$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208185.roa File: AS208185.roa (raw, json) Hash identifier: IqPQGuhv7RjOANctpW+HFen8uODDdMFhASKwGqecDmc= Subject key identifier: 89:D9:96:61:C1:D0:C6:33:B7:A5:32:BD:B1:01:5E:F8:5A:DD:B6:62 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 723F37DC3E50E2A088677D94B7F377BE358CDE86 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208185.roa Signing time: Sun 05 Nov 2023 04:07:01 +0000 ROA not before: Sun 05 Nov 2023 04:02:01 +0000 ROA not after: Sun 03 Nov 2024 04:07:01 +0000 asID: 208185 IP address blocks: 2a0a:6040:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:3f:37:dc:3e:50:e2:a0:88:67:7d:94:b7:f3:77:be:35:8c:de:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:01 2023 GMT Not After : Nov 3 04:07:01 2024 GMT Subject: CN=89D99661C1D0C633B7A532BDB1015EF85ADDB662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c4:ce:e8:82:bd:ea:4f:f4:0e:52:8a:92:88: cf:a3:ab:5d:ce:d8:ae:a4:c4:1e:b2:60:32:be:90: 05:85:58:17:9e:2d:99:d7:95:80:7e:c0:03:04:b5: 50:f0:2e:e8:df:a7:2c:c4:2a:92:56:e3:7a:23:c6: b8:7b:64:bc:b9:3d:27:a7:46:5c:04:1b:96:b2:72: dc:c3:aa:87:05:1f:fa:f5:ea:6a:b2:88:84:a8:8c: 70:39:41:b6:c7:6a:53:95:37:0f:22:db:62:26:f4: 5f:56:0d:63:15:d7:65:5a:50:4c:bd:41:a8:f4:75: e8:25:43:04:66:0a:df:e6:77:68:9d:2e:a1:f3:81: 44:5e:2d:b6:7a:28:b7:07:37:06:cd:1a:ea:ab:99: c6:80:e3:18:0d:0c:08:6b:07:5e:71:b3:b8:5f:58: 42:60:41:a5:40:61:57:1d:33:15:9a:f9:05:d5:ff: 73:0f:ef:a6:51:8c:2b:99:7c:97:4b:12:c0:31:3a: 07:8d:1c:81:95:52:46:ba:15:f7:d0:19:a6:b0:a6: 8d:fb:83:f5:06:0d:de:d0:e4:bf:f2:2f:13:5d:20: 9f:f3:89:08:e8:fa:23:43:c2:d6:7e:fc:d9:79:75: 60:9e:9b:61:43:80:36:f0:22:b9:ee:89:39:e0:c0: 90:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D9:96:61:C1:D0:C6:33:B7:A5:32:BD:B1:01:5E:F8:5A:DD:B6:62 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208185.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4800::/40 Signature Algorithm: sha256WithRSAEncryption 23:db:ad:15:f0:91:60:9c:0b:ac:c9:d6:63:24:76:8d:35:68: 75:1c:2c:89:f8:46:2c:49:eb:c6:8b:9a:20:6a:22:a9:29:d7: 60:10:d4:bc:45:00:a0:a1:f2:bd:3b:11:25:ae:e3:db:44:8a: bd:50:9b:91:c7:64:45:c4:aa:2e:38:7d:86:19:a7:89:4e:ec: cd:23:7c:bb:74:2d:87:15:fe:5f:56:18:36:b4:88:37:bf:05: 1d:3c:17:49:1c:f3:33:1b:30:3a:5d:39:7a:3d:97:8b:06:bb: cf:bb:a5:32:ef:c0:11:fb:ea:95:f6:c7:42:8d:98:64:65:a6: 42:8e:e5:02:62:e8:04:96:65:22:2f:35:eb:56:f2:5f:a1:fb: e7:4d:ff:23:bd:d9:5c:31:c6:0b:1b:3e:eb:dd:66:f0:8f:17: 54:14:ad:82:9a:41:56:86:7c:53:e7:51:a7:72:70:75:80:64: 68:88:56:95:33:ad:9c:d9:b1:6d:af:1b:f9:dc:0d:a0:a8:cb: ef:8a:ec:47:36:06:04:ca:95:60:98:8e:68:80:b6:81:c6:6d: d8:b4:70:e7:27:42:30:c8:57:c6:3d:11:e1:0f:44:fe:86:d5: 52:89:e3:e2:6f:3c:36:46:ee:ec:f5:5f:dc:c4:d7:bc:3f:ab: 5e:e1:fc:78 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcj833D5Q4qCIZ32Ut/N3vjWM3oYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDFaFw0yNDExMDMwNDA3MDFaMDMxMTAvBgNV BAMTKDg5RDk5NjYxQzFEMEM2MzNCN0E1MzJCREIxMDE1RUY4NUFEREI2NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFxM7ogr3qT/QOUoqSiM+jq13O 2K6kxB6yYDK+kAWFWBeeLZnXlYB+wAMEtVDwLujfpyzEKpJW43ojxrh7ZLy5PSen RlwEG5ayctzDqocFH/r16mqyiISojHA5QbbHalOVNw8i22Im9F9WDWMV12VaUEy9 Qaj0deglQwRmCt/md2idLqHzgUReLbZ6KLcHNwbNGuqrmcaA4xgNDAhrB15xs7hf WEJgQaVAYVcdMxWa+QXV/3MP76ZRjCuZfJdLEsAxOgeNHIGVUka6FffQGaawpo37 g/UGDd7Q5L/yLxNdIJ/ziQjo+iNDwtZ+/Nl5dWCem2FDgDbwIrnuiTngwJAhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUidmWYcHQxjO3pTK9sQFe+FrdtmIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA4MTg1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEgwDQYJKoZIhvcNAQELBQADggEBACPb rRXwkWCcC6zJ1mMkdo01aHUcLIn4RixJ68aLmiBqIqkp12AQ1LxFAKCh8r07ESWu 49tEir1Qm5HHZEXEqi44fYYZp4lO7M0jfLt0LYcV/l9WGDa0iDe/BR08F0kc8zMb MDpdOXo9l4sGu8+7pTLvwBH76pX2x0KNmGRlpkKO5QJi6ASWZSIvNetW8l+h++dN /yO92VwxxgsbPuvdZvCPF1QUrYKaQVaGfFPnUadycHWAZGiIVpUzrZzZsW2vG/nc DaCoy++K7Ec2BgTKlWCYjmiAtoHGbdi0cOcnQjDIV8Y9EeEPRP6G1VKJ4+JvPDZG 7uz1X9zE17w/q17h/Hg= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org