$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203888.roa File: AS203888.roa (raw, json) Hash identifier: CdoVbZekYMkwSvDgh10xJVahUbgvXqnf6JTEGamg4eQ= Subject key identifier: 63:1D:28:1F:3F:AB:DD:3E:C2:CB:EA:A7:01:83:3B:14:1B:94:5D:5A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5015D383C8B5FD0DE0007F007ECD187D7BCE71E0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203888.roa Signing time: Sun 05 Nov 2023 04:06:59 +0000 ROA not before: Sun 05 Nov 2023 04:01:59 +0000 ROA not after: Sun 03 Nov 2024 04:06:59 +0000 asID: 203888 IP address blocks: 2a0a:6040:300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:15:d3:83:c8:b5:fd:0d:e0:00:7f:00:7e:cd:18:7d:7b:ce:71:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:59 2023 GMT Not After : Nov 3 04:06:59 2024 GMT Subject: CN=631D281F3FABDD3EC2CBEAA701833B141B945D5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:97:32:10:71:a4:f3:2b:d5:66:f8:c5:e2:25: 13:68:fd:c7:de:2b:ad:c9:e9:a7:ff:06:ac:7c:42: 11:8d:40:12:b4:5d:cd:df:da:71:82:76:86:0c:3b: 25:36:c4:af:f2:8f:78:e4:a8:a0:02:f1:5a:7e:8c: 27:ef:42:11:54:a6:be:72:6c:c8:8e:6c:e8:39:2f: 3e:94:92:07:6f:86:fd:77:3a:f1:0f:08:14:1a:fd: 8b:b0:b1:7f:ff:9e:e5:03:d4:d0:52:5d:ef:39:0b: da:73:48:c6:11:24:6a:69:c0:e6:36:02:9e:c7:97: 86:73:75:30:a2:16:b6:40:55:aa:d5:7c:cc:85:eb: 6c:b1:cf:b8:fd:ea:ae:d3:e3:85:dd:66:31:ab:49: c3:d6:a9:e5:c4:09:5e:62:c6:c1:66:a7:26:25:ed: 19:d1:cc:4b:ab:04:44:40:b0:de:51:5c:1d:68:38: 45:c4:59:18:1a:75:cd:2a:10:26:42:1e:dc:dc:48: bf:5d:4d:10:2c:b3:29:f0:38:7b:00:6a:e9:c4:4b: 18:98:09:9d:ca:33:b3:dc:01:1d:a2:f3:3e:0e:13: 48:f2:2a:59:cd:13:41:0d:32:7a:35:a1:e8:bb:e0: 32:b4:32:a9:55:12:7e:4e:da:e4:1e:93:9b:80:a8: a7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1D:28:1F:3F:AB:DD:3E:C2:CB:EA:A7:01:83:3B:14:1B:94:5D:5A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203888.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:300::/40 Signature Algorithm: sha256WithRSAEncryption 0c:de:4d:20:fd:3d:de:56:7b:04:68:10:7e:c2:5e:3f:31:69: 72:54:cb:81:37:53:58:9b:2e:9d:5c:fe:6b:e0:f4:91:6a:de: 91:5e:85:40:af:42:fd:77:d7:5d:23:d9:de:c6:79:87:a3:5f: 0c:da:39:9b:f4:08:4e:08:ce:5c:8c:f6:6d:0f:73:2b:8f:fe: 70:87:5c:03:5e:fc:69:57:b0:28:a3:bb:97:b9:e8:e4:c8:ed: 08:92:1b:9c:df:ad:3b:b5:e8:64:5c:6b:3c:e0:7e:c0:bd:56: 41:50:e0:2a:44:04:01:dd:75:89:ae:0d:6f:9f:3e:3f:98:7d: b3:4d:52:8f:f5:33:82:c8:a0:35:2d:4f:c3:04:37:99:9b:98: 3b:d9:88:f1:38:5f:9d:35:e3:9b:ab:a9:16:f4:5e:4f:25:98: f5:a1:97:22:b3:49:64:90:ee:a6:06:00:61:c2:d6:57:ed:2f: 2a:b3:66:21:91:ac:d4:e1:bb:06:1b:b9:f3:eb:81:62:e9:34: 86:3f:c1:27:30:5c:bb:9f:6a:92:f0:b3:cc:f8:6d:84:59:ce: a8:0e:80:99:86:d8:81:36:97:7c:c6:e6:ce:c7:6c:5a:56:5c: 84:0a:a0:b7:e6:3b:b5:1d:6b:19:ca:91:ac:35:9a:4e:bb:71: 92:05:58:59 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUBXTg8i1/Q3gAH8Afs0YfXvOceAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNTlaFw0yNDExMDMwNDA2NTlaMDMxMTAvBgNV BAMTKDYzMUQyODFGM0ZBQkREM0VDMkNCRUFBNzAxODMzQjE0MUI5NDVENUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVlzIQcaTzK9Vm+MXiJRNo/cfe K63J6af/Bqx8QhGNQBK0Xc3f2nGCdoYMOyU2xK/yj3jkqKAC8Vp+jCfvQhFUpr5y bMiObOg5Lz6Ukgdvhv13OvEPCBQa/YuwsX//nuUD1NBSXe85C9pzSMYRJGppwOY2 Ap7Hl4ZzdTCiFrZAVarVfMyF62yxz7j96q7T44XdZjGrScPWqeXECV5ixsFmpyYl 7RnRzEurBERAsN5RXB1oOEXEWRgadc0qECZCHtzcSL9dTRAssynwOHsAaunESxiY CZ3KM7PcAR2i8z4OE0jyKlnNE0ENMno1oei74DK0MqlVEn5O2uQek5uAqKfrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUYx0oHz+r3T7Cy+qnAYM7FBuUXVowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzODg4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAMwDQYJKoZIhvcNAQELBQADggEBAAze TSD9Pd5WewRoEH7CXj8xaXJUy4E3U1ibLp1c/mvg9JFq3pFehUCvQv13110j2d7G eYejXwzaOZv0CE4IzlyM9m0PcyuP/nCHXANe/GlXsCiju5e56OTI7QiSG5zfrTu1 6GRcazzgfsC9VkFQ4CpEBAHddYmuDW+fPj+YfbNNUo/1M4LIoDUtT8MEN5mbmDvZ iPE4X50145urqRb0Xk8lmPWhlyKzSWSQ7qYGAGHC1lftLyqzZiGRrNThuwYbufPr gWLpNIY/wScwXLufapLws8z4bYRZzqgOgJmG2IE2l3zG5s7HbFpWXIQKoLfmO7Ud axnKkaw1mk67cZIFWFk= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org