$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS44658.roa File: AS44658.roa (raw, json) Hash identifier: MdvwlzJszMmR/Ro0qN1tWUElzS2BtazV02CmX+dh/CA= Subject key identifier: 26:EE:0D:ED:51:68:77:79:1C:62:8E:4D:4B:15:8B:A1:62:11:E9:1B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 245109A488BC07837B43D3A415B469810AB14768 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS44658.roa Signing time: Wed 23 Oct 2024 23:45:27 +0000 ROA not before: Wed 23 Oct 2024 23:40:27 +0000 ROA not after: Wed 22 Oct 2025 23:45:27 +0000 asID: 44658 IP address blocks: 2a05:dfc1:6300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:51:09:a4:88:bc:07:83:7b:43:d3:a4:15:b4:69:81:0a:b1:47:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 23 23:40:27 2024 GMT Not After : Oct 22 23:45:27 2025 GMT Subject: CN=26EE0DED516877791C628E4D4B158BA16211E91B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2f:b2:68:b0:bc:00:29:17:8d:ce:42:7b:22: c9:d6:40:09:38:49:7b:19:d3:6f:6e:78:40:80:8a: a9:a6:56:e7:f4:39:d5:83:24:f5:fb:df:68:78:50: c5:2f:00:87:25:4f:26:b9:a8:5d:ca:40:6a:a4:d0: 84:6c:9b:5b:14:99:4a:0f:ca:c1:8b:d1:e5:db:c8: af:fd:0b:c2:c8:5b:b9:98:0f:b3:f8:6c:43:df:6e: 86:20:b9:32:8e:6a:6a:3d:b3:73:52:48:83:51:fd: dd:4f:ad:62:f5:44:d5:2a:d9:28:8d:5f:8d:9d:ab: eb:4c:4a:af:db:9b:0e:ac:6c:e0:fd:2f:9d:12:75: 9a:e6:1a:37:e8:f5:fa:da:59:3c:3a:94:fc:a9:ff: 3d:28:fc:70:3b:5d:c1:6d:fb:53:f5:bb:7d:e4:4f: dd:52:50:f7:2a:d5:6a:b1:8d:01:dc:54:df:32:68: 5d:6b:75:96:46:b4:70:6a:e9:0f:68:95:3a:57:36: dd:27:df:7e:5e:56:6e:a8:b5:bf:84:51:30:d9:cd: 1e:24:ba:b4:69:dc:86:17:69:1f:ea:4c:17:be:d5: 01:a9:a4:5d:96:2b:cf:56:d0:14:82:5e:83:1f:85: e7:51:27:3d:1f:56:2c:14:90:ab:0d:57:e2:33:b1: 80:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:EE:0D:ED:51:68:77:79:1C:62:8E:4D:4B:15:8B:A1:62:11:E9:1B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS44658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6300::/40 Signature Algorithm: sha256WithRSAEncryption 0f:c9:81:8d:48:88:d2:bb:d2:58:76:03:d2:50:76:b2:57:58: 10:fd:b4:da:33:bb:e3:78:b0:b2:af:8a:8a:e3:bc:e3:10:d4: e4:3b:0c:c7:50:3c:36:8c:57:e1:5e:43:4c:6b:a6:8f:5c:6f: fb:b6:d2:11:8c:6b:d7:e3:d7:e5:96:6a:7f:c1:49:d0:e9:91: f7:ad:24:d9:80:57:71:ad:a8:4e:24:35:fa:e6:d2:12:60:1f: 53:2b:48:fc:2e:db:38:c3:36:38:4d:96:4e:32:45:93:7f:d2: 0d:b4:0d:6f:aa:53:6a:1d:8b:fa:55:08:03:e3:ff:04:c1:69: c4:de:4d:08:cf:b9:e7:b5:93:37:ab:b2:d1:d8:ff:ff:57:58: df:df:3b:ff:b0:b2:82:b8:11:1d:de:7d:7b:5b:b4:33:f9:ab: ea:42:60:4c:b0:68:1c:3d:0d:d8:4a:5d:a2:1b:40:b9:b2:df: 38:b4:f9:97:4a:04:67:6c:b5:ed:0b:ce:b3:d1:66:2a:63:d9: 75:3e:eb:ca:ff:9e:9d:22:a4:42:28:ac:ab:35:a6:13:e4:67: 74:f9:fa:fa:d4:0d:da:e2:32:4e:60:0d:38:2f:f7:27:c7:2a: 69:14:ee:24:92:7a:bc:64:39:ad:35:da:1e:4b:f1:5f:dc:4b: 6a:27:23:27 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUJFEJpIi8B4N7Q9OkFbRpgQqxR2gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMjMyMzQwMjdaFw0yNTEwMjIyMzQ1MjdaMDMxMTAvBgNV BAMTKDI2RUUwREVENTE2ODc3NzkxQzYyOEU0RDRCMTU4QkExNjIxMUU5MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHL7JosLwAKReNzkJ7IsnWQAk4 SXsZ029ueECAiqmmVuf0OdWDJPX732h4UMUvAIclTya5qF3KQGqk0IRsm1sUmUoP ysGL0eXbyK/9C8LIW7mYD7P4bEPfboYguTKOamo9s3NSSINR/d1PrWL1RNUq2SiN X42dq+tMSq/bmw6sbOD9L50SdZrmGjfo9fraWTw6lPyp/z0o/HA7XcFt+1P1u33k T91SUPcq1WqxjQHcVN8yaF1rdZZGtHBq6Q9olTpXNt0n335eVm6otb+EUTDZzR4k urRp3IYXaR/qTBe+1QGppF2WK89W0BSCXoMfhedRJz0fViwUkKsNV+IzsYBJAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUJu4N7VFod3kcYo5NSxWLoWIR6RswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDQ2NTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BYzANBgkqhkiG9w0BAQsFAAOCAQEAD8mB jUiI0rvSWHYD0lB2sldYEP202jO743iwsq+KiuO84xDU5DsMx1A8NoxX4V5DTGum j1xv+7bSEYxr1+PX5ZZqf8FJ0OmR960k2YBXca2oTiQ1+ubSEmAfUytI/C7bOMM2 OE2WTjJFk3/SDbQNb6pTah2L+lUIA+P/BMFpxN5NCM+557WTN6uy0dj//1dY3987 /7CygrgRHd59e1u0M/mr6kJgTLBoHD0N2EpdohtAubLfOLT5l0oEZ2y17QvOs9Fm KmPZdT7ryv+enSKkQiisqzWmE+RndPn6+tQN2uIyTmANOC/3J8cqaRTuJJJ6vGQ5 rTXaHkvxX9xLaicjJw== -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org