$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS396998.roa File: AS396998.roa (raw, json) Hash identifier: UG/xeeh94nN9NN2i1VlB15gNNnqt0e0KY3sbqX30aTU= Subject key identifier: 6B:7D:00:66:71:2A:60:40:D9:A9:0B:E5:02:FB:35:C7:A5:6E:C5:F8 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 688A02E6473766528C1EBB68E7FCEEADAC8C6B85 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS396998.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 396998 IP address blocks: 2a0a:6040:fa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:8a:02:e6:47:37:66:52:8c:1e:bb:68:e7:fc:ee:ad:ac:8c:6b:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=6B7D0066712A6040D9A90BE502FB35C7A56EC5F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:71:a9:95:9b:ab:86:7d:eb:46:6c:f6:69:bd: 9f:9d:4d:02:4b:cd:06:e2:c7:72:e8:44:31:94:9c: ce:48:cd:c1:7d:5f:e7:6d:4b:76:5b:2d:1f:2e:e8: 0d:45:cf:d5:41:5f:96:37:37:18:81:27:0a:5f:b5: 62:a9:d3:59:dc:b8:9f:aa:dc:19:1f:c4:5c:e0:1d: a3:37:d1:48:dd:f0:c1:b9:a5:e0:19:85:db:06:cf: 72:0d:8a:bc:93:bf:5b:49:86:c5:7f:00:7a:8d:a7: 94:69:37:87:c1:fa:f2:61:0a:63:af:8b:34:2e:42: be:bc:28:02:d8:ba:ec:4e:78:1f:83:bd:cc:18:d5: 73:86:3a:8e:58:10:87:77:d3:1e:fc:d3:ba:b1:d0: d5:5e:f3:2d:f3:23:6c:98:30:5c:c4:b5:3c:e5:e3: 85:b6:ba:5e:6d:79:a6:c5:6f:4f:dc:ff:26:00:94: b7:f0:e0:6a:8a:64:75:84:7c:0e:75:8a:37:f5:fb: 87:7c:81:9d:29:2c:50:27:74:2c:9d:a0:64:d9:ae: 97:02:d0:40:92:1c:78:4f:f7:92:1b:82:b3:33:53: 2f:ca:fe:39:81:79:96:dc:bb:a7:5d:36:63:10:07: 0e:a0:44:74:51:52:e9:0d:d7:42:4e:f7:7d:63:63: dc:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7D:00:66:71:2A:60:40:D9:A9:0B:E5:02:FB:35:C7:A5:6E:C5:F8 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS396998.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fa00::/40 Signature Algorithm: sha256WithRSAEncryption 8c:dc:0c:ca:2e:39:ea:a4:53:02:8b:fc:07:4c:b6:8d:44:de: 08:c2:c2:08:d0:f4:92:c0:ce:44:01:1a:ab:2d:fb:30:28:60: 9f:2e:c2:ae:3f:a7:80:53:87:b1:be:c4:0f:76:f0:d9:7c:39: f6:0d:ae:b5:d1:4f:3e:65:2c:1f:5a:b9:be:e1:fe:d2:24:85: 2c:22:48:a3:9a:51:4c:08:77:82:e7:ec:1e:0b:2b:a8:cf:48: d4:c3:1f:ce:d2:85:dc:ea:cc:b7:14:3b:8f:ee:70:67:a5:aa: d2:04:d9:93:78:d5:e0:ad:64:5e:d5:0b:48:c0:00:31:92:db: de:c2:a9:62:3e:13:0d:ac:2a:e6:80:19:c6:3c:a4:20:15:57: a9:59:13:66:80:88:02:ca:93:a5:90:10:9d:47:22:72:a0:83: 77:16:3a:a5:a1:cc:fe:81:7d:bb:f4:99:cf:cf:11:e1:3f:9f: 93:36:57:55:13:3e:fa:1f:cc:31:a2:cb:16:74:9e:08:60:4b: 72:49:b3:83:ed:d8:d2:60:2f:ab:b3:aa:2e:24:6d:5f:28:e1: 89:4c:bf:3f:f4:7c:f8:92:55:9a:85:c6:02:e6:ca:2d:01:9e: 3a:f1:40:b6:25:ed:95:bd:d7:34:fc:09:07:ac:b6:24:57:46: 55:8e:cd:01 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaIoC5kc3ZlKMHrto5/zurayMa4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKDZCN0QwMDY2NzEyQTYwNDBEOUE5MEJFNTAyRkIzNUM3QTU2RUM1RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMcamVm6uGfetGbPZpvZ+dTQJL zQbix3LoRDGUnM5IzcF9X+dtS3ZbLR8u6A1Fz9VBX5Y3NxiBJwpftWKp01ncuJ+q 3BkfxFzgHaM30Ujd8MG5peAZhdsGz3INiryTv1tJhsV/AHqNp5RpN4fB+vJhCmOv izQuQr68KALYuuxOeB+DvcwY1XOGOo5YEId30x7807qx0NVe8y3zI2yYMFzEtTzl 44W2ul5teabFb0/c/yYAlLfw4GqKZHWEfA51ijf1+4d8gZ0pLFAndCydoGTZrpcC 0ECSHHhP95IbgrMzUy/K/jmBeZbcu6ddNmMQBw6gRHRRUukN10JO931jY9xhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUa30AZnEqYEDZqQvlAvs1x6VuxfgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMzk2OTk4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPowDQYJKoZIhvcNAQELBQADggEBAIzc DMouOeqkUwKL/AdMto1E3gjCwgjQ9JLAzkQBGqst+zAoYJ8uwq4/p4BTh7G+xA92 8Nl8OfYNrrXRTz5lLB9aub7h/tIkhSwiSKOaUUwId4Ln7B4LK6jPSNTDH87Shdzq zLcUO4/ucGelqtIE2ZN41eCtZF7VC0jAADGS297CqWI+Ew2sKuaAGcY8pCAVV6lZ E2aAiALKk6WQEJ1HInKgg3cWOqWhzP6Bfbv0mc/PEeE/n5M2V1UTPvofzDGiyxZ0 nghgS3JJs4Pt2NJgL6uzqi4kbV8o4YlMvz/0fPiSVZqFxgLmyi0BnjrxQLYl7ZW9 1zT8CQestiRXRlWOzQE= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org