$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203539.roa File: AS203539.roa (raw, json) Hash identifier: pZ0T4BxNz6jZNv8wLtJ33oVeSUUC8dW9CXslc8IJ2Pw= Subject key identifier: 40:89:A7:80:7F:F6:15:50:73:B6:4F:4D:A4:EF:92:23:2D:EF:87:70 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4258B5ABDCFEFE7BBD2C496632B133D10FBA86A8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203539.roa Signing time: Wed 05 Jun 2024 10:59:48 +0000 ROA not before: Wed 05 Jun 2024 10:54:48 +0000 ROA not after: Wed 04 Jun 2025 10:59:48 +0000 asID: 203539 IP address blocks: 2a05:dfc1:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:58:b5:ab:dc:fe:fe:7b:bd:2c:49:66:32:b1:33:d1:0f:ba:86:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 5 10:54:48 2024 GMT Not After : Jun 4 10:59:48 2025 GMT Subject: CN=4089A7807FF6155073B64F4DA4EF92232DEF8770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:20:fa:99:60:a2:70:a7:4b:1d:3d:b5:59:e6: e9:be:6a:b9:de:a8:a8:5d:b8:45:6f:3d:51:f9:ed: 2c:9c:d0:f7:ab:fb:da:e5:c3:5a:44:0e:6b:39:69: 63:6a:ed:48:cf:08:54:03:1f:41:15:66:65:b3:2b: 64:12:18:77:cb:9c:7a:01:aa:7b:82:19:21:9d:2e: 40:31:70:5c:7e:3e:bd:75:7d:f3:48:f6:eb:f9:a6: 0d:71:d2:05:32:56:7c:37:72:0a:7a:a7:84:fc:88: 1e:77:37:5f:44:15:37:5a:c0:f9:9d:0a:d5:41:b4: 44:63:4b:26:96:e6:2e:ff:cb:0c:64:e2:9b:1e:12: 41:49:ac:1f:36:c1:aa:0d:83:68:f6:fc:62:4d:8b: 3f:76:ea:53:0a:7d:b8:33:8b:b0:69:a4:2a:bf:b5: 29:c2:7c:48:bd:84:bb:f5:f0:5c:e0:60:26:25:c2: 8b:da:5e:e1:17:05:13:94:de:1a:cc:54:1e:b8:45: fb:9f:21:72:70:15:84:ea:2d:6a:82:6c:70:b8:ff: 88:c1:0d:b2:ff:cc:76:5b:dd:df:a5:1f:be:b4:cb: ff:ac:1a:65:17:76:51:7d:65:8f:06:db:d1:9f:e6: 99:9f:c8:7b:44:f1:c9:85:d5:a8:41:52:e6:f4:28: aa:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:89:A7:80:7F:F6:15:50:73:B6:4F:4D:A4:EF:92:23:2D:EF:87:70 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6500::/40 Signature Algorithm: sha256WithRSAEncryption 84:30:60:46:ec:3d:47:93:22:fb:f5:19:ed:b4:73:34:6a:7d: 12:8f:2c:3b:41:be:46:dc:d0:93:84:a2:35:55:64:e3:61:0d: a4:65:e8:69:9d:5d:41:7f:cf:e7:7d:b5:9c:81:ca:41:ab:2e: 18:de:89:88:4b:86:c3:31:79:85:43:c4:a6:69:b0:6d:3c:a8: f1:e4:6d:3f:af:9a:90:5c:0d:ee:0b:48:2e:22:7e:bd:78:a4: ca:31:76:21:02:cc:f4:ff:9e:80:50:9c:02:df:6f:07:4d:5b: 27:ba:c2:a2:1f:50:54:93:59:c8:95:27:01:99:0b:ef:cc:97: c1:22:3e:f3:71:dd:ec:3d:5f:45:50:66:88:42:06:f9:f5:ba: 03:27:e5:5c:b6:0a:f5:89:2b:4b:5b:c5:54:f4:04:ec:e9:40: 2c:ff:74:fe:b4:46:4f:31:6e:8b:af:23:12:82:97:38:b7:3e: fe:be:00:3d:e7:54:6e:22:8c:62:2b:65:91:a3:3d:49:f9:83: 4c:a1:10:cd:5d:d0:04:bd:4b:19:10:fe:66:4e:ca:e7:f5:f2: 9c:b2:39:e6:a8:44:72:c3:96:5b:2c:03:e3:14:18:a0:0f:78: 33:b2:4a:97:88:4a:e2:f4:f4:4f:96:f9:26:97:1b:74:e1:79: 49:33:c3:fb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQli1q9z+/nu9LElmMrEz0Q+6hqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MDUxMDU0NDhaFw0yNTA2MDQxMDU5NDhaMDMxMTAvBgNV BAMTKDQwODlBNzgwN0ZGNjE1NTA3M0I2NEY0REE0RUY5MjIzMkRFRjg3NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSIPqZYKJwp0sdPbVZ5um+arne qKhduEVvPVH57Syc0Per+9rlw1pEDms5aWNq7UjPCFQDH0EVZmWzK2QSGHfLnHoB qnuCGSGdLkAxcFx+Pr11ffNI9uv5pg1x0gUyVnw3cgp6p4T8iB53N19EFTdawPmd CtVBtERjSyaW5i7/ywxk4pseEkFJrB82waoNg2j2/GJNiz926lMKfbgzi7BppCq/ tSnCfEi9hLv18FzgYCYlwovaXuEXBROU3hrMVB64RfufIXJwFYTqLWqCbHC4/4jB DbL/zHZb3d+lH760y/+sGmUXdlF9ZY8G29Gf5pmfyHtE8cmF1ahBUub0KKrRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQImngH/2FVBztk9NpO+SIy3vh3AwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWUwDQYJKoZIhvcNAQELBQADggEBAIQw YEbsPUeTIvv1Ge20czRqfRKPLDtBvkbc0JOEojVVZONhDaRl6GmdXUF/z+d9tZyB ykGrLhjeiYhLhsMxeYVDxKZpsG08qPHkbT+vmpBcDe4LSC4ifr14pMoxdiECzPT/ noBQnALfbwdNWye6wqIfUFSTWciVJwGZC+/Ml8EiPvNx3ew9X0VQZohCBvn1ugMn 5Vy2CvWJK0tbxVT0BOzpQCz/dP60Rk8xbouvIxKClzi3Pv6+AD3nVG4ijGIrZZGj PUn5g0yhEM1d0AS9SxkQ/mZOyuf18pyyOeaoRHLDllssA+MUGKAPeDOySpeISuL0 9E+W+SaXG3TheUkzw/s= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org