$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208548.roa File: AS208548.roa (raw, json) Hash identifier: o98dWAHguLeqsRIGx6P6CY8wKB4vKPAgKLR5hBZZgZk= Subject key identifier: 41:D4:65:07:6C:B1:77:8C:77:73:20:F7:8F:D9:24:9A:2F:41:B3:CD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 676C4EB7D6AA5A8332A11D3506D2C29087BC54D0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208548.roa Signing time: Thu 18 Apr 2024 02:59:06 +0000 ROA not before: Thu 18 Apr 2024 02:54:06 +0000 ROA not after: Thu 17 Apr 2025 02:59:06 +0000 asID: 208548 IP address blocks: 2a05:dfc1:ff00::/40 maxlen: 48 2a05:dfc1:ff08::/48 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:6c:4e:b7:d6:aa:5a:83:32:a1:1d:35:06:d2:c2:90:87:bc:54:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 18 02:54:06 2024 GMT Not After : Apr 17 02:59:06 2025 GMT Subject: CN=41D465076CB1778C777320F78FD9249A2F41B3CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e7:dd:c6:53:12:2f:2e:25:77:f6:44:48:b8: af:b1:f7:e9:11:1e:e9:1a:66:d0:2c:9a:3e:f4:7b: 58:68:2c:f7:cd:e6:b9:8e:59:64:1f:b7:f6:ff:ad: c4:d5:d5:df:5a:23:37:56:ee:6c:1a:18:ef:3f:df: bb:87:3f:2f:5b:b3:2f:4e:d3:50:65:84:f8:45:4e: 18:9f:37:f4:15:e4:6f:0f:38:98:b0:e5:c9:51:ee: 9a:94:0b:e6:0f:d1:17:e2:08:4f:6e:f0:77:56:d1: 09:5c:e2:35:06:9a:84:90:c3:1c:68:62:4e:2d:fd: 7b:a2:c2:93:25:0d:56:af:c8:3d:95:c7:43:c3:4a: cb:ec:8b:dd:ff:c1:87:8e:99:b2:ed:22:c9:76:19: 12:2e:aa:42:32:e9:7c:0a:8a:e3:fe:d0:e0:db:e8: c4:c8:d1:1d:b2:f1:5e:16:ec:b0:6d:11:c3:0a:3d: d2:6f:0d:fd:19:8a:19:5e:09:20:34:c2:b6:c5:08: 72:bb:8a:48:af:48:6b:c7:01:e0:44:4b:20:b7:86: 98:f0:ba:28:b0:68:88:bf:7b:ee:6a:81:6e:98:54: 96:f6:04:a4:6c:9d:0d:21:78:71:47:aa:cd:37:4b: 14:bb:30:8e:49:48:46:e9:37:b2:95:7f:ab:4b:0c: 2a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D4:65:07:6C:B1:77:8C:77:73:20:F7:8F:D9:24:9A:2F:41:B3:CD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208548.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:ff00::/40 Signature Algorithm: sha256WithRSAEncryption b3:0a:c7:90:a0:dc:9d:7c:c8:23:cd:3e:41:1c:39:69:05:4f: f7:42:98:18:b4:e4:df:5a:c3:70:05:3d:37:dd:6b:8a:25:ed: 0d:03:7a:f7:a0:74:c3:57:8a:34:09:7a:29:18:aa:86:de:5f: 5b:10:47:a8:77:eb:f4:02:93:e5:95:66:e1:99:f9:1a:e6:62: 6f:ad:3b:d1:c4:3c:c4:90:61:8c:54:0f:83:26:7b:85:73:a9: 85:14:8f:8b:8a:ac:7c:38:7e:3b:17:ba:fe:38:14:76:a2:11: 83:b6:e2:d0:a3:69:0f:dc:eb:ea:83:9e:46:43:cb:7c:1a:b6: de:09:0d:ab:73:dc:a8:67:f4:f6:f2:de:02:50:59:f5:d8:44: 87:65:9b:d1:7f:01:d7:1b:a3:c3:ed:dd:66:b5:b7:51:7b:9b: a2:a9:db:27:eb:5a:3d:1f:fe:7f:0c:ed:ef:5c:44:e0:5f:d3: 81:83:da:86:3b:6e:49:70:f6:b5:99:0f:5d:06:8c:d7:3d:2c: f5:75:95:13:cb:77:74:ec:96:70:4f:57:02:16:1c:ba:54:f4: d7:ee:ba:95:01:39:82:11:2a:2e:ca:c2:c9:b7:28:cd:6e:68: 09:37:03:7e:80:70:a9:e2:10:15:47:38:02:f6:fd:0e:25:2f: ed:5f:4a:7a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZ2xOt9aqWoMyoR01BtLCkIe8VNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA0MTgwMjU0MDZaFw0yNTA0MTcwMjU5MDZaMDMxMTAvBgNV BAMTKDQxRDQ2NTA3NkNCMTc3OEM3NzczMjBGNzhGRDkyNDlBMkY0MUIzQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt593GUxIvLiV39kRIuK+x9+kR HukaZtAsmj70e1hoLPfN5rmOWWQft/b/rcTV1d9aIzdW7mwaGO8/37uHPy9bsy9O 01BlhPhFThifN/QV5G8POJiw5clR7pqUC+YP0RfiCE9u8HdW0Qlc4jUGmoSQwxxo Yk4t/XuiwpMlDVavyD2Vx0PDSsvsi93/wYeOmbLtIsl2GRIuqkIy6XwKiuP+0ODb 6MTI0R2y8V4W7LBtEcMKPdJvDf0ZihleCSA0wrbFCHK7ikivSGvHAeBESyC3hpjw uiiwaIi/e+5qgW6YVJb2BKRsnQ0heHFHqs03SxS7MI5JSEbpN7KVf6tLDCrdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQdRlB2yxd4x3cyD3j9kkmi9Bs80wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA4NTQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwf8wDQYJKoZIhvcNAQELBQADggEBALMK x5Cg3J18yCPNPkEcOWkFT/dCmBi05N9aw3AFPTfda4ol7Q0DevegdMNXijQJeikY qobeX1sQR6h36/QCk+WVZuGZ+RrmYm+tO9HEPMSQYYxUD4Mme4VzqYUUj4uKrHw4 fjsXuv44FHaiEYO24tCjaQ/c6+qDnkZDy3watt4JDatz3Khn9Pby3gJQWfXYRIdl m9F/Adcbo8Pt3Wa1t1F7m6Kp2yfrWj0f/n8M7e9cROBf04GD2oY7bklw9rWZD10G jNc9LPV1lRPLd3TslnBPVwIWHLpU9NfuupUBOYIRKi7Kwsm3KM1uaAk3A36AcKni EBVHOAL2/Q4lL+1fSno= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org