$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48818.roa File: AS48818.roa (raw, json) Hash identifier: LwbhZna1OJBZs/2enRlwLyDrUX759eWEmxUrxTUWlFs= Subject key identifier: 30:68:4C:B8:CA:D2:E0:59:7E:F4:EF:19:B9:1F:7C:10:5A:7B:64:81 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 67D66C3BC5D38012BBA608E832F25B7F675AAE95 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48818.roa Signing time: Sun 05 Nov 2023 04:07:22 +0000 ROA not before: Sun 05 Nov 2023 04:02:22 +0000 ROA not after: Sun 03 Nov 2024 04:07:22 +0000 asID: 48818 IP address blocks: 2a0a:6040:7c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d6:6c:3b:c5:d3:80:12:bb:a6:08:e8:32:f2:5b:7f:67:5a:ae:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:22 2023 GMT Not After : Nov 3 04:07:22 2024 GMT Subject: CN=30684CB8CAD2E0597EF4EF19B91F7C105A7B6481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:38:76:ca:9c:3e:de:d3:19:cd:b5:b5:c2:f6: a4:36:98:b2:fd:9e:75:5b:7f:1e:d2:cc:20:81:bb: b1:8a:06:13:03:f8:b8:75:0e:ea:41:74:f6:85:5b: 63:8c:60:b3:30:ae:e1:11:fc:8b:88:85:dc:4b:50: 3a:ac:b8:2a:ff:d1:49:33:e0:22:b0:6f:40:c8:63: 6e:8d:d3:9e:0b:86:bb:41:53:d5:fb:e1:82:f4:e5: 50:dc:7e:24:2d:9b:1c:68:3b:60:f3:c3:5c:b8:2a: b6:86:21:e0:6d:2e:82:52:8c:a9:99:1d:c3:59:4a: fa:dc:5e:6d:1a:fd:a4:6d:8e:55:18:e9:3b:48:6c: fa:c7:64:c0:2b:ad:90:f4:a9:02:ec:73:d8:0f:10: da:38:8b:80:f5:16:8d:56:77:a6:b5:c6:8e:2a:ce: 58:67:5b:c7:50:d2:3c:c3:e7:91:f4:09:c0:b6:c2: 95:2b:af:46:e0:79:65:e6:1e:1f:e6:e4:57:87:e8: 85:43:a6:7a:d6:f7:8a:f7:fe:67:95:5b:8f:62:68: b3:9c:f8:c0:a0:f5:82:75:e3:ea:1b:fd:0f:28:75: fd:99:8a:9f:31:a2:1d:5d:ce:57:95:e6:f5:33:ef: 67:0f:24:0c:87:66:f7:6f:6f:da:36:df:9b:55:ad: ed:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:68:4C:B8:CA:D2:E0:59:7E:F4:EF:19:B9:1F:7C:10:5A:7B:64:81 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48818.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7c00::/40 Signature Algorithm: sha256WithRSAEncryption 8c:1f:07:fe:46:27:45:6c:7c:ae:f1:4c:71:f3:54:aa:8d:cc: bd:a9:75:8f:cb:77:db:96:a0:c6:11:2b:bc:aa:6a:36:2f:60: 77:2e:01:f2:60:f1:f7:ed:62:ec:28:4a:55:df:8a:40:00:e8: de:7d:a0:71:44:04:c0:80:bf:55:78:13:fe:04:c6:82:f4:c5: 8e:28:b1:33:6a:29:2e:0a:1f:67:61:3a:2d:08:4c:d6:f5:6b: a3:64:2b:ea:c9:0b:32:52:dd:38:11:fc:6f:6f:09:a5:9d:5c: 25:8b:be:d4:01:ac:39:5e:06:1c:d2:09:c2:65:13:71:71:7e: f0:55:9d:a9:f5:59:8f:67:10:86:3a:93:ec:b3:be:5e:b6:53: ee:eb:ea:b4:c5:c9:55:7e:ac:2b:c5:a6:a9:56:6b:71:88:7a: 0a:3e:b9:1b:24:09:d0:8e:c7:01:fb:5f:2c:44:31:10:cc:45: 3d:10:7a:de:0f:44:7c:e1:80:94:5f:68:46:d6:96:a8:04:b1: e4:26:89:96:13:a4:44:3a:eb:17:c4:f3:0b:9d:ea:21:e4:d7: 40:96:4b:9a:e8:4e:a2:4c:fc:62:13:1a:a6:a5:4b:dc:4d:04: 1c:1f:bf:54:83:10:36:63:df:b2:42:80:3a:8e:12:c5:b0:27: 0f:6d:c0:e7 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUZ9ZsO8XTgBK7pgjoMvJbf2darpUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjJaFw0yNDExMDMwNDA3MjJaMDMxMTAvBgNV BAMTKDMwNjg0Q0I4Q0FEMkUwNTk3RUY0RUYxOUI5MUY3QzEwNUE3QjY0ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6OHbKnD7e0xnNtbXC9qQ2mLL9 nnVbfx7SzCCBu7GKBhMD+Lh1DupBdPaFW2OMYLMwruER/IuIhdxLUDqsuCr/0Ukz 4CKwb0DIY26N054LhrtBU9X74YL05VDcfiQtmxxoO2Dzw1y4KraGIeBtLoJSjKmZ HcNZSvrcXm0a/aRtjlUY6TtIbPrHZMArrZD0qQLsc9gPENo4i4D1Fo1Wd6a1xo4q zlhnW8dQ0jzD55H0CcC2wpUrr0bgeWXmHh/m5FeH6IVDpnrW94r3/meVW49iaLOc +MCg9YJ14+ob/Q8odf2Zip8xoh1dzleV5vUz72cPJAyHZvdvb9o235tVre1FAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUMGhMuMrS4Fl+9O8ZuR98EFp7ZIEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDg4MTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAfDANBgkqhkiG9w0BAQsFAAOCAQEAjB8H /kYnRWx8rvFMcfNUqo3Mval1j8t325agxhErvKpqNi9gdy4B8mDx9+1i7ChKVd+K QADo3n2gcUQEwIC/VXgT/gTGgvTFjiixM2opLgofZ2E6LQhM1vVro2Qr6skLMlLd OBH8b28JpZ1cJYu+1AGsOV4GHNIJwmUTcXF+8FWdqfVZj2cQhjqT7LO+XrZT7uvq tMXJVX6sK8WmqVZrcYh6Cj65GyQJ0I7HAftfLEQxEMxFPRB63g9EfOGAlF9oRtaW qASx5CaJlhOkRDrrF8TzC53qIeTXQJZLmuhOokz8YhMapqVL3E0EHB+/VIMQNmPf skKAOo4SxbAnD23A5w== -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org