$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207941.roa File: AS207941.roa (raw, json) Hash identifier: DAn1Y8CXx8RopoKbucFrI0UpBqESsMWmkg84j41CbT4= Subject key identifier: 85:17:5C:89:8D:07:56:F9:28:BA:16:82:D5:36:94:07:8F:81:C6:81 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3175BDF6481A7103C361A215048AB9390F10087E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207941.roa Signing time: Tue 16 Apr 2024 10:59:05 +0000 ROA not before: Tue 16 Apr 2024 10:54:05 +0000 ROA not after: Tue 15 Apr 2025 10:59:05 +0000 asID: 207941 IP address blocks: 2a05:dfc1:4800::/40 maxlen: 48 2a05:dfc1:4900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:75:bd:f6:48:1a:71:03:c3:61:a2:15:04:8a:b9:39:0f:10:08:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 16 10:54:05 2024 GMT Not After : Apr 15 10:59:05 2025 GMT Subject: CN=85175C898D0756F928BA1682D53694078F81C681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6b:48:f7:9d:e2:e0:24:6c:cf:60:00:81:f8: a2:68:8f:dd:bc:e2:5f:e8:29:3d:9c:88:57:b9:99: ee:54:fa:f0:e8:a8:c6:e7:90:da:5e:32:e3:b2:9e: 38:9c:84:19:55:f4:d8:47:c6:dd:94:0d:61:39:97: 03:91:bb:6e:73:e4:c7:62:ce:f0:60:8f:9c:5b:ea: 03:ba:1b:08:c9:8c:42:5d:2d:bf:2b:ff:fd:87:25: 66:ba:ba:5e:e9:35:13:b9:d7:ce:07:d8:d3:ad:6e: e1:19:ec:3c:55:52:2d:31:89:fd:e0:31:cc:c3:00: d8:76:92:c3:3c:8d:be:66:a9:b4:c0:eb:15:32:03: 51:c7:e2:26:ba:c0:af:05:81:af:06:dd:08:31:5d: f8:89:84:b8:38:1b:b7:59:4d:79:54:ae:0f:75:98: 4b:41:ed:80:d2:ac:f0:ee:7e:5b:eb:c2:b9:22:83: 67:cc:fe:e5:46:37:de:d0:ae:1e:1a:f1:9c:28:39: d1:06:2e:dc:5d:47:4d:c8:d9:7f:ed:07:6b:64:74: c4:6f:12:17:c5:b5:8f:ad:c4:11:f0:6e:86:27:9f: 62:a9:da:d1:98:83:35:5b:59:0d:4c:be:de:68:22: ff:97:61:02:85:8c:f2:16:a5:74:bb:7c:53:a8:78: 6d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:17:5C:89:8D:07:56:F9:28:BA:16:82:D5:36:94:07:8F:81:C6:81 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207941.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4800::/39 Signature Algorithm: sha256WithRSAEncryption 25:40:97:2b:79:6b:f7:2e:3b:b3:e8:16:6b:4a:3e:11:01:da: 4e:bb:48:52:45:aa:88:f3:01:05:27:8b:55:5c:3d:30:94:1a: 3d:20:56:0d:73:88:88:df:e7:e5:d1:9b:72:1e:4d:0e:af:bc: d5:12:58:bf:07:cc:3e:de:59:64:8c:40:ca:38:eb:02:12:16: 91:ea:66:8c:a6:42:b3:1e:55:47:c7:c4:84:24:2a:73:ff:05: 94:a5:79:bb:3e:de:d7:4d:00:c5:3a:58:14:7f:44:36:79:b0: fa:e6:47:5a:53:ab:06:2f:d9:00:23:ad:da:ff:28:2f:13:7b: 70:1c:04:60:7f:50:06:af:f9:d3:39:20:fa:9f:8e:4f:9d:4a: 75:73:2f:d1:bc:ff:16:8a:fe:8f:f0:08:76:cb:cc:5f:b3:41: 95:33:e0:33:9b:8a:83:d0:84:1f:8a:f1:3f:0a:e0:af:1e:85: ef:ce:a5:62:5d:9f:35:fd:5a:cd:ca:6d:59:a4:2a:62:9f:16: 3a:26:6f:cd:11:95:b4:44:b2:fe:fb:6c:0e:9b:22:81:d5:bf: 65:ef:06:9b:50:b9:76:2b:fa:c3:5a:41:04:3d:43:f2:cf:97: 2b:e9:8b:18:98:0b:5b:22:3e:c1:31:88:de:cd:b1:2d:a7:02: 87:27:86:48 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMXW99kgacQPDYaIVBIq5OQ8QCH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA0MTYxMDU0MDVaFw0yNTA0MTUxMDU5MDVaMDMxMTAvBgNV BAMTKDg1MTc1Qzg5OEQwNzU2RjkyOEJBMTY4MkQ1MzY5NDA3OEY4MUM2ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDa0j3neLgJGzPYACB+KJoj928 4l/oKT2ciFe5me5U+vDoqMbnkNpeMuOynjichBlV9NhHxt2UDWE5lwORu25z5Mdi zvBgj5xb6gO6GwjJjEJdLb8r//2HJWa6ul7pNRO5184H2NOtbuEZ7DxVUi0xif3g MczDANh2ksM8jb5mqbTA6xUyA1HH4ia6wK8Fga8G3QgxXfiJhLg4G7dZTXlUrg91 mEtB7YDSrPDuflvrwrkig2fM/uVGN97Qrh4a8ZwoOdEGLtxdR03I2X/tB2tkdMRv EhfFtY+txBHwboYnn2Kp2tGYgzVbWQ1Mvt5oIv+XYQKFjPIWpXS7fFOoeG2tAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhRdciY0HVvkouhaC1TaUB4+BxoEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA3OTQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwUgwDQYJKoZIhvcNAQELBQADggEBACVA lyt5a/cuO7PoFmtKPhEB2k67SFJFqojzAQUni1VcPTCUGj0gVg1ziIjf5+XRm3Ie TQ6vvNUSWL8HzD7eWWSMQMo46wISFpHqZoymQrMeVUfHxIQkKnP/BZSlebs+3tdN AMU6WBR/RDZ5sPrmR1pTqwYv2QAjrdr/KC8Te3AcBGB/UAav+dM5IPqfjk+dSnVz L9G8/xaK/o/wCHbLzF+zQZUz4DObioPQhB+K8T8K4K8ehe/OpWJdnzX9Ws3KbVmk KmKfFjomb80RlbREsv77bA6bIoHVv2XvBptQuXYr+sNaQQQ9Q/LPlyvpixiYC1si PsExiN7NsS2nAocnhkg= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org