$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS23470.roa File: AS23470.roa (raw, json) Hash identifier: m5iX91eMFHZDXs+vYIicdN26p5BhBwYu96JsPIprDJw= Subject key identifier: D9:8A:3A:2B:B3:BB:B0:73:1D:DC:F4:E2:A2:E6:1E:84:DC:A7:A9:F5 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 37D7A874062C3955E6FF848D368A41F9DBBE0985 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS23470.roa Signing time: Fri 15 Nov 2024 01:45:31 +0000 ROA not before: Fri 15 Nov 2024 01:40:31 +0000 ROA not after: Fri 14 Nov 2025 01:45:31 +0000 asID: 23470 IP address blocks: 2a05:dfc1:5800::/40 maxlen: 48 2a0a:6040:3900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d7:a8:74:06:2c:39:55:e6:ff:84:8d:36:8a:41:f9:db:be:09:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 15 01:40:31 2024 GMT Not After : Nov 14 01:45:31 2025 GMT Subject: CN=D98A3A2BB3BBB0731DDCF4E2A2E61E84DCA7A9F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5e:8c:90:4b:a5:7e:70:10:c3:a0:b7:fb:96: b2:51:28:98:0a:c5:71:38:85:fe:29:56:a6:20:9f: a8:41:01:2f:b2:d2:be:f1:aa:f3:a1:8c:9d:1d:8a: aa:c2:4d:00:3c:53:4f:07:67:ab:55:e5:b1:94:e3: a5:97:43:ae:b7:0c:67:f0:f7:55:f2:59:7a:8b:0f: 2b:53:f7:71:13:7c:6b:e5:a9:b0:73:2d:5f:31:43: ce:3e:86:e4:c0:5a:17:70:56:8f:f6:d1:28:e4:c5: 3c:db:0c:fb:34:43:d2:dd:a3:e1:bb:8f:5a:2a:66: b9:31:b6:08:9e:34:89:02:e1:c0:bf:b7:ad:38:08: 3b:5f:03:b5:e9:00:5f:16:41:b6:85:ef:0d:8e:3d: 97:38:7e:62:c1:4f:b7:35:91:c9:2c:83:e3:c4:ef: ad:8d:25:34:32:3b:46:3b:de:60:5f:2c:89:db:f1: 22:c8:a4:0b:a3:b4:85:79:3c:34:4b:62:9c:68:ad: a3:42:fb:fc:d1:b8:09:61:cb:35:5c:7d:bf:f0:db: c2:f4:dd:b5:96:99:ad:dd:c0:17:2b:e5:3f:5b:f2: de:20:59:60:79:b3:ce:26:02:85:b4:d9:ad:8e:c3: a7:f5:95:44:b3:4f:62:e4:54:f0:90:ce:8f:8f:f7: 28:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8A:3A:2B:B3:BB:B0:73:1D:DC:F4:E2:A2:E6:1E:84:DC:A7:A9:F5 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS23470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5800::/40 2a0a:6040:3900::/40 Signature Algorithm: sha256WithRSAEncryption 53:9b:bb:85:c7:b6:5e:59:81:0c:4d:d3:27:dc:f3:88:60:ba: dc:8f:a7:b0:76:e0:a8:c3:f8:12:00:22:24:7a:1e:46:c1:b9: af:06:92:0b:92:57:9a:91:65:c8:60:1b:9d:3e:2b:e7:58:16: e2:72:ae:78:d6:4c:74:e8:9f:63:eb:97:06:ed:07:e3:8a:99: 08:51:07:b8:42:d4:f7:47:cc:d1:5a:05:e9:d0:ae:6b:39:28: 3c:2b:01:1c:71:8d:c7:7e:08:31:4c:02:1d:09:c2:14:c8:2d: 17:37:11:04:77:a7:09:5d:dd:2c:0c:e4:0e:81:9d:b0:8f:f3: 47:75:c2:37:fa:c0:3a:80:30:7e:32:fd:c4:01:d3:5d:17:43: eb:ba:8c:72:4c:e9:dd:00:91:d0:0d:83:e0:e2:b6:93:60:c8: cd:a0:e8:b8:14:9a:cb:12:54:61:f7:66:a2:ec:82:76:3f:4f: 4d:ba:77:b3:e1:d0:89:94:36:18:6d:ae:53:06:f8:c9:c3:f1: 84:ba:07:51:8b:c3:f0:d6:33:d1:99:a6:e0:9a:18:58:06:ef: 14:49:46:e5:23:03:e2:bb:db:20:ce:08:15:48:c5:59:e1:c7: 07:1b:d8:d0:0f:c9:8b:c9:f1:8a:83:02:37:2e:77:b5:39:c6: d0:d2:41:b7 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUN9eodAYsOVXm/4SNNopB+du+CYUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDExMTUwMTQwMzFaFw0yNTExMTQwMTQ1MzFaMDMxMTAvBgNV BAMTKEQ5OEEzQTJCQjNCQkIwNzMxRERDRjRFMkEyRTYxRTg0RENBN0E5RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChXoyQS6V+cBDDoLf7lrJRKJgK xXE4hf4pVqYgn6hBAS+y0r7xqvOhjJ0diqrCTQA8U08HZ6tV5bGU46WXQ663DGfw 91XyWXqLDytT93ETfGvlqbBzLV8xQ84+huTAWhdwVo/20SjkxTzbDPs0Q9Ldo+G7 j1oqZrkxtgieNIkC4cC/t604CDtfA7XpAF8WQbaF7w2OPZc4fmLBT7c1kcksg+PE 762NJTQyO0Y73mBfLInb8SLIpAujtIV5PDRLYpxoraNC+/zRuAlhyzVcfb/w28L0 3bWWma3dwBcr5T9b8t4gWWB5s84mAoW02a2Ow6f1lUSzT2LkVPCQzo+P9ygTAgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQU2Yo6K7O7sHMd3PTiouYehNynqfUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjM0NzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqBd/BWAMGACoKYEA5MA0GCSqGSIb3DQEBCwUA A4IBAQBTm7uFx7ZeWYEMTdMn3POIYLrcj6ewduCow/gSACIkeh5GwbmvBpILklea kWXIYBudPivnWBbicq541kx06J9j65cG7QfjipkIUQe4QtT3R8zRWgXp0K5rOSg8 KwEccY3HfggxTAIdCcIUyC0XNxEEd6cJXd0sDOQOgZ2wj/NHdcI3+sA6gDB+Mv3E AdNdF0PruoxyTOndAJHQDYPg4raTYMjNoOi4FJrLElRh92ai7IJ2P09Nunez4dCJ lDYYba5TBvjJw/GEugdRi8Pw1jPRmabgmhhYBu8USUblIwPiu9sgzggVSMVZ4ccH G9jQD8mLyfGKgwI3Lne1OcbQ0kG3 -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org