$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203843.roa File: AS203843.roa (raw, json) Hash identifier: +8ySOuQKB/7xl4D3ST0wIiHXhDfU04OpqtMavI94Zpc= Subject key identifier: 1F:9B:A6:82:C4:F6:2B:4D:D3:6D:7A:45:43:37:77:F0:8D:28:E5:8A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0C4CDDF9C387F5FD56BB0E39F095ABE39DDB069B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203843.roa Signing time: Sun 06 Oct 2024 04:45:04 +0000 ROA not before: Sun 06 Oct 2024 04:40:04 +0000 ROA not after: Sun 05 Oct 2025 04:45:04 +0000 asID: 203843 IP address blocks: 2a0a:6040:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 21:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:4c:dd:f9:c3:87:f5:fd:56:bb:0e:39:f0:95:ab:e3:9d:db:06:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:04 2024 GMT Not After : Oct 5 04:45:04 2025 GMT Subject: CN=1F9BA682C4F62B4DD36D7A45433777F08D28E58A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0b:44:a7:cf:1c:73:6d:87:78:16:58:cc:27: 64:05:32:16:97:f4:2c:be:d3:aa:fb:cd:ec:59:1c: 12:68:be:fd:fe:f4:c2:8d:76:25:01:0e:01:22:20: ed:68:6e:81:09:af:28:c8:70:54:e4:c7:eb:da:ee: c6:cf:ff:88:0b:3a:61:23:5b:e1:15:2a:d8:c6:89: c2:b6:ce:c1:b5:b4:43:69:42:40:a2:c4:b6:15:47: 86:7e:23:e2:da:e2:90:36:83:5c:ee:88:33:32:50: f7:bc:69:5b:1a:96:1e:fc:17:c6:6f:30:4d:53:55: 49:b8:34:27:69:93:65:1a:17:40:80:8f:e0:bb:18: d1:e2:13:8e:c5:a4:2a:5f:e3:87:93:e7:e5:88:9d: 27:cf:d4:b5:c1:57:4b:8e:95:d6:2d:18:28:56:84: 27:36:6c:2d:a4:57:f0:c7:3d:57:13:e3:70:24:be: 77:75:4f:00:b1:ea:01:5b:d9:e0:be:62:ff:24:60: f8:a8:7e:dd:af:0d:34:d2:bd:e0:d3:9a:40:7b:35: 90:e2:d1:aa:e1:33:21:cb:ba:64:c7:ba:9c:f6:7a: 65:c1:2a:03:be:83:b2:6a:bb:9b:d1:4f:f1:1e:fd: be:4d:73:a4:20:40:5a:4d:97:50:58:9b:44:c9:19: f7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9B:A6:82:C4:F6:2B:4D:D3:6D:7A:45:43:37:77:F0:8D:28:E5:8A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203843.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a100::/40 Signature Algorithm: sha256WithRSAEncryption a8:f8:cf:52:f5:4c:03:44:ba:b1:5d:a6:d2:e7:19:55:d5:a1: 19:a9:7d:50:20:d6:08:f0:a7:3b:31:bb:47:b2:fe:21:35:b2: 34:e9:f6:cc:3b:b5:69:d4:e1:40:ab:96:0d:df:d2:f6:32:4e: cf:76:01:59:f4:58:da:05:52:80:b9:6a:80:bf:64:2b:ba:7d: 38:33:24:84:d6:ca:74:84:f0:0c:10:8b:e3:9c:1e:e7:ca:a0: d3:31:c2:4a:e8:32:47:5b:ff:d9:76:ae:e8:3e:a6:e2:e9:97: 0c:9e:fa:22:18:f4:37:2c:e6:1f:c1:0f:d2:e2:f5:58:b8:0b: c9:e8:aa:e9:61:82:ae:01:0c:32:af:a8:7e:59:29:2d:f2:cc: e8:69:63:38:7c:3c:82:f3:83:82:7e:f7:cd:70:a6:67:54:b2: 07:a8:69:63:3c:ae:c1:7b:ca:89:68:ba:95:93:bc:2d:d7:95: 12:da:f1:87:4a:05:15:ef:b1:df:2b:63:9c:8b:7a:45:ad:9c: ec:94:b0:89:5b:d2:17:3d:53:c3:84:15:40:91:4b:fc:14:a2: 2d:a3:d1:d5:dd:6f:71:aa:ad:2b:69:88:ae:e5:2d:79:b6:af: 02:df:65:6f:b0:b8:24:b9:50:15:4e:fa:0a:3e:f4:2c:3e:10: 3a:ac:e4:3a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDEzd+cOH9f1Wuw458JWr453bBpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDRaFw0yNTEwMDUwNDQ1MDRaMDMxMTAvBgNV BAMTKDFGOUJBNjgyQzRGNjJCNEREMzZEN0E0NTQzMzc3N0YwOEQyOEU1OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLC0SnzxxzbYd4FljMJ2QFMhaX 9Cy+06r7zexZHBJovv3+9MKNdiUBDgEiIO1oboEJryjIcFTkx+va7sbP/4gLOmEj W+EVKtjGicK2zsG1tENpQkCixLYVR4Z+I+La4pA2g1zuiDMyUPe8aVsalh78F8Zv ME1TVUm4NCdpk2UaF0CAj+C7GNHiE47FpCpf44eT5+WInSfP1LXBV0uOldYtGChW hCc2bC2kV/DHPVcT43Akvnd1TwCx6gFb2eC+Yv8kYPioft2vDTTSveDTmkB7NZDi 0arhMyHLumTHupz2emXBKgO+g7Jqu5vRT/Ee/b5Nc6QgQFpNl1BYm0TJGffdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUH5umgsT2K03TbXpFQzd38I0o5YowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzODQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKEwDQYJKoZIhvcNAQELBQADggEBAKj4 z1L1TANEurFdptLnGVXVoRmpfVAg1gjwpzsxu0ey/iE1sjTp9sw7tWnU4UCrlg3f 0vYyTs92AVn0WNoFUoC5aoC/ZCu6fTgzJITWynSE8AwQi+OcHufKoNMxwkroMkdb /9l2rug+puLplwye+iIY9Dcs5h/BD9Li9Vi4C8noqulhgq4BDDKvqH5ZKS3yzOhp Yzh8PILzg4J+981wpmdUsgeoaWM8rsF7yoloupWTvC3XlRLa8YdKBRXvsd8rY5yL ekWtnOyUsIlb0hc9U8OEFUCRS/wUoi2j0dXdb3GqrStpiK7lLXm2rwLfZW+wuCS5 UBVO+go+9Cw+EDqs5Do= -----END CERTIFICATE-----Generated at Sat Nov 23 06:20:46 2024 by rpki-client on console-fra.rpki-client.org