$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS204931.roa File: AS204931.roa (raw, json) Hash identifier: bG3Nb9AXSRKBTDeL2CZZR4AF4rprgUgv2bxI30FFaL0= Subject key identifier: 58:48:79:58:9F:D3:2E:9D:89:D6:3F:DF:25:1B:1E:6B:72:E6:15:E9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6CD6B85E6AB26A5F4C7DF4E9FCC36870C98192FB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS204931.roa Signing time: Tue 07 May 2024 09:59:31 +0000 ROA not before: Tue 07 May 2024 09:54:31 +0000 ROA not after: Tue 06 May 2025 09:59:31 +0000 asID: 204931 IP address blocks: 2a05:dfc1:4c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:d6:b8:5e:6a:b2:6a:5f:4c:7d:f4:e9:fc:c3:68:70:c9:81:92:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 7 09:54:31 2024 GMT Not After : May 6 09:59:31 2025 GMT Subject: CN=584879589FD32E9D89D63FDF251B1E6B72E615E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:21:65:f3:48:bc:0c:cd:c7:a1:96:c5:7b:a6: 88:f5:37:58:91:20:0f:4d:fe:80:38:8d:e9:9c:d6: 87:dc:ed:15:e1:c3:7a:92:67:80:98:70:e3:d7:86: a7:0b:db:58:0e:88:3a:e8:a7:54:9b:41:7c:2b:46: 62:59:12:32:64:e9:1b:b5:d7:09:bc:7d:c0:3a:4d: b6:a4:de:dc:89:aa:82:b4:ce:b5:9e:bc:29:46:67: 8e:3d:eb:b4:ac:d3:8b:39:bb:04:dd:bb:1b:e9:d4: e1:e7:7d:f4:a6:a7:59:a1:43:95:ed:cf:8b:e6:78: 4c:93:2d:a7:5c:df:72:64:79:34:16:77:17:7d:37: 51:c0:c7:68:d6:65:f5:4d:4e:9c:41:d2:de:f1:5f: 6b:18:5f:e6:eb:86:37:87:c2:b7:0c:14:57:40:c8: b4:e8:16:7c:64:6a:fc:1e:f2:c0:a2:96:09:d6:4d: f1:44:9a:3b:5c:fb:83:3f:57:e4:ff:75:67:5f:6c: 00:a7:86:da:a4:b4:cc:36:d8:dd:86:3c:d0:a6:f8: ba:34:b2:3d:54:dd:eb:7e:eb:71:fb:d7:64:a0:d1: 6b:08:dd:bf:f8:20:0f:a7:3d:92:b1:56:f3:44:27: b9:01:5a:68:00:c2:82:0f:03:27:e4:df:7e:36:fd: b8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:48:79:58:9F:D3:2E:9D:89:D6:3F:DF:25:1B:1E:6B:72:E6:15:E9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS204931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4c00::/40 Signature Algorithm: sha256WithRSAEncryption 4f:2c:41:27:c3:e5:68:cd:4b:5e:5e:4a:c0:d1:84:93:af:32: a1:80:2d:9b:8f:f3:cf:b0:1b:d6:21:9b:4e:f3:d0:f2:ff:01: 67:5e:d7:19:13:c1:8a:7d:d0:81:b8:53:e2:ef:0e:79:ec:7a: 6e:a6:a2:87:31:36:16:12:55:64:0d:98:5d:ab:2c:02:e7:40: 56:03:e5:e4:8b:88:4e:f3:96:16:7c:0f:53:09:94:65:84:e2: 11:de:ea:07:29:87:a5:40:f9:1c:44:33:a2:37:1e:ae:92:33: a4:68:d5:bb:36:9b:65:da:74:8d:c4:9d:06:fc:d1:e5:8b:71: 1d:60:ea:87:d4:7d:a5:a0:4f:b3:46:b1:fa:c4:ef:84:b8:ad: c3:d1:62:39:c5:f7:a2:a1:3d:13:e5:b9:76:d6:82:88:1b:05: b8:72:cc:f7:09:a7:1f:14:e4:76:11:31:16:76:36:b4:01:ad: 98:db:fb:19:12:c1:20:51:71:be:d7:9c:19:e3:ea:83:78:1a: 39:b5:4a:56:27:28:2e:45:04:f8:29:f1:ba:6a:78:ad:1e:b0: a2:bb:43:76:56:28:20:3c:35:a6:24:b5:ae:e0:dd:8e:b8:9e: cd:33:e0:b6:53:c4:1f:a7:db:1e:96:ed:3f:fb:30:ed:c2:05: d2:0a:1c:cc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbNa4Xmqyal9MffTp/MNocMmBkvswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MDcwOTU0MzFaFw0yNTA1MDYwOTU5MzFaMDMxMTAvBgNV BAMTKDU4NDg3OTU4OUZEMzJFOUQ4OUQ2M0ZERjI1MUIxRTZCNzJFNjE1RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFIWXzSLwMzcehlsV7poj1N1iR IA9N/oA4jemc1ofc7RXhw3qSZ4CYcOPXhqcL21gOiDrop1SbQXwrRmJZEjJk6Ru1 1wm8fcA6Tbak3tyJqoK0zrWevClGZ44967Ss04s5uwTduxvp1OHnffSmp1mhQ5Xt z4vmeEyTLadc33JkeTQWdxd9N1HAx2jWZfVNTpxB0t7xX2sYX+brhjeHwrcMFFdA yLToFnxkavwe8sCilgnWTfFEmjtc+4M/V+T/dWdfbACnhtqktMw22N2GPNCm+Lo0 sj1U3et+63H712Sg0WsI3b/4IA+nPZKxVvNEJ7kBWmgAwoIPAyfk3342/bj1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUWEh5WJ/TLp2J1j/fJRsea3LmFekwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA0OTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwUwwDQYJKoZIhvcNAQELBQADggEBAE8s QSfD5WjNS15eSsDRhJOvMqGALZuP88+wG9Yhm07z0PL/AWde1xkTwYp90IG4U+Lv Dnnsem6moocxNhYSVWQNmF2rLALnQFYD5eSLiE7zlhZ8D1MJlGWE4hHe6gcph6VA +RxEM6I3Hq6SM6Ro1bs2m2XadI3EnQb80eWLcR1g6ofUfaWgT7NGsfrE74S4rcPR YjnF96KhPRPluXbWgogbBbhyzPcJpx8U5HYRMRZ2NrQBrZjb+xkSwSBRcb7XnBnj 6oN4Gjm1SlYnKC5FBPgp8bpqeK0esKK7Q3ZWKCA8NaYkta7g3Y64ns0z4LZTxB+n 2x6W7T/7MO3CBdIKHMw= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org