$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS23347.roa File: AS23347.roa (raw, json) Hash identifier: jxM7yPP1heBQiINrLS4skKTgTvyUqOC57s+8YA1UC70= Subject key identifier: E2:9C:8D:E3:59:2E:4E:98:12:4D:96:3C:37:87:35:05:EA:D2:93:A7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 77199F2EE905F73C482FEB706CEC8ED2F603A21E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS23347.roa Signing time: Sun 21 Jan 2024 23:06:10 +0000 ROA not before: Sun 21 Jan 2024 23:01:10 +0000 ROA not after: Sun 19 Jan 2025 23:06:10 +0000 asID: 23347 IP address blocks: 2a05:dfc1:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:19:9f:2e:e9:05:f7:3c:48:2f:eb:70:6c:ec:8e:d2:f6:03:a2:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jan 21 23:01:10 2024 GMT Not After : Jan 19 23:06:10 2025 GMT Subject: CN=E29C8DE3592E4E98124D963C37873505EAD293A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:46:f4:04:6f:dc:8e:14:06:e4:f0:0f:dd:63: 8f:1f:86:a3:f8:53:27:30:50:a7:52:00:22:98:48: b2:e6:31:c0:a6:a4:e7:d3:a1:7a:87:ae:03:52:55: 8e:f7:33:bc:ea:fc:38:94:d0:26:f1:1b:9d:e5:90: 2f:4c:47:84:ad:54:8b:79:f8:13:ed:3b:95:f0:84: 73:9b:70:e1:ef:6f:7f:e8:74:48:bd:e5:63:94:c9: 85:f9:88:04:46:cf:fe:26:c1:3d:fd:47:98:6d:c4: 85:8c:c0:23:ab:9d:bb:ce:44:74:89:f2:de:58:11: 11:80:24:18:72:a7:07:e0:2e:30:d8:4e:67:ec:ed: 70:b3:31:83:ba:dd:79:af:30:e0:04:de:81:64:56: e6:9d:28:11:e6:23:52:7e:39:93:b4:6d:f4:5b:22: 4b:60:e9:3a:8c:62:1b:2e:a6:74:10:06:02:64:8c: a7:56:c0:87:42:20:06:83:f8:8e:23:8a:19:83:58: cc:a1:d6:be:94:8c:9b:05:5c:b0:e8:89:0c:c1:8a: ce:42:91:e6:92:63:b8:0b:ac:54:74:0b:1a:b5:4a: 1a:51:a2:5b:12:ee:fe:ff:b1:94:d6:f6:57:6f:fa: bd:77:e5:bf:12:45:6c:5b:45:82:9b:08:e5:2a:8d: 9f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9C:8D:E3:59:2E:4E:98:12:4D:96:3C:37:87:35:05:EA:D2:93:A7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS23347.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5000::/40 Signature Algorithm: sha256WithRSAEncryption 8d:f2:6f:0e:1c:73:8d:60:40:4d:88:fa:26:72:d1:e8:dc:46: 73:a4:62:10:16:c1:a4:a3:9e:95:94:e3:9d:5e:d0:c0:bd:c2: 33:c1:db:27:8f:14:6b:0e:ec:42:63:04:e6:c8:f9:a5:f1:6e: c6:df:90:10:d5:38:b1:63:95:c5:7b:5c:02:e3:58:af:74:10: d4:cf:87:96:1e:4b:6f:e8:bb:ab:c5:f4:76:ad:8b:47:06:f2: 3b:38:33:24:29:a9:65:b4:15:3b:5a:ca:85:2b:e7:81:0f:7f: b2:46:79:5f:d4:8f:f5:05:ae:5c:52:9d:ca:0b:ad:d7:7a:47: a5:f2:61:f7:2a:18:43:8a:02:bb:37:b1:71:37:a9:36:17:80: 85:03:68:e5:6f:41:c4:72:43:e8:a6:3b:b5:a4:ec:b4:48:f5: d1:8e:80:14:ba:1d:3c:a5:7c:94:05:c8:aa:43:86:ef:7b:cf: 97:87:bc:66:03:ba:21:0c:b2:94:67:94:87:32:ed:6a:5e:f5: 3c:b4:87:fe:13:d9:ed:7b:e5:69:c1:47:0f:93:cd:08:19:3a: 3f:f4:c9:65:42:d3:43:bb:6a:14:fe:66:23:72:d6:13:3e:96: ca:1b:be:57:8b:dc:a4:60:bb:74:37:5f:0e:73:aa:7c:da:20: e4:d4:a4:e0 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUdxmfLukF9zxIL+twbOyO0vYDoh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAxMjEyMzAxMTBaFw0yNTAxMTkyMzA2MTBaMDMxMTAvBgNV BAMTKEUyOUM4REUzNTkyRTRFOTgxMjREOTYzQzM3ODczNTA1RUFEMjkzQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiRvQEb9yOFAbk8A/dY48fhqP4 UycwUKdSACKYSLLmMcCmpOfToXqHrgNSVY73M7zq/DiU0CbxG53lkC9MR4StVIt5 +BPtO5XwhHObcOHvb3/odEi95WOUyYX5iARGz/4mwT39R5htxIWMwCOrnbvORHSJ 8t5YERGAJBhypwfgLjDYTmfs7XCzMYO63XmvMOAE3oFkVuadKBHmI1J+OZO0bfRb Iktg6TqMYhsupnQQBgJkjKdWwIdCIAaD+I4jihmDWMyh1r6UjJsFXLDoiQzBis5C keaSY7gLrFR0Cxq1ShpRolsS7v7/sZTW9ldv+r135b8SRWxbRYKbCOUqjZ+lAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU4pyN41kuTpgSTZY8N4c1BerSk6cwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjMzNDcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BUDANBgkqhkiG9w0BAQsFAAOCAQEAjfJv DhxzjWBATYj6JnLR6NxGc6RiEBbBpKOelZTjnV7QwL3CM8HbJ48Uaw7sQmME5sj5 pfFuxt+QENU4sWOVxXtcAuNYr3QQ1M+Hlh5Lb+i7q8X0dq2LRwbyOzgzJCmpZbQV O1rKhSvngQ9/skZ5X9SP9QWuXFKdygut13pHpfJh9yoYQ4oCuzexcTepNheAhQNo 5W9BxHJD6KY7taTstEj10Y6AFLodPKV8lAXIqkOG73vPl4e8ZgO6IQyylGeUhzLt al71PLSH/hPZ7XvlacFHD5PNCBk6P/TJZULTQ7tqFP5mI3LWEz6Wyhu+V4vcpGC7 dDdfDnOqfNog5NSk4A== -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org