$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS35913.roa File: AS35913.roa (raw, json) Hash identifier: HLUqjxf3j2MlLaVTdXlyFYudM9umk2BoCSmXh4wLVss= Subject key identifier: 51:38:A8:D9:D8:6F:D6:1D:8E:50:92:34:0A:9A:BE:41:50:AE:C1:4B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 19D66983A70334C4E1660765E47D588AE31C1549 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS35913.roa Signing time: Sun 06 Oct 2024 04:45:14 +0000 ROA not before: Sun 06 Oct 2024 04:40:14 +0000 ROA not after: Sun 05 Oct 2025 04:45:14 +0000 asID: 35913 IP address blocks: 2a0a:6040:fa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d6:69:83:a7:03:34:c4:e1:66:07:65:e4:7d:58:8a:e3:1c:15:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:14 2024 GMT Not After : Oct 5 04:45:14 2025 GMT Subject: CN=5138A8D9D86FD61D8E5092340A9ABE4150AEC14B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:5c:63:19:65:58:d3:1a:03:9c:00:92:3f:2a: d8:37:78:2c:30:82:45:19:81:4c:24:cb:e0:d4:55: 58:ce:87:bd:f4:40:1d:37:8d:bc:ea:0b:bd:00:33: 3a:73:6a:dd:f6:49:40:20:94:f3:d2:a7:ef:29:5c: 96:7b:8a:74:2b:b1:2e:09:32:4a:97:12:41:cb:7e: 2c:f2:de:f5:5a:d5:10:c5:e2:3b:46:5f:54:bb:23: 71:1a:af:00:44:c6:27:15:ce:d5:71:7c:06:bf:8b: 31:f9:f4:e5:80:19:28:2c:29:e5:f5:9f:01:08:b5: e2:2b:67:05:23:82:29:65:5f:07:03:ec:c3:1b:d1: 17:3b:e4:05:d4:ca:b9:44:f3:18:ff:4f:53:0e:b6: b0:23:5b:ca:5e:88:f9:d6:9f:9b:04:82:4f:e8:4a: a3:d1:f0:8a:42:36:28:bd:bf:37:3d:62:70:ec:69: 34:3a:5b:cb:48:f0:c7:55:00:ce:50:20:7b:8f:9c: ad:fb:83:5c:2c:6f:66:0d:13:1a:aa:c6:59:7f:58: 52:00:64:97:2c:59:79:af:34:eb:dd:f8:4b:23:4c: 71:d9:81:5f:33:c0:03:a2:93:77:75:85:71:24:36: d9:7c:eb:1a:e8:a5:01:13:18:a2:18:07:21:32:f5: 84:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:38:A8:D9:D8:6F:D6:1D:8E:50:92:34:0A:9A:BE:41:50:AE:C1:4B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS35913.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fa00::/40 Signature Algorithm: sha256WithRSAEncryption ba:da:74:8a:7b:3e:85:62:9c:f6:91:71:50:80:cb:93:e4:e5: c2:72:d7:34:44:bf:9b:ba:02:f9:db:7c:d9:19:b0:76:98:4d: 08:51:72:94:f4:86:e9:7a:3e:ab:13:db:b7:6b:f9:20:20:20: 51:af:77:06:e0:5d:7e:28:1f:df:11:eb:7f:be:b1:15:53:88: d0:28:9f:73:4b:6f:b9:8c:7a:fa:2b:4b:6f:12:34:e5:7e:3d: 1e:1c:92:b6:bf:ee:f2:51:f3:c0:d3:75:67:5a:10:a2:f7:39: 5f:f7:ed:81:04:00:0f:22:c3:ba:26:d2:a9:83:e1:8a:8a:6f: ca:97:b1:98:4c:d9:3c:69:56:3f:d6:43:be:11:b6:b3:cb:83: 06:99:cb:4d:13:96:12:04:2a:a6:2e:39:71:01:90:17:72:13: b8:a3:76:bb:bd:00:07:c4:fb:8e:e4:54:00:e2:bf:09:d5:ba: ef:86:73:02:7f:3e:7f:6c:22:5b:ef:cc:17:6f:73:80:13:4f: c5:3d:b7:a8:64:55:61:61:7f:76:3b:99:f3:3d:de:d3:c3:9c: 8a:dd:17:e3:a9:fb:e1:1e:64:18:2e:85:7d:73:f9:18:05:ee: 39:8b:b5:84:c4:1d:89:7b:d2:cd:a9:10:b2:a7:c1:11:0d:22: 2f:7e:1b:b7 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUGdZpg6cDNMThZgdl5H1YiuMcFUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTRaFw0yNTEwMDUwNDQ1MTRaMDMxMTAvBgNV BAMTKDUxMzhBOEQ5RDg2RkQ2MUQ4RTUwOTIzNDBBOUFCRTQxNTBBRUMxNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwXGMZZVjTGgOcAJI/Ktg3eCww gkUZgUwky+DUVVjOh730QB03jbzqC70AMzpzat32SUAglPPSp+8pXJZ7inQrsS4J MkqXEkHLfizy3vVa1RDF4jtGX1S7I3EarwBExicVztVxfAa/izH59OWAGSgsKeX1 nwEIteIrZwUjgillXwcD7MMb0Rc75AXUyrlE8xj/T1MOtrAjW8peiPnWn5sEgk/o SqPR8IpCNii9vzc9YnDsaTQ6W8tI8MdVAM5QIHuPnK37g1wsb2YNExqqxll/WFIA ZJcsWXmvNOvd+EsjTHHZgV8zwAOik3d1hXEkNtl86xropQETGKIYByEy9YSlAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUUTio2dhv1h2OUJI0Cpq+QVCuwUswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMzU5MTMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBA+jANBgkqhkiG9w0BAQsFAAOCAQEAutp0 ins+hWKc9pFxUIDLk+TlwnLXNES/m7oC+dt82RmwdphNCFFylPSG6Xo+qxPbt2v5 ICAgUa93BuBdfigf3xHrf76xFVOI0Cifc0tvuYx6+itLbxI05X49HhyStr/u8lHz wNN1Z1oQovc5X/ftgQQADyLDuibSqYPhiopvypexmEzZPGlWP9ZDvhG2s8uDBpnL TROWEgQqpi45cQGQF3ITuKN2u70AB8T7juRUAOK/CdW674ZzAn8+f2wiW+/MF29z gBNPxT23qGRVYWF/djuZ8z3e08Ocit0X46n74R5kGC6FfXP5GAXuOYu1hMQdiXvS zakQsqfBEQ0iL34btw== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org