$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205848.roa File: AS205848.roa (raw, json) Hash identifier: e4wxQ3czHhLDu/8XZWt4O1X6aij5y9HLKZqB7PasmSc= Subject key identifier: 86:61:A9:45:D9:66:E3:54:3E:91:A4:69:B5:D1:9A:00:D7:C8:46:1A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 72AE2F8AABC96AFEA1907EC54B055F1994AEB803 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205848.roa Signing time: Sun 05 Nov 2023 04:07:12 +0000 ROA not before: Sun 05 Nov 2023 04:02:12 +0000 ROA not after: Sun 03 Nov 2024 04:07:12 +0000 asID: 205848 IP address blocks: 2a0a:6040:f500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ae:2f:8a:ab:c9:6a:fe:a1:90:7e:c5:4b:05:5f:19:94:ae:b8:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:12 2023 GMT Not After : Nov 3 04:07:12 2024 GMT Subject: CN=8661A945D966E3543E91A469B5D19A00D7C8461A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:36:a7:c0:e0:1c:90:a6:8e:82:b0:9d:9f:dd: da:21:b8:a7:d2:62:26:b9:16:d8:c6:5b:4a:11:b7: f5:24:7e:f9:93:5c:90:c9:c7:21:00:2e:62:f4:7a: d4:79:ae:bb:7a:0e:ff:4e:9b:7f:33:9f:ba:e5:e8: b3:1e:f8:ed:33:58:de:ca:c8:9f:97:17:30:36:66: 60:02:50:a9:0e:e9:18:0f:43:81:7d:e3:52:00:f8: fd:37:e6:60:ae:35:92:69:32:40:c2:58:89:c1:fc: 39:35:79:4d:d0:fe:ce:a3:82:30:3f:cc:b7:8d:d3: 00:5d:70:df:0e:05:d8:62:c0:be:b3:ec:5f:f6:ac: 13:b1:90:3f:25:85:d4:73:53:d5:4e:bb:69:81:60: 44:83:73:1f:4f:a8:01:8f:49:ee:1e:3e:b0:ec:c5: f3:75:db:70:bb:d9:21:d8:da:8a:14:7d:92:b1:63: b5:5a:15:8b:55:ee:54:72:a4:77:a5:07:8f:c5:be: 59:85:bd:88:a6:31:f5:d1:d9:8d:5e:ce:f8:08:d4: e7:6a:70:7e:a9:74:1e:18:0c:0e:93:9d:d7:57:e2: 92:4e:0f:d9:1f:ed:12:49:30:2a:f9:ec:ff:ea:3e: ff:53:f7:b8:6e:3c:a2:3e:34:17:e3:ba:44:1b:6e: 14:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:61:A9:45:D9:66:E3:54:3E:91:A4:69:B5:D1:9A:00:D7:C8:46:1A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205848.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f500::/40 Signature Algorithm: sha256WithRSAEncryption 5e:a8:86:28:b9:5c:5e:7f:e6:25:c0:4a:4c:fb:7f:d8:e2:61: c8:5a:52:31:31:d2:62:f3:86:4b:37:67:36:e9:52:0c:fb:4b: c5:ed:4c:76:0a:1e:5b:c2:98:93:82:2d:6d:be:83:b5:e2:55: 9d:5b:2c:66:fd:c7:c4:ae:2b:6e:a7:a6:ff:c5:d7:58:c4:83: 91:69:26:52:02:c0:12:a6:e2:b6:22:aa:46:3b:ca:7c:cb:ed: 04:8a:f7:fc:57:76:c6:de:49:2f:93:bb:11:5d:5b:15:18:4b: a1:e5:f2:14:9b:06:40:b7:18:6b:2c:c7:65:1c:a4:27:4a:22: 15:f7:fe:bf:78:14:7f:6b:49:11:3c:21:75:fc:ad:70:30:40: ea:78:ba:8d:f3:8e:5f:aa:71:70:7a:6d:46:5d:c6:1d:ca:4a: 16:a1:db:5d:f9:05:b5:86:89:ca:13:7a:93:6c:a8:d0:e1:40: a5:04:f1:32:6f:9e:61:9f:e8:60:f3:53:70:77:80:b2:f9:5f: 02:02:7b:14:87:31:5c:14:5d:17:21:49:d9:85:8a:1c:b5:98: 7f:b7:4d:32:13:67:fd:06:7b:9d:f3:04:f0:f2:bf:dc:4d:e6: 58:8f:9a:20:78:54:d0:31:b2:c9:b1:a7:38:15:3a:d5:60:03: f9:99:0e:0b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcq4viqvJav6hkH7FSwVfGZSuuAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTJaFw0yNDExMDMwNDA3MTJaMDMxMTAvBgNV BAMTKDg2NjFBOTQ1RDk2NkUzNTQzRTkxQTQ2OUI1RDE5QTAwRDdDODQ2MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6NqfA4ByQpo6CsJ2f3dohuKfS Yia5FtjGW0oRt/UkfvmTXJDJxyEALmL0etR5rrt6Dv9Om38zn7rl6LMe+O0zWN7K yJ+XFzA2ZmACUKkO6RgPQ4F941IA+P035mCuNZJpMkDCWInB/Dk1eU3Q/s6jgjA/ zLeN0wBdcN8OBdhiwL6z7F/2rBOxkD8lhdRzU9VOu2mBYESDcx9PqAGPSe4ePrDs xfN123C72SHY2ooUfZKxY7VaFYtV7lRypHelB4/FvlmFvYimMfXR2Y1ezvgI1Odq cH6pdB4YDA6TnddX4pJOD9kf7RJJMCr57P/qPv9T97huPKI+NBfjukQbbhTBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhmGpRdlm41Q+kaRptdGaANfIRhowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA1ODQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPUwDQYJKoZIhvcNAQELBQADggEBAF6o hii5XF5/5iXASkz7f9jiYchaUjEx0mLzhks3ZzbpUgz7S8XtTHYKHlvCmJOCLW2+ g7XiVZ1bLGb9x8SuK26npv/F11jEg5FpJlICwBKm4rYiqkY7ynzL7QSK9/xXdsbe SS+TuxFdWxUYS6Hl8hSbBkC3GGssx2UcpCdKIhX3/r94FH9rSRE8IXX8rXAwQOp4 uo3zjl+qcXB6bUZdxh3KShah2135BbWGicoTepNsqNDhQKUE8TJvnmGf6GDzU3B3 gLL5XwICexSHMVwUXRchSdmFihy1mH+3TTITZ/0Ge53zBPDyv9xN5liPmiB4VNAx ssmxpzgVOtVgA/mZDgs= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org