$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS204676.roa File: AS204676.roa (raw, json) Hash identifier: mbzhHxEfW5mPRzzcq6/12GkNaMg5PUqFQWo4JbmsRv4= Subject key identifier: 3C:84:11:94:D2:EC:CB:CB:E9:B3:9D:A7:9B:25:DB:AD:13:DB:2E:C6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 33F05664B6DD3E3C7FED410244731150E409EAC0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS204676.roa Signing time: Sun 06 Oct 2024 04:45:01 +0000 ROA not before: Sun 06 Oct 2024 04:40:01 +0000 ROA not after: Sun 05 Oct 2025 04:45:01 +0000 asID: 204676 IP address blocks: 2a0a:6040:7000::/40 maxlen: 40 2a0a:6040:8000::/40 maxlen: 48 2a0a:6040:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f0:56:64:b6:dd:3e:3c:7f:ed:41:02:44:73:11:50:e4:09:ea:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:01 2024 GMT Not After : Oct 5 04:45:01 2025 GMT Subject: CN=3C841194D2ECCBCBE9B39DA79B25DBAD13DB2EC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fe:47:d6:23:97:77:09:50:ba:4f:01:64:f0: 9e:0d:33:29:bd:44:d8:f3:95:55:b9:3e:94:a2:7f: 46:89:fd:6b:e8:d5:1c:5c:f0:6a:3d:b1:ae:aa:02: 30:45:49:b6:1b:76:bc:40:8c:8e:1b:9c:a7:3c:b5: 61:b3:56:6e:9e:47:69:28:e4:4b:33:db:01:d3:97: fa:de:d6:c7:c7:05:ce:37:ec:21:44:1a:71:fc:de: 99:74:d4:f6:d5:f7:d9:3c:15:c5:3d:fb:65:67:ad: 04:f6:df:72:1a:7f:8d:e0:53:4b:49:06:96:2c:4a: b2:7f:60:91:0d:61:f9:ab:a8:8e:ff:4d:6b:d9:e2: 57:f7:2a:66:6a:77:c0:c8:d4:6b:7c:51:8d:9f:66: f4:88:25:49:af:25:6f:0c:5e:92:2f:af:67:0b:ee: 8c:01:d9:82:1f:f0:af:8d:6d:35:5d:76:36:41:80: 6f:77:76:d7:19:05:74:ec:e9:ad:83:02:2d:78:61: df:f3:33:6c:11:a8:c8:09:0c:65:db:be:89:a0:2f: 84:79:55:e5:9a:b3:68:ed:4c:c6:f4:7a:6f:1b:6c: b4:22:58:97:3b:2e:26:25:b8:89:33:d6:68:08:cb: 35:00:ce:10:ae:91:4f:96:db:62:14:4e:2b:3e:01: ae:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:84:11:94:D2:EC:CB:CB:E9:B3:9D:A7:9B:25:DB:AD:13:DB:2E:C6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS204676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7000::/40 2a0a:6040:8000::/40 2a0a:6040:9000::/40 Signature Algorithm: sha256WithRSAEncryption 68:51:3e:a8:e7:86:48:e9:a4:83:6f:69:87:fb:3b:b5:13:f4: bb:b6:c6:97:4a:cf:2d:aa:71:2c:df:90:ac:7e:84:cf:c9:92: 69:e9:57:5b:12:7f:4b:33:25:73:d6:d9:18:03:d4:4a:e2:fb: b7:4e:e4:61:aa:cc:72:a5:6f:bb:27:0b:76:58:d4:31:78:b8: 6e:84:82:8d:4c:89:53:5c:6a:25:3e:e1:cf:ac:d4:af:12:c8: b6:eb:30:3b:48:d9:7a:fa:44:f1:73:42:cc:39:51:c4:63:57: a5:17:95:6f:e2:a7:72:b7:df:6b:2d:44:10:78:3a:63:91:5c: ed:e0:3e:f2:8a:e3:d4:38:5f:ce:08:67:b1:97:e8:08:05:4a: ff:07:66:81:1d:b0:ef:7b:4d:44:99:d6:c4:e4:0a:16:0c:4b: b4:bc:b6:ce:93:48:81:63:d5:e3:80:a0:18:70:22:d7:b9:37: 42:fa:65:4d:fd:58:15:d1:02:e1:58:95:f6:2c:db:4e:d4:d7: 12:d7:f3:28:42:9d:f3:1e:0e:62:f6:84:be:5f:b7:4d:25:82: 99:21:5e:e3:89:eb:72:71:05:a6:b3:52:6f:9d:7b:19:45:90: 8b:3a:fd:d7:a3:44:ac:72:42:5c:d0:f7:1f:ec:f3:65:6e:22: 22:e8:dd:80 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUM/BWZLbdPjx/7UECRHMRUOQJ6sAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDFaFw0yNTEwMDUwNDQ1MDFaMDMxMTAvBgNV BAMTKDNDODQxMTk0RDJFQ0NCQ0JFOUIzOURBNzlCMjVEQkFEMTNEQjJFQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR/kfWI5d3CVC6TwFk8J4NMym9 RNjzlVW5PpSif0aJ/Wvo1Rxc8Go9sa6qAjBFSbYbdrxAjI4bnKc8tWGzVm6eR2ko 5Esz2wHTl/re1sfHBc437CFEGnH83pl01PbV99k8FcU9+2VnrQT233Iaf43gU0tJ BpYsSrJ/YJENYfmrqI7/TWvZ4lf3KmZqd8DI1Gt8UY2fZvSIJUmvJW8MXpIvr2cL 7owB2YIf8K+NbTVddjZBgG93dtcZBXTs6a2DAi14Yd/zM2wRqMgJDGXbvomgL4R5 VeWas2jtTMb0em8bbLQiWJc7LiYluIkz1mgIyzUAzhCukU+W22IUTis+Aa6/AgMB AAGjggIEMIICADAdBgNVHQ4EFgQUPIQRlNLsy8vps52nmyXbrRPbLsYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA0Njc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAAjAYAwYAKgpgQHADBgAqCmBAgAMGACoKYECQMA0GCSqG SIb3DQEBCwUAA4IBAQBoUT6o54ZI6aSDb2mH+zu1E/S7tsaXSs8tqnEs35CsfoTP yZJp6VdbEn9LMyVz1tkYA9RK4vu3TuRhqsxypW+7Jwt2WNQxeLhuhIKNTIlTXGol PuHPrNSvEsi26zA7SNl6+kTxc0LMOVHEY1elF5Vv4qdyt99rLUQQeDpjkVzt4D7y iuPUOF/OCGexl+gIBUr/B2aBHbDve01EmdbE5AoWDEu0vLbOk0iBY9XjgKAYcCLX uTdC+mVN/VgV0QLhWJX2LNtO1NcS1/MoQp3zHg5i9oS+X7dNJYKZIV7jietycQWm s1JvnXsZRZCLOv3Xo0SsckJc0Pcf7PNlbiIi6N2A -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org