$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48231.roa File: AS48231.roa (raw, json) Hash identifier: u6Yb/TYzoJBsIbrvpivnlTirjX0Wb70AeC8XgTafj+s= Subject key identifier: 42:C9:C5:0A:A2:85:59:A8:DA:10:04:49:44:6C:82:50:77:3F:E9:5B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 36DD19F15B53A05F605CFE063C7A90B2137C091D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48231.roa Signing time: Tue 23 Jul 2024 10:01:03 +0000 ROA not before: Tue 23 Jul 2024 09:56:03 +0000 ROA not after: Tue 22 Jul 2025 10:01:03 +0000 asID: 48231 IP address blocks: 2a05:dfc1:5e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:dd:19:f1:5b:53:a0:5f:60:5c:fe:06:3c:7a:90:b2:13:7c:09:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 23 09:56:03 2024 GMT Not After : Jul 22 10:01:03 2025 GMT Subject: CN=42C9C50AA28559A8DA100449446C8250773FE95B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4c:bb:42:ca:7b:49:a1:37:79:7c:65:92:f8: d7:67:a9:cd:f9:c8:42:45:1b:da:ad:4b:db:19:1d: 0f:02:e9:ce:fc:08:b6:b4:cd:17:e4:f3:80:03:ac: 87:f0:98:12:7d:be:94:74:46:a6:13:45:41:e7:d5: 1e:9a:53:e7:f1:9b:d3:fc:ba:ad:ef:86:e6:78:7b: 32:83:a1:3b:94:e8:9c:bc:96:0a:cd:de:39:a7:e3: 54:2d:57:a2:84:6f:19:13:35:38:7e:15:0b:cd:11: 59:03:3a:b2:29:88:56:06:5c:21:d7:78:f7:60:d8: f9:b7:10:67:49:0e:6c:e0:d4:03:bd:7b:e4:cb:46: 4c:bb:09:d0:2a:61:0f:7a:f6:8e:b3:cb:ec:72:09: f5:c4:b0:c8:65:3e:48:cb:94:a7:2b:49:2f:e0:13: e9:08:e2:77:68:38:af:4f:b9:55:47:67:3f:20:32: a6:2d:f3:fc:59:4f:9a:46:17:f7:81:bf:a8:ae:6e: e3:37:64:69:78:6c:4b:72:34:aa:91:cb:3a:07:9f: a5:77:57:97:6a:d3:f8:25:fe:c3:2b:af:7e:d4:fe: 3b:33:20:2d:0d:c8:24:e9:8e:dd:3b:85:d0:51:62: 34:29:9f:71:73:15:86:7f:4b:f2:31:5b:5e:26:aa: 0e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C9:C5:0A:A2:85:59:A8:DA:10:04:49:44:6C:82:50:77:3F:E9:5B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5e00::/40 Signature Algorithm: sha256WithRSAEncryption 7a:b2:69:9c:b7:62:3a:10:5c:1b:fb:a9:eb:ab:52:df:79:10: 64:1d:6f:b7:e9:cf:b3:19:2b:73:6b:4c:bf:db:60:5e:5e:ff: b9:dc:a0:d5:74:57:dd:f4:ad:ce:78:34:df:76:7a:97:e0:a7: 55:2c:ad:d0:b2:60:ca:1f:81:12:6b:60:aa:db:7a:d2:e6:2b: 61:ef:67:97:87:95:5d:1f:35:6e:59:37:25:fb:60:83:54:4a: e9:68:c2:2f:9b:2f:82:8e:72:48:ee:6e:12:55:a6:fd:7a:f6: 07:b2:fa:23:71:3b:81:88:cd:48:08:72:24:1c:a0:a2:ab:4b: 8e:64:b9:14:46:cc:dd:35:00:78:d6:f1:32:21:a2:29:e1:5b: 7a:08:74:c3:3d:07:f9:e2:8e:47:53:49:17:58:a1:f2:9f:9f: e7:83:0b:e5:57:d2:05:7b:90:c8:77:f8:15:6e:a8:11:06:d9: d0:38:e7:22:c4:22:b1:f6:2e:9d:55:1b:53:64:57:bd:66:a2: c0:d8:0d:2e:33:4b:1c:0d:f1:68:55:62:5d:0e:8f:db:fc:d9: 66:c2:54:92:e5:69:57:13:ac:ae:51:15:08:14:07:d9:b4:fa: a2:93:14:ce:11:cf:25:0d:56:0b:42:30:ef:97:c0:96:f4:1b: 5e:0a:73:10 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUNt0Z8VtToF9gXP4GPHqQshN8CR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MjMwOTU2MDNaFw0yNTA3MjIxMDAxMDNaMDMxMTAvBgNV BAMTKDQyQzlDNTBBQTI4NTU5QThEQTEwMDQ0OTQ0NkM4MjUwNzczRkU5NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoTLtCyntJoTd5fGWS+Ndnqc35 yEJFG9qtS9sZHQ8C6c78CLa0zRfk84ADrIfwmBJ9vpR0RqYTRUHn1R6aU+fxm9P8 uq3vhuZ4ezKDoTuU6Jy8lgrN3jmn41QtV6KEbxkTNTh+FQvNEVkDOrIpiFYGXCHX ePdg2Pm3EGdJDmzg1AO9e+TLRky7CdAqYQ969o6zy+xyCfXEsMhlPkjLlKcrSS/g E+kI4ndoOK9PuVVHZz8gMqYt8/xZT5pGF/eBv6iubuM3ZGl4bEtyNKqRyzoHn6V3 V5dq0/gl/sMrr37U/jszIC0NyCTpjt07hdBRYjQpn3FzFYZ/S/IxW14mqg6fAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUQsnFCqKFWajaEARJRGyCUHc/6VswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDgyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BXjANBgkqhkiG9w0BAQsFAAOCAQEAerJp nLdiOhBcG/up66tS33kQZB1vt+nPsxkrc2tMv9tgXl7/udyg1XRX3fStzng033Z6 l+CnVSyt0LJgyh+BEmtgqtt60uYrYe9nl4eVXR81blk3Jftgg1RK6WjCL5svgo5y SO5uElWm/Xr2B7L6I3E7gYjNSAhyJBygoqtLjmS5FEbM3TUAeNbxMiGiKeFbegh0 wz0H+eKOR1NJF1ih8p+f54ML5VfSBXuQyHf4FW6oEQbZ0DjnIsQisfYunVUbU2RX vWaiwNgNLjNLHA3xaFViXQ6P2/zZZsJUkuVpVxOsrlEVCBQH2bT6opMUzhHPJQ1W C0Iw75fAlvQbXgpzEA== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org