$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203873.roa File: AS203873.roa (raw, json) Hash identifier: P36Hi8NVDXANNbvKb7RI4dwXFSezu7kHl2HoJHUqMLE= Subject key identifier: 22:09:60:41:45:96:D2:A0:FC:86:53:F7:4D:72:74:0A:5C:2B:E0:2D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 60873FF8AC8CD81C2814DB6A886FA6101918DA1A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203873.roa Signing time: Sun 06 Oct 2024 04:45:17 +0000 ROA not before: Sun 06 Oct 2024 04:40:17 +0000 ROA not after: Sun 05 Oct 2025 04:45:17 +0000 asID: 203873 IP address blocks: 2a0a:6040:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:87:3f:f8:ac:8c:d8:1c:28:14:db:6a:88:6f:a6:10:19:18:da:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:17 2024 GMT Not After : Oct 5 04:45:17 2025 GMT Subject: CN=220960414596D2A0FC8653F74D72740A5C2BE02D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fd:cc:ae:93:4a:5b:59:65:58:49:02:15:f2: 43:d9:fa:69:c8:07:72:f9:14:7e:86:c3:3a:f8:fb: 80:da:bb:5d:33:b2:f0:fd:e1:8d:20:9d:6c:b4:5d: 18:c2:1e:2e:8f:9c:c1:99:c1:1a:01:33:64:3e:09: 28:f8:e1:39:6a:2f:5b:fe:fb:33:64:84:4f:29:ce: 01:20:91:62:79:04:a1:1c:8d:98:71:8b:03:73:aa: 41:c0:da:c5:16:71:ac:5b:0e:54:4d:32:41:d9:83: 69:47:c4:72:86:26:fc:d8:09:4e:56:53:ec:ce:5a: 3e:98:6a:e0:6a:4e:90:65:1f:f2:af:58:bf:f5:bc: 6f:af:fe:b9:44:ed:69:3a:e0:99:6b:76:c3:f8:05: 48:3f:5b:66:86:74:de:32:62:16:b2:b1:49:fe:45: e1:6d:62:17:24:6c:51:c7:92:d9:f6:25:94:d9:ff: c9:51:52:79:e4:77:7a:57:be:55:d7:62:df:a6:a3: 08:95:48:39:43:14:fe:48:af:98:ff:a3:03:ac:64: 02:d1:1a:c5:02:00:92:e1:d8:f2:39:99:0d:ca:09: 88:e0:1c:19:d7:08:36:36:d3:2c:ab:d4:62:9c:b1: 8a:b0:5b:82:5b:a7:cd:19:1a:96:bc:66:78:11:10: 5d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:09:60:41:45:96:D2:A0:FC:86:53:F7:4D:72:74:0A:5C:2B:E0:2D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203873.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fc00::/40 Signature Algorithm: sha256WithRSAEncryption 71:39:c4:bd:bf:b9:53:71:5a:96:fa:b5:8e:b2:0b:9d:74:37: 6a:c9:b4:f8:d0:af:e2:6c:72:14:2d:6e:fb:cd:07:6a:76:02: 58:95:ca:ac:bb:16:ae:29:62:e0:69:de:2a:85:cb:0f:ea:40: c0:5c:32:be:48:b3:2d:28:31:70:ff:45:50:c0:48:fd:34:de: 20:6a:3c:f7:5b:5c:46:08:68:85:db:de:ce:eb:cb:ac:a0:ef: f8:81:73:2f:f3:ca:2c:71:22:6d:22:23:9b:e4:c7:65:49:44: ae:62:3a:d3:25:00:c4:2f:b7:fa:85:9c:f9:34:f9:1d:6e:60: c6:1a:61:29:05:dc:ae:2f:82:f6:3b:07:89:28:50:21:3b:ef: e4:b4:47:c2:1c:7c:20:b6:86:c7:f5:7f:d6:74:d6:ab:23:ed: 2e:2e:9a:05:db:5c:fd:81:75:e3:0f:43:7f:9d:f8:dd:3a:35: 04:ab:38:61:10:30:03:2d:a0:7d:3a:9f:1e:64:ca:ab:e4:ef: 3d:db:9f:77:28:e7:70:b5:22:d6:04:01:5b:6f:3d:d9:92:a2: 4f:a9:16:eb:27:e2:b5:be:24:15:68:a4:f5:63:c6:d7:42:19: 42:38:01:fd:a7:60:19:87:d3:fa:23:1e:ac:d8:4f:52:40:63: a7:dc:e0:49 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYIc/+KyM2BwoFNtqiG+mEBkY2howDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTdaFw0yNTEwMDUwNDQ1MTdaMDMxMTAvBgNV BAMTKDIyMDk2MDQxNDU5NkQyQTBGQzg2NTNGNzRENzI3NDBBNUMyQkUwMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC/cyuk0pbWWVYSQIV8kPZ+mnI B3L5FH6Gwzr4+4Dau10zsvD94Y0gnWy0XRjCHi6PnMGZwRoBM2Q+CSj44TlqL1v+ +zNkhE8pzgEgkWJ5BKEcjZhxiwNzqkHA2sUWcaxbDlRNMkHZg2lHxHKGJvzYCU5W U+zOWj6YauBqTpBlH/KvWL/1vG+v/rlE7Wk64JlrdsP4BUg/W2aGdN4yYhaysUn+ ReFtYhckbFHHktn2JZTZ/8lRUnnkd3pXvlXXYt+mowiVSDlDFP5Ir5j/owOsZALR GsUCAJLh2PI5mQ3KCYjgHBnXCDY20yyr1GKcsYqwW4Jbp80ZGpa8ZngREF1rAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIglgQUWW0qD8hlP3TXJ0Clwr4C0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzODczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPwwDQYJKoZIhvcNAQELBQADggEBAHE5 xL2/uVNxWpb6tY6yC510N2rJtPjQr+JschQtbvvNB2p2AliVyqy7Fq4pYuBp3iqF yw/qQMBcMr5Isy0oMXD/RVDASP003iBqPPdbXEYIaIXb3s7ry6yg7/iBcy/zyixx Im0iI5vkx2VJRK5iOtMlAMQvt/qFnPk0+R1uYMYaYSkF3K4vgvY7B4koUCE77+S0 R8IcfCC2hsf1f9Z01qsj7S4umgXbXP2BdeMPQ3+d+N06NQSrOGEQMAMtoH06nx5k yqvk7z3bn3co53C1ItYEAVtvPdmSok+pFusn4rW+JBVopPVjxtdCGUI4Af2nYBmH 0/ojHqzYT1JAY6fc4Ek= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org