$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203873.roa File: AS203873.roa (raw, json) Hash identifier: ZM2yH0NNGFLMQywoy5rqVdGg1uSFuGkD78iiJtCFN2o= Subject key identifier: FD:34:3B:10:83:9F:DD:21:1E:88:59:2E:B5:66:7D:F7:17:50:E9:F6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 48410EAF0FFC31A2321B5B45DE87CFFB5B3FD52A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203873.roa Signing time: Sun 05 Nov 2023 04:07:09 +0000 ROA not before: Sun 05 Nov 2023 04:02:09 +0000 ROA not after: Sun 03 Nov 2024 04:07:09 +0000 asID: 203873 IP address blocks: 2a0a:6040:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:41:0e:af:0f:fc:31:a2:32:1b:5b:45:de:87:cf:fb:5b:3f:d5:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:09 2023 GMT Not After : Nov 3 04:07:09 2024 GMT Subject: CN=FD343B10839FDD211E88592EB5667DF71750E9F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:39:77:49:66:b7:75:82:8d:bc:e2:97:70:38: 74:61:fc:d4:8a:ab:3e:6f:da:48:88:be:3a:2e:79: 07:4a:e8:e1:bb:bf:33:4c:3a:9d:af:40:d8:7d:d9: 79:c1:ce:e0:a0:aa:1b:84:9e:01:f6:49:4a:cd:9b: 4b:9b:62:21:8d:18:09:cf:3f:dd:b9:4a:e3:4e:d1: 85:1a:09:d9:96:23:00:41:9f:fd:c1:09:bd:8b:0e: 59:e7:bc:07:d7:78:5b:7f:2a:b2:1c:ab:2d:fc:62: 83:aa:67:b6:d8:74:0d:91:5f:e8:dc:b2:3d:38:15: 16:c6:96:5b:87:f2:b6:49:e7:9d:dc:df:34:9f:c7: a8:af:66:ad:ed:73:e2:ab:9f:ee:22:71:91:fd:64: be:97:4f:4b:1f:77:fa:03:d7:58:15:66:3c:2b:f1: fc:50:6a:bb:45:05:1e:e4:30:00:43:27:ed:6e:22: c8:9f:13:cd:74:41:6c:ea:0e:3c:8e:8d:3c:89:a3: 5b:e5:a4:04:35:53:37:43:1a:1b:b2:b6:02:5a:59: 49:da:91:ac:77:33:84:e6:9c:d0:78:03:a3:77:5b: df:9c:f4:d0:a7:b1:1c:6a:d3:c0:5a:10:0b:81:a6: e4:01:e6:65:9d:19:2e:4b:f8:89:89:9c:0d:38:2a: 35:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:34:3B:10:83:9F:DD:21:1E:88:59:2E:B5:66:7D:F7:17:50:E9:F6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203873.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fc00::/40 Signature Algorithm: sha256WithRSAEncryption 24:3b:e7:07:2c:3e:fd:e0:0a:ee:c5:69:0e:5b:b1:0f:f1:89: ea:68:1b:3a:c6:ca:65:29:6b:bd:b0:5e:bb:c6:f3:c9:50:d3: a1:e0:0b:18:12:9f:a5:74:49:f6:96:2b:ce:a1:a5:fd:a0:47: 36:0d:35:52:37:04:62:3d:13:e2:ac:57:1f:16:de:5f:d6:eb: af:ea:6f:19:7f:9b:d9:81:6d:a5:c6:ed:0b:d8:4d:e9:2f:9a: 74:66:2f:30:22:52:b9:d0:3f:e9:61:44:aa:20:df:23:87:78: 87:09:bb:91:9c:f7:e1:c1:dc:d3:c3:eb:97:39:56:99:4f:47: 05:7f:7d:24:d9:da:3c:f1:bf:e2:ff:f7:f8:56:81:5d:a3:6d: 03:7c:a9:7c:17:c6:e3:be:c0:3e:d0:9f:49:d4:f4:88:ae:4e: 34:ff:a6:e3:0e:0f:cf:9f:07:6e:9a:b2:e6:fd:6f:72:9b:f3: e1:26:61:22:7c:9b:80:1b:b4:82:98:23:96:c8:84:a5:15:27: e9:14:e7:dd:17:bf:81:c4:28:6a:62:98:a9:20:b0:26:8c:4e: 45:88:19:43:60:1c:a9:33:81:3b:5e:bf:05:4c:12:83:68:dd: d3:5f:80:53:9b:12:a7:24:90:88:0e:e7:04:4c:66:b5:e3:da: cb:c8:03:52 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSEEOrw/8MaIyG1tF3ofP+1s/1SowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDlaFw0yNDExMDMwNDA3MDlaMDMxMTAvBgNV BAMTKEZEMzQzQjEwODM5RkREMjExRTg4NTkyRUI1NjY3REY3MTc1MEU5RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXOXdJZrd1go284pdwOHRh/NSK qz5v2kiIvjoueQdK6OG7vzNMOp2vQNh92XnBzuCgqhuEngH2SUrNm0ubYiGNGAnP P925SuNO0YUaCdmWIwBBn/3BCb2LDlnnvAfXeFt/KrIcqy38YoOqZ7bYdA2RX+jc sj04FRbGlluH8rZJ553c3zSfx6ivZq3tc+Krn+4icZH9ZL6XT0sfd/oD11gVZjwr 8fxQartFBR7kMABDJ+1uIsifE810QWzqDjyOjTyJo1vlpAQ1UzdDGhuytgJaWUna kax3M4TmnNB4A6N3W9+c9NCnsRxq08BaEAuBpuQB5mWdGS5L+ImJnA04KjXVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/TQ7EIOf3SEeiFkutWZ99xdQ6fYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzODczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPwwDQYJKoZIhvcNAQELBQADggEBACQ7 5wcsPv3gCu7FaQ5bsQ/xiepoGzrGymUpa72wXrvG88lQ06HgCxgSn6V0SfaWK86h pf2gRzYNNVI3BGI9E+KsVx8W3l/W66/qbxl/m9mBbaXG7QvYTekvmnRmLzAiUrnQ P+lhRKog3yOHeIcJu5Gc9+HB3NPD65c5VplPRwV/fSTZ2jzxv+L/9/hWgV2jbQN8 qXwXxuO+wD7Qn0nU9IiuTjT/puMOD8+fB26asub9b3Kb8+EmYSJ8m4AbtIKYI5bI hKUVJ+kU590Xv4HEKGpimKkgsCaMTkWIGUNgHKkzgTtevwVMEoNo3dNfgFObEqck kIgO5wRMZrXj2svIA1I= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org