$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205794.roa File: AS205794.roa (raw, json) Hash identifier: aUK0SLMYEWbm5hPYnnfSCQ5Vrz8bOFkUJPYj+kmk66E= Subject key identifier: 33:F4:CA:14:C6:9B:20:EE:30:09:49:4F:75:7A:BF:79:6E:D1:2D:BD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 29C060E9CC739F2A7E40682C817C711322F78F64 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205794.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 205794 IP address blocks: 2a0a:6040:ec00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:c0:60:e9:cc:73:9f:2a:7e:40:68:2c:81:7c:71:13:22:f7:8f:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=33F4CA14C69B20EE3009494F757ABF796ED12DBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:87:eb:51:82:ce:66:3e:58:ec:ff:67:bb:d6: 87:80:2d:93:55:b4:dc:d9:ed:17:d6:f0:08:01:60: 70:cb:9d:86:e7:df:d9:b3:d7:34:84:54:b1:ff:a7: 5f:63:2e:05:9a:72:92:1c:54:f2:c8:75:24:09:a9: 5e:10:b1:6e:da:17:48:de:c3:70:77:76:ff:b8:60: 8d:1b:c6:80:62:0d:4b:07:48:6c:bc:f2:02:08:cc: 94:8e:3d:ea:6b:8c:82:df:7e:f4:67:b3:b6:64:22: 15:e4:b2:8a:2b:99:66:98:c0:97:64:5e:8a:d7:0b: 8d:66:bc:66:8f:24:32:e9:7f:12:5e:4c:f6:94:b6: 26:08:f0:79:97:f9:59:12:b7:bc:6f:70:f2:8a:64: 57:f4:47:a2:60:88:ec:ab:ed:1a:24:4c:4d:ed:ba: 0c:79:a3:fb:c4:35:d9:89:15:6b:b9:c8:65:88:92: d2:68:7e:7e:dd:5b:5f:b3:5f:88:2f:cf:c9:70:ae: 66:a6:31:bd:9b:9a:1e:d7:f9:2d:81:7d:da:d8:ad: b9:6f:70:bc:74:03:6c:3b:6e:71:5e:eb:c9:c8:16: 8e:05:83:e5:e2:97:f8:e6:22:92:cf:cf:07:ab:19: 0c:0c:47:93:5d:8e:4d:bd:f7:5d:84:89:24:96:c9: 72:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F4:CA:14:C6:9B:20:EE:30:09:49:4F:75:7A:BF:79:6E:D1:2D:BD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205794.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ec00::/40 Signature Algorithm: sha256WithRSAEncryption b8:2e:6c:ad:5c:d9:5a:e1:fe:2b:ab:42:8a:e6:77:0b:eb:13: 65:d8:fb:9d:3c:49:6f:18:14:dd:f8:c8:02:76:1a:44:ba:45: df:24:fc:c3:ed:93:de:d4:01:70:46:04:46:ea:c9:2f:bf:74: 78:28:fd:3b:21:4e:0c:10:27:7c:48:19:63:2b:22:0b:c4:b9: b0:20:49:c4:fd:a8:6a:bd:9f:c0:63:af:28:b3:34:05:42:98: 88:d4:e8:9d:4b:19:40:0e:87:6d:1a:3f:77:0c:c6:0d:eb:25: 11:e0:90:a5:cc:b9:11:d3:40:45:ed:75:44:a3:a6:7c:a3:27: a8:40:9e:38:6f:96:80:c2:16:86:05:23:b0:f6:11:17:f5:64: 5c:fa:54:b8:81:bd:9c:46:71:39:67:bc:a2:76:8f:0e:3b:06: b7:6b:c5:5a:be:86:17:eb:7f:18:50:3e:eb:1b:db:e5:0c:9f: 63:df:2d:1d:c9:25:3d:41:fb:53:31:a1:93:6d:bd:1e:d8:c7: 8a:26:33:bb:b9:0b:9c:dc:4e:ca:79:54:af:07:07:a1:9f:f1: fc:e3:42:4b:2a:89:a3:31:80:c7:b0:7e:4d:71:d3:2f:f5:ee: 30:5d:97:30:47:5a:f9:d1:b3:51:f9:88:d5:d3:38:86:db:eb: 54:94:28:f7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKcBg6cxznyp+QGgsgXxxEyL3j2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKDMzRjRDQTE0QzY5QjIwRUUzMDA5NDk0Rjc1N0FCRjc5NkVEMTJEQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUh+tRgs5mPljs/2e71oeALZNV tNzZ7RfW8AgBYHDLnYbn39mz1zSEVLH/p19jLgWacpIcVPLIdSQJqV4QsW7aF0je w3B3dv+4YI0bxoBiDUsHSGy88gIIzJSOPeprjILffvRns7ZkIhXksoormWaYwJdk XorXC41mvGaPJDLpfxJeTPaUtiYI8HmX+VkSt7xvcPKKZFf0R6JgiOyr7RokTE3t ugx5o/vENdmJFWu5yGWIktJofn7dW1+zX4gvz8lwrmamMb2bmh7X+S2BfdrYrblv cLx0A2w7bnFe68nIFo4Fg+Xil/jmIpLPzwerGQwMR5Ndjk29912EiSSWyXLFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUM/TKFMabIO4wCUlPdXq/eW7RLb0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA1Nzk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOwwDQYJKoZIhvcNAQELBQADggEBALgu bK1c2Vrh/iurQormdwvrE2XY+508SW8YFN34yAJ2GkS6Rd8k/MPtk97UAXBGBEbq yS+/dHgo/TshTgwQJ3xIGWMrIgvEubAgScT9qGq9n8BjryizNAVCmIjU6J1LGUAO h20aP3cMxg3rJRHgkKXMuRHTQEXtdUSjpnyjJ6hAnjhvloDCFoYFI7D2ERf1ZFz6 VLiBvZxGcTlnvKJ2jw47BrdrxVq+hhfrfxhQPusb2+UMn2PfLR3JJT1B+1MxoZNt vR7Yx4omM7u5C5zcTsp5VK8HB6Gf8fzjQksqiaMxgMewfk1x0y/17jBdlzBHWvnR s1H5iNXTOIbb61SUKPc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org