$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203470.roa File: AS203470.roa (raw, json) Hash identifier: gS5CefbfWV5PxbGsNil4ul9HHXqoZgSTPa82RA0Uzc8= Subject key identifier: FD:11:03:62:E1:FA:40:C5:48:BD:FB:60:04:94:CD:50:4A:B0:B4:B9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 18755F83CFA03413619E3130C30157DA9DFA0089 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203470.roa Signing time: Thu 11 Jul 2024 23:00:51 +0000 ROA not before: Thu 11 Jul 2024 22:55:51 +0000 ROA not after: Thu 10 Jul 2025 23:00:51 +0000 asID: 203470 IP address blocks: 2a05:dfc1:8400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:75:5f:83:cf:a0:34:13:61:9e:31:30:c3:01:57:da:9d:fa:00:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 11 22:55:51 2024 GMT Not After : Jul 10 23:00:51 2025 GMT Subject: CN=FD110362E1FA40C548BDFB600494CD504AB0B4B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dc:08:c2:cb:5e:6f:a7:45:87:3b:2b:82:86: 65:23:01:c5:69:0d:c0:c1:a9:89:45:13:ad:e5:27: de:96:6b:20:4c:0f:67:12:23:d1:54:14:23:99:67: ef:b7:8d:cc:ac:42:c0:24:6c:1d:2c:1d:d8:d5:54: ed:4f:9c:30:b3:b9:f3:98:00:2d:66:a5:ec:6e:aa: 74:3e:1e:3f:2a:27:b9:d1:40:dd:02:9d:a7:ab:88: 10:ec:84:05:2c:36:1b:c8:15:d4:64:89:9b:47:8e: 1f:28:18:14:d3:a1:03:8c:35:db:bd:12:0f:4f:1c: 1b:11:5f:b7:cb:44:2c:b0:c2:53:8c:cd:06:ae:92: 0c:9a:28:bb:20:a7:de:5c:e7:2c:85:44:51:3c:05: 6e:9f:f3:5c:5c:5a:d4:d3:b4:94:2a:2b:b4:27:0c: 97:20:6d:e7:3e:f8:f7:5e:b4:d1:a8:a4:8d:78:7a: 96:fd:45:86:47:90:95:9a:0f:8b:db:c1:c3:d2:7e: 94:5d:d2:cf:a7:40:8b:1b:27:11:7f:1c:04:53:60: 6b:25:6b:32:f7:89:25:20:11:e2:d7:e6:1f:f6:e9: 4c:3b:c3:35:10:a8:61:14:b9:53:ca:91:99:d5:4f: 15:97:85:0f:d0:7e:25:58:c2:38:7f:a2:66:44:2f: 64:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:11:03:62:E1:FA:40:C5:48:BD:FB:60:04:94:CD:50:4A:B0:B4:B9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8400::/40 Signature Algorithm: sha256WithRSAEncryption 55:9b:a9:ff:42:8f:fd:86:76:5d:5f:69:8d:ef:fa:4a:44:8f: 6b:1d:e1:64:41:9e:97:61:bb:bb:11:8c:d4:72:23:1b:b2:06: fe:15:45:76:d4:ea:d9:a8:4c:f7:09:f0:5f:5d:83:db:39:a8: d9:d2:be:01:e8:e3:09:11:82:f5:60:d4:19:f9:46:b8:5c:8f: 51:2e:92:e9:92:11:c5:05:55:c4:31:45:58:40:1f:06:cb:21: 3f:8c:ba:09:8b:ac:6e:88:34:b1:49:ae:19:2b:67:d7:07:34: c0:00:54:fa:47:0a:91:f0:bb:49:f0:ce:72:3d:0f:9e:bf:bc: cf:ee:9a:f1:60:28:e6:63:8f:bc:cf:2f:14:11:24:50:3f:d4: 6b:68:0c:98:07:20:c7:18:e3:fd:5e:29:6d:bf:81:bb:06:da: 0b:11:fe:36:96:4b:eb:90:ca:73:66:3a:4f:0f:3a:90:22:7d: 26:64:03:67:5f:de:90:44:d7:a3:74:bb:1f:f8:fd:5d:ec:73: 1a:aa:25:8a:ff:21:8a:4a:aa:36:86:6f:cc:b7:3c:c9:4f:7f: 0f:86:c0:d9:f7:18:c7:33:7f:3a:3a:ff:d9:5a:ab:3b:97:5e: ab:b1:1e:45:fc:26:2e:52:87:7d:15:be:f0:81:4a:4b:4d:af: 07:13:62:ec -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGHVfg8+gNBNhnjEwwwFX2p36AIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MTEyMjU1NTFaFw0yNTA3MTAyMzAwNTFaMDMxMTAvBgNV BAMTKEZEMTEwMzYyRTFGQTQwQzU0OEJERkI2MDA0OTRDRDUwNEFCMEI0QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC73AjCy15vp0WHOyuChmUjAcVp DcDBqYlFE63lJ96WayBMD2cSI9FUFCOZZ++3jcysQsAkbB0sHdjVVO1PnDCzufOY AC1mpexuqnQ+Hj8qJ7nRQN0CnaeriBDshAUsNhvIFdRkiZtHjh8oGBTToQOMNdu9 Eg9PHBsRX7fLRCywwlOMzQaukgyaKLsgp95c5yyFRFE8BW6f81xcWtTTtJQqK7Qn DJcgbec++PdetNGopI14epb9RYZHkJWaD4vbwcPSfpRd0s+nQIsbJxF/HARTYGsl azL3iSUgEeLX5h/26Uw7wzUQqGEUuVPKkZnVTxWXhQ/QfiVYwjh/omZEL2QHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/REDYuH6QMVIvftgBJTNUEqwtLkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzNDcwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYQwDQYJKoZIhvcNAQELBQADggEBAFWb qf9Cj/2Gdl1faY3v+kpEj2sd4WRBnpdhu7sRjNRyIxuyBv4VRXbU6tmoTPcJ8F9d g9s5qNnSvgHo4wkRgvVg1Bn5Rrhcj1EukumSEcUFVcQxRVhAHwbLIT+MugmLrG6I NLFJrhkrZ9cHNMAAVPpHCpHwu0nwznI9D56/vM/umvFgKOZjj7zPLxQRJFA/1Gto DJgHIMcY4/1eKW2/gbsG2gsR/jaWS+uQynNmOk8POpAifSZkA2df3pBE16N0ux/4 /V3scxqqJYr/IYpKqjaGb8y3PMlPfw+GwNn3GMczfzo6/9laqzuXXquxHkX8Ji5S h30VvvCBSktNrwcTYuw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org