$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207762.roa File: AS207762.roa (raw, json) Hash identifier: FL6NL1zVxXq1uP5zKMI4J5W+TcZcTsLycjJhEUIcYqg= Subject key identifier: FB:A0:63:E3:52:E5:D2:D9:5B:3A:C1:61:78:65:28:04:42:67:01:B9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 30A34992AA271950C5285B65D097876527BCBE2A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207762.roa Signing time: Sun 05 Nov 2023 04:07:14 +0000 ROA not before: Sun 05 Nov 2023 04:02:14 +0000 ROA not after: Sun 03 Nov 2024 04:07:14 +0000 asID: 207762 IP address blocks: 2a0a:6040:f000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:a3:49:92:aa:27:19:50:c5:28:5b:65:d0:97:87:65:27:bc:be:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:14 2023 GMT Not After : Nov 3 04:07:14 2024 GMT Subject: CN=FBA063E352E5D2D95B3AC16178652804426701B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:21:ae:af:36:a0:8e:96:b3:39:ce:be:8e:e2: e5:c4:0f:f2:49:22:84:f4:78:18:fc:03:2d:44:e2: 63:7a:07:1c:ea:62:7d:0a:6d:79:21:26:b6:96:ae: ba:2b:9f:38:ed:90:05:06:f3:08:69:cf:45:41:e3: 34:bf:3b:2b:4b:f1:ad:20:c5:13:23:02:f9:a9:9a: 85:ee:78:6f:80:32:5b:6e:9a:8d:0e:e5:3b:94:f7: 7b:47:78:47:d6:9d:92:1f:9c:8c:2b:33:be:bc:1d: db:d8:45:f1:e4:c7:2a:7e:bd:00:3a:a8:99:2a:99: 27:5e:37:6b:e7:50:a8:04:84:c3:0a:0c:5c:2a:89: 83:b1:c2:ce:02:49:b9:f7:00:13:34:6d:ee:ee:62: b0:c4:a3:30:92:1b:a5:87:f5:cd:11:b3:a4:5d:5b: 22:02:5e:2e:bb:6c:05:d6:75:42:a6:80:40:ef:77: da:0a:9d:0f:c2:31:d6:7f:8f:04:bc:50:84:4f:ae: 5c:31:64:a5:78:47:28:53:41:39:09:b2:47:95:15: f7:6b:aa:18:dd:f5:0c:ce:08:f1:7d:54:25:d8:ed: 9b:2a:fb:24:a0:75:00:f5:1a:57:41:12:67:81:7d: 1f:8a:44:a8:26:18:a7:93:4a:24:a4:d6:1e:5b:50: 75:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A0:63:E3:52:E5:D2:D9:5B:3A:C1:61:78:65:28:04:42:67:01:B9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207762.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f000::/40 Signature Algorithm: sha256WithRSAEncryption c0:ca:3f:8a:1c:8f:0b:0b:8c:61:33:ea:13:32:79:a6:f4:95: 44:6d:c5:5c:1c:91:a3:ff:f0:19:a6:e3:93:04:26:55:62:5f: 62:8f:70:41:42:e2:f1:46:13:99:01:cd:1e:72:e8:06:1a:c7: df:ee:38:7e:dd:22:45:bc:13:5c:b9:27:aa:cc:09:54:a5:de: d2:0e:e5:ec:e3:34:c0:07:09:fc:fb:e8:89:93:7e:81:38:15: 9b:ce:42:1e:2e:39:9a:45:9b:df:8c:e1:0d:24:94:85:44:5b: 28:82:76:7f:d9:af:63:70:e7:2a:00:54:66:ff:ec:dd:bf:ce: 61:ff:9f:0d:1e:de:60:76:09:69:70:1b:9b:0a:b5:cd:b1:23: b9:3e:1c:25:a2:7b:dd:82:50:3f:48:70:14:81:be:ea:b1:3b: d0:f2:3b:0e:6e:0e:f7:7e:db:15:c8:7d:e2:28:9f:81:77:27: 78:a1:3a:10:22:3f:cd:62:2c:36:26:57:16:96:ea:97:cc:82: b7:54:bb:4b:e4:70:88:dc:3a:b8:9c:8d:ed:f7:ac:c2:c4:cb: d7:34:c3:9a:06:c6:7b:83:3b:90:a3:90:53:78:19:a1:83:af: ac:5a:df:b3:22:86:99:de:9f:aa:b4:63:23:fd:d6:50:4b:29: ac:18:a4:98 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMKNJkqonGVDFKFtl0JeHZSe8viowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTRaFw0yNDExMDMwNDA3MTRaMDMxMTAvBgNV BAMTKEZCQTA2M0UzNTJFNUQyRDk1QjNBQzE2MTc4NjUyODA0NDI2NzAxQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgIa6vNqCOlrM5zr6O4uXED/JJ IoT0eBj8Ay1E4mN6BxzqYn0KbXkhJraWrrornzjtkAUG8whpz0VB4zS/OytL8a0g xRMjAvmpmoXueG+AMltumo0O5TuU93tHeEfWnZIfnIwrM768HdvYRfHkxyp+vQA6 qJkqmSdeN2vnUKgEhMMKDFwqiYOxws4CSbn3ABM0be7uYrDEozCSG6WH9c0Rs6Rd WyICXi67bAXWdUKmgEDvd9oKnQ/CMdZ/jwS8UIRPrlwxZKV4RyhTQTkJskeVFfdr qhjd9QzOCPF9VCXY7Zsq+ySgdQD1GldBEmeBfR+KRKgmGKeTSiSk1h5bUHWlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+6Bj41Ll0tlbOsFheGUoBEJnAbkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA3NzYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPAwDQYJKoZIhvcNAQELBQADggEBAMDK P4ocjwsLjGEz6hMyeab0lURtxVwckaP/8Bmm45MEJlViX2KPcEFC4vFGE5kBzR5y 6AYax9/uOH7dIkW8E1y5J6rMCVSl3tIO5ezjNMAHCfz76ImTfoE4FZvOQh4uOZpF m9+M4Q0klIVEWyiCdn/Zr2Nw5yoAVGb/7N2/zmH/nw0e3mB2CWlwG5sKtc2xI7k+ HCWie92CUD9IcBSBvuqxO9DyOw5uDvd+2xXIfeIon4F3J3ihOhAiP81iLDYmVxaW 6pfMgrdUu0vkcIjcOricje33rMLEy9c0w5oGxnuDO5CjkFN4GaGDr6xa37Mihpne n6q0YyP91lBLKawYpJg= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org