$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209574.roa File: AS209574.roa (raw, json) Hash identifier: d2l/n2CLmaaZTsghxKwjae6uvAy5HFc2p+1msTOPF3g= Subject key identifier: A4:3F:E7:4E:0C:CE:49:D2:EA:9A:2F:A8:82:DA:98:47:51:0E:EE:0B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1718D493BC266C1265AEE5CCCBA0291D0F8DD449 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209574.roa Signing time: Wed 26 Jun 2024 07:00:25 +0000 ROA not before: Wed 26 Jun 2024 06:55:25 +0000 ROA not after: Wed 25 Jun 2025 07:00:25 +0000 asID: 209574 IP address blocks: 2a05:dfc1:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:18:d4:93:bc:26:6c:12:65:ae:e5:cc:cb:a0:29:1d:0f:8d:d4:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 26 06:55:25 2024 GMT Not After : Jun 25 07:00:25 2025 GMT Subject: CN=A43FE74E0CCE49D2EA9A2FA882DA9847510EEE0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3e:ca:76:25:6e:9c:23:bc:87:ac:c9:1c:07: 97:88:71:82:56:9f:8c:26:ed:d3:2b:31:1b:49:c2: bf:1f:c8:c1:cc:87:6c:2c:b5:ef:22:e2:6a:89:a3: a2:fc:32:76:b9:bb:48:64:5d:8b:93:8d:bd:e6:5e: fa:9a:cd:03:c6:0e:2c:49:32:ce:fb:de:62:d9:d6: c6:07:c9:57:85:12:70:6f:96:03:74:61:1e:b9:8c: a0:5c:b2:b2:7d:86:8e:b6:24:79:f4:f9:51:67:14: b0:d6:33:93:76:ee:ed:59:3a:76:38:4e:03:f5:e7: a4:02:44:3b:fd:3a:46:d0:88:19:64:c6:c4:16:aa: 3f:64:27:e6:4f:35:68:9a:f1:e8:36:64:93:c3:ea: bc:49:9d:24:62:01:1d:d2:6a:24:41:f8:2c:a3:95: 27:ad:23:53:63:2e:10:40:0b:e6:1d:0b:2c:8a:9f: 5d:11:ad:1d:cc:3a:37:ea:74:c0:07:27:36:99:b5: e5:b6:65:eb:2f:c0:bc:70:46:d3:c6:3d:69:c4:3a: 13:28:d7:b6:35:d2:20:e9:d9:2b:a3:21:f9:e2:72: 3e:97:92:e2:26:75:a5:53:62:03:64:1a:6a:ea:71: d7:b9:9f:36:38:b5:10:1a:c1:8a:68:24:02:35:78: 32:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3F:E7:4E:0C:CE:49:D2:EA:9A:2F:A8:82:DA:98:47:51:0E:EE:0B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209574.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7100::/40 Signature Algorithm: sha256WithRSAEncryption 14:64:15:af:73:dd:c5:e6:74:02:eb:47:44:54:77:2b:81:25: 7f:56:4f:0e:2f:d1:00:7a:ac:4d:09:1b:bc:19:17:ad:3e:85: 8d:6f:81:70:c1:ea:38:18:c9:f4:33:f4:b6:51:a5:74:81:5f: b9:7a:6b:f0:d9:81:c8:5d:1b:8d:1e:64:52:b6:fc:1e:f8:73: c3:f5:2a:95:d3:da:90:1b:10:bc:44:7d:de:50:b8:0d:d5:63: 2d:ba:ff:8d:11:48:c6:fc:7d:d0:b7:87:6d:70:5c:92:61:69: b8:40:c6:6e:44:60:99:ce:97:d8:4e:3f:56:7f:3e:3b:2f:60: c1:cf:30:39:fe:f0:57:bc:60:27:b8:62:d8:ec:ba:ca:89:7b: 35:9a:8c:a9:14:16:a2:f7:7a:f0:9a:77:c3:ad:22:ca:a0:d7: 1f:85:92:ef:07:df:89:75:cd:63:49:2e:97:85:f7:ca:65:4d: 8d:cc:83:1e:1f:ca:a7:2c:d3:73:1e:64:2e:0f:db:6b:9e:0a: d4:08:fc:a6:a8:65:cd:37:da:19:21:60:dc:87:29:1b:db:a8: 6c:47:a2:b8:42:0f:cc:de:8a:10:a3:1b:ab:ff:5d:fe:19:34: 05:24:85:f8:a9:a4:17:57:a8:49:2c:f2:86:c1:6b:16:47:11: 25:4c:da:70 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFxjUk7wmbBJlruXMy6ApHQ+N1EkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MjYwNjU1MjVaFw0yNTA2MjUwNzAwMjVaMDMxMTAvBgNV BAMTKEE0M0ZFNzRFMENDRTQ5RDJFQTlBMkZBODgyREE5ODQ3NTEwRUVFMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGPsp2JW6cI7yHrMkcB5eIcYJW n4wm7dMrMRtJwr8fyMHMh2wste8i4mqJo6L8Mna5u0hkXYuTjb3mXvqazQPGDixJ Ms773mLZ1sYHyVeFEnBvlgN0YR65jKBcsrJ9ho62JHn0+VFnFLDWM5N27u1ZOnY4 TgP156QCRDv9OkbQiBlkxsQWqj9kJ+ZPNWia8eg2ZJPD6rxJnSRiAR3SaiRB+Cyj lSetI1NjLhBAC+YdCyyKn10RrR3MOjfqdMAHJzaZteW2ZesvwLxwRtPGPWnEOhMo 17Y10iDp2SujIfnicj6XkuImdaVTYgNkGmrqcde5nzY4tRAawYpoJAI1eDKdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUpD/nTgzOSdLqmi+ogtqYR1EO7gswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA5NTc0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXEwDQYJKoZIhvcNAQELBQADggEBABRk Fa9z3cXmdALrR0RUdyuBJX9WTw4v0QB6rE0JG7wZF60+hY1vgXDB6jgYyfQz9LZR pXSBX7l6a/DZgchdG40eZFK2/B74c8P1KpXT2pAbELxEfd5QuA3VYy26/40RSMb8 fdC3h21wXJJhabhAxm5EYJnOl9hOP1Z/PjsvYMHPMDn+8Fe8YCe4YtjsusqJezWa jKkUFqL3evCad8OtIsqg1x+Fku8H34l1zWNJLpeF98plTY3Mgx4fyqcs03MeZC4P 22ueCtQI/KaoZc032hkhYNyHKRvbqGxHorhCD8zeihCjG6v/Xf4ZNAUkhfippBdX qEks8obBaxZHESVM2nA= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org