$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS396998.roa File: AS396998.roa (raw, json) Hash identifier: Q5xgTbWJE4G/EqfXRqNrADqoF0Nk66Zflpk67iqXCTU= Subject key identifier: F1:CD:D0:42:B2:DE:8A:F7:CF:7F:5C:F3:4C:FD:C4:03:16:C1:57:E6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7B0F3A02CF5BFA77986D5BC604596226ED7289EC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS396998.roa Signing time: Sun 05 Nov 2023 04:07:11 +0000 ROA not before: Sun 05 Nov 2023 04:02:11 +0000 ROA not after: Sun 03 Nov 2024 04:07:11 +0000 asID: 396998 IP address blocks: 2a0a:6040:fa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0f:3a:02:cf:5b:fa:77:98:6d:5b:c6:04:59:62:26:ed:72:89:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:11 2023 GMT Not After : Nov 3 04:07:11 2024 GMT Subject: CN=F1CDD042B2DE8AF7CF7F5CF34CFDC40316C157E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a2:f8:38:83:29:42:5f:a1:7e:9f:9f:d8:d5: 07:75:a5:49:62:7f:a3:5b:17:f5:32:4f:e7:51:5d: ea:b3:c0:50:54:8f:1b:7c:8d:ee:01:2d:0e:40:db: ec:c6:c5:5f:87:ff:c8:fd:d6:3e:24:ad:d7:6f:1e: 09:6a:06:16:18:e3:58:a9:58:8a:b7:f7:28:45:89: c2:0b:ef:2e:7a:7d:fb:44:79:1e:cd:e5:80:b9:69: ee:b3:2f:20:53:70:04:68:3f:ab:68:7b:50:59:e4: 48:b9:29:ad:3a:92:b4:11:84:5b:46:af:06:ec:91: 86:66:19:a7:60:b3:03:60:8d:86:91:4a:95:a8:e7: 4d:56:80:26:b4:11:6e:c5:94:9e:dc:41:63:34:8c: ad:52:0e:82:51:e1:1a:57:b4:8c:c5:4a:28:a9:e4: 15:b9:de:f3:99:c4:dd:dc:52:df:da:c5:43:8c:58: 83:bd:72:78:33:d7:7b:4c:9c:2b:b5:ac:22:e2:b8: 68:a4:b0:9e:da:d0:42:65:6b:c7:b4:fe:a1:d4:47: bf:e2:bc:fd:68:25:c1:08:87:02:49:a9:f8:81:ec: bb:97:a1:50:51:ac:4e:30:94:9d:25:eb:30:89:24: cf:44:ad:45:58:ab:5d:2c:67:28:51:da:c0:63:8d: c0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:CD:D0:42:B2:DE:8A:F7:CF:7F:5C:F3:4C:FD:C4:03:16:C1:57:E6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS396998.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fa00::/40 Signature Algorithm: sha256WithRSAEncryption 15:9f:36:2f:3c:fd:a3:6d:c4:43:1d:ca:58:a4:6c:ec:1c:89: de:4d:15:ed:13:f5:97:87:34:6d:65:d6:be:e1:5a:0b:cd:fd: d6:05:aa:5c:ae:23:57:4e:95:b3:1f:cc:6d:48:61:aa:5a:9a: 45:1c:4b:64:97:a8:d1:83:07:e8:78:85:30:d9:14:a1:9f:b4: 0f:9a:c9:c7:72:69:8a:0a:5a:9a:fa:df:05:0b:e3:3e:2b:38: 99:05:fe:17:74:e2:ab:85:6f:e4:ae:07:5a:3a:53:ec:1a:cc: 14:8c:a2:fa:05:a8:06:25:d2:71:3c:4e:9a:24:b6:67:a6:e7: 4c:af:87:96:7c:25:44:99:a5:04:4d:d0:59:68:5d:9a:2d:ce: 8b:0b:dc:c6:22:fb:97:43:7a:1b:44:e7:69:c5:db:fb:36:15: e4:15:a5:99:89:a9:c1:06:10:b1:df:b4:b7:ca:5e:82:67:ea: 94:af:68:60:97:de:2f:88:80:4b:ab:25:63:55:37:24:3f:b8: 04:23:5b:30:3b:aa:ee:18:16:48:44:27:35:f1:79:95:f7:c4: 4a:65:ae:10:c4:b9:cd:e2:b5:ac:9d:83:7e:0d:47:c2:b2:76: 2a:20:c5:4d:b5:f6:1c:26:3f:ca:99:b7:0d:9b:08:4a:0d:85: aa:9a:90:bf -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUew86As9b+neYbVvGBFliJu1yiewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTFaFw0yNDExMDMwNDA3MTFaMDMxMTAvBgNV BAMTKEYxQ0REMDQyQjJERThBRjdDRjdGNUNGMzRDRkRDNDAzMTZDMTU3RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ovg4gylCX6F+n5/Y1Qd1pUli f6NbF/UyT+dRXeqzwFBUjxt8je4BLQ5A2+zGxV+H/8j91j4krddvHglqBhYY41ip WIq39yhFicIL7y56fftEeR7N5YC5ae6zLyBTcARoP6toe1BZ5Ei5Ka06krQRhFtG rwbskYZmGadgswNgjYaRSpWo501WgCa0EW7FlJ7cQWM0jK1SDoJR4RpXtIzFSiip 5BW53vOZxN3cUt/axUOMWIO9cngz13tMnCu1rCLiuGiksJ7a0EJla8e0/qHUR7/i vP1oJcEIhwJJqfiB7LuXoVBRrE4wlJ0l6zCJJM9ErUVYq10sZyhR2sBjjcD3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8c3QQrLeivfPf1zzTP3EAxbBV+YwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMzk2OTk4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPowDQYJKoZIhvcNAQELBQADggEBABWf Ni88/aNtxEMdylikbOwcid5NFe0T9ZeHNG1l1r7hWgvN/dYFqlyuI1dOlbMfzG1I YapamkUcS2SXqNGDB+h4hTDZFKGftA+aycdyaYoKWpr63wUL4z4rOJkF/hd04quF b+SuB1o6U+wazBSMovoFqAYl0nE8Tpoktmem50yvh5Z8JUSZpQRN0FloXZotzosL 3MYi+5dDehtE52nF2/s2FeQVpZmJqcEGELHftLfKXoJn6pSvaGCX3i+IgEurJWNV NyQ/uAQjWzA7qu4YFkhEJzXxeZX3xEplrhDEuc3itaydg34NR8KydiogxU219hwm P8qZtw2bCEoNhaqakL8= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org