$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS395649.roa File: AS395649.roa (raw, json) Hash identifier: mYqTzTdGbvKVpR/xe+VRyc3ohJC/Wm/VjHexKWEXav8= Subject key identifier: DE:C7:D2:56:64:E4:71:74:4D:7C:79:DB:F5:E4:C1:F2:56:24:8A:D4 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 78E13A6905A5D1365A7A31C8BD43AEEBC5E9D24D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS395649.roa Signing time: Thu 08 Feb 2024 08:03:59 +0000 ROA not before: Thu 08 Feb 2024 07:58:59 +0000 ROA not after: Thu 06 Feb 2025 08:03:59 +0000 asID: 395649 IP address blocks: 2a05:dfc1:8600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e1:3a:69:05:a5:d1:36:5a:7a:31:c8:bd:43:ae:eb:c5:e9:d2:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 8 07:58:59 2024 GMT Not After : Feb 6 08:03:59 2025 GMT Subject: CN=DEC7D25664E471744D7C79DBF5E4C1F256248AD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f3:75:61:e1:53:62:99:52:70:6b:63:59:50: 70:3b:29:a5:14:24:60:c7:76:76:eb:0d:c3:32:19: 30:bf:33:2e:0c:7a:1d:1c:a0:81:db:bc:d9:ac:9b: 01:de:92:eb:b5:fa:e8:a3:4a:5e:28:a0:02:a5:99: bf:03:df:0b:bd:f4:59:df:cb:d6:d3:9d:2d:ea:57: 6f:fa:05:84:d3:06:98:eb:28:0b:68:d5:1a:5e:8a: 8f:3e:9a:36:4e:1e:ee:d1:ba:91:53:3f:7c:39:5d: ce:0d:88:8f:ec:96:1b:55:ba:e8:ab:ef:32:fc:a6: ca:97:e9:a6:63:e3:77:63:43:71:6d:3b:0d:79:e6: 04:c8:1a:49:0e:68:fe:b8:e0:7c:9a:88:54:fc:fb: 20:b3:3a:a7:7e:53:22:ca:29:0c:24:33:5f:61:a6: 4a:67:ea:f5:eb:8a:bd:b6:be:77:7c:84:30:b0:24: a4:1b:28:c8:e2:3c:36:a5:9a:bc:2e:86:2f:1e:98: fa:6d:59:80:4c:47:39:7c:ee:21:3d:cf:d3:fb:11: 4d:66:c5:e0:b4:05:5c:1c:51:78:58:5e:e4:7a:8a: bc:10:3a:49:ad:85:c4:6d:af:4b:8f:1e:31:e4:5b: 11:46:60:8f:bb:ca:9c:bf:d6:ff:21:01:ac:b6:21: 05:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C7:D2:56:64:E4:71:74:4D:7C:79:DB:F5:E4:C1:F2:56:24:8A:D4 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS395649.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8600::/40 Signature Algorithm: sha256WithRSAEncryption bf:13:61:c6:78:32:bd:c5:6b:fa:43:5b:54:d8:4e:0b:d1:0e: 53:92:df:db:6a:f0:20:11:a3:e2:8d:03:9b:39:05:31:cb:ef: f4:df:6f:ca:6d:51:70:6c:92:06:62:5a:09:0e:18:6d:42:53: 43:07:39:a3:4a:7b:d7:2e:4f:b4:e8:47:2e:4c:8a:e3:08:2a: c0:78:a4:68:cc:4d:85:73:9c:c2:39:08:9b:0a:de:8b:8f:0f: ce:d9:27:d5:e7:14:b4:3a:ad:d3:ce:70:57:e1:98:35:ab:f3: bd:bf:54:7d:e2:36:c8:f3:56:4c:92:42:e3:9f:a6:22:87:bf: 07:34:fe:04:bc:b9:5b:12:f7:60:39:ae:c0:a9:8a:2d:fb:e8: a2:d4:29:f4:5b:ec:01:ce:ba:c2:bb:ca:8e:9c:75:f5:f6:0a: b7:a8:c7:96:ff:77:a4:63:39:48:0e:8d:d6:55:9f:6c:b3:97: 2c:49:b5:3b:d7:15:18:9d:63:13:f3:f5:db:36:60:34:08:0d: 9c:a0:95:7b:72:35:3c:06:95:9b:d1:5b:94:f8:d6:64:10:c5: 11:8f:e1:0d:27:84:60:be:6a:47:6e:0b:05:ff:cc:fe:c0:d2: 99:5d:fb:1e:ed:b6:f1:53:36:96:b7:d6:7d:c7:b0:d4:7a:c2: 15:d9:82:e9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUeOE6aQWl0TZaejHIvUOu68Xp0k0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMDgwNzU4NTlaFw0yNTAyMDYwODAzNTlaMDMxMTAvBgNV BAMTKERFQzdEMjU2NjRFNDcxNzQ0RDdDNzlEQkY1RTRDMUYyNTYyNDhBRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC983Vh4VNimVJwa2NZUHA7KaUU JGDHdnbrDcMyGTC/My4Meh0coIHbvNmsmwHekuu1+uijSl4ooAKlmb8D3wu99Fnf y9bTnS3qV2/6BYTTBpjrKAto1Rpeio8+mjZOHu7RupFTP3w5Xc4NiI/slhtVuuir 7zL8psqX6aZj43djQ3FtOw155gTIGkkOaP644HyaiFT8+yCzOqd+UyLKKQwkM19h pkpn6vXrir22vnd8hDCwJKQbKMjiPDalmrwuhi8emPptWYBMRzl87iE9z9P7EU1m xeC0BVwcUXhYXuR6irwQOkmthcRtr0uPHjHkWxFGYI+7ypy/1v8hAay2IQXXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU3sfSVmTkcXRNfHnb9eTB8lYkitQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMzk1NjQ5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYYwDQYJKoZIhvcNAQELBQADggEBAL8T YcZ4Mr3Fa/pDW1TYTgvRDlOS39tq8CARo+KNA5s5BTHL7/Tfb8ptUXBskgZiWgkO GG1CU0MHOaNKe9cuT7ToRy5MiuMIKsB4pGjMTYVznMI5CJsK3ouPD87ZJ9XnFLQ6 rdPOcFfhmDWr872/VH3iNsjzVkySQuOfpiKHvwc0/gS8uVsS92A5rsCpii376KLU KfRb7AHOusK7yo6cdfX2Creox5b/d6RjOUgOjdZVn2yzlyxJtTvXFRidYxPz9ds2 YDQIDZyglXtyNTwGlZvRW5T41mQQxRGP4Q0nhGC+akduCwX/zP7A0pld+x7ttvFT Npa31n3HsNR6whXZguk= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org