$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205232.roa File: AS205232.roa (raw, json) Hash identifier: bcWqEw3e9DyI4nFhJXzje85llNRZwxvC/xI4M+AU8gI= Subject key identifier: 46:C6:84:89:ED:E0:F8:4E:1A:7B:92:F9:66:42:63:A4:56:A9:60:98 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4B3D94DF6533840786099771DAE040B8C65D6540 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205232.roa Signing time: Sun 05 Nov 2023 04:07:17 +0000 ROA not before: Sun 05 Nov 2023 04:02:17 +0000 ROA not after: Sun 03 Nov 2024 04:07:17 +0000 asID: 205232 IP address blocks: 2a0a:6040:9c00::/40 maxlen: 40 2a0a:6040:a000::/40 maxlen: 48 2a0a:6040:f800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:3d:94:df:65:33:84:07:86:09:97:71:da:e0:40:b8:c6:5d:65:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:17 2023 GMT Not After : Nov 3 04:07:17 2024 GMT Subject: CN=46C68489EDE0F84E1A7B92F9664263A456A96098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:12:f2:63:bd:bc:79:2d:0f:a1:96:2f:56:6c: 4f:f2:14:cc:e4:c2:08:ae:2e:e7:3a:05:46:bf:dc: c4:a9:fe:37:8a:83:f6:53:1d:1b:c5:d6:f5:b6:d2: fc:fd:82:4b:06:be:20:1d:f5:5a:e0:ff:d0:fa:5d: 87:88:41:b5:44:08:a9:2f:ea:c3:35:6d:dc:56:b2: 6e:6e:e5:a9:54:b2:bb:34:12:58:9d:fc:e8:21:1b: c4:9f:d2:40:94:1f:d6:37:46:8b:c1:75:c6:62:62: 43:0c:ef:35:e1:1d:89:d0:aa:d2:1c:9b:aa:14:80: a8:44:dc:4f:f1:4a:2a:74:a7:36:7f:04:35:ab:d4: 2e:fd:c4:cd:f5:3f:da:64:34:83:90:d6:c1:3e:e0: ab:87:f2:f0:90:ba:4b:62:a2:78:a6:64:12:78:8f: 36:77:9e:59:0b:cd:a0:77:c2:f7:ce:23:ea:7a:08: 07:63:92:a1:1d:6d:82:83:0a:da:42:8b:84:11:79: 0b:f6:2e:d6:29:6a:4d:78:88:48:09:01:d0:cd:6e: f7:6e:a9:b1:25:85:b2:16:70:49:d9:d8:5e:f5:49: 3a:13:79:06:82:60:a3:03:42:5e:05:d0:a8:24:37: 5a:f4:9f:11:54:b2:49:d1:49:fe:1b:dc:22:1d:39: 2b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C6:84:89:ED:E0:F8:4E:1A:7B:92:F9:66:42:63:A4:56:A9:60:98 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9c00::/40 2a0a:6040:a000::/40 2a0a:6040:f800::/40 Signature Algorithm: sha256WithRSAEncryption 00:5c:5e:c4:08:53:76:2d:84:c8:a1:b9:cb:21:27:62:9d:3e: 80:d5:1d:0e:dc:7e:a7:54:51:5e:d4:e3:ce:cf:e0:89:af:a7: 7c:fd:a7:18:8a:de:30:23:82:78:4b:15:dd:a8:83:89:13:ee: 65:dc:f9:d5:2f:0e:3d:5b:45:e0:ed:5d:b0:22:74:3d:e6:a1: f7:03:d0:23:1b:85:d3:98:71:dc:4b:f4:55:b3:ed:9e:16:d3: 80:ee:83:f4:ab:62:b0:a6:59:35:b4:bf:19:98:1a:35:08:f0: 5b:45:e2:98:29:59:70:79:2a:08:a8:52:62:bc:94:50:29:06: bc:f4:ed:e0:77:d5:ed:09:ce:a7:a4:a5:6a:1b:38:5e:f1:e0: fd:8b:e8:dd:89:c8:79:d1:9a:bd:ae:8f:66:8e:41:cc:ac:06: 69:cc:0d:98:1f:66:54:2d:b1:d6:1b:26:f9:dd:69:c8:b5:82: 5b:98:4b:a7:57:d3:8e:96:08:2f:77:a7:18:bf:5c:66:31:10: e5:25:2c:09:50:79:9f:b1:97:1c:e3:1d:97:05:82:a9:be:06: ef:1c:a6:2d:81:7b:34:d9:0b:f5:fe:37:76:11:af:49:2e:4b: 42:33:51:12:74:0b:77:f1:b5:96:a0:2c:da:ad:91:e1:52:23: b3:f0:dd:09 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUSz2U32UzhAeGCZdx2uBAuMZdZUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTdaFw0yNDExMDMwNDA3MTdaMDMxMTAvBgNV BAMTKDQ2QzY4NDg5RURFMEY4NEUxQTdCOTJGOTY2NDI2M0E0NTZBOTYwOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAEvJjvbx5LQ+hli9WbE/yFMzk wgiuLuc6BUa/3MSp/jeKg/ZTHRvF1vW20vz9gksGviAd9Vrg/9D6XYeIQbVECKkv 6sM1bdxWsm5u5alUsrs0Elid/OghG8Sf0kCUH9Y3RovBdcZiYkMM7zXhHYnQqtIc m6oUgKhE3E/xSip0pzZ/BDWr1C79xM31P9pkNIOQ1sE+4KuH8vCQuktionimZBJ4 jzZ3nlkLzaB3wvfOI+p6CAdjkqEdbYKDCtpCi4QReQv2LtYpak14iEgJAdDNbvdu qbElhbIWcEnZ2F71SToTeQaCYKMDQl4F0KgkN1r0nxFUsknRSf4b3CIdOStPAgMB AAGjggIEMIICADAdBgNVHQ4EFgQURsaEie3g+E4ae5L5ZkJjpFapYJgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA1MjMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAAjAYAwYAKgpgQJwDBgAqCmBAoAMGACoKYED4MA0GCSqG SIb3DQEBCwUAA4IBAQAAXF7ECFN2LYTIobnLISdinT6A1R0O3H6nVFFe1OPOz+CJ r6d8/acYit4wI4J4SxXdqIOJE+5l3PnVLw49W0Xg7V2wInQ95qH3A9AjG4XTmHHc S/RVs+2eFtOA7oP0q2Kwplk1tL8ZmBo1CPBbReKYKVlweSoIqFJivJRQKQa89O3g d9XtCc6npKVqGzhe8eD9i+jdich50Zq9ro9mjkHMrAZpzA2YH2ZULbHWGyb53WnI tYJbmEunV9OOlggvd6cYv1xmMRDlJSwJUHmfsZcc4x2XBYKpvgbvHKYtgXs02Qv1 /jd2Ea9JLktCM1ESdAt38bWWoCzarZHhUiOz8N0J -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org