$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209554.roa File: AS209554.roa (raw, json) Hash identifier: h6XbU8XnSHGAJzNyv2MH8djK3v0ZI2EO8cW0FHsBOgU= Subject key identifier: EE:9E:0F:F7:C6:11:D2:B5:3C:0F:8B:1E:EC:32:3B:B2:CF:D2:84:8B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4BE0ABA7EA6EB55E91993DA920E156C92D3EE985 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209554.roa Signing time: Sun 06 Oct 2024 04:45:11 +0000 ROA not before: Sun 06 Oct 2024 04:40:11 +0000 ROA not after: Sun 05 Oct 2025 04:45:11 +0000 asID: 209554 IP address blocks: 2a0a:6040:ad00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e0:ab:a7:ea:6e:b5:5e:91:99:3d:a9:20:e1:56:c9:2d:3e:e9:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:11 2024 GMT Not After : Oct 5 04:45:11 2025 GMT Subject: CN=EE9E0FF7C611D2B53C0F8B1EEC323BB2CFD2848B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:59:be:eb:90:94:cc:f0:c5:91:e1:8f:f9:bc: b5:96:4e:0d:12:a8:6c:05:45:3f:dd:e5:0f:60:48: 06:ae:ca:8f:db:1a:57:39:8b:09:79:54:ee:11:a2: d4:47:86:a1:c2:e9:66:b8:e4:1c:66:7a:7a:ae:d8: 22:52:b9:cd:8c:af:0b:3f:a4:75:a3:21:48:6c:3a: 07:ca:b0:44:6a:5a:c3:fa:0e:a4:12:7d:20:ac:98: e7:6c:e5:09:9a:e4:7f:df:e8:9c:f9:01:6b:2d:ed: c4:83:fb:27:80:ef:fd:d3:54:20:65:e1:99:35:6d: a5:08:a1:d9:a1:af:3c:1e:fc:f9:1b:e8:c8:3f:fa: 93:49:bd:d8:f9:66:5e:30:7a:80:c6:e2:67:4b:6f: 3f:cf:3a:44:5a:a2:1a:84:2c:8f:c6:ac:b4:d8:9a: 28:db:b5:84:01:b7:1a:86:2b:6a:78:92:ce:2e:c8: 74:08:d7:ec:1c:f6:c0:cb:c3:75:e7:20:d0:d7:aa: 14:b0:46:17:83:59:c8:57:4e:9e:66:41:f4:58:ae: d3:dc:ab:c8:ca:74:b5:b8:b9:f9:1d:c5:86:4b:11: 78:5c:16:dc:6e:12:f4:e9:90:b4:a7:d2:c5:37:df: 4f:c5:f9:5c:ca:aa:b3:ba:50:9d:09:35:95:39:89: 74:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:9E:0F:F7:C6:11:D2:B5:3C:0F:8B:1E:EC:32:3B:B2:CF:D2:84:8B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209554.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ad00::/40 Signature Algorithm: sha256WithRSAEncryption 81:4e:87:79:2b:8c:fd:8f:b5:94:a7:cb:03:d8:a8:c7:a0:70: 73:94:89:76:9c:ca:91:3f:f9:71:7a:15:55:f0:65:9f:1a:50: 19:d6:b1:d8:0f:d9:e7:43:08:18:d0:69:5d:81:fa:9a:40:6c: 73:fa:aa:9c:c1:16:f9:d5:03:9e:96:0f:52:6e:7b:b5:17:73: 42:c7:32:10:d9:71:05:e9:32:d9:16:9e:c4:b6:3e:c8:60:9b: 5c:dd:4e:6c:be:ab:bc:1a:50:79:2e:9a:9a:d4:11:b6:ec:34: 0f:f8:7c:b9:e3:24:20:d4:55:10:4e:b5:b5:49:8f:0b:cb:4c: ca:2c:d7:1f:6c:b0:28:57:5b:8b:fa:85:48:3c:d9:12:ac:cc: 00:d0:b0:8c:56:79:7a:43:04:0f:d6:b9:a7:bb:74:6a:23:bd: 05:50:17:cb:98:fc:54:b3:bc:97:83:4c:48:fb:11:be:3c:3d: 73:61:5d:ba:07:bc:6d:f0:3b:98:05:71:84:2f:08:49:85:83: 4e:23:e8:f0:78:12:61:7d:29:e3:d7:50:40:f7:1b:fd:8d:ff: 94:14:41:d3:cc:25:cd:42:58:28:d0:b2:0b:4f:87:6d:0e:36: 85:cc:6a:2c:1c:2c:ea:27:1e:61:fd:5e:89:5b:1f:56:8d:21: b2:f4:b2:b5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUS+Crp+putV6RmT2pIOFWyS0+6YUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTFaFw0yNTEwMDUwNDQ1MTFaMDMxMTAvBgNV BAMTKEVFOUUwRkY3QzYxMUQyQjUzQzBGOEIxRUVDMzIzQkIyQ0ZEMjg0OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwWb7rkJTM8MWR4Y/5vLWWTg0S qGwFRT/d5Q9gSAauyo/bGlc5iwl5VO4RotRHhqHC6Wa45Bxmenqu2CJSuc2Mrws/ pHWjIUhsOgfKsERqWsP6DqQSfSCsmOds5Qma5H/f6Jz5AWst7cSD+yeA7/3TVCBl 4Zk1baUIodmhrzwe/Pkb6Mg/+pNJvdj5Zl4weoDG4mdLbz/POkRaohqELI/GrLTY mijbtYQBtxqGK2p4ks4uyHQI1+wc9sDLw3XnINDXqhSwRheDWchXTp5mQfRYrtPc q8jKdLW4ufkdxYZLEXhcFtxuEvTpkLSn0sU330/F+VzKqrO6UJ0JNZU5iXThAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7p4P98YR0rU8D4se7DI7ss/ShIswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA5NTU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK0wDQYJKoZIhvcNAQELBQADggEBAIFO h3krjP2PtZSnywPYqMegcHOUiXacypE/+XF6FVXwZZ8aUBnWsdgP2edDCBjQaV2B +ppAbHP6qpzBFvnVA56WD1Jue7UXc0LHMhDZcQXpMtkWnsS2Pshgm1zdTmy+q7wa UHkumprUEbbsNA/4fLnjJCDUVRBOtbVJjwvLTMos1x9ssChXW4v6hUg82RKszADQ sIxWeXpDBA/Wuae7dGojvQVQF8uY/FSzvJeDTEj7Eb48PXNhXboHvG3wO5gFcYQv CEmFg04j6PB4EmF9KePXUED3G/2N/5QUQdPMJc1CWCjQsgtPh20ONoXMaiwcLOon HmH9XolbH1aNIbL0srU= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org