$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203156.roa File: AS203156.roa (raw, json) Hash identifier: eTgkOfuB0STyZZLT7bzVjlJeMtr9ZC43faZAojRjPiA= Subject key identifier: 72:CA:57:BF:85:5F:FA:1B:09:C2:27:D2:30:6D:6D:1B:85:98:4E:57 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 56B3B690545DAB75C1843C2C9B2EE383A2A7E60A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203156.roa Signing time: Mon 18 Mar 2024 12:58:22 +0000 ROA not before: Mon 18 Mar 2024 12:53:22 +0000 ROA not after: Mon 17 Mar 2025 12:58:22 +0000 asID: 203156 IP address blocks: 2a05:dfc1:2d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b3:b6:90:54:5d:ab:75:c1:84:3c:2c:9b:2e:e3:83:a2:a7:e6:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 18 12:53:22 2024 GMT Not After : Mar 17 12:58:22 2025 GMT Subject: CN=72CA57BF855FFA1B09C227D2306D6D1B85984E57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7f:d7:50:2c:c4:c0:23:82:e9:fd:c8:1f:61: 07:b6:e9:75:fa:c7:ad:cb:b0:63:28:f6:be:5b:73: de:3a:ea:0a:61:07:8b:91:b7:50:81:a4:98:fe:6d: 83:4a:09:b5:4f:02:29:f6:84:ec:c5:d8:90:37:41: e7:9b:df:4d:80:5f:6e:7d:a2:ab:88:03:85:23:73: 29:57:34:0c:39:c1:88:3d:f3:24:84:01:f5:6e:a3: 85:a5:61:24:fb:b1:ef:e2:4a:0e:ed:50:dd:8b:72: 04:d0:1b:07:c5:aa:11:76:d3:70:52:46:d4:2b:22: f0:35:3c:69:0a:da:d3:b5:d3:01:9d:08:9b:70:b5: c7:f1:e7:e6:a1:7f:2e:33:0a:c7:4c:72:b8:d3:12: 03:eb:70:3a:eb:3a:5a:f9:e0:20:a1:cd:20:69:86: 41:de:93:d4:67:8d:90:54:94:18:4c:b6:52:6b:9f: 95:ed:54:d9:4d:2a:0b:62:70:6f:46:48:db:4f:f9: 7c:9c:44:7c:45:f0:f1:20:00:6e:f8:05:ef:98:d0: 0c:47:96:37:1b:5d:3d:68:b9:de:1f:f3:5e:e0:b4: a9:38:8f:a9:d3:4b:f2:96:9d:a2:9f:e9:1b:78:92: 3a:02:f9:31:d9:12:8d:f7:bb:4d:8b:5c:7f:bc:a5: f0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:CA:57:BF:85:5F:FA:1B:09:C2:27:D2:30:6D:6D:1B:85:98:4E:57 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203156.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2d00::/40 Signature Algorithm: sha256WithRSAEncryption ab:16:87:b5:94:e0:86:f5:22:f2:c3:54:59:8e:fc:05:3b:90: d0:c2:76:10:6e:68:38:62:b7:74:e8:4d:55:0f:58:3a:32:9d: 66:59:47:93:d6:d9:c7:63:13:a8:f4:f1:69:49:63:64:34:55: cb:de:9e:36:3c:82:f3:cf:24:f2:19:47:77:55:27:d5:71:43: 5e:ef:88:84:0b:9e:f2:5b:01:8f:14:18:04:ce:82:22:74:00: 01:a3:65:75:55:77:a0:1b:08:ed:7a:37:61:b9:ed:db:8c:3c: 19:41:96:73:c4:df:69:72:34:c3:d6:c6:92:bc:99:a2:ad:61: 45:e7:a5:82:b6:71:18:f4:0d:f8:73:cf:cc:69:62:53:e9:dd: b8:a8:61:05:70:1a:49:98:9b:5e:80:53:06:43:ad:54:fe:e0: 7a:06:7e:5f:d5:6b:4d:5f:55:1d:25:ec:04:ff:cd:cb:6c:11: ec:55:cf:a4:6d:c2:d5:22:55:91:6c:fa:7e:d5:06:a9:9c:c9: bd:e0:c2:2a:a5:52:4d:8c:8c:d9:e1:1e:b8:e3:a5:d9:0f:af: 0f:69:d4:48:c1:aa:f5:ef:27:34:ed:07:ea:fd:34:70:d7:30: a9:f3:52:6b:05:41:c1:29:6a:74:eb:06:73:19:d0:a3:50:db: c4:ad:54:2c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVrO2kFRdq3XBhDwsmy7jg6Kn5gowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMTgxMjUzMjJaFw0yNTAzMTcxMjU4MjJaMDMxMTAvBgNV BAMTKDcyQ0E1N0JGODU1RkZBMUIwOUMyMjdEMjMwNkQ2RDFCODU5ODRFNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmf9dQLMTAI4Lp/cgfYQe26XX6 x63LsGMo9r5bc9466gphB4uRt1CBpJj+bYNKCbVPAin2hOzF2JA3Qeeb302AX259 oquIA4UjcylXNAw5wYg98ySEAfVuo4WlYST7se/iSg7tUN2LcgTQGwfFqhF203BS RtQrIvA1PGkK2tO10wGdCJtwtcfx5+ahfy4zCsdMcrjTEgPrcDrrOlr54CChzSBp hkHek9RnjZBUlBhMtlJrn5XtVNlNKgticG9GSNtP+XycRHxF8PEgAG74Be+Y0AxH ljcbXT1oud4f817gtKk4j6nTS/KWnaKf6Rt4kjoC+THZEo33u02LXH+8pfBfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUcspXv4Vf+hsJwifSMG1tG4WYTlcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzMTU2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwS0wDQYJKoZIhvcNAQELBQADggEBAKsW h7WU4Ib1IvLDVFmO/AU7kNDCdhBuaDhit3ToTVUPWDoynWZZR5PW2cdjE6j08WlJ Y2Q0VcvenjY8gvPPJPIZR3dVJ9VxQ17viIQLnvJbAY8UGATOgiJ0AAGjZXVVd6Ab CO16N2G57duMPBlBlnPE32lyNMPWxpK8maKtYUXnpYK2cRj0Dfhzz8xpYlPp3bio YQVwGkmYm16AUwZDrVT+4HoGfl/Va01fVR0l7AT/zctsEexVz6RtwtUiVZFs+n7V Bqmcyb3gwiqlUk2MjNnhHrjjpdkPrw9p1EjBqvXvJzTtB+r9NHDXMKnzUmsFQcEp anTrBnMZ0KNQ28StVCw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org