$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48718.roa File: AS48718.roa (raw, json) Hash identifier: n8hYFm+MfMWht74zLcJW2K+6HxwQgs6nEwOFch6dblo= Subject key identifier: 87:4E:31:D1:61:6D:D8:6F:EA:7D:F4:7B:B4:FD:95:6C:4B:A7:AA:2D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7D17329789111EF9C4BEDDCFF217C47E4017AE13 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48718.roa Signing time: Mon 24 Jul 2023 13:49:45 +0000 ROA not before: Mon 24 Jul 2023 13:44:45 +0000 ROA not after: Mon 22 Jul 2024 13:49:45 +0000 asID: 48718 IP address blocks: 2a05:dfc1:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:17:32:97:89:11:1e:f9:c4:be:dd:cf:f2:17:c4:7e:40:17:ae:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 24 13:44:45 2023 GMT Not After : Jul 22 13:49:45 2024 GMT Subject: CN=874E31D1616DD86FEA7DF47BB4FD956C4BA7AA2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:11:c2:fe:b2:13:25:f8:e1:3e:ca:ea:16:20: d1:8f:67:f8:9b:66:44:6b:a6:51:85:f6:74:20:35: b4:1f:77:d8:b7:11:09:0b:20:7c:89:95:10:ac:ea: 6e:fa:0c:ad:3a:8e:90:59:63:1b:81:02:b2:d9:b7: 94:32:8c:83:04:e9:3c:72:d0:ca:fa:10:7d:7c:7b: 03:a6:9a:ba:4b:eb:3a:76:d6:98:15:90:3b:ee:c3: 4e:7f:ee:29:8d:38:0d:2a:77:01:08:e3:79:88:79: 46:dc:a3:31:f8:ca:29:b3:38:27:cc:54:48:f4:b0: a5:49:a0:62:8d:80:a9:58:3f:db:ec:d6:43:57:ff: 06:66:79:f5:85:93:4c:30:00:e4:2c:7e:56:e1:f5: 31:7f:5d:41:b0:3b:ac:31:86:78:bc:9a:d7:28:b7: e8:87:7f:2a:94:66:23:b7:37:68:17:31:b1:9f:94: f9:1e:9d:a1:35:04:ec:52:07:2c:23:50:85:33:41: dc:fb:92:83:19:82:83:74:77:78:37:a8:dc:4a:b9: fc:04:fd:c5:b6:e5:16:95:39:8c:5d:f6:b4:a0:df: bc:6a:eb:15:63:4a:3e:af:2a:e8:7c:93:69:3a:4f: cb:5a:29:ef:63:f5:5a:1c:11:8c:f0:32:33:30:90: 7a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4E:31:D1:61:6D:D8:6F:EA:7D:F4:7B:B4:FD:95:6C:4B:A7:AA:2D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48718.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7400::/40 Signature Algorithm: sha256WithRSAEncryption 04:89:1e:c5:27:13:85:3d:0d:88:8c:81:3c:c1:ec:b4:d1:b5: 3a:50:59:69:2c:a9:53:f3:14:a0:83:f4:cb:36:75:74:2e:6d: 93:61:76:ae:3c:85:e7:29:7c:b8:de:ab:5e:2f:01:1a:2d:3b: 51:2d:c2:aa:01:1f:fe:b2:17:b6:c4:c0:28:b4:23:46:1f:f7: 45:ec:7a:3f:25:2f:1c:64:65:da:70:55:2e:8e:17:da:03:cc: 01:12:96:87:2c:6d:84:14:f4:a5:72:dc:2c:c6:b3:c0:d8:b0: bc:dc:9f:e7:4c:ee:90:20:9d:23:d9:a8:fa:ed:82:9e:ab:41: 43:70:96:77:69:f4:b9:30:fb:d0:c7:55:a6:c2:09:9a:b4:aa: 21:25:4f:7b:f1:c3:cc:80:35:5d:ab:76:59:75:bd:96:ec:e8: 3e:9f:d5:c1:13:71:d1:49:a4:b9:73:7f:7d:51:d5:b6:db:85: 1a:9e:cf:e5:68:11:62:35:8e:0d:e0:39:1d:08:67:bd:79:b5: a4:60:d3:3b:9d:d8:9c:3c:7d:4f:20:97:8e:35:6c:80:a1:70: c5:6d:d3:64:b3:80:ac:5e:77:4a:e0:8f:30:7b:9a:72:1e:0d: 34:fb:86:3e:25:73:ee:7b:4f:b2:ec:e5:e1:38:a1:01:a4:41: 66:a6:45:3e -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUfRcyl4kRHvnEvt3P8hfEfkAXrhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MjQxMzQ0NDVaFw0yNDA3MjIxMzQ5NDVaMDMxMTAvBgNV BAMTKDg3NEUzMUQxNjE2REQ4NkZFQTdERjQ3QkI0RkQ5NTZDNEJBN0FBMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNEcL+shMl+OE+yuoWINGPZ/ib ZkRrplGF9nQgNbQfd9i3EQkLIHyJlRCs6m76DK06jpBZYxuBArLZt5QyjIME6Txy 0Mr6EH18ewOmmrpL6zp21pgVkDvuw05/7imNOA0qdwEI43mIeUbcozH4yimzOCfM VEj0sKVJoGKNgKlYP9vs1kNX/wZmefWFk0wwAOQsflbh9TF/XUGwO6wxhni8mtco t+iHfyqUZiO3N2gXMbGflPkenaE1BOxSBywjUIUzQdz7koMZgoN0d3g3qNxKufwE /cW25RaVOYxd9rSg37xq6xVjSj6vKuh8k2k6T8taKe9j9VocEYzwMjMwkHpdAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUh04x0WFt2G/qffR7tP2VbEunqi0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDg3MTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BdDANBgkqhkiG9w0BAQsFAAOCAQEABIke xScThT0NiIyBPMHstNG1OlBZaSypU/MUoIP0yzZ1dC5tk2F2rjyF5yl8uN6rXi8B Gi07US3CqgEf/rIXtsTAKLQjRh/3Rex6PyUvHGRl2nBVLo4X2gPMARKWhyxthBT0 pXLcLMazwNiwvNyf50zukCCdI9mo+u2CnqtBQ3CWd2n0uTD70MdVpsIJmrSqISVP e/HDzIA1Xat2WXW9luzoPp/VwRNx0UmkuXN/fVHVttuFGp7P5WgRYjWODeA5HQhn vXm1pGDTO53YnDx9TyCXjjVsgKFwxW3TZLOArF53SuCPMHuach4NNPuGPiVz7ntP suzl4TihAaRBZqZFPg== -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org