$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS47272.roa File: AS47272.roa (raw, json) Hash identifier: KMrc2q+JrJfr45+0iFf6Cm1ERFxzwPpa6s7hLzzzBKM= Subject key identifier: 38:C4:76:B7:1B:D2:D3:B9:FF:E7:09:0C:BC:B1:D3:FB:6F:23:21:FD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7ED6D871275627F5102965BA45399E95814E36FF Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS47272.roa Signing time: Mon 13 Nov 2023 08:12:54 +0000 ROA not before: Mon 13 Nov 2023 08:07:54 +0000 ROA not after: Mon 11 Nov 2024 08:12:54 +0000 asID: 47272 IP address blocks: 2a06:9f81:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:d6:d8:71:27:56:27:f5:10:29:65:ba:45:39:9e:95:81:4e:36:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 13 08:07:54 2023 GMT Not After : Nov 11 08:12:54 2024 GMT Subject: CN=38C476B71BD2D3B9FFE7090CBCB1D3FB6F2321FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7c:2b:81:f2:21:d3:de:71:4d:33:68:1d:8d: ab:b3:0d:2c:3f:3f:ea:bd:4f:c4:d1:9b:9e:66:64: 16:76:ab:3f:89:5d:6b:97:2d:5e:3f:13:1b:60:4c: 4e:ef:85:fd:21:50:5e:f4:d2:e9:27:3d:33:f1:d0: 6f:6d:12:de:b9:33:cf:50:18:33:06:c8:89:98:f4: 00:20:1a:ad:1b:0d:cb:97:54:12:5b:fc:b3:84:fa: 79:2c:0c:98:88:5f:1b:d1:db:5e:c9:a7:b0:a1:bd: 62:7a:cb:88:e5:37:27:fd:44:ae:c0:3a:f0:9a:4c: a5:68:65:6e:1b:5e:51:c1:1f:df:dc:7a:37:6c:68: a9:ca:63:13:86:3c:81:f6:9c:aa:b9:ab:0c:88:61: 61:e5:e4:24:65:5e:02:1b:14:ad:ef:77:e6:a9:58: 54:12:91:a6:88:7f:4c:1c:69:bf:94:67:6d:5f:23: cc:61:79:71:35:dc:75:43:a6:7a:48:26:1f:dc:91: ef:f9:52:92:4d:c1:f0:96:33:23:34:dd:b5:58:27: f9:87:b3:74:3f:63:59:ff:90:1c:9b:53:e5:7b:73: 3f:07:77:61:a4:3a:65:3e:0f:99:70:5d:49:e0:66: ec:1b:20:12:39:59:3d:09:5d:25:a9:8b:79:e1:c5: 8c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C4:76:B7:1B:D2:D3:B9:FF:E7:09:0C:BC:B1:D3:FB:6F:23:21:FD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS47272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1000::/40 Signature Algorithm: sha256WithRSAEncryption 8b:2a:e2:a1:3f:19:8b:07:45:34:61:3c:92:be:62:82:63:f9: 03:fd:07:f2:df:af:30:90:5f:08:03:2e:04:19:a1:ef:cc:d4: d9:d1:e2:ae:0b:70:28:30:24:bf:2b:16:d3:f4:55:d6:c3:73: d6:cc:ec:ae:02:1d:23:45:ac:44:58:43:a6:b5:3d:a7:86:79: 27:cc:7c:1b:32:85:78:96:88:d4:3e:65:48:73:fc:53:11:9f: 68:fb:58:da:22:9d:13:c0:52:cb:c4:bb:12:58:01:b9:6e:d4: a2:37:a6:95:e5:4b:78:e1:fd:e6:13:94:08:12:45:4b:98:76: b2:9c:83:7f:77:b9:2b:05:14:36:f6:54:91:c2:a7:ea:8a:a0: 5f:53:84:77:ec:26:89:3a:ec:9c:71:3d:83:e9:07:cb:3e:86: 51:1f:be:3e:1c:46:5d:8e:15:4d:67:a1:97:c8:d9:c6:4b:65: 53:c1:fa:73:ff:a7:e9:09:5d:33:7e:d8:e3:75:1e:e5:60:f9: cd:e3:2b:20:16:0f:b8:47:19:f7:76:c7:90:41:4b:89:c3:8a: a2:29:1d:64:57:a7:6c:08:7a:d9:2c:31:7c:8c:81:14:e9:69: 53:fc:4b:48:04:7e:c8:c4:ca:69:c9:89:f4:3b:fc:6f:2d:8e: 2c:81:7c:72 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUftbYcSdWJ/UQKWW6RTmelYFONv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMTMwODA3NTRaFw0yNDExMTEwODEyNTRaMDMxMTAvBgNV BAMTKDM4QzQ3NkI3MUJEMkQzQjlGRkU3MDkwQ0JDQjFEM0ZCNkYyMzIxRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZfCuB8iHT3nFNM2gdjauzDSw/ P+q9T8TRm55mZBZ2qz+JXWuXLV4/ExtgTE7vhf0hUF700uknPTPx0G9tEt65M89Q GDMGyImY9AAgGq0bDcuXVBJb/LOE+nksDJiIXxvR217Jp7ChvWJ6y4jlNyf9RK7A OvCaTKVoZW4bXlHBH9/cejdsaKnKYxOGPIH2nKq5qwyIYWHl5CRlXgIbFK3vd+ap WFQSkaaIf0wcab+UZ21fI8xheXE13HVDpnpIJh/cke/5UpJNwfCWMyM03bVYJ/mH s3Q/Y1n/kBybU+V7cz8Hd2GkOmU+D5lwXUngZuwbIBI5WT0JXSWpi3nhxYwzAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUOMR2txvS07n/5wkMvLHT+28jIf0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDcyNzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBp+BEDANBgkqhkiG9w0BAQsFAAOCAQEAiyri oT8ZiwdFNGE8kr5igmP5A/0H8t+vMJBfCAMuBBmh78zU2dHirgtwKDAkvysW0/RV 1sNz1szsrgIdI0WsRFhDprU9p4Z5J8x8GzKFeJaI1D5lSHP8UxGfaPtY2iKdE8BS y8S7ElgBuW7UojemleVLeOH95hOUCBJFS5h2spyDf3e5KwUUNvZUkcKn6oqgX1OE d+wmiTrsnHE9g+kHyz6GUR++PhxGXY4VTWehl8jZxktlU8H6c/+n6QldM37Y43Ue 5WD5zeMrIBYPuEcZ93bHkEFLicOKoikdZFenbAh62SwxfIyBFOlpU/xLSAR+yMTK acmJ9Dv8by2OLIF8cg== -----END CERTIFICATE-----Generated at Thu May 16 13:03:38 2024 by rpki-client on console-ams.rpki-client.org