$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203539.roa File: AS203539.roa (raw, json) Hash identifier: smx7CHGKCzwOfsCEd/P7fqzUwvwaW0LgOTD0/zV8BAY= Subject key identifier: 2D:76:63:7C:85:E5:B3:75:B9:82:15:9A:FC:DB:F3:EB:9C:68:68:D2 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3CF6E5CAE30FF2658E4279F22149C05538765BAA Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203539.roa Signing time: Wed 05 Jul 2023 10:47:11 +0000 ROA not before: Wed 05 Jul 2023 10:42:11 +0000 ROA not after: Wed 03 Jul 2024 10:47:11 +0000 asID: 203539 IP address blocks: 2a05:dfc1:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:f6:e5:ca:e3:0f:f2:65:8e:42:79:f2:21:49:c0:55:38:76:5b:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 5 10:42:11 2023 GMT Not After : Jul 3 10:47:11 2024 GMT Subject: CN=2D76637C85E5B375B982159AFCDBF3EB9C6868D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4c:46:77:01:02:6c:b6:0a:8c:f2:f5:94:53: 54:3d:1c:f7:b9:44:a3:55:79:6f:45:92:58:3a:c8: 81:d3:98:50:89:cb:34:51:18:20:ac:3a:c3:c4:15: 62:16:67:dd:79:c7:e5:82:ef:87:8b:0b:85:52:d7: cf:28:5b:5a:6d:ff:14:b4:f2:0f:31:ad:8c:20:9e: b2:52:f8:c5:4f:6b:99:d8:74:13:f8:7c:9a:fa:f2: 63:f6:22:94:23:92:7a:e3:37:6c:5f:29:3d:a6:e6: e2:83:d3:f0:70:e0:cc:53:ce:b5:f6:e5:05:6a:e9: 58:17:e7:96:72:54:66:0a:6b:e0:37:b4:bc:b4:6a: d1:91:f6:46:d8:d4:9a:c0:10:da:9c:db:ad:ca:00: 2b:0c:28:da:66:db:47:b4:42:41:85:09:2d:68:03: 3a:62:c4:71:02:04:70:d3:cf:27:fa:d9:bf:05:24: e0:40:ef:af:97:23:de:b7:38:61:64:4c:2b:ff:11: 35:44:24:51:fc:9f:22:03:19:c1:d2:ab:3a:04:d1: 6b:49:f3:1f:55:58:db:41:47:18:35:e8:a5:5e:1e: b4:fc:a0:9c:84:62:e1:4f:34:0f:13:de:a4:1a:07: ab:25:07:69:f8:f3:ba:33:23:fd:cc:19:9b:cd:25: e6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:76:63:7C:85:E5:B3:75:B9:82:15:9A:FC:DB:F3:EB:9C:68:68:D2 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6500::/40 Signature Algorithm: sha256WithRSAEncryption 1d:01:9a:50:bf:0c:f4:5c:08:ba:c5:d6:ed:68:19:3f:c1:2b: 03:95:2c:03:b7:3f:73:84:26:12:99:22:4e:85:65:ee:87:34: 93:71:bc:52:72:d3:a3:48:fc:d4:59:21:b8:bc:33:ac:3e:9b: 80:c7:b1:ac:f6:8b:7d:4d:56:55:f3:fd:a9:ba:f5:e0:eb:3b: 28:2f:ab:ce:54:29:1f:69:aa:8e:0a:29:92:bd:f2:63:71:1a: 97:f1:6a:e0:8e:70:41:a0:c1:de:38:13:5a:e2:45:e2:0b:50: 7b:6b:94:41:2d:5f:68:ec:18:a0:6d:d7:e4:85:e7:99:fd:c7: 9a:ed:42:41:c8:b1:8f:6d:93:88:0d:c9:a1:b2:19:dd:fd:99: 34:2d:4b:15:ce:94:63:c2:6e:ff:93:c6:2f:33:9a:16:2f:8b: 83:40:6d:bc:84:8c:72:89:51:69:2e:c6:41:dd:7d:1f:69:30: e6:12:0e:01:73:a9:5e:17:f3:12:c0:bc:17:d1:3f:dc:a2:96: f6:24:eb:85:15:7b:b1:6a:e6:ec:71:14:13:8a:64:e1:20:f5: 74:19:15:3f:2d:c4:10:9b:2f:88:00:22:a8:36:75:eb:3c:1e: e1:dd:a7:83:41:e2:03:cc:92:dc:f3:e0:ec:77:58:ef:cf:4f: 16:4f:5f:a5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPPblyuMP8mWOQnnyIUnAVTh2W6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MDUxMDQyMTFaFw0yNDA3MDMxMDQ3MTFaMDMxMTAvBgNV BAMTKDJENzY2MzdDODVFNUIzNzVCOTgyMTU5QUZDREJGM0VCOUM2ODY4RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfTEZ3AQJstgqM8vWUU1Q9HPe5 RKNVeW9Fklg6yIHTmFCJyzRRGCCsOsPEFWIWZ915x+WC74eLC4VS188oW1pt/xS0 8g8xrYwgnrJS+MVPa5nYdBP4fJr68mP2IpQjknrjN2xfKT2m5uKD0/Bw4MxTzrX2 5QVq6VgX55ZyVGYKa+A3tLy0atGR9kbY1JrAENqc263KACsMKNpm20e0QkGFCS1o AzpixHECBHDTzyf62b8FJOBA76+XI963OGFkTCv/ETVEJFH8nyIDGcHSqzoE0WtJ 8x9VWNtBRxg16KVeHrT8oJyEYuFPNA8T3qQaB6slB2n487ozI/3MGZvNJeZbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQULXZjfIXls3W5ghWa/Nvz65xoaNIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWUwDQYJKoZIhvcNAQELBQADggEBAB0B mlC/DPRcCLrF1u1oGT/BKwOVLAO3P3OEJhKZIk6FZe6HNJNxvFJy06NI/NRZIbi8 M6w+m4DHsaz2i31NVlXz/am69eDrOygvq85UKR9pqo4KKZK98mNxGpfxauCOcEGg wd44E1riReILUHtrlEEtX2jsGKBt1+SF55n9x5rtQkHIsY9tk4gNyaGyGd39mTQt SxXOlGPCbv+Txi8zmhYvi4NAbbyEjHKJUWkuxkHdfR9pMOYSDgFzqV4X8xLAvBfR P9yilvYk64UVe7Fq5uxxFBOKZOEg9XQZFT8txBCbL4gAIqg2des8HuHdp4NB4gPM ktzz4Ox3WO/PTxZPX6U= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org