$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203888.roa File: AS203888.roa (raw, json) Hash identifier: Yh5pnzHz2DapC4VfF5U9oDAxu1Cqo6evAenPvCcMy+U= Subject key identifier: F0:21:68:71:07:4B:13:D4:D1:2C:51:0B:6B:F9:C9:30:A1:31:26:66 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 708CAA0E740ECA0B3FE4F592B2A8E7F367BB7C9B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203888.roa Signing time: Wed 11 Sep 2024 10:07:18 +0000 ROA not before: Wed 11 Sep 2024 10:02:18 +0000 ROA not after: Wed 10 Sep 2025 10:07:18 +0000 asID: 203888 IP address blocks: 2a0a:6040:300::/40 maxlen: 48 2a0a:6040:e300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:8c:aa:0e:74:0e:ca:0b:3f:e4:f5:92:b2:a8:e7:f3:67:bb:7c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 11 10:02:18 2024 GMT Not After : Sep 10 10:07:18 2025 GMT Subject: CN=F0216871074B13D4D12C510B6BF9C930A1312666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2e:7a:00:41:ee:7e:98:60:67:08:84:52:91: 8d:6d:d3:30:34:e4:10:49:15:61:49:4e:f0:e3:64: 7d:35:af:a7:6d:ed:4b:32:65:63:cc:85:1c:ca:d9: 02:0b:fa:4c:89:73:e5:b3:d3:37:a3:25:cc:8a:00: 2e:6e:dd:85:44:06:91:25:8e:a4:df:a8:b9:2e:30: 2b:c2:67:8d:3e:ca:f4:9c:b9:d1:7d:51:1f:d4:47: 7f:90:1a:7a:a4:81:a9:d9:20:3f:dc:36:7a:f4:95: c2:aa:3b:02:d6:34:f2:ba:f8:9b:1a:01:c8:6c:67: 48:37:2a:92:bd:43:6f:ab:88:a4:18:1b:6c:c6:80: dc:bc:04:1c:f9:6a:5e:fa:c5:79:07:72:6c:b7:5b: 22:a7:c4:96:b9:3b:0c:bb:51:85:72:bd:7e:ba:bf: 44:88:01:a3:93:f2:be:85:81:5b:c0:1a:c5:91:ff: 9e:5b:a7:0c:71:de:d9:1b:ae:13:58:3e:b2:ed:a6: f8:ab:40:15:95:9f:ad:82:16:57:39:63:86:23:d8: 27:9f:bc:7a:fa:1a:ce:f3:81:be:2e:3a:7a:40:92: 93:46:ff:d7:f0:4e:43:1a:8f:6b:de:bf:fd:c5:22: 82:98:48:60:92:42:d3:61:91:41:8e:bd:0f:aa:fc: 0f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:21:68:71:07:4B:13:D4:D1:2C:51:0B:6B:F9:C9:30:A1:31:26:66 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203888.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:300::/40 2a0a:6040:e300::/40 Signature Algorithm: sha256WithRSAEncryption 57:cd:5e:aa:70:e6:04:5d:c2:ca:5a:f9:99:dd:c6:3a:58:2e: 24:2f:a7:56:fb:c7:ed:0b:46:0e:88:c9:b7:00:02:b2:4a:1d: 9e:28:d4:48:0a:66:c9:78:7d:c5:d0:ce:02:e6:34:37:31:7c: 06:58:3a:03:7c:96:0f:d1:10:da:3e:25:ef:98:8d:af:95:9a: 2f:57:84:31:59:5d:45:4b:55:23:29:85:01:59:27:98:2e:f2: 89:6d:96:ba:e4:83:56:a3:1b:ae:06:b0:86:20:66:8b:b8:b4: bf:9d:07:76:e5:cb:dd:46:17:93:17:d2:f7:26:c5:da:01:a8: a3:f3:da:e2:25:7f:b9:b6:1b:90:d1:61:ee:4b:19:02:7a:6c: 9d:ed:65:ec:0e:aa:63:27:a7:47:a3:f6:b2:08:c8:93:88:8b: 66:33:10:13:1c:e2:a0:ea:69:97:c4:21:c2:c7:83:5e:92:b2: cc:d8:54:e0:ae:4c:f6:1c:8a:ed:5c:8f:a5:7a:72:e6:22:b7: 3c:c6:06:e2:0f:21:38:f1:7e:0f:6d:e5:29:8f:22:1d:5f:7c: 91:f7:06:31:19:cc:c5:2d:95:8a:57:9f:cd:4d:77:34:58:e0: c0:04:e4:a7:af:21:f5:69:91:44:34:7e:80:2b:3d:57:01:e1: cd:e7:81:2b -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUcIyqDnQOygs/5PWSsqjn82e7fJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MTExMDAyMThaFw0yNTA5MTAxMDA3MThaMDMxMTAvBgNV BAMTKEYwMjE2ODcxMDc0QjEzRDREMTJDNTEwQjZCRjlDOTMwQTEzMTI2NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXLnoAQe5+mGBnCIRSkY1t0zA0 5BBJFWFJTvDjZH01r6dt7UsyZWPMhRzK2QIL+kyJc+Wz0zejJcyKAC5u3YVEBpEl jqTfqLkuMCvCZ40+yvScudF9UR/UR3+QGnqkganZID/cNnr0lcKqOwLWNPK6+Jsa AchsZ0g3KpK9Q2+riKQYG2zGgNy8BBz5al76xXkHcmy3WyKnxJa5Owy7UYVyvX66 v0SIAaOT8r6FgVvAGsWR/55bpwxx3tkbrhNYPrLtpvirQBWVn62CFlc5Y4Yj2Cef vHr6Gs7zgb4uOnpAkpNG/9fwTkMaj2vev/3FIoKYSGCSQtNhkUGOvQ+q/A9xAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQU8CFocQdLE9TRLFELa/nJMKExJmYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzODg4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgpgQAMDBgAqCmBA4zANBgkqhkiG9w0BAQsF AAOCAQEAV81eqnDmBF3Cylr5md3GOlguJC+nVvvH7QtGDojJtwACskodnijUSApm yXh9xdDOAuY0NzF8Blg6A3yWD9EQ2j4l75iNr5WaL1eEMVldRUtVIymFAVknmC7y iW2WuuSDVqMbrgawhiBmi7i0v50HduXL3UYXkxfS9ybF2gGoo/Pa4iV/ubYbkNFh 7ksZAnpsne1l7A6qYyenR6P2sgjIk4iLZjMQExzioOppl8QhwseDXpKyzNhU4K5M 9hyK7VyPpXpy5iK3PMYG4g8hOPF+D23lKY8iHV98kfcGMRnMxS2VilefzU13NFjg wATkp68h9WmRRDR+gCs9VwHhzeeBKw== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org