$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206919.roa File: AS206919.roa (raw, json) Hash identifier: 1Ul/p4nZ1vIjeF0FIen5IZmKPt7OJO45ZEzgcKDuE90= Subject key identifier: F1:F4:11:3C:5A:68:F5:8A:62:01:82:92:14:13:34:FC:00:92:C9:77 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0B4767719DAB8E4F03E176FC33BE77CB77E12E68 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206919.roa Signing time: Tue 11 Feb 2025 14:45:51 +0000 ROA not before: Tue 11 Feb 2025 14:40:51 +0000 ROA not after: Tue 10 Feb 2026 14:45:51 +0000 asID: 206919 IP address blocks: 2a05:dfc1:1600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:47:67:71:9d:ab:8e:4f:03:e1:76:fc:33:be:77:cb:77:e1:2e:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 11 14:40:51 2025 GMT Not After : Feb 10 14:45:51 2026 GMT Subject: CN=F1F4113C5A68F58A62018292141334FC0092C977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e1:3c:52:01:b9:49:8b:ab:bb:04:32:41:1e: 9e:7d:3d:ea:a2:93:dd:7e:03:ae:7c:0e:49:7d:1b: 23:19:a0:fa:04:9a:b3:2e:77:1c:2f:7c:d0:fe:44: 88:5b:33:14:f8:d0:58:58:d1:e8:a4:8a:3a:f7:95: f1:4c:c4:e5:9d:36:1d:51:9a:0b:78:c9:f3:14:42: 48:a1:32:3d:fe:13:38:87:62:90:3e:1e:49:f0:3b: 76:40:21:26:e0:de:7f:ab:d3:53:6c:de:99:1e:9c: 68:ca:5e:9f:a2:ef:d3:31:4c:c2:05:17:0a:bd:45: 20:e7:f5:a1:bd:5a:17:92:91:a4:13:f2:7c:00:54: 46:04:de:fe:a8:90:1d:42:f8:d8:da:16:97:2d:eb: 48:9c:d1:ce:51:cd:33:0e:55:15:fb:78:fb:d9:24: b8:5c:70:18:10:1d:1a:a2:00:8b:94:6e:9e:21:39: 93:77:f6:3b:39:18:6a:76:72:6f:10:d2:47:df:88: a6:95:c8:fa:ea:ff:44:f6:e0:a0:28:b0:c9:dd:d6: 99:8d:51:70:3d:b2:6f:73:84:e2:00:f6:dd:cb:6e: aa:a0:9d:5d:8b:fa:ed:33:94:2e:b7:bd:0c:cf:e2: e7:b3:1f:9f:b9:e1:d2:02:39:55:74:ea:5d:e1:00: 25:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F4:11:3C:5A:68:F5:8A:62:01:82:92:14:13:34:FC:00:92:C9:77 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS206919.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1600::/40 Signature Algorithm: sha256WithRSAEncryption 83:c9:02:a6:95:6b:24:da:12:49:ce:34:20:cd:39:1b:9e:2b: 9c:d7:93:4c:16:68:6c:6a:bd:29:16:8a:06:fa:9e:b1:c9:0f: 75:20:d1:67:11:d2:1d:ed:ff:cf:14:7b:21:bc:97:fd:31:46: 00:98:5b:06:eb:b0:86:d1:25:ee:6d:29:41:3d:69:49:df:20: b5:ac:a9:9c:28:fa:be:85:76:55:86:6b:89:76:74:eb:4c:3d: dc:fe:5a:f6:45:aa:8a:42:13:a2:02:1c:f6:15:c6:81:eb:d6: 72:bb:cb:e5:02:a4:19:4c:1d:9d:ca:e8:a7:c0:6e:28:85:56: 86:d9:ef:e2:b9:48:20:e0:cc:ff:10:b4:4d:6c:04:b4:da:41: 7d:ad:30:c5:d3:7b:9b:c4:58:00:89:6c:eb:90:03:99:00:e1: d0:5a:f3:8c:9b:ba:2c:da:ba:86:d1:5d:8d:36:89:5a:2e:cb: 6d:9a:f3:0f:cc:d9:17:69:1e:f7:13:84:6b:1e:53:8c:d9:39: a6:c6:52:39:40:a5:c4:9f:fd:4c:45:64:49:b0:07:fd:c2:db: 37:5a:34:4e:06:cb:5e:37:ee:fc:6c:b2:8a:92:e4:b7:29:57: dc:2d:2d:e3:62:f4:50:05:31:0f:6a:51:32:51:15:7a:8f:c0: 05:d8:4e:b7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUC0dncZ2rjk8D4Xb8M753y3fhLmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAyMTExNDQwNTFaFw0yNjAyMTAxNDQ1NTFaMDMxMTAvBgNV BAMTKEYxRjQxMTNDNUE2OEY1OEE2MjAxODI5MjE0MTMzNEZDMDA5MkM5NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB4TxSAblJi6u7BDJBHp59Peqi k91+A658Dkl9GyMZoPoEmrMudxwvfND+RIhbMxT40FhY0eikijr3lfFMxOWdNh1R mgt4yfMUQkihMj3+EziHYpA+HknwO3ZAISbg3n+r01Ns3pkenGjKXp+i79MxTMIF Fwq9RSDn9aG9WheSkaQT8nwAVEYE3v6okB1C+NjaFpct60ic0c5RzTMOVRX7ePvZ JLhccBgQHRqiAIuUbp4hOZN39js5GGp2cm8Q0kffiKaVyPrq/0T24KAosMnd1pmN UXA9sm9zhOIA9t3LbqqgnV2L+u0zlC63vQzP4uezH5+54dICOVV06l3hACVlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8fQRPFpo9YpiAYKSFBM0/ACSyXcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA2OTE5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRYwDQYJKoZIhvcNAQELBQADggEBAIPJ AqaVayTaEknONCDNORueK5zXk0wWaGxqvSkWigb6nrHJD3Ug0WcR0h3t/88UeyG8 l/0xRgCYWwbrsIbRJe5tKUE9aUnfILWsqZwo+r6FdlWGa4l2dOtMPdz+WvZFqopC E6ICHPYVxoHr1nK7y+UCpBlMHZ3K6KfAbiiFVobZ7+K5SCDgzP8QtE1sBLTaQX2t MMXTe5vEWACJbOuQA5kA4dBa84ybuizauobRXY02iVouy22a8w/M2RdpHvcThGse U4zZOabGUjlApcSf/UxFZEmwB/3C2zdaNE4Gy1437vxssoqS5LcpV9wtLeNi9FAF MQ9qUTJRFXqPwAXYTrc= -----END CERTIFICATE-----Generated at Fri Apr 4 17:01:00 2025 by rpki-client