$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203283.roa File: AS203283.roa (raw, json) Hash identifier: ba1MYiGyp6DSbrnIwEiC7Mm6ZtaZak60wqlESgjDOKk= Subject key identifier: C0:DA:99:D6:50:53:16:13:0C:E1:7F:47:48:E6:F0:4B:4E:49:F4:CA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 439EB3CFFAD405530DF72F405AFE132B2D4B34BE Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203283.roa Signing time: Mon 25 Mar 2024 01:54:34 +0000 ROA not before: Mon 25 Mar 2024 01:49:34 +0000 ROA not after: Mon 24 Mar 2025 01:54:34 +0000 asID: 203283 IP address blocks: 2a0a:6040:8b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:9e:b3:cf:fa:d4:05:53:0d:f7:2f:40:5a:fe:13:2b:2d:4b:34:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 25 01:49:34 2024 GMT Not After : Mar 24 01:54:34 2025 GMT Subject: CN=C0DA99D6505316130CE17F4748E6F04B4E49F4CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:19:a3:f5:8e:6a:4d:25:55:87:8c:8e:bb:07: 5b:39:49:58:da:b5:6a:40:b5:a7:5e:eb:17:52:3e: fb:ef:dd:6e:ec:9e:36:1d:d7:10:cf:a7:74:2f:e1: 13:87:49:d2:1d:12:ef:12:54:09:04:35:52:bd:ca: 7b:33:7c:86:03:fe:da:42:ab:d7:83:23:16:1c:73: 68:cc:54:af:5a:a6:2a:58:ed:c9:05:6d:e0:f6:74: 55:4a:31:46:95:67:77:50:18:86:b7:96:ac:ef:43: 3e:a4:2d:4a:4b:38:8a:4e:f1:e0:9f:ce:4e:43:ed: 84:eb:aa:f6:eb:88:5b:0a:6c:1e:89:ba:dd:dc:44: ae:71:6e:ef:ef:32:6b:c4:ea:77:99:f0:a0:e9:02: 6d:4d:1e:9c:bf:c9:8a:76:90:23:39:52:b8:b2:b1: 2f:95:f0:05:cb:0e:1e:a2:1d:91:11:a5:7e:6c:d5: fa:44:ca:76:19:ac:28:8a:fe:10:59:14:cd:6a:22: 9c:c9:c2:27:d5:50:cf:e9:9c:27:7e:00:95:b5:2e: 08:2b:8f:71:8b:64:ed:ad:61:ef:6a:0d:6e:04:ab: 05:ad:5a:f5:dc:55:fc:e0:68:52:15:b1:3d:40:d7: 07:5e:51:5e:72:70:6f:05:f0:55:21:bb:d8:10:83: 67:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:DA:99:D6:50:53:16:13:0C:E1:7F:47:48:E6:F0:4B:4E:49:F4:CA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203283.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8b00::/40 Signature Algorithm: sha256WithRSAEncryption a4:f3:36:36:07:be:6c:94:41:cb:cd:6c:e4:26:22:c9:e3:a6: 59:a0:81:84:78:c6:21:7b:b8:d2:67:75:7f:4e:e5:9d:38:2d: 02:e2:08:3a:e2:af:14:97:08:31:1f:7b:0c:d0:d7:d5:bc:14: 93:98:53:5a:94:5f:07:6a:bd:40:bc:5c:9e:5e:4d:e5:e0:31: 90:d3:cf:79:ba:d7:be:24:ce:fb:cb:da:5b:ef:4b:11:24:c6: b3:aa:23:ca:76:64:83:bf:70:0c:50:d2:dd:a6:a8:0d:7e:5b: 8a:e4:46:56:36:32:b2:56:6d:63:39:72:f3:e1:a8:35:ce:8b: 07:82:57:46:d3:1b:8e:30:dd:a6:59:e4:14:48:03:a6:c0:4e: 45:05:05:06:89:27:df:c7:43:e3:81:e7:c7:ae:83:7f:ea:cf: e7:bc:fb:30:a7:72:89:c6:09:36:59:85:56:ab:6b:ad:08:9e: df:7e:9c:b2:31:61:47:bd:3f:e5:1f:6a:7c:da:26:e4:79:fa: ee:d7:f1:af:ef:82:20:75:0c:89:8a:b3:b1:1d:45:c1:d4:27: 92:60:c2:cf:7e:9f:f2:bd:7f:14:c2:c9:f0:d3:01:40:76:8f: 37:4c:f2:ad:28:57:71:41:e7:21:c5:63:73:e3:be:60:a7:ab: 33:28:a7:a7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQ56zz/rUBVMN9y9AWv4TKy1LNL4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMjUwMTQ5MzRaFw0yNTAzMjQwMTU0MzRaMDMxMTAvBgNV BAMTKEMwREE5OUQ2NTA1MzE2MTMwQ0UxN0Y0NzQ4RTZGMDRCNEU0OUY0Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgGaP1jmpNJVWHjI67B1s5SVja tWpAtade6xdSPvvv3W7snjYd1xDPp3Qv4ROHSdIdEu8SVAkENVK9ynszfIYD/tpC q9eDIxYcc2jMVK9apipY7ckFbeD2dFVKMUaVZ3dQGIa3lqzvQz6kLUpLOIpO8eCf zk5D7YTrqvbriFsKbB6Jut3cRK5xbu/vMmvE6neZ8KDpAm1NHpy/yYp2kCM5Uriy sS+V8AXLDh6iHZERpX5s1fpEynYZrCiK/hBZFM1qIpzJwifVUM/pnCd+AJW1Lggr j3GLZO2tYe9qDW4EqwWtWvXcVfzgaFIVsT1A1wdeUV5ycG8F8FUhu9gQg2evAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUwNqZ1lBTFhMM4X9HSObwS05J9MowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzMjgzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIswDQYJKoZIhvcNAQELBQADggEBAKTz NjYHvmyUQcvNbOQmIsnjplmggYR4xiF7uNJndX9O5Z04LQLiCDrirxSXCDEfewzQ 19W8FJOYU1qUXwdqvUC8XJ5eTeXgMZDTz3m6174kzvvL2lvvSxEkxrOqI8p2ZIO/ cAxQ0t2mqA1+W4rkRlY2MrJWbWM5cvPhqDXOiweCV0bTG44w3aZZ5BRIA6bATkUF BQaJJ9/HQ+OB58eug3/qz+e8+zCnconGCTZZhVara60Int9+nLIxYUe9P+Ufanza JuR5+u7X8a/vgiB1DImKs7EdRcHUJ5Jgws9+n/K9fxTCyfDTAUB2jzdM8q0oV3FB 5yHFY3PjvmCnqzMop6c= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org