$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS35913.roa File: AS35913.roa (raw, json) Hash identifier: JfwO3M+ffwgEFiPjrFRu8D9x8u9zfUN6GaAWizp9XOA= Subject key identifier: C5:F1:5B:36:11:CF:54:A1:91:03:00:A5:33:1F:0D:E9:19:86:1E:74 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 02BFC8F2B57B44AC3FBB12625D01100CB753E989 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS35913.roa Signing time: Sun 05 Nov 2023 04:07:14 +0000 ROA not before: Sun 05 Nov 2023 04:02:14 +0000 ROA not after: Sun 03 Nov 2024 04:07:14 +0000 asID: 35913 IP address blocks: 2a0a:6040:fa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 03 May 2024 16:59:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:bf:c8:f2:b5:7b:44:ac:3f:bb:12:62:5d:01:10:0c:b7:53:e9:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:14 2023 GMT Not After : Nov 3 04:07:14 2024 GMT Subject: CN=C5F15B3611CF54A1910300A5331F0DE919861E74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f7:ff:ed:82:31:33:2c:86:c2:9e:7e:9a:4d: 94:e8:9c:21:86:f2:0a:20:87:bb:36:e8:24:b6:18: 55:b0:29:c8:5d:4a:51:6d:0b:be:6c:bc:06:49:2c: 1f:8f:56:db:ec:03:47:d0:46:63:06:a2:9f:7a:74: 41:c8:5a:e4:ea:f2:4a:54:2c:2e:86:25:4c:7c:95: 02:b7:4b:ed:d9:79:39:a1:a0:97:a7:f9:60:ef:9c: 5f:82:7f:32:44:30:8c:7b:25:91:b3:5c:96:f4:d3: 47:d6:14:ee:86:6d:39:79:24:df:5c:4f:ad:33:e4: 63:27:3d:82:3d:75:d8:f2:ee:16:2d:6c:1f:08:f3: 95:28:78:e3:42:08:93:95:3c:2c:b0:2b:d9:2c:b5: ee:41:1f:a5:23:72:77:73:01:b6:ac:26:91:7a:8d: ab:f7:07:ce:27:a6:05:ed:80:51:e1:93:97:0e:bb: 20:a5:39:04:11:b1:de:95:34:a5:57:7e:61:71:f4: 02:8f:a7:c0:79:14:ac:60:1a:ca:c1:d6:9c:eb:35: 31:ed:e3:57:ac:cf:64:9e:de:a4:f8:b5:ac:5c:65: c5:0e:e8:cc:a9:98:d5:3a:b4:da:d5:6d:3d:32:d7: 92:ae:a1:d7:aa:0c:68:46:87:0f:66:7c:df:e2:92: 5e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:F1:5B:36:11:CF:54:A1:91:03:00:A5:33:1F:0D:E9:19:86:1E:74 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS35913.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fa00::/40 Signature Algorithm: sha256WithRSAEncryption a7:67:68:4d:1a:44:9f:bc:a5:95:e4:bd:b7:72:33:96:13:7c: dd:bd:2b:d4:a4:e6:86:1c:01:56:80:a5:82:18:0f:d3:fb:78: 3d:89:44:55:8b:90:04:5c:e6:a4:77:7c:66:24:d9:9c:11:51: 2d:e9:44:38:fe:03:cb:dd:f6:ca:0e:cc:bf:68:46:8a:6d:38: de:5a:45:83:ba:77:48:ed:e5:f8:9d:e2:7d:b9:dc:2e:7c:33: 91:22:6a:dc:ee:cf:d7:42:ca:f2:38:87:af:78:22:8d:ff:57: 17:11:96:70:a8:e2:fa:8e:04:fb:20:db:a2:a6:64:34:7c:0b: 93:08:e6:6b:27:2e:d6:2b:6f:e3:99:86:ca:f1:f7:20:e5:2a: 48:25:5d:3f:93:d0:a8:02:66:e0:e0:92:b3:49:cf:93:6b:98: dd:88:7e:a9:4f:4e:95:49:fb:3b:db:6f:fe:81:03:d5:ce:b6: 10:51:88:3b:49:9b:a2:d2:07:25:98:c0:33:7b:82:b1:c9:5d: 60:11:ba:bd:22:44:e2:ba:8c:59:04:70:d2:8a:3e:d0:a8:55: 9f:87:63:2e:bf:56:c8:1b:a4:d5:91:9d:20:d7:11:b4:0e:d3: 39:f4:f7:92:d1:d7:cd:90:4a:97:ad:d1:8e:b7:05:5b:1d:40: 6e:63:aa:c3 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUAr/I8rV7RKw/uxJiXQEQDLdT6YkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTRaFw0yNDExMDMwNDA3MTRaMDMxMTAvBgNV BAMTKEM1RjE1QjM2MTFDRjU0QTE5MTAzMDBBNTMzMUYwREU5MTk4NjFFNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/9//tgjEzLIbCnn6aTZTonCGG 8gogh7s26CS2GFWwKchdSlFtC75svAZJLB+PVtvsA0fQRmMGop96dEHIWuTq8kpU LC6GJUx8lQK3S+3ZeTmhoJen+WDvnF+CfzJEMIx7JZGzXJb000fWFO6GbTl5JN9c T60z5GMnPYI9ddjy7hYtbB8I85UoeONCCJOVPCywK9kste5BH6UjcndzAbasJpF6 jav3B84npgXtgFHhk5cOuyClOQQRsd6VNKVXfmFx9AKPp8B5FKxgGsrB1pzrNTHt 41esz2Se3qT4taxcZcUO6MypmNU6tNrVbT0y15KuodeqDGhGhw9mfN/ikl47AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUxfFbNhHPVKGRAwClMx8N6RmGHnQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMzU5MTMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBA+jANBgkqhkiG9w0BAQsFAAOCAQEAp2do TRpEn7ylleS9t3IzlhN83b0r1KTmhhwBVoClghgP0/t4PYlEVYuQBFzmpHd8ZiTZ nBFRLelEOP4Dy932yg7Mv2hGim043lpFg7p3SO3l+J3ifbncLnwzkSJq3O7P10LK 8jiHr3gijf9XFxGWcKji+o4E+yDboqZkNHwLkwjmaycu1itv45mGyvH3IOUqSCVd P5PQqAJm4OCSs0nPk2uY3Yh+qU9OlUn7O9tv/oED1c62EFGIO0mbotIHJZjAM3uC scldYBG6vSJE4rqMWQRw0oo+0KhVn4djLr9WyBuk1ZGdINcRtA7TOfT3ktHXzZBK l63RjrcFWx1AbmOqww== -----END CERTIFICATE-----Generated at Fri May 3 00:06:27 2024 by rpki-client on console-ams.rpki-client.org