$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208076.roa File: AS208076.roa (raw, json) Hash identifier: figj9ukHKpsvRfJp+/G68/v8wfbBHWRf1UZyTEIF7vQ= Subject key identifier: A0:D6:F8:C8:21:CE:40:E9:39:80:6E:06:7C:3C:B3:B5:B6:AC:DC:E1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 10CF5E9401F550C34C85BC3519220CDE1530C33D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208076.roa Signing time: Wed 30 Oct 2024 03:45:30 +0000 ROA not before: Wed 30 Oct 2024 03:40:30 +0000 ROA not after: Wed 29 Oct 2025 03:45:30 +0000 asID: 208076 IP address blocks: 2a06:9f81:2700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:cf:5e:94:01:f5:50:c3:4c:85:bc:35:19:22:0c:de:15:30:c3:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 30 03:40:30 2024 GMT Not After : Oct 29 03:45:30 2025 GMT Subject: CN=A0D6F8C821CE40E939806E067C3CB3B5B6ACDCE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:13:4c:a4:87:a1:61:95:8f:3c:f0:99:9b:cf: ec:46:10:38:99:6c:6b:dd:ac:9e:11:49:0d:f4:c2: 1a:34:72:b2:f9:3d:84:eb:46:f4:83:f2:2a:ce:ab: fc:c5:13:27:a1:3f:4f:f6:ea:52:de:8c:61:f4:fa: 52:c4:ed:b8:84:32:4b:a3:c9:6b:07:70:52:1b:2c: f6:cf:b3:6f:95:93:e1:61:85:a3:87:b2:5d:6d:02: 3b:b9:10:fd:b9:59:d1:82:ee:2d:56:61:d9:4b:91: fe:f7:b0:ab:1a:9c:f8:b0:3b:e0:ed:92:04:5f:9e: 98:31:62:e3:77:42:06:9d:9e:5d:95:23:b4:57:19: fe:10:d2:5c:6d:c0:86:1a:36:ca:b1:f6:5f:cf:b5: 16:2c:31:ae:f3:76:79:00:e9:e5:62:fe:7a:7f:72: c1:72:37:f8:53:04:ad:84:fe:c0:05:3d:2e:f7:52: 95:e2:b2:9a:6e:fe:17:e2:14:3e:1b:a3:6a:ba:c9: f6:48:d3:db:2c:75:24:f3:b0:ec:74:79:4a:5b:37: c2:61:94:53:26:2c:ec:c3:cf:fa:3e:84:bb:16:4c: ca:fd:c8:d7:25:25:37:fd:2e:32:ce:da:27:0c:a8: 1b:14:1e:35:f7:52:ea:f6:29:72:47:01:02:23:3e: 08:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D6:F8:C8:21:CE:40:E9:39:80:6E:06:7C:3C:B3:B5:B6:AC:DC:E1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208076.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2700::/40 Signature Algorithm: sha256WithRSAEncryption 25:57:fa:e1:63:f0:ff:4f:4f:40:89:14:3b:a3:08:21:66:2c: ff:97:4b:be:da:4f:bd:93:ca:62:d6:42:c7:b0:d3:79:22:96: 85:a2:db:ef:35:73:db:fe:06:f1:9e:a7:ec:79:cd:97:4a:c2: 47:57:d1:b8:84:7f:99:0a:bf:f4:f9:7e:17:8c:f2:01:17:f9: 05:6d:cb:ac:a7:1e:2b:4a:5a:10:02:5c:3a:39:1e:fd:1d:8c: 57:29:5b:ca:0a:18:de:0f:bb:26:0b:db:9c:8f:2f:6a:ed:cb: 74:51:92:06:24:41:f3:4d:4b:1c:d1:d8:1b:e5:0c:95:15:e6: 47:1c:92:84:37:1c:4b:60:3b:69:ca:2f:7f:2f:f0:de:5a:ab: 82:b4:76:c0:02:10:17:8b:47:d4:9e:07:aa:eb:22:21:94:02: be:09:35:57:2a:74:bd:32:0d:08:ac:cb:80:aa:f8:16:19:d9: 3c:3b:a1:c1:9a:d5:a9:37:55:a0:50:36:bd:cb:be:41:4d:e4: 53:21:cf:15:8b:8d:bc:54:40:9d:93:7b:00:fd:c3:14:c7:dd: 94:e3:34:6f:c0:94:c5:cb:7d:31:1c:89:44:6c:7a:ce:3c:d1: 4d:ed:46:fd:b2:d8:eb:ea:3f:ca:43:8d:73:1e:31:18:02:a4: a9:82:07:be -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEM9elAH1UMNMhbw1GSIM3hUwwz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMzAwMzQwMzBaFw0yNTEwMjkwMzQ1MzBaMDMxMTAvBgNV BAMTKEEwRDZGOEM4MjFDRTQwRTkzOTgwNkUwNjdDM0NCM0I1QjZBQ0RDRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvE0ykh6FhlY888Jmbz+xGEDiZ bGvdrJ4RSQ30who0crL5PYTrRvSD8irOq/zFEyehP0/26lLejGH0+lLE7biEMkuj yWsHcFIbLPbPs2+Vk+FhhaOHsl1tAju5EP25WdGC7i1WYdlLkf73sKsanPiwO+Dt kgRfnpgxYuN3Qgadnl2VI7RXGf4Q0lxtwIYaNsqx9l/PtRYsMa7zdnkA6eVi/np/ csFyN/hTBK2E/sAFPS73UpXisppu/hfiFD4bo2q6yfZI09ssdSTzsOx0eUpbN8Jh lFMmLOzDz/o+hLsWTMr9yNclJTf9LjLO2icMqBsUHjX3Uur2KXJHAQIjPgjPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUoNb4yCHOQOk5gG4GfDyztbas3OEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA4MDc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgScwDQYJKoZIhvcNAQELBQADggEBACVX +uFj8P9PT0CJFDujCCFmLP+XS77aT72TymLWQsew03kiloWi2+81c9v+BvGep+x5 zZdKwkdX0biEf5kKv/T5fheM8gEX+QVty6ynHitKWhACXDo5Hv0djFcpW8oKGN4P uyYL25yPL2rty3RRkgYkQfNNSxzR2BvlDJUV5kcckoQ3HEtgO2nKL38v8N5aq4K0 dsACEBeLR9SeB6rrIiGUAr4JNVcqdL0yDQisy4Cq+BYZ2Tw7ocGa1ak3VaBQNr3L vkFN5FMhzxWLjbxUQJ2TewD9wxTH3ZTjNG/AlMXLfTEciURses480U3tRv2y2Ovq P8pDjXMeMRgCpKmCB74= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org