$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205027.roa File: AS205027.roa (raw, json) Hash identifier: hAGy5IGdvkquLxWeIIehqy1FgDxKASis89QGVr4iPuY= Subject key identifier: 0C:F9:A9:75:3E:99:0B:D8:A3:49:B6:9E:5D:95:C3:43:87:DB:44:FC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3A21946D6D6F31011D26F2619C1C0A8CDD9E5EB7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205027.roa Signing time: Sun 05 Nov 2023 04:07:14 +0000 ROA not before: Sun 05 Nov 2023 04:02:14 +0000 ROA not after: Sun 03 Nov 2024 04:07:14 +0000 asID: 205027 IP address blocks: 2a0a:6040:cd00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:21:94:6d:6d:6f:31:01:1d:26:f2:61:9c:1c:0a:8c:dd:9e:5e:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:14 2023 GMT Not After : Nov 3 04:07:14 2024 GMT Subject: CN=0CF9A9753E990BD8A349B69E5D95C34387DB44FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6f:28:39:0b:96:37:66:70:67:3c:6d:07:24: 97:e4:02:01:2a:4c:bb:2b:e9:65:cc:46:56:ea:ac: 67:2a:ea:51:1a:a4:39:d5:21:16:23:bf:74:70:b1: 21:6b:ff:8b:9e:23:d1:d3:05:fd:d5:76:d7:bc:a6: bf:af:15:8c:a8:ab:ed:31:b5:75:82:41:bd:9b:f5: c4:9c:40:8e:8c:c1:13:3b:35:77:34:14:f0:e8:3d: 46:fd:fd:28:06:3b:ea:59:c4:9d:14:ac:0f:1b:ec: 08:d8:91:5a:13:f4:84:27:bf:a9:71:11:54:fb:f8: d6:07:2d:1c:79:99:a6:1f:3a:da:66:96:57:23:c1: aa:09:9e:1e:dc:bc:cb:a4:80:92:7c:26:45:1d:f3: ae:c1:71:d3:07:15:c8:0d:4c:16:32:8f:2b:10:8d: 90:be:92:b5:c9:a5:3d:89:67:b5:6a:94:11:e7:d3: ba:c6:4a:ae:5a:b5:5f:1f:02:22:70:60:1c:09:eb: 5e:db:05:55:24:c4:e9:6f:e8:80:9a:a9:f4:5d:2e: f9:ee:d5:70:8e:be:5a:bd:b0:41:89:4e:2a:c4:08: 93:ae:b7:36:af:c9:89:33:07:d8:77:46:32:50:6e: d1:c9:9b:d1:c3:cc:d4:74:4e:d9:9e:97:4b:3f:30: 1d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F9:A9:75:3E:99:0B:D8:A3:49:B6:9E:5D:95:C3:43:87:DB:44:FC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205027.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:cd00::/40 Signature Algorithm: sha256WithRSAEncryption 52:81:35:44:cf:a4:18:07:2d:ea:96:ca:22:93:e8:0f:4e:bc: b7:11:96:05:9b:93:e6:aa:b9:77:b2:67:92:5f:d2:b0:93:00: 12:0b:ef:ee:a1:81:68:b2:45:41:fe:4d:aa:b0:6f:33:29:30: ac:4d:62:73:09:0a:1a:e4:fa:8c:d2:40:94:ad:5d:7b:c5:eb: eb:36:b8:b8:da:99:75:dd:35:fb:8c:cf:09:77:20:f0:84:e1: 1a:b9:ba:20:7d:9a:48:b4:3a:34:6e:96:98:8d:c8:19:9c:a4: 37:d7:a3:30:24:25:91:84:4a:74:b3:3c:8b:38:69:d5:fc:16: a3:1b:e6:0b:8e:6a:9f:c8:9a:48:41:83:87:b1:83:85:25:97: 75:11:ab:e1:f9:c2:b8:a4:b3:ba:ae:62:64:25:72:f8:74:1b: b2:0b:16:ee:5e:83:6a:25:7f:5e:2c:2e:42:8c:c0:2f:7b:49: 57:b8:12:18:79:f3:52:84:16:7e:c2:1c:e7:05:ce:eb:e3:c7: 5e:0f:ea:80:6c:bd:4b:86:6b:27:c5:12:b9:79:90:da:53:0f: 58:5f:22:18:83:66:12:c5:b4:db:ca:9d:ad:d0:a5:8b:ee:bb: 30:12:a5:96:1e:0d:51:5e:76:0f:14:e2:1b:ef:a2:13:b4:8d: 89:f3:10:2a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOiGUbW1vMQEdJvJhnBwKjN2eXrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTRaFw0yNDExMDMwNDA3MTRaMDMxMTAvBgNV BAMTKDBDRjlBOTc1M0U5OTBCRDhBMzQ5QjY5RTVEOTVDMzQzODdEQjQ0RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjbyg5C5Y3ZnBnPG0HJJfkAgEq TLsr6WXMRlbqrGcq6lEapDnVIRYjv3RwsSFr/4ueI9HTBf3Vdte8pr+vFYyoq+0x tXWCQb2b9cScQI6MwRM7NXc0FPDoPUb9/SgGO+pZxJ0UrA8b7AjYkVoT9IQnv6lx EVT7+NYHLRx5maYfOtpmllcjwaoJnh7cvMukgJJ8JkUd867BcdMHFcgNTBYyjysQ jZC+krXJpT2JZ7VqlBHn07rGSq5atV8fAiJwYBwJ617bBVUkxOlv6ICaqfRdLvnu 1XCOvlq9sEGJTirECJOutzavyYkzB9h3RjJQbtHJm9HDzNR0Ttmel0s/MB1JAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUDPmpdT6ZC9ijSbaeXZXDQ4fbRPwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA1MDI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQM0wDQYJKoZIhvcNAQELBQADggEBAFKB NUTPpBgHLeqWyiKT6A9OvLcRlgWbk+aquXeyZ5Jf0rCTABIL7+6hgWiyRUH+Taqw bzMpMKxNYnMJChrk+ozSQJStXXvF6+s2uLjamXXdNfuMzwl3IPCE4Rq5uiB9mki0 OjRulpiNyBmcpDfXozAkJZGESnSzPIs4adX8FqMb5guOap/ImkhBg4exg4Ull3UR q+H5wriks7quYmQlcvh0G7ILFu5eg2olf14sLkKMwC97SVe4Ehh581KEFn7CHOcF zuvjx14P6oBsvUuGayfFErl5kNpTD1hfIhiDZhLFtNvKna3QpYvuuzASpZYeDVFe dg8U4hvvohO0jYnzECo= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org