$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202939.roa File: AS202939.roa (raw, json) Hash identifier: oVGmGpdb5g7lcXsSvfcTO/YRzwwPtqBHWZVSQtxf0Nc= Subject key identifier: 09:31:E8:6D:16:85:D0:E2:DE:E8:39:8E:CD:74:98:2B:E9:24:9E:2E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6FB5F22197F9DDF309FC94FE4C4EDC7404D0A931 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202939.roa Signing time: Sun 06 Oct 2024 04:44:57 +0000 ROA not before: Sun 06 Oct 2024 04:39:57 +0000 ROA not after: Sun 05 Oct 2025 04:44:57 +0000 asID: 202939 IP address blocks: 2a0a:6040:3500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b5:f2:21:97:f9:dd:f3:09:fc:94:fe:4c:4e:dc:74:04:d0:a9:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:57 2024 GMT Not After : Oct 5 04:44:57 2025 GMT Subject: CN=0931E86D1685D0E2DEE8398ECD74982BE9249E2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6b:c3:10:ea:28:d7:f2:41:06:a5:3d:26:2c: 94:34:8e:31:c2:22:12:ee:40:57:41:fd:e3:30:19: 0c:9b:c2:70:3f:37:d6:9d:62:7d:3a:b3:c9:30:ac: 0e:7f:30:00:85:b1:9a:2d:35:52:ad:db:c2:39:6d: e4:d7:12:ec:34:7a:ff:67:1c:a6:3b:c3:ab:f2:b5: 1b:b8:32:2a:82:c5:ce:38:34:1d:9b:cf:0a:e1:a4: 3a:fc:f1:4d:73:cc:2c:cb:58:ec:bb:e0:3e:53:b1: 1a:41:cc:50:3e:52:7b:aa:37:a3:63:48:d4:52:59: d9:3b:6a:a3:7d:07:25:47:4b:af:8c:88:f0:60:09: 4d:5b:0b:c5:49:cc:cf:c7:3f:91:01:56:f5:65:49: 7d:d8:42:b9:7c:bc:16:26:63:83:e8:28:c6:32:45: 15:4d:59:ae:61:2e:af:36:a6:89:ad:f4:1a:04:ce: b3:22:1c:83:8d:65:7c:e6:2b:35:b0:82:91:85:41: 52:9c:81:2a:f7:9e:fd:f2:aa:81:6a:b2:32:e2:51: 50:40:93:54:55:57:01:51:81:2d:c8:18:f3:f5:33: 2e:a4:f2:db:f9:b4:c5:3c:ed:aa:c2:d6:72:cf:38: 81:2a:dd:68:d3:49:2a:8b:e7:29:66:15:f6:c5:43: b6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:31:E8:6D:16:85:D0:E2:DE:E8:39:8E:CD:74:98:2B:E9:24:9E:2E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS202939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3500::/40 Signature Algorithm: sha256WithRSAEncryption 87:30:f6:d2:eb:50:9d:f9:65:65:f9:6d:9c:5d:65:9c:93:45: 4e:94:fd:c5:6e:ba:54:35:4c:01:8d:23:dc:29:76:0a:b2:9a: 60:1f:68:f4:9e:9e:ed:6a:c9:7f:e5:ee:a0:55:b0:91:1a:38: 9a:23:bb:e3:6e:a6:d8:18:d7:dc:cd:b2:08:8e:f4:9e:04:91: 78:75:72:31:10:83:db:92:e3:53:37:e4:f0:74:17:f6:6e:75: ca:d3:1f:d0:40:71:b8:be:bb:b1:80:14:9c:81:db:fc:d7:0d: 04:2c:ef:2c:b0:43:c5:93:c8:65:b9:1f:c1:a4:96:d8:45:02: 3d:88:f3:07:b6:1c:90:e2:d1:ed:4e:47:62:97:e7:0f:d6:28: 01:44:49:f1:d6:fd:11:9d:31:80:b4:3a:58:ff:ca:6c:80:a4: 10:c9:93:f5:a1:0e:78:41:6d:a6:da:27:6a:d1:66:98:0f:d6: 55:45:00:e0:ee:d0:5f:a4:aa:77:33:73:0e:fe:ee:83:67:4f: a8:c9:f9:b4:32:5e:b3:74:2a:f4:b9:c9:a7:9a:37:4a:e3:e1: 44:24:bb:6b:db:23:f7:0a:9c:34:b8:dd:08:73:35:a1:8e:09: d7:e7:ad:6a:cb:07:14:a9:bc:21:25:72:8a:50:86:9c:b6:d4: a4:9c:a1:14 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUb7XyIZf53fMJ/JT+TE7cdATQqTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTdaFw0yNTEwMDUwNDQ0NTdaMDMxMTAvBgNV BAMTKDA5MzFFODZEMTY4NUQwRTJERUU4Mzk4RUNENzQ5ODJCRTkyNDlFMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVa8MQ6ijX8kEGpT0mLJQ0jjHC IhLuQFdB/eMwGQybwnA/N9adYn06s8kwrA5/MACFsZotNVKt28I5beTXEuw0ev9n HKY7w6vytRu4MiqCxc44NB2bzwrhpDr88U1zzCzLWOy74D5TsRpBzFA+UnuqN6Nj SNRSWdk7aqN9ByVHS6+MiPBgCU1bC8VJzM/HP5EBVvVlSX3YQrl8vBYmY4PoKMYy RRVNWa5hLq82pomt9BoEzrMiHIONZXzmKzWwgpGFQVKcgSr3nv3yqoFqsjLiUVBA k1RVVwFRgS3IGPP1My6k8tv5tMU87arC1nLPOIEq3WjTSSqL5ylmFfbFQ7Y5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCTHobRaF0OLe6DmOzXSYK+kkni4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAyOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDUwDQYJKoZIhvcNAQELBQADggEBAIcw 9tLrUJ35ZWX5bZxdZZyTRU6U/cVuulQ1TAGNI9wpdgqymmAfaPSenu1qyX/l7qBV sJEaOJoju+NuptgY19zNsgiO9J4EkXh1cjEQg9uS41M35PB0F/ZudcrTH9BAcbi+ u7GAFJyB2/zXDQQs7yywQ8WTyGW5H8GklthFAj2I8we2HJDi0e1OR2KX5w/WKAFE SfHW/RGdMYC0Olj/ymyApBDJk/WhDnhBbabaJ2rRZpgP1lVFAODu0F+kqnczcw7+ 7oNnT6jJ+bQyXrN0KvS5yaeaN0rj4UQku2vbI/cKnDS43QhzNaGOCdfnrWrLBxSp vCElcopQhpy21KScoRQ= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org