$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207304.roa File: AS207304.roa (raw, json) Hash identifier: jbauDfxvAC3pIy87GE8opXFkr0XVDA0fj9DFMoxpE0c= Subject key identifier: 4C:77:D4:8E:B9:0D:83:23:8D:45:FC:2D:69:BE:18:AF:17:99:4D:3D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 71776EC8CA0764998116B6F21B95E96960F51966 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207304.roa Signing time: Sat 30 Sep 2023 14:41:38 +0000 ROA not before: Sat 30 Sep 2023 14:36:38 +0000 ROA not after: Sat 28 Sep 2024 14:41:38 +0000 asID: 207304 IP address blocks: 2a05:dfc1:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:77:6e:c8:ca:07:64:99:81:16:b6:f2:1b:95:e9:69:60:f5:19:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 30 14:36:38 2023 GMT Not After : Sep 28 14:41:38 2024 GMT Subject: CN=4C77D48EB90D83238D45FC2D69BE18AF17994D3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:cc:ab:24:20:72:dd:16:1a:2f:58:c3:ae:66: 45:5b:ad:b2:bb:54:04:9b:a7:6c:05:5c:12:4e:e5: 2f:64:86:5e:c1:56:e4:c8:71:f3:3e:96:46:04:ea: bb:e7:8e:74:f3:90:13:4d:1c:46:84:c5:a8:52:b4: 1d:2d:ae:62:22:36:b1:11:95:d6:75:d0:d8:df:8f: 90:0a:b8:57:ae:14:5a:2c:cb:75:3b:15:79:0b:47: 2f:1b:29:70:50:7b:de:77:15:7b:55:7c:ea:e7:f5: a3:cf:7c:96:99:6e:6d:e3:da:b7:09:2b:b9:4b:0b: c9:c9:f5:42:9c:65:ab:f0:b3:54:86:4c:c1:8d:fa: f7:61:b0:4c:95:d3:dc:31:d6:7c:e0:de:0f:26:10: 64:cc:88:56:79:a1:38:dd:0a:78:00:b0:9c:c7:44: d2:c3:7a:5c:29:64:87:04:d6:f7:89:0f:66:38:8f: 45:4b:0c:f0:64:bb:ed:b3:c3:61:a4:77:c2:50:9c: 83:31:27:bb:13:32:03:07:55:5f:a8:fc:52:a6:64: 17:8a:bc:27:76:02:b5:8f:48:06:fd:01:29:38:b5: fd:68:6c:34:f5:be:54:e5:54:43:bd:22:cb:6e:05: 4b:30:71:28:e5:eb:36:c0:00:c9:0f:a4:ac:39:4e: 1d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:77:D4:8E:B9:0D:83:23:8D:45:FC:2D:69:BE:18:AF:17:99:4D:3D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a400::/40 Signature Algorithm: sha256WithRSAEncryption 1c:a2:8a:38:e6:19:cc:b0:77:c5:fe:7d:3b:a9:e3:2b:0e:19: cb:fe:78:ce:7c:f0:e5:fb:2f:b9:a6:6d:03:fa:17:b6:85:6d: a1:76:41:77:ff:f6:58:0e:26:70:20:4d:87:c3:17:02:4a:40: 68:b7:45:3a:d3:45:3c:d1:ee:df:ce:e4:08:18:6a:6b:b6:d1: fe:9f:99:6e:51:74:48:93:ed:4f:61:47:6c:e8:8f:d5:74:a4: f7:ce:94:4f:9e:ee:0d:5c:34:6b:1c:4b:f2:c2:40:ba:c3:da: 89:d9:55:7e:97:dd:d8:47:0f:d5:57:fb:7f:0a:33:00:3e:6f: 20:e1:ca:ce:6d:2e:a7:49:33:25:6d:ec:a3:02:ec:3e:49:a7: d5:bb:56:1a:fb:5a:4f:ac:85:e1:43:40:9b:de:12:17:54:7e: c3:40:28:95:3e:84:0e:f2:99:83:0a:11:73:30:09:e6:4a:ff: 57:98:9b:e9:2e:46:ee:1b:c5:6c:d3:37:73:60:a7:e3:2a:2b: 76:1b:31:d9:50:15:2c:5d:43:2c:f7:a7:82:1b:b7:ba:65:b2: 52:be:5b:13:e6:52:0a:2c:95:ac:b9:63:f8:1e:8c:3c:9d:3b: d1:10:67:40:1c:e7:3a:34:b2:61:40:d3:fb:d9:df:97:44:98: c7:54:81:be -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcXduyMoHZJmBFrbyG5XpaWD1GWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA5MzAxNDM2MzhaFw0yNDA5MjgxNDQxMzhaMDMxMTAvBgNV BAMTKDRDNzdENDhFQjkwRDgzMjM4RDQ1RkMyRDY5QkUxOEFGMTc5OTREM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlzKskIHLdFhovWMOuZkVbrbK7 VASbp2wFXBJO5S9khl7BVuTIcfM+lkYE6rvnjnTzkBNNHEaExahStB0trmIiNrER ldZ10Njfj5AKuFeuFFosy3U7FXkLRy8bKXBQe953FXtVfOrn9aPPfJaZbm3j2rcJ K7lLC8nJ9UKcZavws1SGTMGN+vdhsEyV09wx1nzg3g8mEGTMiFZ5oTjdCngAsJzH RNLDelwpZIcE1veJD2Y4j0VLDPBku+2zw2Gkd8JQnIMxJ7sTMgMHVV+o/FKmZBeK vCd2ArWPSAb9ASk4tf1obDT1vlTlVEO9IstuBUswcSjl6zbAAMkPpKw5Th0/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTHfUjrkNgyONRfwtab4YrxeZTT0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA3MzA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwaQwDQYJKoZIhvcNAQELBQADggEBAByi ijjmGcywd8X+fTup4ysOGcv+eM588OX7L7mmbQP6F7aFbaF2QXf/9lgOJnAgTYfD FwJKQGi3RTrTRTzR7t/O5AgYamu20f6fmW5RdEiT7U9hR2zoj9V0pPfOlE+e7g1c NGscS/LCQLrD2onZVX6X3dhHD9VX+38KMwA+byDhys5tLqdJMyVt7KMC7D5Jp9W7 Vhr7Wk+sheFDQJveEhdUfsNAKJU+hA7ymYMKEXMwCeZK/1eYm+kuRu4bxWzTN3Ng p+MqK3YbMdlQFSxdQyz3p4Ibt7plslK+WxPmUgoslay5Y/gejDydO9EQZ0Ac5zo0 smFA0/vZ35dEmMdUgb4= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org