3 hHfZBRgbxL2Q631hnXULkRgYnlVnNozg8AbNhSDKTr1cuPsxvCxct5dIajrIqf+F bJgw7MBc80riepi8oqW6PM8FrXlwjMEplcZMIm4vuhxuFDXJWCbgmzf5JMBu3c+4 L2OM6e5dXQdC/OpO+L7/4z7ZpQaOzBcWwV8Dzx5rYlpm4QhRy9pm0zq3PGWzTYHv lfCqINfoG8xiiR/0id8= -----END CERTIFICATE-----Generated at Thu Mar 28 08:10:33 2024 by rpki-client on console-ams.rpki-client.org