$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206919.roa File: AS206919.roa (raw, json) Hash identifier: HWYfQ+xq5xKideSSDS2EUtRmqSPT2ue2YoF2dSZfMaY= Subject key identifier: B0:AE:2C:57:64:0A:A4:4D:40:E5:E2:98:B1:8A:58:47:4E:2A:30:91 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7C1FCBDA1ADFD839698EEAED27BAC7EB19C5179E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206919.roa Signing time: Tue 12 Mar 2024 13:58:19 +0000 ROA not before: Tue 12 Mar 2024 13:53:19 +0000 ROA not after: Tue 11 Mar 2025 13:58:19 +0000 asID: 206919 IP address blocks: 2a05:dfc1:1600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:1f:cb:da:1a:df:d8:39:69:8e:ea:ed:27:ba:c7:eb:19:c5:17:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 12 13:53:19 2024 GMT Not After : Mar 11 13:58:19 2025 GMT Subject: CN=B0AE2C57640AA44D40E5E298B18A58474E2A3091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:88:6a:a0:77:7a:ff:83:bc:cc:91:ec:e4:4a: ec:a2:87:fb:71:6c:2a:0f:36:95:47:c4:47:1f:85: 1b:12:e4:94:b1:d5:94:66:36:58:61:68:7f:0b:13: 26:2d:67:e5:8a:f5:c9:de:31:91:35:d7:7c:e2:b6: b2:6e:f7:77:e7:55:05:6c:53:0f:96:1f:cd:bf:de: 32:f6:12:6c:26:ea:05:d2:8f:a3:52:30:47:3d:79: 2e:2a:bd:73:1a:35:b1:20:21:4f:2d:49:c6:3f:ce: 62:ec:f9:72:f2:c9:62:81:b1:23:39:e8:4d:fc:71: b2:a6:43:fa:60:4c:ec:51:a0:2b:76:bc:af:23:4b: 64:ce:0d:12:c7:19:ba:2f:a3:90:a0:50:15:9b:4d: be:ce:ee:2a:d2:2f:62:2f:eb:71:4a:c7:e6:fd:22: 2d:30:be:b9:9d:84:f0:fa:19:d2:db:5c:f6:3c:20: 44:82:eb:57:49:bf:f6:93:fb:ae:23:60:c9:ab:75: 69:b3:f7:c5:a0:af:9f:97:dc:29:10:74:c7:ef:12: 12:e6:e2:50:6b:50:ce:a4:9a:ee:00:24:bd:e8:08: d8:ce:ad:fe:a3:af:0e:ff:54:9d:c8:aa:e8:84:54: 8c:08:31:af:92:10:44:93:0a:ad:d5:b5:19:96:e2: af:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:AE:2C:57:64:0A:A4:4D:40:E5:E2:98:B1:8A:58:47:4E:2A:30:91 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206919.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1600::/40 Signature Algorithm: sha256WithRSAEncryption a8:b7:26:e2:df:f4:d5:b3:d6:e9:9e:f9:33:af:4b:9a:50:62: 6b:50:38:2d:4c:d4:14:e6:c1:6d:33:62:3c:e3:05:b4:6f:40: 0d:c0:69:9a:cd:25:e1:b7:40:36:93:51:67:fc:58:96:0d:92: a5:90:82:e6:fb:97:4d:75:7c:26:ff:3d:c0:f1:d6:46:ad:e6: f3:98:9a:6a:75:95:d9:87:87:01:47:38:74:2d:fc:46:88:81: 0d:38:09:45:1d:d3:78:92:05:ea:10:8f:2d:28:94:50:74:ba: 8a:f6:2a:36:4a:45:08:19:bc:45:f0:98:d0:95:88:94:c1:74: 07:d2:47:cd:bb:6a:9e:83:10:ec:ce:3a:00:01:24:34:0b:2d: 1c:33:6f:c0:85:96:57:08:4b:a7:c8:e8:67:f3:73:fb:86:10: c0:a3:b8:35:42:e4:e6:d2:83:2f:84:cf:ed:65:85:70:96:b8: ad:b7:76:66:3e:70:b2:63:93:7b:2d:60:c0:5e:a0:f6:7a:c2: c4:0c:44:84:e3:83:c1:aa:f6:fe:e1:52:47:4a:9d:34:c6:03: cc:87:9c:24:f6:51:8f:a6:a5:b1:cb:76:e5:cc:f4:fe:18:e9: a0:42:f5:3e:ef:b8:8b:3e:08:7e:c5:c5:02:d6:16:e8:a6:95: 86:e4:c8:60 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUfB/L2hrf2DlpjurtJ7rH6xnFF54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMTIxMzUzMTlaFw0yNTAzMTExMzU4MTlaMDMxMTAvBgNV BAMTKEIwQUUyQzU3NjQwQUE0NEQ0MEU1RTI5OEIxOEE1ODQ3NEUyQTMwOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHiGqgd3r/g7zMkezkSuyih/tx bCoPNpVHxEcfhRsS5JSx1ZRmNlhhaH8LEyYtZ+WK9cneMZE113zitrJu93fnVQVs Uw+WH82/3jL2Emwm6gXSj6NSMEc9eS4qvXMaNbEgIU8tScY/zmLs+XLyyWKBsSM5 6E38cbKmQ/pgTOxRoCt2vK8jS2TODRLHGbovo5CgUBWbTb7O7irSL2Iv63FKx+b9 Ii0wvrmdhPD6GdLbXPY8IESC61dJv/aT+64jYMmrdWmz98Wgr5+X3CkQdMfvEhLm 4lBrUM6kmu4AJL3oCNjOrf6jrw7/VJ3IquiEVIwIMa+SEESTCq3VtRmW4q+nAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUsK4sV2QKpE1A5eKYsYpYR04qMJEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA2OTE5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRYwDQYJKoZIhvcNAQELBQADggEBAKi3 JuLf9NWz1ume+TOvS5pQYmtQOC1M1BTmwW0zYjzjBbRvQA3AaZrNJeG3QDaTUWf8 WJYNkqWQgub7l011fCb/PcDx1kat5vOYmmp1ldmHhwFHOHQt/EaIgQ04CUUd03iS BeoQjy0olFB0uor2KjZKRQgZvEXwmNCViJTBdAfSR827ap6DEOzOOgABJDQLLRwz b8CFllcIS6fI6Gfzc/uGEMCjuDVC5ObSgy+Ez+1lhXCWuK23dmY+cLJjk3stYMBe oPZ6wsQMRITjg8Gq9v7hUkdKnTTGA8yHnCT2UY+mpbHLduXM9P4Y6aBC9T7vuIs+ CH7FxQLWFuimlYbkyGA= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org