$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207304.roa File: AS207304.roa (raw, json) Hash identifier: P219yodfuiddXFWwbMcy462rbFduuis4sVWbjaCslOI= Subject key identifier: F1:92:0F:43:0D:E3:54:61:4E:45:2F:8C:42:6A:11:2F:75:81:D9:C5 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6763265A42853FBB5487964273E5106131EE10DC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207304.roa Signing time: Sat 31 Aug 2024 14:49:53 +0000 ROA not before: Sat 31 Aug 2024 14:44:53 +0000 ROA not after: Sat 30 Aug 2025 14:49:53 +0000 asID: 207304 IP address blocks: 2a05:dfc1:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:63:26:5a:42:85:3f:bb:54:87:96:42:73:e5:10:61:31:ee:10:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 31 14:44:53 2024 GMT Not After : Aug 30 14:49:53 2025 GMT Subject: CN=F1920F430DE354614E452F8C426A112F7581D9C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:10:df:c2:e2:8f:5b:95:69:81:e4:85:34:9d: b6:e2:5d:ab:ac:ef:3b:40:44:a2:24:73:ff:1d:9d: a9:1c:67:96:07:ea:60:f2:fa:d5:5d:d0:0b:63:f1: 18:71:10:23:b2:78:e3:28:96:73:38:bd:c4:e4:e9: 5e:ce:71:92:2c:df:25:e1:9c:16:3e:d0:fc:a8:f4: a3:9f:68:4e:75:73:71:f3:c2:8a:54:04:fe:9c:8f: c5:54:d3:3f:12:8c:64:6a:32:1e:81:b1:cc:d7:e0: 2e:26:e7:a4:93:f4:6e:74:38:e1:51:ca:a8:65:29: 74:83:dc:48:a7:8c:16:63:68:d4:15:11:3a:e2:27: 66:ea:91:49:54:ec:b9:15:e7:09:f0:8b:7f:75:e0: ab:cc:44:7a:73:60:ca:81:15:5f:db:2c:5d:64:89: 65:12:03:ea:82:28:32:7c:f6:39:0f:e4:e3:df:f1: 32:69:6d:37:fd:d9:b0:ea:cc:26:a1:05:f1:1d:7c: 04:1c:c0:ea:65:72:86:f5:59:a6:20:ef:48:64:c2: 5f:b4:32:c5:44:b6:0b:f6:08:c9:74:ea:81:6c:1d: 00:2c:d9:e5:3f:2f:56:bb:cf:af:68:30:61:3a:0c: ce:63:98:94:39:90:7f:34:8e:67:0f:62:bb:8c:34: 55:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:92:0F:43:0D:E3:54:61:4E:45:2F:8C:42:6A:11:2F:75:81:D9:C5 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a400::/40 Signature Algorithm: sha256WithRSAEncryption 5e:db:d8:22:6b:60:61:5d:c6:5b:ac:67:d7:f0:37:6a:3e:7d: 8b:5d:d4:12:4d:4d:46:f7:08:30:43:0d:1e:73:37:8e:f7:2d: c3:be:ce:5f:5b:48:1c:47:42:7d:0a:1c:4b:63:58:dc:03:a8: 2b:cb:db:99:1a:88:5b:9d:ff:b5:0e:5b:0f:11:45:51:3b:d8: 96:bf:d5:c2:9b:8f:b9:d3:5b:f6:7e:76:e7:af:8e:c0:d4:c7: e7:1a:af:a2:1f:00:52:7f:fc:99:d9:58:ae:86:f7:f1:fa:f6: 13:64:f7:75:ea:55:8c:ad:18:c7:97:03:60:59:2e:11:97:f2: ec:f3:05:d6:0b:b1:c7:6d:4f:bf:dd:b8:88:3d:64:51:63:df: 9e:2d:6f:be:71:24:a4:90:57:34:44:fb:e9:f1:24:77:24:77: 07:6f:18:0f:a9:13:ec:d8:54:3a:1d:27:a6:7d:d4:e4:7d:d9: a9:63:81:f6:8a:10:45:bb:23:37:85:78:2b:b5:2a:13:b4:ba: 7e:63:57:98:83:dc:24:3d:73:c8:5a:6b:3b:e6:59:f9:fe:08: 50:1d:9f:cf:5b:cb:08:0d:2c:14:01:69:68:b8:16:64:94:bd: c8:9e:cb:a8:dd:66:b1:d1:fa:eb:83:2d:3c:97:45:5b:14:f3: 1c:ac:30:0d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZ2MmWkKFP7tUh5ZCc+UQYTHuENwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MzExNDQ0NTNaFw0yNTA4MzAxNDQ5NTNaMDMxMTAvBgNV BAMTKEYxOTIwRjQzMERFMzU0NjE0RTQ1MkY4QzQyNkExMTJGNzU4MUQ5QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoEN/C4o9blWmB5IU0nbbiXaus 7ztARKIkc/8dnakcZ5YH6mDy+tVd0Atj8RhxECOyeOMolnM4vcTk6V7OcZIs3yXh nBY+0Pyo9KOfaE51c3HzwopUBP6cj8VU0z8SjGRqMh6BsczX4C4m56ST9G50OOFR yqhlKXSD3EinjBZjaNQVETriJ2bqkUlU7LkV5wnwi3914KvMRHpzYMqBFV/bLF1k iWUSA+qCKDJ89jkP5OPf8TJpbTf92bDqzCahBfEdfAQcwOplcob1WaYg70hkwl+0 MsVEtgv2CMl06oFsHQAs2eU/L1a7z69oMGE6DM5jmJQ5kH80jmcPYruMNFXfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8ZIPQw3jVGFORS+MQmoRL3WB2cUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA3MzA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwaQwDQYJKoZIhvcNAQELBQADggEBAF7b 2CJrYGFdxlusZ9fwN2o+fYtd1BJNTUb3CDBDDR5zN473LcO+zl9bSBxHQn0KHEtj WNwDqCvL25kaiFud/7UOWw8RRVE72Ja/1cKbj7nTW/Z+duevjsDUx+car6IfAFJ/ /JnZWK6G9/H69hNk93XqVYytGMeXA2BZLhGX8uzzBdYLscdtT7/duIg9ZFFj354t b75xJKSQVzRE++nxJHckdwdvGA+pE+zYVDodJ6Z91OR92aljgfaKEEW7IzeFeCu1 KhO0un5jV5iD3CQ9c8haazvmWfn+CFAdn89bywgNLBQBaWi4FmSUvciey6jdZrHR +uuDLTyXRVsU8xysMA0= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org