$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205027.roa File: AS205027.roa (raw, json) Hash identifier: j6GV2laQG/MasJemlO0c6uePvcxwKfyXgpj1EVt9tCg= Subject key identifier: 99:F6:77:2D:D8:CE:B5:F4:6F:05:F7:AF:6B:24:26:32:A6:90:C9:89 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0BE3B603F788A5C2D463EBBD446018205C6AF74B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205027.roa Signing time: Sun 06 Oct 2024 04:45:13 +0000 ROA not before: Sun 06 Oct 2024 04:40:13 +0000 ROA not after: Sun 05 Oct 2025 04:45:13 +0000 asID: 205027 IP address blocks: 2a0a:6040:cd00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:e3:b6:03:f7:88:a5:c2:d4:63:eb:bd:44:60:18:20:5c:6a:f7:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:13 2024 GMT Not After : Oct 5 04:45:13 2025 GMT Subject: CN=99F6772DD8CEB5F46F05F7AF6B242632A690C989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b2:88:54:93:cb:23:32:d0:90:3d:77:a1:0a: c2:22:46:d7:a5:f3:11:dc:e2:c7:67:8f:35:21:4c: 77:9d:79:b8:1c:e5:3b:bf:54:e1:54:29:af:dd:c4: 67:dc:5c:be:9b:37:3a:93:d7:ea:8c:f4:0d:17:62: 5f:c3:f4:f9:4d:dd:41:64:c6:87:fd:82:fe:11:be: de:72:9f:25:2b:e9:10:ac:ee:e6:78:cc:1e:a0:78: 0b:de:1f:36:78:a3:73:59:34:89:89:70:ed:fb:ef: 4a:a1:bb:4c:80:76:82:d5:2f:a0:46:fb:a3:8f:0f: 7e:e4:f5:0f:da:69:ef:89:b9:37:f1:8a:87:a6:98: e8:9a:7f:6e:cd:86:79:66:99:b9:e9:34:f6:2a:8c: b9:ce:07:2b:24:f9:be:e4:26:93:0c:4a:d9:6f:03: 74:4f:f4:86:33:f5:5c:81:39:1e:7a:45:b1:40:51: d5:19:07:50:9f:f5:84:51:b5:f6:4b:23:c6:9f:27: 34:b1:f3:ec:2f:bc:ee:f4:ba:9f:15:2f:7c:96:15: 18:d4:e9:a6:49:e9:0a:1d:3d:da:f8:5f:71:de:1a: b2:2a:7a:e7:3c:8f:3b:07:f6:00:73:c4:b0:6d:a2: 1b:45:61:fc:c0:53:98:0c:d1:24:01:64:fe:45:35: 3c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F6:77:2D:D8:CE:B5:F4:6F:05:F7:AF:6B:24:26:32:A6:90:C9:89 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205027.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:cd00::/40 Signature Algorithm: sha256WithRSAEncryption c5:6a:18:9e:de:6d:eb:90:8b:72:ee:87:e9:e2:37:8b:0c:16: 85:7f:f7:19:68:e3:60:4b:19:a3:a3:0e:4e:ab:a9:e8:fc:bd: 43:5c:d2:2a:6d:d7:9d:aa:d2:d2:c8:8c:48:1b:75:21:44:b9: 68:48:9c:7a:37:78:c7:75:37:10:94:1e:51:96:31:cc:73:45: 02:d8:66:55:91:dc:5c:e9:c8:09:8a:2d:a7:a6:4c:32:b3:72: 02:10:1f:ee:57:a7:20:59:d1:ee:00:da:5d:0e:c4:be:cb:b0: 16:79:00:c1:9d:e9:b6:a0:71:2e:58:07:c7:4d:95:5b:ca:8b: 21:ba:f2:15:67:7e:48:81:77:e5:fd:09:5a:a6:fe:66:13:f7: 1d:4e:90:27:a2:4b:29:8b:ef:64:70:62:b7:7f:7c:5f:8a:b4: be:38:6f:3f:8f:aa:3a:05:bd:26:aa:98:af:cf:13:e0:63:31: 8d:38:44:b4:bd:36:f7:16:8b:7b:b6:28:ed:c1:18:dd:f6:b7: 95:c5:88:05:f0:63:9f:30:6e:fc:cb:86:0f:71:14:ad:1a:3b: 46:d1:d3:b6:79:e1:24:8e:b8:66:1d:c6:24:7d:53:aa:c9:af: 89:7d:dc:69:6b:aa:a7:f5:77:1f:1d:cc:e6:1f:75:57:a1:86: 03:53:b9:6c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUC+O2A/eIpcLUY+u9RGAYIFxq90swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTNaFw0yNTEwMDUwNDQ1MTNaMDMxMTAvBgNV BAMTKDk5RjY3NzJERDhDRUI1RjQ2RjA1RjdBRjZCMjQyNjMyQTY5MEM5ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOsohUk8sjMtCQPXehCsIiRtel 8xHc4sdnjzUhTHedebgc5Tu/VOFUKa/dxGfcXL6bNzqT1+qM9A0XYl/D9PlN3UFk xof9gv4Rvt5ynyUr6RCs7uZ4zB6geAveHzZ4o3NZNImJcO3770qhu0yAdoLVL6BG +6OPD37k9Q/aae+JuTfxioemmOiaf27NhnlmmbnpNPYqjLnOBysk+b7kJpMMStlv A3RP9IYz9VyBOR56RbFAUdUZB1Cf9YRRtfZLI8afJzSx8+wvvO70up8VL3yWFRjU 6aZJ6QodPdr4X3HeGrIqeuc8jzsH9gBzxLBtohtFYfzAU5gM0SQBZP5FNTwrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmfZ3LdjOtfRvBfevayQmMqaQyYkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA1MDI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQM0wDQYJKoZIhvcNAQELBQADggEBAMVq GJ7ebeuQi3Luh+niN4sMFoV/9xlo42BLGaOjDk6rqej8vUNc0ipt152q0tLIjEgb dSFEuWhInHo3eMd1NxCUHlGWMcxzRQLYZlWR3FzpyAmKLaemTDKzcgIQH+5XpyBZ 0e4A2l0OxL7LsBZ5AMGd6bagcS5YB8dNlVvKiyG68hVnfkiBd+X9CVqm/mYT9x1O kCeiSymL72RwYrd/fF+KtL44bz+PqjoFvSaqmK/PE+BjMY04RLS9NvcWi3u2KO3B GN32t5XFiAXwY58wbvzLhg9xFK0aO0bR07Z54SSOuGYdxiR9U6rJr4l93Glrqqf1 dx8dzOYfdVehhgNTuWw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org