$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48818.roa File: AS48818.roa (raw, json) Hash identifier: lSplr3/Tc7aijs1v54kBgzwQcZ0aiV8FAD87vaZ9By0= Subject key identifier: 18:1A:D2:94:D5:78:2C:D5:98:5A:41:63:4A:70:FF:1E:03:DC:62:30 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1631D66CC86D69CA67D23A5E05385A2AE99B87CC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48818.roa Signing time: Sun 06 Oct 2024 04:45:18 +0000 ROA not before: Sun 06 Oct 2024 04:40:18 +0000 ROA not after: Sun 05 Oct 2025 04:45:18 +0000 asID: 48818 IP address blocks: 2a0a:6040:7c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:31:d6:6c:c8:6d:69:ca:67:d2:3a:5e:05:38:5a:2a:e9:9b:87:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:18 2024 GMT Not After : Oct 5 04:45:18 2025 GMT Subject: CN=181AD294D5782CD5985A41634A70FF1E03DC6230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0a:17:9c:40:42:79:f8:37:1b:f8:f5:a5:75: eb:b2:31:28:39:02:9d:84:00:33:13:e3:c1:0a:36: 85:3c:eb:a3:35:34:d4:2c:83:7f:08:11:6a:da:73: 29:52:2c:76:4e:7b:d4:79:a9:7c:a9:2f:81:a0:a7: ff:5b:ea:f6:f7:1a:80:d3:a4:c7:4c:b5:96:3d:ee: 48:77:12:02:11:cd:0a:2e:23:ef:d2:1e:76:98:17: 10:b1:f0:d8:eb:01:6c:83:c8:c8:93:e5:72:4f:cb: 72:59:a0:75:8e:4a:36:65:d5:b2:1b:75:6c:67:a4: 72:6f:2a:ba:47:ab:6c:76:12:ce:5e:f6:d7:0f:9b: 9d:fb:3d:da:c8:72:18:2e:2d:98:1b:6c:6d:43:51: 77:08:5c:10:a5:66:e9:13:d6:fc:17:e8:94:02:e1: e4:7c:a3:bb:b8:46:ac:ca:c3:8f:25:ed:6c:55:d2: dc:34:65:24:15:7a:6a:f4:09:a2:34:81:8d:17:eb: 9d:e0:54:23:d1:31:4e:32:fb:65:7c:fd:30:f9:74: 6f:d5:80:ec:59:c6:57:31:3e:de:fe:28:04:23:63: 86:7c:a6:03:da:79:71:83:3c:c9:f1:73:94:bc:dc: d3:66:36:bd:44:95:a9:ae:75:de:49:5c:1e:d9:ef: 3d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:1A:D2:94:D5:78:2C:D5:98:5A:41:63:4A:70:FF:1E:03:DC:62:30 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48818.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7c00::/40 Signature Algorithm: sha256WithRSAEncryption 0c:60:ea:68:11:52:e0:1a:31:e8:36:2c:9e:c0:0e:d7:8c:da: 9e:7d:b4:a7:87:3f:bd:09:c6:3e:37:b8:21:c6:73:e9:01:2e: 59:d6:3d:8a:39:d9:70:39:eb:67:a7:09:67:c0:86:36:a6:83: 7d:f6:e6:5d:63:fe:d8:0d:2f:c1:52:ea:72:59:9e:de:f9:e6: 23:90:68:7b:da:ba:2e:61:39:67:68:c1:58:d4:05:37:67:e5: a3:03:28:85:e3:5d:4f:49:f1:d6:31:e9:77:94:3c:c9:e1:29: ce:5c:8a:80:72:77:23:9f:b3:61:77:59:5a:5a:8e:fd:63:20: 68:e9:af:b1:11:7f:6d:8d:0e:f4:c4:d9:8d:61:a4:80:dc:c6: dc:5f:53:f0:21:30:fa:90:3b:21:ce:30:4d:4c:c6:35:fd:d7: 85:34:76:d1:e4:72:b4:36:fa:87:38:91:23:0c:e9:40:21:e3: 22:f9:4c:c6:73:c9:31:af:71:e3:e7:f6:85:0c:1a:8c:f7:81: be:dc:f3:a3:52:9e:6a:1e:99:5c:5e:cb:f2:04:1c:ed:43:b4: 8b:78:e3:5c:bf:a1:98:bf:bc:2e:25:f6:b5:c3:3b:51:58:c4: c8:45:73:48:57:16:32:00:4c:4c:4a:7e:94:1e:7e:bf:1b:9c: 43:26:c1:d3 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUFjHWbMhtacpn0jpeBThaKumbh8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMThaFw0yNTEwMDUwNDQ1MThaMDMxMTAvBgNV BAMTKDE4MUFEMjk0RDU3ODJDRDU5ODVBNDE2MzRBNzBGRjFFMDNEQzYyMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2ChecQEJ5+Dcb+PWldeuyMSg5 Ap2EADMT48EKNoU866M1NNQsg38IEWracylSLHZOe9R5qXypL4Ggp/9b6vb3GoDT pMdMtZY97kh3EgIRzQouI+/SHnaYFxCx8NjrAWyDyMiT5XJPy3JZoHWOSjZl1bIb dWxnpHJvKrpHq2x2Es5e9tcPm537PdrIchguLZgbbG1DUXcIXBClZukT1vwX6JQC 4eR8o7u4RqzKw48l7WxV0tw0ZSQVemr0CaI0gY0X653gVCPRMU4y+2V8/TD5dG/V gOxZxlcxPt7+KAQjY4Z8pgPaeXGDPMnxc5S83NNmNr1Elamudd5JXB7Z7z3HAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUGBrSlNV4LNWYWkFjSnD/HgPcYjAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDg4MTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAfDANBgkqhkiG9w0BAQsFAAOCAQEADGDq aBFS4Box6DYsnsAO14zann20p4c/vQnGPje4IcZz6QEuWdY9ijnZcDnrZ6cJZ8CG NqaDffbmXWP+2A0vwVLqclme3vnmI5Boe9q6LmE5Z2jBWNQFN2flowMoheNdT0nx 1jHpd5Q8yeEpzlyKgHJ3I5+zYXdZWlqO/WMgaOmvsRF/bY0O9MTZjWGkgNzG3F9T 8CEw+pA7Ic4wTUzGNf3XhTR20eRytDb6hziRIwzpQCHjIvlMxnPJMa9x4+f2hQwa jPeBvtzzo1Keah6ZXF7L8gQc7UO0i3jjXL+hmL+8LiX2tcM7UVjEyEVzSFcWMgBM TEp+lB5+vxucQybB0w== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org