$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207466.roa File: AS207466.roa (raw, json) Hash identifier: FJ7MplqBo54MrYWMYyBsipft53PjASXX26bUVFH4fZ4= Subject key identifier: 67:09:E1:5F:F6:A0:D8:3B:43:B9:54:32:C1:9F:E5:36:BE:E3:EE:59 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 26A9B738004FC7100FDFE8457EF573C6FA4F6BEC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207466.roa Signing time: Sun 06 Oct 2024 04:45:02 +0000 ROA not before: Sun 06 Oct 2024 04:40:02 +0000 ROA not after: Sun 05 Oct 2025 04:45:02 +0000 asID: 207466 IP address blocks: 2a0a:6040:d900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a9:b7:38:00:4f:c7:10:0f:df:e8:45:7e:f5:73:c6:fa:4f:6b:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:02 2024 GMT Not After : Oct 5 04:45:02 2025 GMT Subject: CN=6709E15FF6A0D83B43B95432C19FE536BEE3EE59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c3:77:ef:c1:9f:2f:e4:65:41:8e:5b:06:4c: c6:e3:09:45:0c:3d:8f:b9:94:0e:31:e3:8d:e4:48: b8:27:37:80:e2:63:d8:15:b2:f7:57:5e:34:74:c3: 0d:a2:18:ad:8a:b6:b9:c9:0b:6c:bf:a1:d0:5d:e6: bd:00:82:9c:c3:a1:bd:59:41:83:e6:7d:b0:60:04: 58:41:36:c3:9f:79:f3:6a:fb:99:35:dc:60:a5:c3: 17:73:cb:f5:0c:d3:52:ba:ed:33:66:60:e2:67:9f: 1e:4e:27:e1:b3:e0:1d:7d:09:4d:73:e8:5a:41:c2: 08:b4:74:0d:86:22:12:ce:d0:e1:24:49:7c:8b:a9: 65:8b:b1:84:51:6e:c7:ad:22:21:c8:52:d0:78:c5: 35:20:88:f3:e1:43:0a:bf:d8:ad:a8:60:77:52:99: bf:39:e9:ca:8d:00:ce:0e:17:ed:4b:7e:62:29:bb: db:f9:eb:5f:53:a9:06:e5:5b:a7:ed:52:9f:7f:85: 11:cb:3b:f5:d4:b9:34:58:c8:75:10:4b:ba:c6:a1: 52:d1:c5:72:1c:75:7e:46:fb:f9:81:2d:a2:13:d2: 98:0e:00:61:b2:0c:1f:ad:7a:a6:41:02:b7:20:4e: 1c:81:07:e8:b8:3d:84:f3:27:1b:03:24:0c:ab:d2: e9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:09:E1:5F:F6:A0:D8:3B:43:B9:54:32:C1:9F:E5:36:BE:E3:EE:59 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207466.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d900::/40 Signature Algorithm: sha256WithRSAEncryption af:20:5d:93:62:9a:f3:2a:6c:9a:c7:81:f4:bf:b4:30:0e:69: cc:9e:67:94:64:8a:a4:f0:a4:0e:81:a9:63:c3:ca:9f:65:20: dc:d2:8b:7b:75:dc:5a:c1:4b:45:5d:59:c2:b7:97:5c:73:89: dc:a3:83:ff:71:5d:d0:08:93:47:66:f6:24:53:65:12:92:6f: c9:c5:9a:c5:5b:4d:30:7a:66:6e:04:d1:67:06:cf:8a:7c:23: 12:2e:4e:58:86:c9:e7:42:04:0f:eb:67:11:0f:45:a7:0c:fa: 73:f4:46:b1:4d:07:07:8d:e6:af:49:e8:7d:8d:3e:50:ab:5f: 9e:5f:f1:da:b7:ec:f6:50:4d:4b:12:e1:3c:bf:ae:46:62:77: e0:de:ae:ac:25:d7:a9:48:79:fd:45:fa:87:9f:48:12:ae:b0: 69:9b:6c:70:1a:91:5f:38:66:96:f1:aa:5a:44:23:69:56:91: 65:33:d8:64:b8:59:42:99:12:d0:e0:9a:39:1a:f6:be:1e:80: cd:e6:bb:36:92:ce:92:ed:59:6f:9c:df:41:a2:bd:57:46:d3: 14:6c:04:a3:0e:b6:09:25:33:37:fe:0e:b2:b7:f9:04:43:3c: 1d:59:fb:59:dd:66:03:cf:6d:a8:13:05:a8:0e:58:26:8a:5c: 38:ec:89:fc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJqm3OABPxxAP3+hFfvVzxvpPa+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDJaFw0yNTEwMDUwNDQ1MDJaMDMxMTAvBgNV BAMTKDY3MDlFMTVGRjZBMEQ4M0I0M0I5NTQzMkMxOUZFNTM2QkVFM0VFNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaw3fvwZ8v5GVBjlsGTMbjCUUM PY+5lA4x443kSLgnN4DiY9gVsvdXXjR0ww2iGK2KtrnJC2y/odBd5r0AgpzDob1Z QYPmfbBgBFhBNsOfefNq+5k13GClwxdzy/UM01K67TNmYOJnnx5OJ+Gz4B19CU1z 6FpBwgi0dA2GIhLO0OEkSXyLqWWLsYRRbsetIiHIUtB4xTUgiPPhQwq/2K2oYHdS mb856cqNAM4OF+1LfmIpu9v5619TqQblW6ftUp9/hRHLO/XUuTRYyHUQS7rGoVLR xXIcdX5G+/mBLaIT0pgOAGGyDB+teqZBArcgThyBB+i4PYTzJxsDJAyr0ulLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZwnhX/ag2DtDuVQywZ/lNr7j7lkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA3NDY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNkwDQYJKoZIhvcNAQELBQADggEBAK8g XZNimvMqbJrHgfS/tDAOacyeZ5RkiqTwpA6BqWPDyp9lINzSi3t13FrBS0VdWcK3 l1xzidyjg/9xXdAIk0dm9iRTZRKSb8nFmsVbTTB6Zm4E0WcGz4p8IxIuTliGyedC BA/rZxEPRacM+nP0RrFNBweN5q9J6H2NPlCrX55f8dq37PZQTUsS4Ty/rkZid+De rqwl16lIef1F+oefSBKusGmbbHAakV84ZpbxqlpEI2lWkWUz2GS4WUKZEtDgmjka 9r4egM3muzaSzpLtWW+c30GivVdG0xRsBKMOtgklMzf+DrK3+QRDPB1Z+1ndZgPP bagTBagOWCaKXDjsifw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org