$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS20473.roa File: AS20473.roa (raw, json) Hash identifier: bxrY4u3Iyinf3/VCUTZm0LNE7vqbH2DvbNMKqGn+OkY= Subject key identifier: AC:B0:CC:98:CD:B3:4D:1D:1C:99:D6:25:17:51:84:52:22:1E:31:08 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2917B4B10EF28B6D9009A49A8A014EF38B93D276 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS20473.roa Signing time: Mon 20 Nov 2023 21:41:14 +0000 ROA not before: Mon 20 Nov 2023 21:36:14 +0000 ROA not after: Mon 18 Nov 2024 21:41:14 +0000 asID: 20473 IP address blocks: 2a05:dfc1:3900::/40 maxlen: 48 2a05:dfc1:6d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Apr 2024 07:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:17:b4:b1:0e:f2:8b:6d:90:09:a4:9a:8a:01:4e:f3:8b:93:d2:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 20 21:36:14 2023 GMT Not After : Nov 18 21:41:14 2024 GMT Subject: CN=ACB0CC98CDB34D1D1C99D62517518452221E3108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d6:47:50:ca:c1:b7:17:f5:97:2d:db:12:35: ad:29:51:41:aa:06:5e:0f:c9:e7:08:c4:91:b8:0a: 9b:9b:0b:1e:4a:3c:b1:1f:7b:a1:42:dd:a5:34:16: be:61:b2:54:a9:29:ca:34:52:a5:28:a0:ab:a0:f7: 02:80:ea:cb:d2:35:33:14:f4:ac:ad:7b:01:ad:ef: 56:41:74:96:3e:f6:79:c3:76:ab:a5:c8:76:71:37: 20:65:33:95:11:98:65:d8:c4:e5:2a:48:31:09:6a: 95:11:57:69:af:4b:84:b8:19:45:18:9b:1c:10:d6: 06:56:2c:96:59:1e:66:51:7a:ae:d3:24:e6:4e:ae: a9:78:0c:e6:72:c2:a3:ef:c3:1a:43:90:2c:c7:95: 02:01:7d:22:2a:ea:e5:10:73:e6:8b:e2:73:e2:51: bd:b4:93:76:86:09:2b:4c:db:bc:2b:cc:e4:4f:2b: 81:e6:45:5f:81:d6:4f:5a:d5:b7:c3:e5:1a:1a:26: 21:7b:bb:ad:d7:40:0f:1a:b4:3f:19:1a:cd:c9:8d: 01:2a:2f:24:4e:15:82:77:4c:b1:7b:be:87:ce:26: f5:6d:a9:64:eb:c5:b1:41:4d:3b:87:20:0c:35:cf: 85:eb:d1:c4:a9:10:64:ad:94:92:db:5d:64:7d:b3: 14:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B0:CC:98:CD:B3:4D:1D:1C:99:D6:25:17:51:84:52:22:1E:31:08 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS20473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3900::/40 2a05:dfc1:6d00::/40 Signature Algorithm: sha256WithRSAEncryption ae:48:ca:f0:7d:76:54:fa:ed:bb:68:95:95:e9:81:6f:e1:06: 57:7d:2f:98:2a:05:c3:44:34:f0:c2:ac:22:8f:39:08:94:eb: f5:b6:f5:cc:76:0d:ce:1b:0c:6d:df:be:b8:b7:7e:70:26:dc: 7a:ce:90:2e:93:52:9a:52:0f:b6:89:9e:be:94:4a:93:18:26: 7c:1e:ac:6e:e4:cb:17:23:27:be:37:c9:73:02:ee:12:a0:1b: 82:89:f5:2d:b9:41:0d:bd:b9:76:d2:75:b1:d7:a0:c6:7f:d0: 11:51:4a:a1:c4:41:47:31:6b:7c:76:7b:8c:bd:eb:5a:56:3c: 83:1d:d2:bd:50:d3:7b:28:56:39:f2:09:2b:69:41:e8:f2:e2: b9:85:69:16:de:f6:00:eb:3c:ec:ec:25:9d:c0:9f:35:f6:a6: 5a:00:94:f9:23:2c:8d:f2:df:06:39:e4:76:ee:f2:11:f8:68: 0d:39:3c:e1:fd:85:91:0c:61:07:8f:8b:1d:40:63:00:98:ac: 1a:f3:26:a3:8a:31:45:82:94:55:f5:87:f5:93:b9:15:1f:f1: db:ff:9c:b7:bf:3e:d0:6d:e4:1f:69:6d:97:5e:f7:0d:71:4d: fe:79:e0:66:15:78:e8:03:d5:8a:25:f1:69:56:ae:65:cd:36: 7d:2e:c3:a0 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUKRe0sQ7yi22QCaSaigFO84uT0nYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMjAyMTM2MTRaFw0yNDExMTgyMTQxMTRaMDMxMTAvBgNV BAMTKEFDQjBDQzk4Q0RCMzREMUQxQzk5RDYyNTE3NTE4NDUyMjIxRTMxMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD1kdQysG3F/WXLdsSNa0pUUGq Bl4PyecIxJG4CpubCx5KPLEfe6FC3aU0Fr5hslSpKco0UqUooKug9wKA6svSNTMU 9KytewGt71ZBdJY+9nnDdqulyHZxNyBlM5URmGXYxOUqSDEJapURV2mvS4S4GUUY mxwQ1gZWLJZZHmZReq7TJOZOrql4DOZywqPvwxpDkCzHlQIBfSIq6uUQc+aL4nPi Ub20k3aGCStM27wrzORPK4HmRV+B1k9a1bfD5RoaJiF7u63XQA8atD8ZGs3JjQEq LyROFYJ3TLF7vofOJvVtqWTrxbFBTTuHIAw1z4Xr0cSpEGStlJLbXWR9sxSpAgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUrLDMmM2zTR0cmdYlF1GEUiIeMQgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA0NzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqBd/BOQMGACoF38FtMA0GCSqGSIb3DQEBCwUA A4IBAQCuSMrwfXZU+u27aJWV6YFv4QZXfS+YKgXDRDTwwqwijzkIlOv1tvXMdg3O Gwxt3764t35wJtx6zpAuk1KaUg+2iZ6+lEqTGCZ8Hqxu5MsXIye+N8lzAu4SoBuC ifUtuUENvbl20nWx16DGf9ARUUqhxEFHMWt8dnuMvetaVjyDHdK9UNN7KFY58gkr aUHo8uK5hWkW3vYA6zzs7CWdwJ819qZaAJT5IyyN8t8GOeR27vIR+GgNOTzh/YWR DGEHj4sdQGMAmKwa8yajijFFgpRV9Yf1k7kVH/Hb/5y3vz7QbeQfaW2XXvcNcU3+ eeBmFXjoA9WKJfFpVq5lzTZ9LsOg -----END CERTIFICATE-----Generated at Tue Apr 23 22:43:45 2024 by rpki-client on console-fra.rpki-client.org