$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS204676.roa File: AS204676.roa (raw, json) Hash identifier: Lsu8rY4kr9hRBHQa6v//qTqWg3S7oSB2GR8lrzXsSOw= Subject key identifier: BA:F9:3B:40:E2:A7:C5:F7:F2:03:C6:CC:EB:13:6E:67:5E:34:AB:64 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 01CDF5163186197630AA3F7664EC6743F35CA762 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS204676.roa Signing time: Sun 05 Nov 2023 04:07:21 +0000 ROA not before: Sun 05 Nov 2023 04:02:21 +0000 ROA not after: Sun 03 Nov 2024 04:07:21 +0000 asID: 204676 IP address blocks: 2a0a:6040:7000::/40 maxlen: 40 2a0a:6040:8000::/40 maxlen: 48 2a0a:6040:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:cd:f5:16:31:86:19:76:30:aa:3f:76:64:ec:67:43:f3:5c:a7:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:21 2023 GMT Not After : Nov 3 04:07:21 2024 GMT Subject: CN=BAF93B40E2A7C5F7F203C6CCEB136E675E34AB64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2f:e1:18:50:2c:11:20:45:80:c2:13:ed:9e: 1a:2f:94:07:c9:bf:60:53:3c:4c:2e:12:ac:13:b2: 22:48:7c:79:02:a2:84:80:ca:4c:bc:90:aa:e5:a9: 6f:d3:7b:06:62:27:55:20:f4:5f:2c:1d:e6:48:bf: f7:7d:a2:8d:b5:60:e1:f1:c7:9b:9a:2c:04:6b:af: 01:f3:0d:fe:46:0d:ed:d3:ca:15:48:11:f6:ad:37: 75:66:95:ef:6d:99:b2:da:ff:88:36:2b:1e:80:4d: 26:6c:a5:a5:73:17:e6:7e:0a:58:3a:9b:f8:e6:54: 47:1d:33:0c:6b:d3:41:8e:39:0f:82:14:8c:08:38: 26:b2:e3:0b:98:03:27:06:2a:8c:68:99:9d:83:ff: e9:ba:8e:8c:e3:3a:e7:f7:a2:d0:4c:2d:95:26:a4: 2a:bb:2c:0c:18:33:2e:4e:89:07:9c:c5:a2:79:a2: d1:0a:d4:22:fe:c2:25:f5:66:07:f3:d2:ca:c4:13: e8:80:84:91:3b:73:b5:06:ef:f4:2f:6a:3f:9e:71: 36:21:89:e3:d3:d8:78:22:b0:7a:a8:de:b0:50:0c: e3:93:c8:71:b3:3a:83:ce:9c:12:1e:a6:05:c5:08: 16:18:d0:9a:95:57:8f:2e:43:4c:94:a2:bf:07:81: e3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F9:3B:40:E2:A7:C5:F7:F2:03:C6:CC:EB:13:6E:67:5E:34:AB:64 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS204676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7000::/40 2a0a:6040:8000::/40 2a0a:6040:9000::/40 Signature Algorithm: sha256WithRSAEncryption 68:d6:6b:76:33:5d:dd:41:01:18:13:48:9c:9b:b9:c0:79:ea: 00:f3:89:82:c0:62:88:02:d4:b1:23:62:79:20:ae:bb:ac:df: 95:28:c3:bd:4c:8c:ab:96:38:a1:67:72:f0:94:c1:e3:f5:f0: 78:fb:ab:db:a9:10:04:0e:ab:56:9c:d9:ac:55:83:a0:9a:e5: 9f:ab:99:ff:f0:ad:04:52:a2:1a:cf:1f:cb:44:80:33:f6:03: 96:dc:e6:c7:1b:36:7b:2b:36:01:40:8f:18:98:b7:d1:45:16: b0:ca:bb:00:0f:5a:71:5d:4a:04:b0:f6:0a:97:0b:3a:94:ee: b4:67:e1:4d:d8:31:58:c2:c5:2f:67:92:e0:2e:1f:2f:0c:86: 57:d5:44:08:e2:6d:18:6d:5e:d2:47:1a:27:17:c9:45:ea:11: 5e:7a:81:cf:c5:61:ca:26:cf:a2:dd:8a:bf:5f:fa:c2:33:c6: 28:8e:ea:81:18:5e:cc:0a:22:d6:86:17:35:9d:4d:88:f2:61: e1:76:8e:8f:99:e4:d6:23:96:cf:f8:25:bd:88:3a:70:c9:4a: ae:17:c5:ad:7f:c7:fc:a9:ef:8d:c4:3b:f8:29:c5:1e:dd:6f: c3:56:47:59:8e:89:1e:1c:b0:b1:6a:ee:f9:df:11:6d:a0:51: 70:f6:f5:7d -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUAc31FjGGGXYwqj92ZOxnQ/Ncp2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjFaFw0yNDExMDMwNDA3MjFaMDMxMTAvBgNV BAMTKEJBRjkzQjQwRTJBN0M1RjdGMjAzQzZDQ0VCMTM2RTY3NUUzNEFCNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeL+EYUCwRIEWAwhPtnhovlAfJ v2BTPEwuEqwTsiJIfHkCooSAyky8kKrlqW/TewZiJ1Ug9F8sHeZIv/d9oo21YOHx x5uaLARrrwHzDf5GDe3TyhVIEfatN3Vmle9tmbLa/4g2Kx6ATSZspaVzF+Z+Clg6 m/jmVEcdMwxr00GOOQ+CFIwIOCay4wuYAycGKoxomZ2D/+m6jozjOuf3otBMLZUm pCq7LAwYMy5OiQecxaJ5otEK1CL+wiX1Zgfz0srEE+iAhJE7c7UG7/Qvaj+ecTYh iePT2HgisHqo3rBQDOOTyHGzOoPOnBIepgXFCBYY0JqVV48uQ0yUor8HgeMzAgMB AAGjggIEMIICADAdBgNVHQ4EFgQUuvk7QOKnxffyA8bM6xNuZ140q2QwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA0Njc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAAjAYAwYAKgpgQHADBgAqCmBAgAMGACoKYECQMA0GCSqG SIb3DQEBCwUAA4IBAQBo1mt2M13dQQEYE0icm7nAeeoA84mCwGKIAtSxI2J5IK67 rN+VKMO9TIyrljihZ3LwlMHj9fB4+6vbqRAEDqtWnNmsVYOgmuWfq5n/8K0EUqIa zx/LRIAz9gOW3ObHGzZ7KzYBQI8YmLfRRRawyrsAD1pxXUoEsPYKlws6lO60Z+FN 2DFYwsUvZ5LgLh8vDIZX1UQI4m0YbV7SRxonF8lF6hFeeoHPxWHKJs+i3Yq/X/rC M8YojuqBGF7MCiLWhhc1nU2I8mHhdo6PmeTWI5bP+CW9iDpwyUquF8Wtf8f8qe+N xDv4KcUe3W/DVkdZjokeHLCxau753xFtoFFw9vV9 -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org