$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207427.roa File: AS207427.roa (raw, json) Hash identifier: Vcbe3jTGITJlTgRRXWDL9DdWfm9TLvCAZEuOGvin+eI= Subject key identifier: E0:54:3F:DD:37:65:52:1D:41:C6:B9:2A:45:CB:1A:89:D3:0A:A5:93 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 31EA5A411D8BDBCA5EC2F7B4C55B6CE3C7395EF6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207427.roa Signing time: Fri 07 Jun 2024 05:59:49 +0000 ROA not before: Fri 07 Jun 2024 05:54:49 +0000 ROA not after: Fri 06 Jun 2025 05:59:49 +0000 asID: 207427 IP address blocks: 2a05:dfc1:6400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ea:5a:41:1d:8b:db:ca:5e:c2:f7:b4:c5:5b:6c:e3:c7:39:5e:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 7 05:54:49 2024 GMT Not After : Jun 6 05:59:49 2025 GMT Subject: CN=E0543FDD3765521D41C6B92A45CB1A89D30AA593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:4d:4e:f0:e6:a9:39:5a:8b:9b:83:33:97:3d: a8:75:45:c8:6b:8c:d7:90:4e:24:07:f9:f3:e7:c7: 65:dd:49:23:81:fc:7e:d2:88:bb:81:67:a9:bb:ff: d1:6a:80:62:7a:39:10:cf:01:b0:2d:5a:de:cd:06: 5e:d6:09:66:6a:56:91:ba:ef:3c:84:ef:61:d3:87: 2d:6f:7d:50:0d:a0:8b:7e:a9:73:d8:12:65:57:40: 37:21:38:e8:49:51:5b:6f:fb:97:d1:de:0c:2b:2b: 4a:5e:78:9b:db:83:ea:d2:b8:be:3e:08:00:b9:8e: 99:ac:1d:bf:49:02:f5:b1:54:10:8d:50:d5:91:26: 5e:8b:30:5f:75:cf:13:c5:94:db:1a:51:7a:9f:06: b1:e0:1e:5e:75:e5:24:a9:8d:e0:cb:4d:2e:cc:0b: 99:a2:3a:a7:d8:23:b0:1d:df:53:27:6a:01:aa:06: b0:48:eb:81:73:33:79:55:65:1c:56:65:db:8f:dc: 27:b5:45:20:09:8f:d8:cd:43:1c:8d:b7:5a:97:ff: b1:81:de:cf:d4:1e:f4:38:b0:9f:85:bb:77:33:dc: 4f:9a:f8:a0:68:c3:d2:b2:b2:15:82:77:6a:2d:49: d6:54:7e:4c:6b:7f:f5:78:d1:7c:c0:8f:9d:53:b9: c9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:54:3F:DD:37:65:52:1D:41:C6:B9:2A:45:CB:1A:89:D3:0A:A5:93 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207427.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6400::/40 Signature Algorithm: sha256WithRSAEncryption 52:2d:f5:4c:43:48:3d:0b:44:9d:46:34:d2:f8:6d:c3:70:3c: 99:e9:04:f5:f4:40:15:04:51:1e:d0:9c:bb:f2:8a:a5:ac:fc: 37:7f:e9:1c:13:70:68:58:e5:33:b2:3f:91:68:f9:9a:6e:cd: 80:19:63:c4:88:5c:3f:91:4b:45:64:d3:b0:a8:3b:dc:98:3c: a1:7f:77:ed:d5:91:a9:ab:3e:33:c9:48:ca:29:c5:e8:cc:fd: 5a:22:02:aa:a2:d8:f3:7d:59:2a:9a:55:98:22:06:5c:56:49: 39:26:20:de:82:bc:34:95:03:35:8d:16:c7:f1:cd:23:71:6c: 63:56:9d:ec:07:5a:01:fa:48:8e:df:65:63:db:b6:fb:96:86: 23:33:d0:83:d1:d6:bc:e3:05:e4:98:12:ed:9a:da:95:a4:eb: 16:cd:63:71:76:47:37:73:66:f7:0a:17:d7:cf:a5:2c:92:2e: 81:44:48:48:84:71:45:d6:f1:88:b2:1d:2c:0f:5a:16:64:0a: 4b:26:cd:e4:cb:47:fc:18:0a:5c:18:70:37:e0:7f:32:57:7f: f4:e6:49:e5:ac:7f:3c:30:c6:ba:71:8d:64:db:9a:d8:10:03: 87:ab:0f:27:6f:1c:2a:6a:3e:16:38:0c:48:f2:29:ae:46:0a: d6:4f:bc:d6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMepaQR2L28pewve0xVts48c5XvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MDcwNTU0NDlaFw0yNTA2MDYwNTU5NDlaMDMxMTAvBgNV BAMTKEUwNTQzRkREMzc2NTUyMUQ0MUM2QjkyQTQ1Q0IxQTg5RDMwQUE1OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3TU7w5qk5WoubgzOXPah1Rchr jNeQTiQH+fPnx2XdSSOB/H7SiLuBZ6m7/9FqgGJ6ORDPAbAtWt7NBl7WCWZqVpG6 7zyE72HThy1vfVANoIt+qXPYEmVXQDchOOhJUVtv+5fR3gwrK0peeJvbg+rSuL4+ CAC5jpmsHb9JAvWxVBCNUNWRJl6LMF91zxPFlNsaUXqfBrHgHl515SSpjeDLTS7M C5miOqfYI7Ad31MnagGqBrBI64FzM3lVZRxWZduP3Ce1RSAJj9jNQxyNt1qX/7GB 3s/UHvQ4sJ+Fu3cz3E+a+KBow9KyshWCd2otSdZUfkxrf/V40XzAj51TuclVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4FQ/3TdlUh1BxrkqRcsaidMKpZMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA3NDI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWQwDQYJKoZIhvcNAQELBQADggEBAFIt 9UxDSD0LRJ1GNNL4bcNwPJnpBPX0QBUEUR7QnLvyiqWs/Dd/6RwTcGhY5TOyP5Fo +ZpuzYAZY8SIXD+RS0Vk07CoO9yYPKF/d+3VkamrPjPJSMopxejM/VoiAqqi2PN9 WSqaVZgiBlxWSTkmIN6CvDSVAzWNFsfxzSNxbGNWnewHWgH6SI7fZWPbtvuWhiMz 0IPR1rzjBeSYEu2a2pWk6xbNY3F2RzdzZvcKF9fPpSySLoFESEiEcUXW8YiyHSwP WhZkCksmzeTLR/wYClwYcDfgfzJXf/TmSeWsfzwwxrpxjWTbmtgQA4erDydvHCpq PhY4DEjyKa5GCtZPvNY= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org