$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208699.roa File: AS208699.roa (raw, json) Hash identifier: VRjWrR/2wYWCB8CeIImPgW5bh6X454MbO31aiMwCGQM= Subject key identifier: 97:27:5F:04:D7:83:44:68:B5:5A:A3:27:EF:69:5F:81:E2:C7:3B:47 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4A7F4B38FDABEA34A2BEAA03AA76181D0D64732B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208699.roa Signing time: Sun 07 Jul 2024 08:40:13 +0000 ROA not before: Sun 07 Jul 2024 08:35:13 +0000 ROA not after: Sun 06 Jul 2025 08:40:13 +0000 asID: 208699 IP address blocks: 2a06:9f81:5500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Oct 2024 08:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7f:4b:38:fd:ab:ea:34:a2:be:aa:03:aa:76:18:1d:0d:64:73:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 7 08:35:13 2024 GMT Not After : Jul 6 08:40:13 2025 GMT Subject: CN=97275F04D7834468B55AA327EF695F81E2C73B47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f3:ba:24:22:5f:ad:0d:a8:22:66:b7:96:b8: a4:56:2f:2e:e1:b2:38:15:f5:8e:b9:36:f7:a1:f6: cd:f7:c7:d6:95:89:09:37:88:62:17:2b:6f:3e:cc: fa:8e:de:85:a4:12:d9:80:d0:a4:ee:15:a7:66:52: 33:58:b6:8b:13:1e:10:65:56:f7:67:5e:40:69:2e: 7e:0f:02:cc:ec:5d:3d:23:03:a8:be:0d:82:c1:89: f9:df:a0:6f:c1:72:89:52:6c:a8:38:38:de:33:2e: 9e:7b:8b:8e:ac:20:b7:f1:52:94:c3:5e:de:ea:7c: 06:20:01:8f:ca:2a:9a:2d:b3:e0:18:ec:48:7b:60: 5a:e8:8c:e3:3f:d5:76:f1:5e:6c:42:f9:a6:90:3e: ae:5d:ab:cc:d5:2c:af:ab:73:67:2f:29:05:39:90: 13:1d:64:7a:e8:5f:48:10:14:1a:36:1e:8a:a8:66: 2e:2b:64:a9:61:25:65:cc:d9:8b:23:79:d5:25:78: f6:49:44:66:c8:6f:7c:ca:d6:cc:aa:39:59:09:f7: c4:f6:bc:65:66:19:fd:43:3b:3c:84:ac:22:c7:e5: c6:94:5b:84:cb:84:f0:64:5f:0a:21:f3:e9:5e:a1: d5:60:ec:72:38:46:41:93:dc:62:71:f5:c2:c4:18: 9e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:27:5F:04:D7:83:44:68:B5:5A:A3:27:EF:69:5F:81:E2:C7:3B:47 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5500::/40 Signature Algorithm: sha256WithRSAEncryption 68:f7:f0:70:70:20:b4:fa:f8:d1:3e:db:10:e9:36:96:c2:bb: 88:e1:c8:3b:49:15:28:26:bc:a7:d4:da:c4:ef:e8:f6:7c:1f: 21:1f:b3:0c:e3:0c:61:59:77:c8:84:c5:f9:c7:e1:ca:cd:3b: 31:b8:79:e9:87:e4:2d:a4:a8:dc:e7:cd:9d:b2:4e:e5:ed:e7: 7b:b4:7c:66:58:d3:52:6b:82:19:34:2c:71:45:a7:28:d2:e8: 95:01:1b:a3:3c:c0:37:89:e6:4a:0d:27:e0:bd:63:aa:93:e6: e5:17:1f:67:cb:77:63:a6:9b:aa:af:fb:7b:bd:a8:ad:e0:df: 42:ba:9c:b8:e2:a4:ac:63:d5:62:3b:50:2b:a9:ba:51:c8:c4: 6d:5d:ac:14:7c:c0:21:80:6a:59:d3:b0:9d:6c:2b:35:77:b2: a5:30:d6:72:48:8e:ec:2e:d6:40:4a:de:dd:ab:cd:08:7c:8c: 9d:81:77:61:ca:4b:da:c8:b1:e6:f3:a3:02:dc:a2:d3:66:c2: 4b:f7:e6:45:a4:b1:ae:de:5e:88:de:b9:45:81:6b:02:93:e7: 25:db:45:93:85:18:21:19:02:fc:45:71:b8:e6:30:8f:7a:c8: 03:90:90:e4:c6:5e:2e:dd:b2:07:03:15:be:95:6f:ae:8a:07: d8:77:34:c8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSn9LOP2r6jSivqoDqnYYHQ1kcyswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MDcwODM1MTNaFw0yNTA3MDYwODQwMTNaMDMxMTAvBgNV BAMTKDk3Mjc1RjA0RDc4MzQ0NjhCNTVBQTMyN0VGNjk1RjgxRTJDNzNCNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC587okIl+tDagiZreWuKRWLy7h sjgV9Y65Nveh9s33x9aViQk3iGIXK28+zPqO3oWkEtmA0KTuFadmUjNYtosTHhBl VvdnXkBpLn4PAszsXT0jA6i+DYLBifnfoG/BcolSbKg4ON4zLp57i46sILfxUpTD Xt7qfAYgAY/KKpots+AY7Eh7YFrojOM/1XbxXmxC+aaQPq5dq8zVLK+rc2cvKQU5 kBMdZHroX0gQFBo2HoqoZi4rZKlhJWXM2YsjedUlePZJRGbIb3zK1syqOVkJ98T2 vGVmGf1DOzyErCLH5caUW4TLhPBkXwoh8+leodVg7HI4RkGT3GJx9cLEGJ4dAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlydfBNeDRGi1WqMn72lfgeLHO0cwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA4Njk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVUwDQYJKoZIhvcNAQELBQADggEBAGj3 8HBwILT6+NE+2xDpNpbCu4jhyDtJFSgmvKfU2sTv6PZ8HyEfswzjDGFZd8iExfnH 4crNOzG4eemH5C2kqNznzZ2yTuXt53u0fGZY01Jrghk0LHFFpyjS6JUBG6M8wDeJ 5koNJ+C9Y6qT5uUXH2fLd2Omm6qv+3u9qK3g30K6nLjipKxj1WI7UCupulHIxG1d rBR8wCGAalnTsJ1sKzV3sqUw1nJIjuwu1kBK3t2rzQh8jJ2Bd2HKS9rIsebzowLc otNmwkv35kWksa7eXojeuUWBawKT5yXbRZOFGCEZAvxFcbjmMI96yAOQkOTGXi7d sgcDFb6Vb66KB9h3NMg= -----END CERTIFICATE-----Generated at Tue Oct 22 13:17:32 2024 by rpki-client on console-fra.rpki-client.org