$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205848.roa File: AS205848.roa (raw, json) Hash identifier: kcFiIIcPdJSFCIUPLfK29CNP2BID5OXNnDTnJ7ObGHI= Subject key identifier: 4C:2E:36:8A:C2:9D:C0:BA:1A:12:4E:09:91:75:37:7E:AB:39:C9:86 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4B577F8BCDFAD30A699F6CA172A72240703404CC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205848.roa Signing time: Sun 06 Oct 2024 04:45:14 +0000 ROA not before: Sun 06 Oct 2024 04:40:14 +0000 ROA not after: Sun 05 Oct 2025 04:45:14 +0000 asID: 205848 IP address blocks: 2a0a:6040:f500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Nov 2024 15:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:57:7f:8b:cd:fa:d3:0a:69:9f:6c:a1:72:a7:22:40:70:34:04:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:14 2024 GMT Not After : Oct 5 04:45:14 2025 GMT Subject: CN=4C2E368AC29DC0BA1A124E099175377EAB39C986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ef:ce:cd:b6:37:7e:ee:d5:eb:4b:17:3f:6d: bd:84:01:fc:a8:69:46:67:4e:57:d0:eb:9a:0e:02: f5:ed:38:a0:3f:f3:60:ed:21:5c:29:5c:75:61:3b: 15:15:6c:66:9c:59:9b:4d:e3:77:8e:0f:b9:9f:1b: 93:58:8f:c7:ec:ee:88:05:4c:7a:25:b1:7d:2f:4c: f2:95:52:8b:de:33:06:f7:d3:48:77:5e:f9:1b:af: c4:fb:cf:6c:7f:dc:99:44:79:af:83:cf:7b:36:59: 76:45:d5:e9:74:bf:f4:44:ba:63:41:bd:df:c0:77: 0f:c6:f5:a0:93:fa:12:a6:4b:e0:6e:0a:ac:e1:9e: f1:a4:49:8d:16:00:a5:96:ef:10:3a:b8:44:fe:b9: 8f:e4:70:1e:bd:0e:eb:8d:4a:f4:bd:ef:2c:cd:fe: 67:8b:c4:7d:da:d9:35:8e:49:36:02:0e:02:c9:0e: ec:24:16:a1:33:8e:60:29:6f:c6:0d:dc:92:39:81: d2:f2:b9:42:af:4f:8f:94:22:c8:b2:0a:d2:63:0f: a5:a3:dd:d9:8a:61:6b:65:66:2b:85:44:df:b5:8e: d5:c0:f0:7c:46:7e:b1:02:1e:49:97:c4:16:e9:83: 7a:1f:31:d3:62:ae:6f:eb:0d:c0:a8:93:e6:ab:d6: b6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:2E:36:8A:C2:9D:C0:BA:1A:12:4E:09:91:75:37:7E:AB:39:C9:86 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205848.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f500::/40 Signature Algorithm: sha256WithRSAEncryption a0:6a:c4:f4:41:c4:12:38:9f:68:e4:32:89:fe:46:b4:0e:fe: 7c:35:72:54:61:fa:85:47:d3:0b:02:3b:74:f7:af:b4:4c:5d: b3:b2:2e:9c:e1:f6:52:db:57:dd:2a:dc:00:3f:dd:34:e0:66: 65:09:7a:9c:b6:ea:65:26:f1:34:ff:2d:8d:89:95:23:b7:0f: b2:68:b6:b2:56:b1:e0:3e:d3:6c:76:54:5c:35:70:29:02:d8: 0f:9d:6d:25:b9:9a:dc:89:08:06:44:06:4d:96:d4:49:4f:21: 41:57:6f:94:b0:fa:76:f0:98:f6:a1:22:37:8c:42:43:91:6c: 94:57:cb:46:00:4a:e1:a3:86:cd:7f:57:1f:42:8e:4b:d5:85: cf:4a:24:db:e4:f3:ad:14:a3:1f:9c:f5:d7:39:40:e7:7e:f7: 3b:e8:d1:b4:79:58:b5:2f:dd:7c:80:ad:98:d4:12:29:19:57: b8:21:4f:bb:df:47:16:88:a0:b2:ca:0e:e9:54:01:5d:a1:0d: 58:56:1c:c0:50:be:88:7f:03:19:a6:5b:86:09:d0:3c:00:44: 1e:f4:df:0b:7c:c5:5c:d2:7c:65:6b:b1:c0:96:4e:5b:56:9b: 4d:ad:de:f5:e0:2d:17:14:1e:15:42:77:12:aa:97:33:73:91: 87:a9:57:d7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUS1d/i8360wppn2yhcqciQHA0BMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTRaFw0yNTEwMDUwNDQ1MTRaMDMxMTAvBgNV BAMTKDRDMkUzNjhBQzI5REMwQkExQTEyNEUwOTkxNzUzNzdFQUIzOUM5ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR787Ntjd+7tXrSxc/bb2EAfyo aUZnTlfQ65oOAvXtOKA/82DtIVwpXHVhOxUVbGacWZtN43eOD7mfG5NYj8fs7ogF THolsX0vTPKVUoveMwb300h3Xvkbr8T7z2x/3JlEea+Dz3s2WXZF1el0v/REumNB vd/Adw/G9aCT+hKmS+BuCqzhnvGkSY0WAKWW7xA6uET+uY/kcB69DuuNSvS97yzN /meLxH3a2TWOSTYCDgLJDuwkFqEzjmApb8YN3JI5gdLyuUKvT4+UIsiyCtJjD6Wj 3dmKYWtlZiuFRN+1jtXA8HxGfrECHkmXxBbpg3ofMdNirm/rDcCok+ar1rYxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTC42isKdwLoaEk4JkXU3fqs5yYYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA1ODQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPUwDQYJKoZIhvcNAQELBQADggEBAKBq xPRBxBI4n2jkMon+RrQO/nw1clRh+oVH0wsCO3T3r7RMXbOyLpzh9lLbV90q3AA/ 3TTgZmUJepy26mUm8TT/LY2JlSO3D7JotrJWseA+02x2VFw1cCkC2A+dbSW5mtyJ CAZEBk2W1ElPIUFXb5Sw+nbwmPahIjeMQkORbJRXy0YASuGjhs1/Vx9CjkvVhc9K JNvk860Uox+c9dc5QOd+9zvo0bR5WLUv3XyArZjUEikZV7ghT7vfRxaIoLLKDulU AV2hDVhWHMBQvoh/AxmmW4YJ0DwARB703wt8xVzSfGVrscCWTltWm02t3vXgLRcU HhVCdxKqlzNzkYepV9c= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:00 2024 by rpki-client on console-ams.rpki-client.org