$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203686.roa File: AS203686.roa (raw, json) Hash identifier: F7/FP1SfHtAvtgC3KjIEpJTY2Mduglm9mjOrwf2q4ec= Subject key identifier: 49:F8:C9:D9:11:4F:E1:E3:48:70:CD:36:33:7C:6E:8A:2E:3A:ED:85 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 381F59A3EF12EEA7774BBDCCA8D2AFDB6E016E4A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203686.roa Signing time: Mon 07 Aug 2023 22:46:14 +0000 ROA not before: Mon 07 Aug 2023 22:41:14 +0000 ROA not after: Mon 05 Aug 2024 22:46:14 +0000 asID: 203686 IP address blocks: 2a05:dfc1:7e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:1f:59:a3:ef:12:ee:a7:77:4b:bd:cc:a8:d2:af:db:6e:01:6e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 7 22:41:14 2023 GMT Not After : Aug 5 22:46:14 2024 GMT Subject: CN=49F8C9D9114FE1E34870CD36337C6E8A2E3AED85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ca:8f:7d:c4:ff:5c:64:fe:f9:33:b7:51:da: 6d:46:d8:6b:87:1b:fb:1e:90:f2:a3:9f:c9:5e:fd: c6:e1:ab:54:25:51:c1:19:51:95:2a:74:1c:1c:da: 82:02:7e:7f:af:d9:55:e9:f4:87:c6:06:8f:37:1e: 7a:bc:1c:cf:ae:41:f3:de:10:28:58:b8:b4:35:4a: 3a:0f:70:fb:74:38:36:66:73:86:cd:b5:03:4e:85: e7:99:f2:85:cb:ee:f1:36:9f:6a:82:b8:b7:00:e4: 79:b2:6d:ef:da:5f:f6:e1:03:94:52:d9:bb:83:d2: f1:db:d2:f4:bc:99:13:fd:60:fc:26:13:be:a2:cc: e4:70:84:28:e0:b0:4d:d0:35:e7:ea:f2:2d:66:3c: 36:25:56:5c:c5:64:21:b2:44:6f:32:2d:71:29:02: 84:03:d7:2f:7a:f5:44:f1:78:5a:cb:d5:d2:ba:40: 52:41:e3:a9:b1:ec:05:e7:e6:e4:44:7b:83:4a:10: 54:72:a5:d1:0a:db:9e:8b:8b:63:14:5e:49:ac:a7: a7:73:b0:31:5d:66:db:0f:3f:9b:23:96:47:e7:a0: e8:fb:ae:f9:6b:c0:3a:fd:07:7e:ab:80:8d:4a:5a: 7a:67:4f:00:9b:3a:9a:bc:63:5a:0c:d4:58:45:10: 5e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:F8:C9:D9:11:4F:E1:E3:48:70:CD:36:33:7C:6E:8A:2E:3A:ED:85 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203686.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7e00::/40 Signature Algorithm: sha256WithRSAEncryption 75:1a:25:79:b2:ee:71:3a:d4:f1:f1:44:72:2c:da:51:f8:86: 82:8d:e9:2b:98:a0:79:66:99:d0:58:7e:56:0b:a0:e0:ba:36: c7:82:ac:c8:5f:e3:5c:c3:15:80:80:d0:43:8c:41:72:1f:57: d0:5c:1b:cf:c2:75:15:2f:0e:13:11:b7:e4:b9:27:d5:da:f1: 1b:b7:47:94:9e:9d:b5:e0:24:95:7d:22:4b:95:5c:0b:76:86: d8:9c:cc:27:f0:a6:82:2c:bb:49:a8:aa:75:ca:17:46:7f:cf: 54:50:af:8b:d6:ef:11:1e:b3:e0:eb:0d:fb:d6:24:da:b8:99: a2:e2:1f:47:c1:62:59:0b:2d:1f:b8:42:00:c2:39:6c:7b:08: cd:c6:96:7a:d9:c4:e2:a7:e6:f3:39:24:59:74:61:a9:01:4a: ef:dd:8e:d2:08:4c:b1:74:dc:88:9d:5e:d3:70:0b:ef:25:46: 7b:20:6f:ae:60:fa:91:bd:49:14:0d:af:76:64:bb:b3:09:4d: db:2a:ae:ac:c3:cd:7d:2d:5b:8e:64:61:3b:06:37:c4:de:97: 57:54:27:a3:dc:18:a5:f6:03:50:77:ec:ff:f8:79:b2:83:66: b9:61:df:33:0b:5f:dc:36:25:2e:85:fc:85:54:1d:b2:b3:83: 6e:26:2b:2f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOB9Zo+8S7qd3S73MqNKv224BbkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA4MDcyMjQxMTRaFw0yNDA4MDUyMjQ2MTRaMDMxMTAvBgNV BAMTKDQ5RjhDOUQ5MTE0RkUxRTM0ODcwQ0QzNjMzN0M2RThBMkUzQUVEODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHyo99xP9cZP75M7dR2m1G2GuH G/sekPKjn8le/cbhq1QlUcEZUZUqdBwc2oICfn+v2VXp9IfGBo83Hnq8HM+uQfPe EChYuLQ1SjoPcPt0ODZmc4bNtQNOheeZ8oXL7vE2n2qCuLcA5Hmybe/aX/bhA5RS 2buD0vHb0vS8mRP9YPwmE76izORwhCjgsE3QNefq8i1mPDYlVlzFZCGyRG8yLXEp AoQD1y969UTxeFrL1dK6QFJB46mx7AXn5uREe4NKEFRypdEK256Li2MUXkmsp6dz sDFdZtsPP5sjlkfnoOj7rvlrwDr9B36rgI1KWnpnTwCbOpq8Y1oM1FhFEF4fAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUSfjJ2RFP4eNIcM02M3xuii467YUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzNjg2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwX4wDQYJKoZIhvcNAQELBQADggEBAHUa JXmy7nE61PHxRHIs2lH4hoKN6SuYoHlmmdBYflYLoOC6NseCrMhf41zDFYCA0EOM QXIfV9BcG8/CdRUvDhMRt+S5J9Xa8Ru3R5SenbXgJJV9IkuVXAt2hticzCfwpoIs u0moqnXKF0Z/z1RQr4vW7xEes+DrDfvWJNq4maLiH0fBYlkLLR+4QgDCOWx7CM3G lnrZxOKn5vM5JFl0YakBSu/djtIITLF03IidXtNwC+8lRnsgb65g+pG9SRQNr3Zk u7MJTdsqrqzDzX0tW45kYTsGN8Tel1dUJ6PcGKX2A1B37P/4ebKDZrlh3zMLX9w2 JS6F/IVUHbKzg24mKy8= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org