$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS47272.roa File: AS47272.roa (raw, json) Hash identifier: 68KZWKdQpVei6DtOKXzXuaEtKFQCvVJfY+uu3EIjYXo= Subject key identifier: D3:C7:2A:9C:C4:B9:61:04:1C:F0:E1:4C:F9:5C:FA:4E:C2:E8:F3:C3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1184D5E83A22374DE86B6937E2BC439E6BA8962C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS47272.roa Signing time: Mon 14 Oct 2024 08:45:22 +0000 ROA not before: Mon 14 Oct 2024 08:40:22 +0000 ROA not after: Mon 13 Oct 2025 08:45:22 +0000 asID: 47272 IP address blocks: 2a06:9f81:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 21:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:84:d5:e8:3a:22:37:4d:e8:6b:69:37:e2:bc:43:9e:6b:a8:96:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 14 08:40:22 2024 GMT Not After : Oct 13 08:45:22 2025 GMT Subject: CN=D3C72A9CC4B961041CF0E14CF95CFA4EC2E8F3C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b7:6f:32:24:3a:b5:a3:a4:e0:91:95:8b:15: 38:7a:be:9c:de:a6:46:7c:a2:73:26:2d:9a:fc:5e: 36:ea:fc:3d:84:af:ee:ca:06:8b:84:21:63:73:59: 4a:5d:55:d0:41:3c:86:28:03:84:f3:9b:df:ae:6b: 75:2c:3c:e1:fd:cd:c1:2a:69:cc:4a:41:f6:5f:8f: 2f:28:fc:b3:d5:15:66:1d:d9:b7:58:8f:4d:4e:2b: 9b:84:e9:36:60:29:78:d1:f4:7c:29:47:08:10:3d: 85:5f:68:39:e6:31:37:a5:32:c5:35:26:50:d2:9d: e8:e0:14:62:81:5d:d2:21:a2:70:47:5e:08:fa:30: 70:90:99:5f:8c:da:3b:b1:d3:16:81:b6:0d:46:64: 3e:41:8a:f9:65:a8:58:be:f0:9e:56:6d:be:40:a4: 22:87:ed:00:ad:2b:b8:d7:17:b9:ef:3c:d9:5e:9a: cb:a9:8b:e3:bd:ec:4f:f0:d2:14:68:db:b0:b7:e8: 2c:5f:3c:94:59:0d:31:21:55:8f:d8:15:bf:ac:6a: cb:89:e1:4e:a2:2d:d4:31:2d:34:83:80:d5:66:02: 6f:45:1f:a5:dd:ac:66:61:41:9f:3a:da:af:29:fd: 49:e3:b8:c4:28:be:8c:c8:83:c5:11:13:df:af:cc: c6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C7:2A:9C:C4:B9:61:04:1C:F0:E1:4C:F9:5C:FA:4E:C2:E8:F3:C3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS47272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1000::/40 Signature Algorithm: sha256WithRSAEncryption 77:a6:be:f3:3f:32:4f:88:6a:1d:a0:83:0f:e1:de:e3:c4:29: d8:4e:96:98:13:91:90:3e:ac:4e:bd:11:31:2d:0c:b3:e5:e1: 28:21:e2:5c:80:88:29:25:b0:52:2a:d8:61:8d:c8:f6:45:33: 94:0f:8e:62:ba:e1:e9:29:58:ad:e7:a8:83:00:c6:4a:77:e1: a1:66:c3:34:c4:11:e2:a5:e6:e0:d7:69:92:38:88:7f:0d:70: 4e:0d:67:61:fb:f2:a0:d3:a1:6f:0c:d4:e7:b9:8b:93:18:f8: 07:b6:38:64:48:37:27:dc:71:f6:b7:48:33:bd:fe:e1:5f:c4: 7f:2c:7c:bf:53:d2:ca:c4:47:44:7b:03:01:7f:0e:25:05:6d: e9:5f:b4:b2:be:44:c4:7e:50:06:2f:2a:14:99:94:28:83:9e: be:f5:76:a2:ae:38:81:49:e6:37:87:0e:de:65:31:b1:21:d6: 84:32:16:67:2e:13:74:de:12:cd:f7:82:fa:e3:32:d6:0e:ba: b9:95:03:89:bf:20:ef:8a:6e:48:6b:c1:92:0b:39:ec:ee:c6: af:af:8b:1f:9e:1e:94:41:3d:c4:4f:b5:6a:9e:38:68:ef:6f: e6:ee:2e:98:23:2c:54:3f:f0:6e:ec:42:0f:27:21:b2:b8:57: 88:6c:bf:f8 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUEYTV6DoiN03oa2k34rxDnmuoliwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMTQwODQwMjJaFw0yNTEwMTMwODQ1MjJaMDMxMTAvBgNV BAMTKEQzQzcyQTlDQzRCOTYxMDQxQ0YwRTE0Q0Y5NUNGQTRFQzJFOEYzQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+t28yJDq1o6TgkZWLFTh6vpze pkZ8onMmLZr8Xjbq/D2Er+7KBouEIWNzWUpdVdBBPIYoA4Tzm9+ua3UsPOH9zcEq acxKQfZfjy8o/LPVFWYd2bdYj01OK5uE6TZgKXjR9HwpRwgQPYVfaDnmMTelMsU1 JlDSnejgFGKBXdIhonBHXgj6MHCQmV+M2jux0xaBtg1GZD5BivllqFi+8J5Wbb5A pCKH7QCtK7jXF7nvPNlemsupi+O97E/w0hRo27C36CxfPJRZDTEhVY/YFb+sasuJ 4U6iLdQxLTSDgNVmAm9FH6XdrGZhQZ862q8p/UnjuMQovozIg8URE9+vzMYdAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU08cqnMS5YQQc8OFM+Vz6TsLo88MwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDcyNzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBp+BEDANBgkqhkiG9w0BAQsFAAOCAQEAd6a+ 8z8yT4hqHaCDD+He48Qp2E6WmBORkD6sTr0RMS0Ms+XhKCHiXICIKSWwUirYYY3I 9kUzlA+OYrrh6SlYreeogwDGSnfhoWbDNMQR4qXm4NdpkjiIfw1wTg1nYfvyoNOh bwzU57mLkxj4B7Y4ZEg3J9xx9rdIM73+4V/Efyx8v1PSysRHRHsDAX8OJQVt6V+0 sr5ExH5QBi8qFJmUKIOevvV2oq44gUnmN4cO3mUxsSHWhDIWZy4TdN4SzfeC+uMy 1g66uZUDib8g74puSGvBkgs57O7Gr6+LH54elEE9xE+1ap44aO9v5u4umCMsVD/w buxCDychsrhXiGy/+A== -----END CERTIFICATE-----Generated at Sat Nov 23 06:10:59 2024 by rpki-client on console-ams.rpki-client.org