$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205987.roa File: AS205987.roa (raw, json) Hash identifier: Y0xOQqjpzHvwt6FE4k8/qEm0GuRyPJAy7NJhTS+xbGg= Subject key identifier: E8:45:28:6C:B9:AE:EB:38:E2:A4:74:02:73:E7:2E:75:4D:A5:B0:D4 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4A2C5EEAB04498E0E75B789C6DB3744C8E8A6AB2 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205987.roa Signing time: Sun 05 Nov 2023 04:07:15 +0000 ROA not before: Sun 05 Nov 2023 04:02:15 +0000 ROA not after: Sun 03 Nov 2024 04:07:15 +0000 asID: 205987 IP address blocks: 2a0a:6040:de00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:2c:5e:ea:b0:44:98:e0:e7:5b:78:9c:6d:b3:74:4c:8e:8a:6a:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:15 2023 GMT Not After : Nov 3 04:07:15 2024 GMT Subject: CN=E845286CB9AEEB38E2A4740273E72E754DA5B0D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a8:e5:a9:fe:bc:b9:d7:7a:7d:ed:ef:24:6b: 2f:61:a2:8e:ff:83:dd:10:a4:ce:61:8a:ef:fa:c6: b2:5e:6e:e8:80:3f:8b:5e:07:ff:bc:6b:60:79:15: 1f:e3:12:04:96:2c:99:15:26:16:7e:98:68:52:31: 47:ab:29:f7:42:c5:b5:22:85:da:cf:17:da:74:4d: 4b:c5:74:28:30:d3:8d:69:7e:58:53:12:4e:4a:79: 94:7b:e7:45:8f:d9:c6:b4:3c:07:98:7c:9f:ca:37: 6b:16:f6:de:60:82:83:df:d1:c1:80:f8:ba:64:00: 02:1b:27:0d:2a:df:57:5b:ff:2f:df:9d:b2:8f:3d: 28:e9:73:63:c8:4a:62:82:90:ea:83:b7:ae:dd:1b: f2:4f:5b:55:28:61:2d:c6:c1:c6:2d:03:00:f9:f5: e6:c0:17:d2:6d:f0:0d:a9:ee:85:0c:29:6d:f8:89: 67:1b:a8:57:59:61:6a:72:0e:0b:59:39:da:05:32: 7e:3f:11:27:55:f6:96:18:73:83:22:93:1c:f0:10: 08:07:af:52:2b:c9:c0:71:87:fd:0d:28:6c:f0:6b: 0e:db:68:08:49:de:5f:f3:92:cd:f6:81:33:04:c7: 9d:18:94:c7:c3:76:01:0c:d9:3f:bb:fe:f3:af:69: b6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:45:28:6C:B9:AE:EB:38:E2:A4:74:02:73:E7:2E:75:4D:A5:B0:D4 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205987.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:de00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:a4:5c:73:d6:07:21:c7:b9:9b:83:76:fa:1d:21:34:89:f1: 8c:af:37:14:b8:da:be:c3:e9:c3:56:65:15:ae:40:5b:5e:78: cf:a1:9d:22:b3:f1:5f:ce:e6:99:24:5b:65:16:e0:02:4b:d8: ca:71:be:92:22:76:ea:fd:81:54:a4:a8:b8:98:6a:30:c2:4e: 96:48:39:95:37:00:de:1a:b0:51:a2:c7:05:72:1e:70:7c:7b: 56:60:2a:7c:7c:dc:d6:c8:bd:86:7b:6a:12:70:15:76:cc:0e: 1c:68:22:fc:cb:9d:da:24:85:ab:ff:bb:ff:6a:a5:f9:d4:d3: 4c:84:22:56:c5:5a:66:d7:4b:bd:84:a1:42:cd:ed:c0:0b:69: 0c:31:ac:0a:76:9c:b2:f2:a4:4e:98:99:cc:77:b4:fe:9a:35: 6c:2a:f2:a0:84:2c:40:76:1f:10:b1:69:57:1f:03:5e:80:e5: 0c:bc:a7:b7:b8:bb:5a:3b:0e:21:50:3a:63:d2:c7:35:28:bb: a2:2b:fa:1b:76:0d:f8:0a:a4:d8:13:3c:22:e1:e6:bc:58:02: e1:55:a9:c6:ad:1e:40:77:a3:f8:ef:39:7f:47:6d:75:fe:ca: a8:ba:27:08:9a:c2:69:14:d9:eb:a6:bc:77:d4:72:69:3b:4b: 5a:7b:c9:71 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSixe6rBEmODnW3icbbN0TI6KarIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTVaFw0yNDExMDMwNDA3MTVaMDMxMTAvBgNV BAMTKEU4NDUyODZDQjlBRUVCMzhFMkE0NzQwMjczRTcyRTc1NERBNUIwRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjqOWp/ry513p97e8kay9hoo7/ g90QpM5hiu/6xrJebuiAP4teB/+8a2B5FR/jEgSWLJkVJhZ+mGhSMUerKfdCxbUi hdrPF9p0TUvFdCgw041pflhTEk5KeZR750WP2ca0PAeYfJ/KN2sW9t5ggoPf0cGA +LpkAAIbJw0q31db/y/fnbKPPSjpc2PISmKCkOqDt67dG/JPW1UoYS3GwcYtAwD5 9ebAF9Jt8A2p7oUMKW34iWcbqFdZYWpyDgtZOdoFMn4/ESdV9pYYc4MikxzwEAgH r1IrycBxh/0NKGzwaw7baAhJ3l/zks32gTMEx50YlMfDdgEM2T+7/vOvaba/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU6EUobLmu6zjipHQCc+cudU2lsNQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA1OTg3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQN4wDQYJKoZIhvcNAQELBQADggEBAJ6k XHPWByHHuZuDdvodITSJ8YyvNxS42r7D6cNWZRWuQFteeM+hnSKz8V/O5pkkW2UW 4AJL2MpxvpIidur9gVSkqLiYajDCTpZIOZU3AN4asFGixwVyHnB8e1ZgKnx83NbI vYZ7ahJwFXbMDhxoIvzLndokhav/u/9qpfnU00yEIlbFWmbXS72EoULN7cALaQwx rAp2nLLypE6Ymcx3tP6aNWwq8qCELEB2HxCxaVcfA16A5Qy8p7e4u1o7DiFQOmPS xzUou6Ir+ht2DfgKpNgTPCLh5rxYAuFVqcatHkB3o/jvOX9HbXX+yqi6JwiawmkU 2eumvHfUcmk7S1p7yXE= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org