$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48231.roa File: AS48231.roa (raw, json) Hash identifier: HsQ94sup/tNvv9l5Jc0GfWEjV3p2mGlOIligeTo2Jkc= Subject key identifier: 8F:7E:13:E3:22:BE:AA:39:82:D0:88:62:1A:6A:7E:88:C1:E7:92:41 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7980DC8DCD424A9FDB416F8191637BBB59AF5350 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48231.roa Signing time: Tue 22 Aug 2023 09:57:16 +0000 ROA not before: Tue 22 Aug 2023 09:52:16 +0000 ROA not after: Tue 20 Aug 2024 09:57:16 +0000 asID: 48231 IP address blocks: 2a05:dfc1:5e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:80:dc:8d:cd:42:4a:9f:db:41:6f:81:91:63:7b:bb:59:af:53:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 22 09:52:16 2023 GMT Not After : Aug 20 09:57:16 2024 GMT Subject: CN=8F7E13E322BEAA3982D088621A6A7E88C1E79241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:59:29:57:34:24:a9:56:e7:b1:b2:48:fe:42: 4d:c5:93:c8:5a:2b:62:46:ce:df:39:bd:16:55:00: ce:c6:5e:cd:30:64:f3:74:43:a6:65:5d:e5:df:34: c6:f7:de:49:66:4b:b3:51:cf:65:09:73:f3:19:2a: 95:18:bb:7a:dc:c1:4a:87:fe:29:bd:db:1f:50:45: a7:46:b5:7d:9f:79:f9:c9:33:0b:4f:40:38:1b:32: d4:a6:da:7d:bc:28:d9:7e:82:c6:ab:fe:0c:b2:4c: 67:4e:37:64:88:69:90:c2:9c:8c:d2:5a:12:15:78: a6:7b:8e:b6:a4:ce:cc:95:67:a2:bf:33:28:a4:9a: 72:ec:88:0e:85:0a:ee:a7:dd:79:ff:54:7a:e2:5e: 5f:e7:fa:4f:7a:97:6c:4b:78:60:0d:8d:d6:e7:82: ae:d1:03:62:7b:b9:3a:d4:07:20:37:a3:20:a9:35: 16:b5:8c:0c:69:ed:0c:4e:21:1a:02:f2:b1:ac:dd: 80:0d:50:d6:9a:5e:36:ba:39:e3:68:e5:3d:f2:7b: 77:2a:ee:86:5d:2a:c1:1f:cd:8a:c8:8f:92:4b:ef: c1:ad:43:b3:4e:57:36:b5:26:3c:24:9b:ce:38:0a: 9b:27:f4:ff:6c:ee:17:09:e5:4e:ce:6d:32:b2:1c: 21:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7E:13:E3:22:BE:AA:39:82:D0:88:62:1A:6A:7E:88:C1:E7:92:41 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5e00::/40 Signature Algorithm: sha256WithRSAEncryption 53:da:01:e0:2f:22:cb:ec:df:2c:a0:eb:c5:8d:69:54:8f:e8: 3e:c9:83:48:b0:d1:e6:1c:05:d9:08:89:b2:76:7b:21:a4:fd: 0b:85:0c:8a:9c:93:58:08:fa:4a:66:d6:26:84:6c:34:e9:3d: 65:e5:c5:06:7f:4f:f0:62:17:f0:3b:56:06:24:75:40:b3:7f: cf:18:cc:42:93:dd:35:50:db:6e:81:59:53:db:12:5f:e6:ec: 13:a2:40:4e:75:ef:58:6b:60:f8:ac:99:58:62:4c:0d:f4:76: 05:76:48:d1:24:f9:4c:0e:89:01:74:53:d0:f6:25:d7:59:27: 00:da:e7:72:f3:4b:5f:b2:12:ed:a5:aa:d6:3f:53:0a:fa:e4: eb:b9:3c:ba:81:90:ee:28:b4:93:d8:ab:fa:ed:cc:9f:68:34: 7e:ca:00:46:ed:94:61:c7:54:6d:68:49:55:d8:8d:e2:95:aa: 25:38:5c:06:3a:cf:b2:77:5a:79:d7:3c:ee:f6:50:75:d9:0b: 51:e4:54:a7:43:2a:40:34:b6:ed:cb:8c:4a:c6:8b:39:d6:17: 43:d6:ab:96:8b:ee:38:34:ab:c8:18:55:59:b1:f0:2b:68:ff: 81:87:48:9f:d6:91:e2:53:fe:af:5e:c4:b2:77:9a:1a:95:21: 3e:88:0e:6e -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUeYDcjc1CSp/bQW+BkWN7u1mvU1AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA4MjIwOTUyMTZaFw0yNDA4MjAwOTU3MTZaMDMxMTAvBgNV BAMTKDhGN0UxM0UzMjJCRUFBMzk4MkQwODg2MjFBNkE3RTg4QzFFNzkyNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNWSlXNCSpVuexskj+Qk3Fk8ha K2JGzt85vRZVAM7GXs0wZPN0Q6ZlXeXfNMb33klmS7NRz2UJc/MZKpUYu3rcwUqH /im92x9QRadGtX2fefnJMwtPQDgbMtSm2n28KNl+gsar/gyyTGdON2SIaZDCnIzS WhIVeKZ7jrakzsyVZ6K/MyikmnLsiA6FCu6n3Xn/VHriXl/n+k96l2xLeGANjdbn gq7RA2J7uTrUByA3oyCpNRa1jAxp7QxOIRoC8rGs3YANUNaaXja6OeNo5T3ye3cq 7oZdKsEfzYrIj5JL78GtQ7NOVza1Jjwkm844Cpsn9P9s7hcJ5U7ObTKyHCGtAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUj34T4yK+qjmC0IhiGmp+iMHnkkEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDgyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BXjANBgkqhkiG9w0BAQsFAAOCAQEAU9oB 4C8iy+zfLKDrxY1pVI/oPsmDSLDR5hwF2QiJsnZ7IaT9C4UMipyTWAj6SmbWJoRs NOk9ZeXFBn9P8GIX8DtWBiR1QLN/zxjMQpPdNVDbboFZU9sSX+bsE6JATnXvWGtg +KyZWGJMDfR2BXZI0ST5TA6JAXRT0PYl11knANrncvNLX7IS7aWq1j9TCvrk67k8 uoGQ7ii0k9ir+u3Mn2g0fsoARu2UYcdUbWhJVdiN4pWqJThcBjrPsndaedc87vZQ ddkLUeRUp0MqQDS27cuMSsaLOdYXQ9arlovuODSryBhVWbHwK2j/gYdIn9aR4lP+ r17EsneaGpUhPogObg== -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org