$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48718.roa File: AS48718.roa (raw, json) Hash identifier: rjEfob0MSVU/eb9Re/2ggPOKtdc4BoCmrZyi6d6yibY= Subject key identifier: 8A:1D:68:BA:71:FE:A0:30:DF:F9:E9:45:EF:22:AE:BB:B5:6D:C6:AC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6B65CDBE9501CC88138298623B63E60EFE0529E5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48718.roa Signing time: Mon 24 Jun 2024 14:00:22 +0000 ROA not before: Mon 24 Jun 2024 13:55:22 +0000 ROA not after: Mon 23 Jun 2025 14:00:22 +0000 asID: 48718 IP address blocks: 2a05:dfc1:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Nov 2024 14:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:65:cd:be:95:01:cc:88:13:82:98:62:3b:63:e6:0e:fe:05:29:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 24 13:55:22 2024 GMT Not After : Jun 23 14:00:22 2025 GMT Subject: CN=8A1D68BA71FEA030DFF9E945EF22AEBBB56DC6AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e0:b1:f4:19:a6:8e:c8:c6:6d:15:1e:4a:03: a9:e8:91:7a:e3:30:c8:c9:2d:30:78:04:58:f5:03: 67:53:41:47:23:5a:47:5a:b2:d2:32:6c:b6:7e:4a: 35:90:dc:c4:84:b5:38:30:70:f7:f5:87:32:20:3e: 71:2f:f8:77:dc:fe:fa:9a:4c:1d:c1:9d:82:9b:d1: 48:2f:6f:c8:b1:43:dd:18:5c:f5:e8:bd:6b:b6:b7: 94:91:d4:81:9a:aa:da:44:43:f4:a9:a0:ea:e4:0c: 24:9d:93:d8:39:5d:38:af:aa:7b:54:78:ed:e2:13: d7:d3:56:c0:0c:91:ef:b3:3e:c1:c3:65:c5:3d:a3: ce:e5:02:2b:3e:d9:a4:95:60:c3:32:78:fc:7d:78: a5:3c:41:e8:26:d3:fc:13:18:58:24:76:ac:d2:82: 85:e3:81:07:97:a7:6f:c1:15:78:93:e4:db:5d:f9: e3:b7:8e:84:32:e8:db:99:4a:85:be:59:10:ea:cb: 21:12:33:62:84:53:bc:ea:a4:9d:36:6a:00:16:60: 58:99:65:52:5f:de:89:e1:32:40:5f:51:e1:a5:7e: 38:49:85:68:d1:03:39:fe:4f:b8:32:8d:99:c7:06: 32:82:1a:88:8f:21:a3:d4:d7:fa:39:f9:cc:b3:04: 1c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1D:68:BA:71:FE:A0:30:DF:F9:E9:45:EF:22:AE:BB:B5:6D:C6:AC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48718.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7400::/40 Signature Algorithm: sha256WithRSAEncryption bc:d8:02:c5:fb:5a:17:0d:db:b3:bb:5b:d8:ed:6f:c0:32:66: 7a:7f:6e:07:08:15:69:71:fc:12:d8:3a:20:d3:c1:b8:3e:71: 55:f2:e5:52:68:5d:8a:46:e1:aa:49:ed:d9:65:f9:f3:ef:f3: 3e:f7:fd:8f:de:6f:84:a4:50:61:fa:f0:a5:4f:e4:9f:c1:d9: 74:81:6f:e0:5d:5f:08:82:20:55:7e:7a:f4:b1:c4:06:f2:b9: 6e:16:6e:d8:54:1b:25:4e:b2:fe:aa:db:25:30:a8:46:23:6b: f8:51:c8:a2:25:67:02:aa:60:bf:af:81:fa:69:e7:e4:36:43: fc:7a:22:2e:61:ce:7b:25:69:7f:80:df:1e:6c:8f:b0:b8:f8: 41:c3:2a:4e:ff:57:8b:68:81:b4:b7:94:5a:6c:9a:e0:5b:0a: fa:b0:2b:73:40:0f:91:f9:9b:9c:cf:d3:ac:5f:87:ed:88:bc: 72:6a:24:6f:7c:8b:01:3f:4c:a7:9f:d1:29:24:f9:9f:4a:ad: 61:6b:87:7d:75:ef:8a:f9:7b:02:af:06:2b:57:20:9c:b5:ab: ce:56:0f:59:42:fc:5f:38:b6:a4:34:41:61:73:7c:29:32:4e: 48:bd:15:7f:aa:a9:2f:7b:e3:2a:9f:13:fa:c2:0e:1a:c6:50: 76:b2:7d:6a -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUa2XNvpUBzIgTgphiO2PmDv4FKeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MjQxMzU1MjJaFw0yNTA2MjMxNDAwMjJaMDMxMTAvBgNV BAMTKDhBMUQ2OEJBNzFGRUEwMzBERkY5RTk0NUVGMjJBRUJCQjU2REM2QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS4LH0GaaOyMZtFR5KA6nokXrj MMjJLTB4BFj1A2dTQUcjWkdastIybLZ+SjWQ3MSEtTgwcPf1hzIgPnEv+Hfc/vqa TB3BnYKb0Ugvb8ixQ90YXPXovWu2t5SR1IGaqtpEQ/SpoOrkDCSdk9g5XTivqntU eO3iE9fTVsAMke+zPsHDZcU9o87lAis+2aSVYMMyePx9eKU8Qegm0/wTGFgkdqzS goXjgQeXp2/BFXiT5Ntd+eO3joQy6NuZSoW+WRDqyyESM2KEU7zqpJ02agAWYFiZ ZVJf3onhMkBfUeGlfjhJhWjRAzn+T7gyjZnHBjKCGoiPIaPU1/o5+cyzBBz1AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUih1ounH+oDDf+elF7yKuu7VtxqwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDg3MTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BdDANBgkqhkiG9w0BAQsFAAOCAQEAvNgC xftaFw3bs7tb2O1vwDJmen9uBwgVaXH8Etg6INPBuD5xVfLlUmhdikbhqknt2WX5 8+/zPvf9j95vhKRQYfrwpU/kn8HZdIFv4F1fCIIgVX569LHEBvK5bhZu2FQbJU6y /qrbJTCoRiNr+FHIoiVnAqpgv6+B+mnn5DZD/HoiLmHOeyVpf4DfHmyPsLj4QcMq Tv9Xi2iBtLeUWmya4FsK+rArc0APkfmbnM/TrF+H7Yi8cmokb3yLAT9Mp5/RKST5 n0qtYWuHfXXvivl7Aq8GK1cgnLWrzlYPWUL8Xzi2pDRBYXN8KTJOSL0Vf6qpL3vj Kp8T+sIOGsZQdrJ9ag== -----END CERTIFICATE-----Generated at Sun Nov 24 02:34:14 2024 by rpki-client on console-fra.rpki-client.org