$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207762.roa File: AS207762.roa (raw, json) Hash identifier: azn5pmf8Jh6Wt6cvq+8rre1BlXPLDiEAWTfwyComCM8= Subject key identifier: 3F:2B:BB:4C:C0:E2:1F:65:4F:86:75:CF:1D:EB:AF:44:62:C5:C4:19 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7D55F360BD4B8D3F5F7015B37FCC0E19A18067F3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207762.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 207762 IP address blocks: 2a0a:6040:f000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:55:f3:60:bd:4b:8d:3f:5f:70:15:b3:7f:cc:0e:19:a1:80:67:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=3F2BBB4CC0E21F654F8675CF1DEBAF4462C5C419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9a:ed:1c:e8:22:7a:09:c1:e7:83:81:26:33: e2:db:4e:1c:26:09:6a:50:1c:4b:55:01:5a:e1:d9: c3:e3:d8:4c:cc:22:e2:f2:c8:1f:18:e3:03:11:09: 3d:23:72:4c:8b:cd:91:90:75:7e:bb:b5:9a:eb:48: 79:9d:d0:a8:23:a0:71:02:81:79:f7:ba:f1:44:a2: e8:fc:aa:c5:4b:09:12:e4:4a:4b:99:bc:34:76:88: bf:40:af:9b:4f:df:b9:03:4d:0b:df:68:e1:83:18: 46:38:89:8c:4d:5f:0f:36:dc:f8:32:6c:52:56:71: 46:e5:be:1a:81:38:ab:3c:68:d9:dc:c4:8b:40:8e: 69:36:ec:11:af:8f:ca:17:f8:89:08:7c:49:4b:85: 79:ce:0e:47:62:fc:ef:64:46:8d:3b:26:f4:7b:ef: 27:03:81:d5:07:39:05:45:4c:8b:d0:bf:3e:fa:02: a1:2b:f9:78:60:de:10:81:83:f1:62:07:d3:f1:7f: c2:32:44:63:ef:c7:82:4f:cd:62:ac:de:88:77:6e: 5f:58:92:fe:75:63:f0:63:84:0e:92:c2:85:30:b1: c2:d5:58:2f:bf:5e:e7:25:e2:b3:74:e0:7a:52:25: 8e:85:00:0d:7a:5e:e8:5e:51:fe:09:f8:19:1c:b6: b3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2B:BB:4C:C0:E2:1F:65:4F:86:75:CF:1D:EB:AF:44:62:C5:C4:19 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207762.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f000::/40 Signature Algorithm: sha256WithRSAEncryption 4f:13:c7:52:26:09:95:59:9f:bd:e4:dc:12:99:fc:86:16:1b: dc:39:53:b0:05:d3:a3:6a:85:29:76:92:b4:6e:0c:6e:41:7a: 02:3b:48:c9:3c:f6:c0:8d:93:4d:6f:01:88:0e:64:09:a8:62: 95:53:93:f0:c3:21:46:22:31:c7:39:7c:0d:85:83:83:33:51: d6:d2:e7:94:71:83:e7:e4:66:36:86:cf:f7:9f:0c:88:be:73: 14:39:18:8b:26:14:5e:e6:df:59:bc:37:55:36:b5:a3:7b:6c: 85:54:52:53:9a:ab:49:06:43:1f:82:bc:e5:80:58:7d:87:33: b5:03:47:11:0d:5d:5d:bd:a8:60:82:ee:c1:6d:29:b3:63:78: 53:c8:70:0b:d6:d8:40:aa:b5:f5:fa:63:8d:36:bd:26:08:e1: fc:b3:d5:d7:c8:cf:62:de:94:ba:25:4a:c5:cf:a4:a3:4e:6e: d3:d2:a9:6a:e3:87:5a:cd:28:18:ac:d2:d4:10:20:8d:6f:24: 6c:ec:6d:d0:68:d6:d4:13:ff:f9:86:d0:bb:e5:e9:0b:2a:b0: e7:b6:55:2e:47:bb:1f:df:cc:d5:63:2a:cc:2c:ac:a9:ba:f2: 63:55:4f:c9:fa:24:12:dd:a2:fa:5e:61:7c:8c:86:6c:30:c0: 44:79:b2:4c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUfVXzYL1LjT9fcBWzf8wOGaGAZ/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKDNGMkJCQjRDQzBFMjFGNjU0Rjg2NzVDRjFERUJBRjQ0NjJDNUM0MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGmu0c6CJ6CcHng4EmM+LbThwm CWpQHEtVAVrh2cPj2EzMIuLyyB8Y4wMRCT0jckyLzZGQdX67tZrrSHmd0KgjoHEC gXn3uvFEouj8qsVLCRLkSkuZvDR2iL9Ar5tP37kDTQvfaOGDGEY4iYxNXw823Pgy bFJWcUblvhqBOKs8aNncxItAjmk27BGvj8oX+IkIfElLhXnODkdi/O9kRo07JvR7 7ycDgdUHOQVFTIvQvz76AqEr+Xhg3hCBg/FiB9Pxf8IyRGPvx4JPzWKs3oh3bl9Y kv51Y/BjhA6SwoUwscLVWC+/Xucl4rN04HpSJY6FAA16XuheUf4J+BkctrNZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUPyu7TMDiH2VPhnXPHeuvRGLFxBkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA3NzYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPAwDQYJKoZIhvcNAQELBQADggEBAE8T x1ImCZVZn73k3BKZ/IYWG9w5U7AF06NqhSl2krRuDG5BegI7SMk89sCNk01vAYgO ZAmoYpVTk/DDIUYiMcc5fA2Fg4MzUdbS55Rxg+fkZjaGz/efDIi+cxQ5GIsmFF7m 31m8N1U2taN7bIVUUlOaq0kGQx+CvOWAWH2HM7UDRxENXV29qGCC7sFtKbNjeFPI cAvW2ECqtfX6Y402vSYI4fyz1dfIz2LelLolSsXPpKNObtPSqWrjh1rNKBis0tQQ II1vJGzsbdBo1tQT//mG0Lvl6QsqsOe2VS5Hux/fzNVjKswsrKm68mNVT8n6JBLd ovpeYXyMhmwwwER5skw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org