$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206439.roa File: AS206439.roa (raw, json) Hash identifier: grjBFwQKlSaKWXdCDQefDoCIMnFfyY7zgvedOuXTQbE= Subject key identifier: 21:54:DC:2D:4E:66:F4:99:0E:D6:81:4D:8E:8B:ED:E3:8F:44:7A:B9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1FECE1A37DCA830876A85873B4EC17728AFA3310 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206439.roa Signing time: Sun 05 Nov 2023 04:07:17 +0000 ROA not before: Sun 05 Nov 2023 04:02:17 +0000 ROA not after: Sun 03 Nov 2024 04:07:17 +0000 asID: 206439 IP address blocks: 2a0a:6040:3900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ec:e1:a3:7d:ca:83:08:76:a8:58:73:b4:ec:17:72:8a:fa:33:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:17 2023 GMT Not After : Nov 3 04:07:17 2024 GMT Subject: CN=2154DC2D4E66F4990ED6814D8E8BEDE38F447AB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b8:38:6c:b8:1a:07:65:08:1b:c0:5b:a8:b6: d2:5d:92:0d:78:77:e2:1d:fb:de:8d:28:13:19:72: d6:65:62:68:08:c6:5f:f1:0d:e8:c2:2c:54:f8:f0: 1a:54:33:fb:64:80:b2:f5:e5:00:9b:b3:97:cc:55: d3:c1:ff:3a:45:58:2c:0c:02:cb:a5:26:80:b7:ac: 4d:69:20:cf:d2:96:ad:ed:cd:25:0f:b9:9b:80:70: 77:33:ed:f5:51:69:c4:88:8c:09:18:4b:1f:6b:9c: 31:4c:45:0b:4f:c6:ed:2c:39:e6:40:c0:1b:6c:b9: f2:64:d2:16:70:7b:0c:6a:0a:b0:4a:f3:d8:ea:86: 70:ea:46:9a:72:7f:d5:c9:de:a3:bd:ae:eb:39:7d: a4:4e:b3:85:ec:c2:a8:b8:dc:15:35:d2:54:0f:0b: ef:c1:04:e3:1a:77:8d:0a:b9:ca:35:ef:91:1d:d6: 23:41:8b:90:fd:ac:f4:5a:ab:2b:6f:d7:12:4a:c2: 2e:93:d6:c0:ad:c4:b1:27:de:e8:ac:82:1c:b5:a9: bf:01:05:38:d4:85:06:f2:86:8b:84:2c:0a:d6:e1: 54:d3:5d:8a:a9:44:75:8a:9d:3e:ac:71:1e:6f:6f: c3:8e:fc:2d:2f:5e:0f:81:89:f8:b5:1b:1f:5d:6e: 10:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:54:DC:2D:4E:66:F4:99:0E:D6:81:4D:8E:8B:ED:E3:8F:44:7A:B9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3900::/40 Signature Algorithm: sha256WithRSAEncryption 84:cc:9e:4f:8e:3f:8c:f9:d4:04:a2:bc:87:32:c9:2d:af:49: 03:f6:22:2f:79:6a:72:82:4a:99:83:f0:99:6a:99:56:c0:2f: 67:81:b7:01:fc:a1:76:41:23:41:74:81:91:a0:e3:9c:c8:8a: ef:b9:21:fc:c1:90:63:54:70:58:e5:87:dc:d6:b9:69:b7:e8: c3:02:10:67:78:8a:23:f7:55:9a:81:4c:45:f9:52:5d:11:21: db:0b:20:d5:67:db:68:50:f4:43:89:81:28:00:c6:86:7c:de: 8e:bb:b9:05:d8:e8:e2:eb:de:66:6f:ae:00:70:cf:07:c8:43: 2e:f3:15:3e:96:51:0e:ba:0d:f6:99:b7:63:d1:f9:ea:97:9a: 8a:5e:6b:42:df:5f:ac:15:a0:c0:99:26:41:25:38:55:3c:20: dc:8f:94:c2:48:e6:7c:ee:ee:d8:79:72:10:37:0d:00:eb:b9: c1:ed:3e:de:ef:e9:3c:3d:d0:ba:11:b2:08:e3:11:af:73:1a: 1c:e9:31:25:d8:bb:76:f9:65:c1:fe:6d:55:a1:78:ab:d3:81: 07:27:7a:86:48:bf:47:84:f3:5e:50:fb:61:2d:1b:69:ee:3e: fb:8b:98:72:29:d9:59:c6:8f:f1:8b:dc:bb:1f:0b:36:ba:f2: d8:cf:f6:b6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUH+zho33Kgwh2qFhztOwXcor6MxAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTdaFw0yNDExMDMwNDA3MTdaMDMxMTAvBgNV BAMTKDIxNTREQzJENEU2NkY0OTkwRUQ2ODE0RDhFOEJFREUzOEY0NDdBQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbuDhsuBoHZQgbwFuottJdkg14 d+Id+96NKBMZctZlYmgIxl/xDejCLFT48BpUM/tkgLL15QCbs5fMVdPB/zpFWCwM AsulJoC3rE1pIM/Slq3tzSUPuZuAcHcz7fVRacSIjAkYSx9rnDFMRQtPxu0sOeZA wBtsufJk0hZwewxqCrBK89jqhnDqRppyf9XJ3qO9rus5faROs4Xswqi43BU10lQP C+/BBOMad40Kuco175Ed1iNBi5D9rPRaqytv1xJKwi6T1sCtxLEn3uisghy1qb8B BTjUhQbyhouELArW4VTTXYqpRHWKnT6scR5vb8OO/C0vXg+Bifi1Gx9dbhAFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIVTcLU5m9JkO1oFNjovt449EerkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA2NDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDkwDQYJKoZIhvcNAQELBQADggEBAITM nk+OP4z51ASivIcyyS2vSQP2Ii95anKCSpmD8JlqmVbAL2eBtwH8oXZBI0F0gZGg 45zIiu+5IfzBkGNUcFjlh9zWuWm36MMCEGd4iiP3VZqBTEX5Ul0RIdsLINVn22hQ 9EOJgSgAxoZ83o67uQXY6OLr3mZvrgBwzwfIQy7zFT6WUQ66DfaZt2PR+eqXmope a0LfX6wVoMCZJkElOFU8INyPlMJI5nzu7th5chA3DQDrucHtPt7v6Tw90LoRsgjj Ea9zGhzpMSXYu3b5ZcH+bVWheKvTgQcneoZIv0eE815Q+2EtG2nuPvuLmHIp2VnG j/GL3LsfCza68tjP9rY= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org