$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205794.roa File: AS205794.roa (raw, json) Hash identifier: OAk/WacTPoGgJtZ1gNr952s1B4k/bFE/FSlWSl1EW0I= Subject key identifier: 4E:96:5B:EA:19:01:8F:B8:97:4C:4F:B3:0B:7D:79:56:FC:67:CF:C6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 50AB8B03830628D5C54E64FBB4503005C473AA9E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205794.roa Signing time: Sun 05 Nov 2023 04:07:19 +0000 ROA not before: Sun 05 Nov 2023 04:02:19 +0000 ROA not after: Sun 03 Nov 2024 04:07:19 +0000 asID: 205794 IP address blocks: 2a0a:6040:ec00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ab:8b:03:83:06:28:d5:c5:4e:64:fb:b4:50:30:05:c4:73:aa:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:19 2023 GMT Not After : Nov 3 04:07:19 2024 GMT Subject: CN=4E965BEA19018FB8974C4FB30B7D7956FC67CFC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:89:b0:c3:21:98:7e:7f:e2:1d:dd:5d:8b:ae: 11:a3:77:92:63:be:2f:44:15:68:29:e7:7b:08:d5: a2:64:76:e1:b3:70:2e:5b:7c:84:0a:18:9f:8d:37: 1b:c9:a1:21:73:a2:5d:a5:5b:c1:d4:43:6e:4b:81: e8:1a:3a:9e:c1:38:2d:ba:91:55:24:41:0d:a1:44: 8e:b3:b3:f3:64:3c:2a:2c:8f:b1:f4:a0:b7:00:f5: d3:2d:cf:4c:3f:3b:e4:26:2e:6e:89:e3:54:bc:96: 62:71:d8:d2:2c:30:15:f8:dc:0a:f0:e0:94:c1:57: 7d:b0:e0:60:ea:f5:9f:d9:1f:6b:86:28:51:7c:e9: 8c:37:f2:3e:6a:a4:66:8b:ba:7a:e4:40:8b:87:f1: f7:e7:de:0a:ec:be:c2:dd:02:7b:08:ef:23:14:a5: 06:d8:9d:df:44:0d:de:68:e5:f9:2b:03:e7:5d:59: be:ec:d5:9e:f4:76:aa:77:4a:42:e4:4d:7f:d9:2d: 16:2d:22:de:1f:4e:f3:9c:b6:ea:48:fb:7d:cb:9b: c9:39:c7:c5:c5:10:c9:de:18:ba:11:00:c9:5a:dd: cb:25:11:2b:a0:f8:c7:79:09:6c:86:33:ae:fc:25: ca:3b:db:e7:00:8e:2a:43:1c:d4:42:21:45:8d:18: ae:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:96:5B:EA:19:01:8F:B8:97:4C:4F:B3:0B:7D:79:56:FC:67:CF:C6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205794.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 18:6d:2a:01:b2:ad:ee:50:28:68:75:ec:1f:87:a1:c1:c3:74: da:ba:19:97:33:82:65:46:63:85:53:9c:da:8b:88:83:b3:97: 7d:bc:a0:b9:b9:2e:f1:33:b3:30:7a:e1:01:4f:a0:f3:ee:f3: 46:67:c7:4b:74:f5:36:4e:4f:31:96:50:26:4a:e7:1f:8d:26: 63:45:64:50:03:c4:0c:c2:56:83:9c:50:18:a1:d6:0d:04:e1: 99:b7:3e:9d:90:c2:8f:a8:13:81:0b:28:60:e8:03:38:05:2b: ec:50:d8:f9:94:0e:fc:a2:5b:32:36:a4:8a:9f:1e:a9:83:01: c5:69:ed:e9:ce:83:af:92:f9:9a:58:70:0d:48:82:02:8a:89: de:ce:52:fc:37:72:3d:be:9b:3d:e6:b5:db:0b:cb:f5:80:ea: b2:b0:98:65:d5:79:e6:d4:2d:68:9f:43:92:9f:47:bd:fd:b6: b6:a5:f0:5c:8b:a3:79:d7:08:ce:19:70:f9:4c:bc:2e:81:5c: 0c:5a:62:00:36:65:c8:cc:28:af:36:c1:68:b0:51:5e:55:6c: d3:6e:1a:c5:61:34:51:cf:68:e0:5c:a6:22:91:0a:71:3d:9a: 1b:c6:61:db:c5:77:de:d6:44:c3:7c:53:3b:81:c6:82:c1:95: e0:0c:25:cd -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUKuLA4MGKNXFTmT7tFAwBcRzqp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTlaFw0yNDExMDMwNDA3MTlaMDMxMTAvBgNV BAMTKDRFOTY1QkVBMTkwMThGQjg5NzRDNEZCMzBCN0Q3OTU2RkM2N0NGQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhibDDIZh+f+Id3V2LrhGjd5Jj vi9EFWgp53sI1aJkduGzcC5bfIQKGJ+NNxvJoSFzol2lW8HUQ25LgegaOp7BOC26 kVUkQQ2hRI6zs/NkPCosj7H0oLcA9dMtz0w/O+QmLm6J41S8lmJx2NIsMBX43Arw 4JTBV32w4GDq9Z/ZH2uGKFF86Yw38j5qpGaLunrkQIuH8ffn3grsvsLdAnsI7yMU pQbYnd9EDd5o5fkrA+ddWb7s1Z70dqp3SkLkTX/ZLRYtIt4fTvOctupI+33Lm8k5 x8XFEMneGLoRAMla3cslESug+Md5CWyGM678Jco72+cAjipDHNRCIUWNGK7BAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTpZb6hkBj7iXTE+zC315Vvxnz8YwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA1Nzk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOwwDQYJKoZIhvcNAQELBQADggEBABht KgGyre5QKGh17B+HocHDdNq6GZczgmVGY4VTnNqLiIOzl328oLm5LvEzszB64QFP oPPu80Znx0t09TZOTzGWUCZK5x+NJmNFZFADxAzCVoOcUBih1g0E4Zm3Pp2Qwo+o E4ELKGDoAzgFK+xQ2PmUDvyiWzI2pIqfHqmDAcVp7enOg6+S+ZpYcA1IggKKid7O Uvw3cj2+mz3mtdsLy/WA6rKwmGXVeebULWifQ5KfR739tral8FyLo3nXCM4ZcPlM vC6BXAxaYgA2ZcjMKK82wWiwUV5VbNNuGsVhNFHPaOBcpiKRCnE9mhvGYdvFd97W RMN8UzuBxoLBleAMJc0= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org