$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209554.roa File: AS209554.roa (raw, json) Hash identifier: s0dLwNp2xuIPJrNcj6OUd324YGZ7UGVzdhb26nL+zKM= Subject key identifier: 07:F0:20:6E:38:8A:D2:64:C2:C4:3D:B3:0A:03:DF:A3:01:CC:DD:D9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 255BB9EB729B6D2F39BE46CD91026445758F12B7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209554.roa Signing time: Sun 05 Nov 2023 04:07:16 +0000 ROA not before: Sun 05 Nov 2023 04:02:16 +0000 ROA not after: Sun 03 Nov 2024 04:07:16 +0000 asID: 209554 IP address blocks: 2a0a:6040:ad00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:5b:b9:eb:72:9b:6d:2f:39:be:46:cd:91:02:64:45:75:8f:12:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:16 2023 GMT Not After : Nov 3 04:07:16 2024 GMT Subject: CN=07F0206E388AD264C2C43DB30A03DFA301CCDDD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:db:97:8e:a6:7d:91:78:4a:0f:8d:37:38:ab: e3:e8:e9:39:71:b8:e1:cf:ed:74:ac:b0:f9:47:8f: 69:90:ac:66:70:77:b3:13:ab:ce:69:4b:f0:d5:74: 83:f5:e5:11:16:cb:84:2b:f7:fc:f2:12:66:9f:e7: 80:b6:06:d5:2d:01:45:1a:cb:fa:44:af:25:8c:8f: b5:3b:d0:62:27:7b:4c:7f:ca:57:59:da:3b:2a:2f: 6b:26:2f:0d:90:36:97:ac:04:8c:d7:c4:de:7e:d0: aa:5c:f1:fe:a3:a7:95:79:ef:bb:e5:94:ac:6e:35: 3f:62:9a:ff:c4:0b:12:78:74:d0:e9:39:ce:8b:58: 3c:d2:b9:02:e2:7c:0b:5c:f8:f2:66:2b:f7:43:42: c4:fb:19:0e:93:0c:e1:13:99:48:f3:de:d2:f9:07: 9b:eb:f7:d8:59:17:3f:48:f4:39:a6:26:fa:27:09: 58:06:b2:4b:94:39:c1:29:c4:f1:a8:2d:4d:31:1b: a1:73:2b:aa:18:25:b6:69:64:d0:5b:4b:b3:7a:a7: 0e:71:59:00:40:b5:49:38:93:e9:af:c9:3d:59:19: 02:55:3c:02:4b:66:43:ec:0a:de:f4:59:ce:6f:f5: ea:dc:d3:d6:32:e9:82:e8:43:ad:d7:4c:d2:67:74: 2e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F0:20:6E:38:8A:D2:64:C2:C4:3D:B3:0A:03:DF:A3:01:CC:DD:D9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209554.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ad00::/40 Signature Algorithm: sha256WithRSAEncryption 7f:4d:ea:73:3a:8a:14:d7:60:8d:c5:8d:13:e6:ef:63:5b:d6: 2c:14:64:2a:65:95:00:0c:c0:a8:92:d4:25:c6:e8:87:96:4e: 1e:0b:d2:23:9f:0d:63:3f:ca:81:a0:43:75:74:45:b6:f0:6e: 02:d1:25:e5:7f:22:eb:78:3b:a2:74:f1:e5:09:36:77:e7:47: 4f:38:ab:a2:1a:6f:88:86:21:1d:a5:90:b7:76:9e:e3:eb:86: 23:c7:e2:3f:be:0a:ad:6b:e5:a3:aa:77:32:f5:7e:42:7d:5d: 1f:87:74:d5:98:f8:e3:85:92:bf:54:34:62:2d:63:06:fd:03: a0:23:4e:35:ab:82:d2:5c:33:33:71:14:0f:ba:bb:bd:de:4a: 89:32:f1:46:9a:71:ce:a6:fb:74:0e:54:29:5f:2b:22:ef:4d: 8b:07:0d:bd:3e:f9:75:b1:5b:41:8a:8b:6a:fb:e9:a4:9e:da: 37:fb:3a:2a:8c:14:16:b1:13:16:28:ec:22:86:6e:3e:85:9f: 65:1b:bc:c6:73:98:ae:ec:4f:67:ab:d3:1f:4d:f4:c4:ac:d3: b4:90:b9:37:2c:9b:26:8a:3c:d1:d7:a7:29:b3:ad:63:27:fe: 81:fa:f9:83:30:69:10:8d:b2:32:8a:77:69:f7:a0:82:59:69: b9:a7:59:42 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJVu563KbbS85vkbNkQJkRXWPErcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTZaFw0yNDExMDMwNDA3MTZaMDMxMTAvBgNV BAMTKDA3RjAyMDZFMzg4QUQyNjRDMkM0M0RCMzBBMDNERkEzMDFDQ0RERDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf25eOpn2ReEoPjTc4q+Po6Tlx uOHP7XSssPlHj2mQrGZwd7MTq85pS/DVdIP15REWy4Qr9/zyEmaf54C2BtUtAUUa y/pEryWMj7U70GIne0x/yldZ2jsqL2smLw2QNpesBIzXxN5+0Kpc8f6jp5V577vl lKxuNT9imv/ECxJ4dNDpOc6LWDzSuQLifAtc+PJmK/dDQsT7GQ6TDOETmUjz3tL5 B5vr99hZFz9I9DmmJvonCVgGskuUOcEpxPGoLU0xG6FzK6oYJbZpZNBbS7N6pw5x WQBAtUk4k+mvyT1ZGQJVPAJLZkPsCt70Wc5v9erc09Yy6YLoQ63XTNJndC6JAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUB/AgbjiK0mTCxD2zCgPfowHM3dkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA5NTU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK0wDQYJKoZIhvcNAQELBQADggEBAH9N 6nM6ihTXYI3FjRPm72Nb1iwUZCpllQAMwKiS1CXG6IeWTh4L0iOfDWM/yoGgQ3V0 RbbwbgLRJeV/Iut4O6J08eUJNnfnR084q6Iab4iGIR2lkLd2nuPrhiPH4j++Cq1r 5aOqdzL1fkJ9XR+HdNWY+OOFkr9UNGItYwb9A6AjTjWrgtJcMzNxFA+6u73eSoky 8Uaacc6m+3QOVClfKyLvTYsHDb0++XWxW0GKi2r76aSe2jf7OiqMFBaxExYo7CKG bj6Fn2UbvMZzmK7sT2er0x9N9MSs07SQuTcsmyaKPNHXpymzrWMn/oH6+YMwaRCN sjKKd2n3oIJZabmnWUI= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org