$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206439.roa File: AS206439.roa (raw, json) Hash identifier: tBZCzliq7CvB+Ee7Ydrd+lzTbsFCfvAaTHjh67V/usk= Subject key identifier: 1A:58:B6:9B:2F:7C:0A:79:0B:AA:25:27:45:22:C9:AC:4A:4F:4C:D6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6FB52E5FBBAB5C260A2D986445797296A84AEDC5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206439.roa Signing time: Sun 06 Oct 2024 04:45:02 +0000 ROA not before: Sun 06 Oct 2024 04:40:02 +0000 ROA not after: Sun 05 Oct 2025 04:45:02 +0000 asID: 206439 IP address blocks: 2a0a:6040:3900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b5:2e:5f:bb:ab:5c:26:0a:2d:98:64:45:79:72:96:a8:4a:ed:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:02 2024 GMT Not After : Oct 5 04:45:02 2025 GMT Subject: CN=1A58B69B2F7C0A790BAA25274522C9AC4A4F4CD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1e:7e:68:e3:42:96:d4:bd:74:be:8a:75:96: 9b:62:34:35:b3:a5:56:ae:f7:cc:b1:a8:89:e4:f6: 88:c7:cc:8a:c7:c8:88:20:cb:8a:1e:52:5d:db:17: 26:03:c6:e5:9d:f7:4d:f4:0e:6e:a2:bd:5c:7a:1e: 1e:32:e0:06:22:d0:ae:2e:be:3c:b5:bc:39:f4:a9: 41:7e:1d:1e:70:a3:f8:18:72:61:a7:92:20:ca:1d: 33:8b:b5:9b:35:91:fc:d8:54:61:1a:5c:e6:a9:78: 38:b7:4b:04:9b:f2:a7:25:12:37:13:7a:17:dc:29: 55:b4:bb:ef:5a:10:df:79:db:02:c2:35:27:fd:2b: 89:eb:f7:3f:d7:7a:28:21:9c:3e:4b:05:2a:4d:0e: b7:55:a1:a5:0c:e4:37:b6:f7:eb:07:a9:7e:be:e4: 63:54:fa:30:6f:20:bd:28:9a:e9:33:77:22:c5:d7: 07:6d:07:cc:3d:1b:45:0f:51:0e:35:fb:c7:b4:9f: cb:af:8e:00:6f:ee:39:fa:23:aa:13:19:61:01:e2: 26:53:81:aa:28:f7:48:37:01:ba:9f:9b:61:95:69: f5:30:a8:65:eb:f6:52:0e:0f:22:dd:7b:49:ee:ae: d6:30:ea:24:60:52:8e:1d:1b:cc:de:19:9d:ac:92: c2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:58:B6:9B:2F:7C:0A:79:0B:AA:25:27:45:22:C9:AC:4A:4F:4C:D6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3900::/40 Signature Algorithm: sha256WithRSAEncryption ae:1e:df:67:a4:25:4a:e5:2e:2c:24:36:5a:b5:58:0c:43:89: 04:9a:0b:53:13:33:52:a3:f1:d6:60:8a:95:00:e1:1f:d5:fd: ea:15:66:b5:a1:f3:c5:88:18:db:ba:8d:df:a1:a2:69:bc:52: 20:f2:e4:a3:6b:dd:11:33:81:7c:ee:39:e9:fa:96:01:43:2f: fa:44:58:4e:62:5c:64:43:1b:b1:f7:d8:9b:37:f5:71:82:77: 50:6f:d1:93:43:27:c9:f2:db:04:f1:23:f9:99:e8:cb:0e:40: 19:92:8f:c6:16:33:f8:e8:ff:17:d1:d6:1e:fc:2b:50:a8:44: 66:80:50:f9:ff:57:c4:92:4e:0f:3f:ab:9d:f4:77:53:59:b5: 75:6d:e4:be:66:29:6f:0c:76:6e:1f:1f:1d:14:c9:14:27:4b: 23:0c:c7:2b:03:38:6d:f0:a4:4e:34:11:31:a9:e1:28:b3:b0: 2a:49:1c:9e:d9:f7:ae:25:19:27:4f:82:2c:d8:c7:da:8f:1e: 58:0f:0c:ac:d3:8c:77:05:15:38:9f:bc:51:e2:92:7d:d9:1a: 29:49:fb:9f:e2:37:31:fc:8b:0e:90:58:69:c8:41:07:10:dd: 88:94:0c:3d:3b:bd:6f:be:1f:62:55:c5:9f:0e:8b:fc:09:89: 57:fb:0a:1f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUb7UuX7urXCYKLZhkRXlylqhK7cUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDJaFw0yNTEwMDUwNDQ1MDJaMDMxMTAvBgNV BAMTKDFBNThCNjlCMkY3QzBBNzkwQkFBMjUyNzQ1MjJDOUFDNEE0RjRDRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCHn5o40KW1L10vop1lptiNDWz pVau98yxqInk9ojHzIrHyIggy4oeUl3bFyYDxuWd9030Dm6ivVx6Hh4y4AYi0K4u vjy1vDn0qUF+HR5wo/gYcmGnkiDKHTOLtZs1kfzYVGEaXOapeDi3SwSb8qclEjcT ehfcKVW0u+9aEN952wLCNSf9K4nr9z/XeighnD5LBSpNDrdVoaUM5De29+sHqX6+ 5GNU+jBvIL0omukzdyLF1wdtB8w9G0UPUQ41+8e0n8uvjgBv7jn6I6oTGWEB4iZT gaoo90g3Abqfm2GVafUwqGXr9lIODyLde0nurtYw6iRgUo4dG8zeGZ2sksItAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUGli2my98CnkLqiUnRSLJrEpPTNYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA2NDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDkwDQYJKoZIhvcNAQELBQADggEBAK4e 32ekJUrlLiwkNlq1WAxDiQSaC1MTM1Kj8dZgipUA4R/V/eoVZrWh88WIGNu6jd+h omm8UiDy5KNr3REzgXzuOen6lgFDL/pEWE5iXGRDG7H32Js39XGCd1Bv0ZNDJ8ny 2wTxI/mZ6MsOQBmSj8YWM/jo/xfR1h78K1CoRGaAUPn/V8SSTg8/q530d1NZtXVt 5L5mKW8Mdm4fHx0UyRQnSyMMxysDOG3wpE40ETGp4SizsCpJHJ7Z964lGSdPgizY x9qPHlgPDKzTjHcFFTifvFHikn3ZGilJ+5/iNzH8iw6QWGnIQQcQ3YiUDD07vW++ H2JVxZ8Oi/wJiVf7Ch8= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org