$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208185.roa File: AS208185.roa (raw, json) Hash identifier: /CqoIAW0qDJxxQJ32eVvOXuv28HtICaAHZewk/ulBKo= Subject key identifier: 24:A0:B2:A9:57:89:BD:F2:E7:BD:02:47:6C:79:23:76:0D:81:4C:29 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5DA9FA39F36302B30B8D009E7B0F0F6B9675B42C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208185.roa Signing time: Sun 06 Oct 2024 04:45:15 +0000 ROA not before: Sun 06 Oct 2024 04:40:15 +0000 ROA not after: Sun 05 Oct 2025 04:45:15 +0000 asID: 208185 IP address blocks: 2a0a:6040:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a9:fa:39:f3:63:02:b3:0b:8d:00:9e:7b:0f:0f:6b:96:75:b4:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:15 2024 GMT Not After : Oct 5 04:45:15 2025 GMT Subject: CN=24A0B2A95789BDF2E7BD02476C7923760D814C29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:41:9b:c7:9d:2a:d2:1d:8f:57:2c:96:48:52: 4c:0a:1e:8c:16:be:db:88:cd:00:d3:2a:02:ff:b9: 90:52:66:a8:b4:0d:85:6f:da:bf:c9:40:d9:f0:90: 03:07:ec:db:8d:b6:07:d9:a9:f9:ff:1d:9f:a8:a3: df:fe:e0:08:e1:e0:8b:6b:34:45:29:75:82:75:74: d4:f7:14:41:c3:4b:38:50:e9:35:66:9f:f5:3c:c1: ba:85:3c:f3:b1:1c:6d:5d:a2:e7:02:76:50:ef:60: e1:26:8e:5f:55:0b:5b:65:8e:c3:a2:78:e4:8a:2a: 5c:6d:99:13:4d:09:eb:6c:ce:72:bb:79:17:91:28: 23:90:07:10:1a:c5:63:06:36:24:70:f6:2d:4b:b3: 0e:1d:59:23:56:ed:ea:ba:32:c0:3f:89:b3:22:91: f8:1b:ca:d5:2b:e5:88:d7:55:16:99:59:e0:87:c3: ba:62:c4:3c:c2:ab:9c:29:12:ff:e4:30:02:f6:41: 7b:9c:5c:07:ee:5a:69:e7:49:cd:19:b0:a9:87:21: a2:b1:51:60:dd:b1:38:00:a7:2d:e8:0d:c5:c6:8a: e4:58:77:9d:75:3f:69:af:b5:59:a5:1b:05:a1:4c: 56:a0:9d:a6:4f:5c:97:0e:b2:8a:22:48:eb:2a:4f: 2f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A0:B2:A9:57:89:BD:F2:E7:BD:02:47:6C:79:23:76:0D:81:4C:29 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208185.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4800::/40 Signature Algorithm: sha256WithRSAEncryption 99:5f:b7:ab:48:b6:3d:36:c4:ca:7b:d7:37:9a:59:b6:07:c9: 49:15:67:f7:4f:42:f7:e9:b4:e5:6f:4a:ba:a3:7f:0e:fe:87: 4f:4f:dd:e1:c4:63:51:96:89:66:a8:06:6c:a6:da:c3:c0:b9: 48:73:74:6a:7f:85:6d:63:99:cb:e4:5f:66:80:74:37:7d:6e: 60:8b:07:f5:ca:25:4f:70:9b:b3:be:36:d3:25:9f:ca:40:ec: 90:42:cb:24:63:83:cc:36:86:37:71:70:3e:a6:7d:6d:11:d5: f4:74:73:4a:78:64:77:07:4f:1b:f9:e2:bd:b5:69:45:0f:dc: 98:3b:99:46:d2:1b:dd:47:67:f9:b6:87:b5:d1:8e:f2:94:65: 3e:8f:0a:0f:4e:65:4a:ef:e7:2b:a7:93:0e:dd:c1:d0:b9:86: 1f:4e:2d:d1:30:18:8f:50:51:a7:8b:10:16:f8:e3:5a:ec:f1: 42:6a:09:8a:70:46:be:a0:7d:80:2e:40:27:19:bd:b8:09:37: 6d:08:8d:01:e4:6e:1f:96:d3:83:2d:ae:9d:8a:c0:65:d5:58: 86:24:30:a3:61:11:a4:0c:b2:c4:cd:fd:e7:6f:ab:a4:b2:7a: c1:90:af:c4:6d:ba:9f:0a:36:67:e9:55:7a:c1:ad:29:5e:c5: a0:af:f9:58 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXan6OfNjArMLjQCeew8Pa5Z1tCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTVaFw0yNTEwMDUwNDQ1MTVaMDMxMTAvBgNV BAMTKDI0QTBCMkE5NTc4OUJERjJFN0JEMDI0NzZDNzkyMzc2MEQ4MTRDMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpQZvHnSrSHY9XLJZIUkwKHowW vtuIzQDTKgL/uZBSZqi0DYVv2r/JQNnwkAMH7NuNtgfZqfn/HZ+oo9/+4Ajh4Itr NEUpdYJ1dNT3FEHDSzhQ6TVmn/U8wbqFPPOxHG1doucCdlDvYOEmjl9VC1tljsOi eOSKKlxtmRNNCetsznK7eReRKCOQBxAaxWMGNiRw9i1Lsw4dWSNW7eq6MsA/ibMi kfgbytUr5YjXVRaZWeCHw7pixDzCq5wpEv/kMAL2QXucXAfuWmnnSc0ZsKmHIaKx UWDdsTgApy3oDcXGiuRYd511P2mvtVmlGwWhTFagnaZPXJcOsooiSOsqTy9rAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJKCyqVeJvfLnvQJHbHkjdg2BTCkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA4MTg1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEgwDQYJKoZIhvcNAQELBQADggEBAJlf t6tItj02xMp71zeaWbYHyUkVZ/dPQvfptOVvSrqjfw7+h09P3eHEY1GWiWaoBmym 2sPAuUhzdGp/hW1jmcvkX2aAdDd9bmCLB/XKJU9wm7O+NtMln8pA7JBCyyRjg8w2 hjdxcD6mfW0R1fR0c0p4ZHcHTxv54r21aUUP3Jg7mUbSG91HZ/m2h7XRjvKUZT6P Cg9OZUrv5yunkw7dwdC5hh9OLdEwGI9QUaeLEBb441rs8UJqCYpwRr6gfYAuQCcZ vbgJN20IjQHkbh+W04Mtrp2KwGXVWIYkMKNhEaQMssTN/edvq6SyesGQr8Rtup8K NmfpVXrBrSlexaCv+Vg= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org