$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS44658.roa File: AS44658.roa (raw, json) Hash identifier: ZbwdSlpsUDrB4rXo3a/EAlrHD6fgyyLKS+1L1alTuWI= Subject key identifier: 6E:C6:ED:63:B4:C3:47:16:43:87:53:19:3C:DB:12:33:CA:1B:67:EA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1C920CD866682EDC65BFE0D353D1C4E20AD2B40B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS44658.roa Signing time: Wed 22 Nov 2023 22:47:42 +0000 ROA not before: Wed 22 Nov 2023 22:42:42 +0000 ROA not after: Wed 20 Nov 2024 22:47:42 +0000 asID: 44658 IP address blocks: 2a05:dfc1:6300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:92:0c:d8:66:68:2e:dc:65:bf:e0:d3:53:d1:c4:e2:0a:d2:b4:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 22 22:42:42 2023 GMT Not After : Nov 20 22:47:42 2024 GMT Subject: CN=6EC6ED63B4C34716438753193CDB1233CA1B67EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:07:36:fc:1e:c4:5b:64:c7:2b:9c:0e:87:85: ee:40:88:49:18:40:5e:1f:7a:10:1f:01:d7:c2:fb: 29:12:be:d3:c4:77:c1:be:fe:10:d7:85:f0:b4:20: 4e:9b:22:82:c7:12:19:c5:c6:21:1f:cd:d5:ad:7a: 57:6b:2d:c5:34:41:98:7e:15:d7:fe:29:5d:59:53: 7d:f8:29:8c:48:71:d6:7a:df:86:79:08:bc:89:19: ad:74:8c:1e:e9:b2:7e:77:57:b3:4b:e3:b8:11:8b: c4:54:4e:e7:f2:03:f1:b1:29:6c:10:b7:13:75:28: 3a:12:24:f5:21:c9:bd:ef:7c:0f:8c:ee:7e:f7:2e: e7:aa:7e:40:4e:c7:3e:7a:5f:b8:58:a0:e1:5c:28: 40:7b:a3:5f:01:ad:35:c8:e5:7b:62:e0:e6:85:9b: 9b:87:26:bd:51:12:0b:10:39:da:80:84:9d:6e:07: eb:de:c7:3d:db:28:fc:92:8a:ff:78:8f:91:28:fa: 8f:59:b1:dd:e3:d5:da:3f:3a:23:fe:d1:de:fe:86: 22:12:38:9e:54:38:00:54:39:56:a1:a2:e1:01:62: cb:43:95:25:59:20:0c:41:96:83:71:7d:63:6d:59: cd:60:85:fd:25:4f:a4:fc:b5:4b:83:5d:9a:a3:a3: 9e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C6:ED:63:B4:C3:47:16:43:87:53:19:3C:DB:12:33:CA:1B:67:EA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS44658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6300::/40 Signature Algorithm: sha256WithRSAEncryption a3:76:cc:bb:dd:a9:9c:e7:14:40:5c:ee:c0:de:ac:ad:4b:76: 0d:11:a6:9e:7e:61:c2:03:cb:d3:11:a5:ea:f5:fb:6d:53:ca: c6:0c:32:3f:3d:b8:c2:a7:9c:e6:73:c9:d4:f4:f5:26:9f:d2: cd:5e:dc:0b:7c:3a:41:9d:d6:24:57:c4:ce:4e:9a:c2:f3:d7: c0:4b:88:98:3a:4c:e3:3c:c6:92:a4:7b:00:68:5c:60:1c:6d: c8:9b:3c:e5:48:a4:85:b2:a9:da:38:85:c6:35:e6:51:79:da: 6c:54:0d:63:61:2d:2b:41:c2:93:7a:72:22:42:ac:52:98:33: 3d:cc:5a:ca:97:79:3f:bb:93:13:e4:b0:82:f5:3e:1d:aa:ce: 47:37:01:5a:3c:74:90:cd:ab:e2:f0:b2:6a:55:02:64:e5:06: 73:e6:f0:e1:e3:e4:42:8a:5b:39:a8:03:2b:8b:cb:be:64:7f: f3:60:46:d3:f1:9d:f4:e6:df:ec:16:02:c6:c5:78:22:56:f9: fd:e3:fb:0f:19:5e:60:c8:dd:5c:ce:d4:7f:68:a4:30:f9:2c: ea:7f:b8:97:78:40:4a:73:73:e0:31:a4:79:dd:a6:bd:9d:9f: 2e:16:31:e6:fc:7f:f1:88:f8:9e:94:d9:2d:45:b7:28:d2:c0: a6:84:52:a4 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUHJIM2GZoLtxlv+DTU9HE4grStAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMjIyMjQyNDJaFw0yNDExMjAyMjQ3NDJaMDMxMTAvBgNV BAMTKDZFQzZFRDYzQjRDMzQ3MTY0Mzg3NTMxOTNDREIxMjMzQ0ExQjY3RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpBzb8HsRbZMcrnA6Hhe5AiEkY QF4fehAfAdfC+ykSvtPEd8G+/hDXhfC0IE6bIoLHEhnFxiEfzdWteldrLcU0QZh+ Fdf+KV1ZU334KYxIcdZ634Z5CLyJGa10jB7psn53V7NL47gRi8RUTufyA/GxKWwQ txN1KDoSJPUhyb3vfA+M7n73LueqfkBOxz56X7hYoOFcKEB7o18BrTXI5Xti4OaF m5uHJr1REgsQOdqAhJ1uB+vexz3bKPySiv94j5Eo+o9Zsd3j1do/OiP+0d7+hiIS OJ5UOABUOVahouEBYstDlSVZIAxBloNxfWNtWc1ghf0lT6T8tUuDXZqjo54dAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUbsbtY7TDRxZDh1MZPNsSM8obZ+owHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDQ2NTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BYzANBgkqhkiG9w0BAQsFAAOCAQEAo3bM u92pnOcUQFzuwN6srUt2DRGmnn5hwgPL0xGl6vX7bVPKxgwyPz24wqec5nPJ1PT1 Jp/SzV7cC3w6QZ3WJFfEzk6awvPXwEuImDpM4zzGkqR7AGhcYBxtyJs85UikhbKp 2jiFxjXmUXnabFQNY2EtK0HCk3pyIkKsUpgzPcxaypd5P7uTE+SwgvU+HarORzcB Wjx0kM2r4vCyalUCZOUGc+bw4ePkQopbOagDK4vLvmR/82BG0/Gd9Obf7BYCxsV4 Ilb5/eP7DxleYMjdXM7Uf2ikMPks6n+4l3hASnNz4DGked2mvZ2fLhYx5vx/8Yj4 npTZLUW3KNLApoRSpA== -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org