$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205987.roa File: AS205987.roa (raw, json) Hash identifier: uef/xgg8weQcEGu5XA+0yHJvQsqlZDoQUt334/zfets= Subject key identifier: 1D:1A:D6:C0:22:31:68:0A:F4:74:ED:38:E2:4B:00:CC:24:D9:31:80 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 02C15A926A12013C913A439FF4EC432ABA84359A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205987.roa Signing time: Sun 06 Oct 2024 04:45:13 +0000 ROA not before: Sun 06 Oct 2024 04:40:13 +0000 ROA not after: Sun 05 Oct 2025 04:45:13 +0000 asID: 205987 IP address blocks: 2a0a:6040:de00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c1:5a:92:6a:12:01:3c:91:3a:43:9f:f4:ec:43:2a:ba:84:35:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:13 2024 GMT Not After : Oct 5 04:45:13 2025 GMT Subject: CN=1D1AD6C02231680AF474ED38E24B00CC24D93180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ed:00:44:07:71:49:73:ec:17:44:7d:2b:a8: 3b:44:52:42:d0:4e:ce:70:d2:31:c7:ad:22:b3:cd: 21:ee:8c:6e:67:b2:d4:bd:65:06:2b:46:49:6e:72: 5e:5e:e8:53:69:1d:87:83:93:f7:f0:6c:9e:3e:56: 19:44:23:04:7b:d3:45:a7:56:d7:41:8c:c0:a0:f4: 3a:fe:e2:fc:81:0c:92:5e:ad:f5:53:42:25:3d:2f: dd:13:05:7a:01:d6:22:f5:76:aa:5e:78:60:e9:4b: 52:bc:23:de:7d:3e:7c:51:18:ca:4c:d4:ad:26:9b: 76:72:a2:50:3f:e2:8d:48:c2:67:44:85:64:e6:ee: ec:b5:56:33:0c:d6:4e:cd:1a:38:e9:b4:22:17:cc: 96:cc:a1:e9:21:31:c4:c6:d8:b1:0b:e7:a1:f1:de: 9a:aa:56:ae:a6:d0:1e:b4:bf:c5:17:e7:d3:6d:94: d7:b3:83:58:d5:1d:a8:57:0b:8c:d7:15:5e:ec:36: cb:1b:71:fd:77:ec:e3:3c:73:e6:a5:82:a4:e9:a4: e8:53:af:cd:44:70:fc:7b:24:b3:db:d1:9e:4a:6e: e6:74:d5:b3:aa:56:c0:c0:69:f1:ba:b4:00:ed:a7: ca:ef:46:d0:06:55:0f:ce:2e:6f:1a:d8:2e:fa:9d: 59:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1A:D6:C0:22:31:68:0A:F4:74:ED:38:E2:4B:00:CC:24:D9:31:80 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS205987.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:de00::/40 Signature Algorithm: sha256WithRSAEncryption 13:9b:bf:3b:2e:36:96:21:0a:14:ad:9a:fa:70:69:15:f1:75: 42:68:75:aa:a2:34:c3:08:46:7f:0b:a3:f0:af:bb:fd:af:8b: 05:b5:56:73:c8:08:6f:1f:d0:5a:dc:21:da:06:8e:5c:9b:dd: 46:bb:7c:de:5f:0b:81:cc:d7:61:0d:c8:36:e6:c5:38:ac:eb: 67:3a:4c:2e:31:d4:2a:02:d4:b4:0a:80:09:3c:e4:53:6c:1a: 5e:df:e0:bf:9f:63:eb:6f:88:27:6e:ce:2b:b5:ed:64:50:e2: d9:c2:bb:97:de:5b:06:27:d7:24:51:da:ab:4e:ae:ac:6f:ea: c5:be:c0:31:8c:c4:90:7f:02:d1:08:aa:c8:80:57:5d:c6:88: 1b:31:d1:9b:26:88:16:db:7a:ad:9d:ec:6b:eb:8b:e5:da:6d: e0:63:27:f7:06:d5:c9:3d:32:4e:27:a3:4a:9a:8a:3f:2a:db: 5e:05:84:d7:d7:47:37:3b:33:21:a2:0e:34:9a:c9:3c:09:21: 7e:61:97:d5:e1:3e:2f:a9:e4:cf:f4:fe:a8:d2:c8:0d:07:a4: b7:84:17:b5:2a:9a:5b:6c:90:89:73:6b:62:54:82:48:90:67: aa:45:ba:6a:ce:99:19:e6:27:3d:37:07:0e:02:a7:40:2a:3c: 8d:c7:d4:06 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAsFakmoSATyROkOf9OxDKrqENZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTNaFw0yNTEwMDUwNDQ1MTNaMDMxMTAvBgNV BAMTKDFEMUFENkMwMjIzMTY4MEFGNDc0RUQzOEUyNEIwMENDMjREOTMxODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo7QBEB3FJc+wXRH0rqDtEUkLQ Ts5w0jHHrSKzzSHujG5nstS9ZQYrRklucl5e6FNpHYeDk/fwbJ4+VhlEIwR700Wn VtdBjMCg9Dr+4vyBDJJerfVTQiU9L90TBXoB1iL1dqpeeGDpS1K8I959PnxRGMpM 1K0mm3ZyolA/4o1IwmdEhWTm7uy1VjMM1k7NGjjptCIXzJbMoekhMcTG2LEL56Hx 3pqqVq6m0B60v8UX59NtlNezg1jVHahXC4zXFV7sNssbcf137OM8c+algqTppOhT r81EcPx7JLPb0Z5KbuZ01bOqVsDAafG6tADtp8rvRtAGVQ/OLm8a2C76nVlJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUHRrWwCIxaAr0dO044ksAzCTZMYAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA1OTg3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQN4wDQYJKoZIhvcNAQELBQADggEBABOb vzsuNpYhChStmvpwaRXxdUJodaqiNMMIRn8Lo/Cvu/2viwW1VnPICG8f0FrcIdoG jlyb3Ua7fN5fC4HM12ENyDbmxTis62c6TC4x1CoC1LQKgAk85FNsGl7f4L+fY+tv iCduziu17WRQ4tnCu5feWwYn1yRR2qtOrqxv6sW+wDGMxJB/AtEIqsiAV13GiBsx 0ZsmiBbbeq2d7Gvri+XabeBjJ/cG1ck9Mk4no0qaij8q214FhNfXRzc7MyGiDjSa yTwJIX5hl9XhPi+p5M/0/qjSyA0HpLeEF7UqmltskIlza2JUgkiQZ6pFumrOmRnm Jz03Bw4Cp0AqPI3H1AY= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org