$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS36791.roa File: AS36791.roa (raw, json) Hash identifier: iit/oFVxcxAx0Hf/0OKh2ly6c9Zgmjs7ZpsLhkvYav4= Subject key identifier: 36:90:D9:D0:CD:31:47:EE:29:49:16:82:A9:13:A4:25:6E:C8:D7:19 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5DD034192C1E4F5DBF86447534B26F9E68B28401 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS36791.roa Signing time: Tue 27 Feb 2024 12:58:07 +0000 ROA not before: Tue 27 Feb 2024 12:53:07 +0000 ROA not after: Tue 25 Feb 2025 12:58:07 +0000 asID: 36791 IP address blocks: 2a05:dfc1:1e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:d0:34:19:2c:1e:4f:5d:bf:86:44:75:34:b2:6f:9e:68:b2:84:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 27 12:53:07 2024 GMT Not After : Feb 25 12:58:07 2025 GMT Subject: CN=3690D9D0CD3147EE29491682A913A4256EC8D719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d8:5d:07:a5:d9:7d:4c:56:1f:78:62:6e:ea: 0f:4e:cf:89:00:bd:0f:62:33:f3:d3:cf:78:91:0b: bb:7a:fa:56:2e:be:e8:e5:8d:df:97:30:0a:40:77: 88:df:ac:12:01:ec:c6:91:77:4e:db:97:64:1d:53: af:cd:a5:f2:06:59:74:f5:6b:fa:95:fb:26:93:ed: 02:68:99:43:8f:27:c0:b3:42:eb:5f:96:1d:bf:9d: c7:50:95:47:c1:6a:ea:ef:a4:9c:98:44:34:a4:1e: 3d:eb:ed:c8:4b:df:6d:43:ea:56:57:1a:c3:d5:b7: 90:b4:03:21:11:f1:a6:4e:61:4b:58:38:a3:0d:14: f4:cd:61:ec:ca:55:fb:f5:00:17:23:ca:91:08:46: 58:3a:3d:3e:87:09:65:a3:d7:bf:42:aa:b1:ce:08: 19:9f:59:02:0d:1f:01:ef:6c:d0:6a:bd:5d:ef:74: bd:d9:68:d1:32:f9:3a:bd:07:7d:e0:d0:06:56:d3: 6b:f3:5c:f3:c8:a6:48:e4:bf:61:8c:ec:5e:70:0c: b2:ab:db:76:66:54:c3:a8:4d:02:24:fb:cd:e7:b1: a3:53:d2:ba:31:10:3a:98:20:70:ba:ac:0b:f8:11: a4:3e:7f:81:9f:5e:23:be:c5:0e:a9:56:1f:80:96: 29:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:90:D9:D0:CD:31:47:EE:29:49:16:82:A9:13:A4:25:6E:C8:D7:19 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS36791.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1e00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:ff:dd:8b:2f:32:c7:89:f1:9d:21:ed:6b:10:67:b5:97:df: d2:ad:fd:35:09:8e:84:ea:5a:09:9b:ae:93:23:5d:c6:13:22: 29:43:a8:2a:4f:d6:5b:53:e3:dd:80:39:de:f1:3a:16:a3:ce: b2:cc:68:c1:50:41:7e:80:38:97:3a:52:a6:7d:df:66:be:61: d6:c7:5e:64:6d:0e:a3:50:eb:44:f4:9e:e2:b1:64:8b:ac:97: 19:ed:c1:6a:b9:97:32:b5:25:70:93:49:ee:09:d5:ab:1a:d0: d8:0e:19:54:93:3f:29:60:c7:e8:68:e7:76:38:23:a3:06:d7: 12:1f:9e:c2:ca:e4:96:7d:d5:a6:ac:75:9a:ca:6a:b3:25:02: 56:de:36:75:85:09:4c:ea:71:67:fa:03:ef:31:0b:77:96:d1: 2b:0d:39:ef:07:ab:92:9d:34:d3:98:dd:92:df:03:22:b6:18: 7a:f4:24:d5:c6:b2:9f:6a:d5:a1:39:78:bd:a2:48:69:8f:86: af:d5:31:84:1b:e1:d3:56:22:3c:9b:ba:fb:92:9e:f9:6a:df: 68:7d:7a:57:5e:0f:d1:a7:f7:07:9b:e6:3c:a6:74:ab:1a:02: 2b:0f:be:24:d5:03:c6:ef:82:1f:24:b7:33:39:4e:24:ca:46: 29:7e:8f:27 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUXdA0GSweT12/hkR1NLJvnmiyhAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMjcxMjUzMDdaFw0yNTAyMjUxMjU4MDdaMDMxMTAvBgNV BAMTKDM2OTBEOUQwQ0QzMTQ3RUUyOTQ5MTY4MkE5MTNBNDI1NkVDOEQ3MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ2F0Hpdl9TFYfeGJu6g9Oz4kA vQ9iM/PTz3iRC7t6+lYuvujljd+XMApAd4jfrBIB7MaRd07bl2QdU6/NpfIGWXT1 a/qV+yaT7QJomUOPJ8CzQutflh2/ncdQlUfBaurvpJyYRDSkHj3r7chL321D6lZX GsPVt5C0AyER8aZOYUtYOKMNFPTNYezKVfv1ABcjypEIRlg6PT6HCWWj179CqrHO CBmfWQINHwHvbNBqvV3vdL3ZaNEy+Tq9B33g0AZW02vzXPPIpkjkv2GM7F5wDLKr 23ZmVMOoTQIk+83nsaNT0roxEDqYIHC6rAv4EaQ+f4GfXiO+xQ6pVh+AlimpAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUNpDZ0M0xR+4pSRaCqROkJW7I1xkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMzY3OTEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BHjANBgkqhkiG9w0BAQsFAAOCAQEAnv/d iy8yx4nxnSHtaxBntZff0q39NQmOhOpaCZuukyNdxhMiKUOoKk/WW1Pj3YA53vE6 FqPOssxowVBBfoA4lzpSpn3fZr5h1sdeZG0Oo1DrRPSe4rFki6yXGe3BarmXMrUl cJNJ7gnVqxrQ2A4ZVJM/KWDH6GjndjgjowbXEh+ewsrkln3Vpqx1mspqsyUCVt42 dYUJTOpxZ/oD7zELd5bRKw057werkp0005jdkt8DIrYYevQk1cayn2rVoTl4vaJI aY+Gr9UxhBvh01YiPJu6+5Ke+WrfaH16V14P0af3B5vmPKZ0qxoCKw++JNUDxu+C HyS3MzlOJMpGKX6PJw== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org