$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48935.roa File: AS48935.roa (raw, json) Hash identifier: F8RYpsIKkmfx/lYkyCeSCMcxYyJHKUlYYDCH+PX2rtE= Subject key identifier: 55:C7:31:4A:FA:2B:9F:68:49:87:C2:D8:9A:D5:B4:F3:94:16:DE:DE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 23C48C47DDF7311337D143F43DEFD7334439C31C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48935.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 48935 IP address blocks: 2a0a:6040:7500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:c4:8c:47:dd:f7:31:13:37:d1:43:f4:3d:ef:d7:33:44:39:c3:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=55C7314AFA2B9F684987C2D89AD5B4F39416DEDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1a:d4:3f:b1:3b:dd:6e:77:09:1c:60:64:d7: f8:69:da:2a:db:aa:82:26:6a:4d:00:00:e9:a1:c6: 7e:bc:08:09:84:36:45:d7:ac:8f:28:e8:d9:c0:1a: c2:27:a9:4f:03:35:ea:d7:5e:3b:26:fa:47:b1:3c: 9e:48:31:e8:d1:a0:51:ef:25:00:8d:4a:54:08:47: c0:ca:2c:ce:6e:29:3b:e6:a5:91:1a:69:d3:66:f4: 82:9d:a9:c7:8c:2e:c1:7f:31:09:52:eb:70:86:64: 34:fe:42:f7:cb:43:e8:cd:29:9d:da:97:fb:e4:4d: c7:ec:b7:aa:f9:ea:1c:d5:57:6f:c7:3f:05:af:64: c1:3e:46:f7:0c:e9:df:9d:24:0a:6e:e0:8b:06:b7: a6:28:c7:54:e9:bf:68:ee:bc:08:29:71:22:c1:3d: d1:66:ed:80:b6:ee:9c:76:ac:09:ce:c7:cc:e0:d5: 51:d6:2d:4f:e3:b8:23:c8:94:09:0f:4d:b9:dc:06: f2:6e:37:d2:12:de:19:d3:f3:1c:10:98:f0:a4:68: 9c:a0:0e:c1:7d:44:e0:45:d2:36:c5:24:22:dc:49: 8a:d7:70:5a:4a:c2:ea:30:ea:1b:97:01:62:87:95: 2d:15:ba:0c:3a:53:7b:86:bb:73:53:25:21:03:4d: 84:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C7:31:4A:FA:2B:9F:68:49:87:C2:D8:9A:D5:B4:F3:94:16:DE:DE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7500::/40 Signature Algorithm: sha256WithRSAEncryption 35:68:d3:da:65:a9:32:68:10:7c:da:d6:55:f0:01:48:a3:a0: d8:7d:ec:c7:92:7f:d7:d6:bb:08:19:3f:ce:a2:46:8d:aa:4c: db:9d:fc:83:ee:80:62:63:f9:78:18:1e:c7:d3:da:88:75:ee: cb:20:cc:50:3c:14:e7:a7:0c:f7:f5:0c:47:ec:01:a0:58:17: c9:49:62:d7:3c:7d:92:09:d7:b6:19:d7:10:53:70:be:7c:48: 9d:d9:3d:48:fd:d1:56:8f:aa:3b:ff:36:f7:eb:39:f4:e7:f4: 05:71:0b:90:53:28:b8:7d:7e:2d:1e:af:ae:8a:91:7d:73:56: 93:01:40:91:fa:a2:22:59:48:70:b4:35:d7:30:99:78:a5:a5: 24:71:a4:70:0a:79:cd:84:0e:fc:04:69:ed:45:ca:6d:0d:fc: 34:95:65:22:e7:ad:ac:b6:e7:ae:c3:50:cc:90:e0:8b:36:68: d7:ce:0a:74:20:8b:98:df:9b:1f:a1:7d:3c:75:0a:0a:2f:ac: 27:b9:29:ba:36:2c:6d:e8:32:e5:8b:3c:64:b4:96:ab:be:85: 2a:da:a8:0d:3e:2d:7c:2d:fa:0c:9f:c6:72:7d:4b:d0:5f:ff: 73:d0:67:80:0b:32:72:8d:36:f0:57:51:e8:57:b3:ff:cd:57: ad:66:79:cd -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUI8SMR933MRM30UP0Pe/XM0Q5wxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKDU1QzczMTRBRkEyQjlGNjg0OTg3QzJEODlBRDVCNEYzOTQxNkRFREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgGtQ/sTvdbncJHGBk1/hp2irb qoImak0AAOmhxn68CAmENkXXrI8o6NnAGsInqU8DNerXXjsm+kexPJ5IMejRoFHv JQCNSlQIR8DKLM5uKTvmpZEaadNm9IKdqceMLsF/MQlS63CGZDT+QvfLQ+jNKZ3a l/vkTcfst6r56hzVV2/HPwWvZME+RvcM6d+dJApu4IsGt6Yox1Tpv2juvAgpcSLB PdFm7YC27px2rAnOx8zg1VHWLU/juCPIlAkPTbncBvJuN9IS3hnT8xwQmPCkaJyg DsF9ROBF0jbFJCLcSYrXcFpKwuow6huXAWKHlS0Vugw6U3uGu3NTJSEDTYQFAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUVccxSvorn2hJh8LYmtW085QW3t4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDg5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAdTANBgkqhkiG9w0BAQsFAAOCAQEANWjT 2mWpMmgQfNrWVfABSKOg2H3sx5J/19a7CBk/zqJGjapM2538g+6AYmP5eBgex9Pa iHXuyyDMUDwU56cM9/UMR+wBoFgXyUli1zx9kgnXthnXEFNwvnxIndk9SP3RVo+q O/829+s59Of0BXELkFMouH1+LR6vroqRfXNWkwFAkfqiIllIcLQ11zCZeKWlJHGk cAp5zYQO/ARp7UXKbQ38NJVlIuetrLbnrsNQzJDgizZo184KdCCLmN+bH6F9PHUK Ci+sJ7kpujYsbegy5Ys8ZLSWq76FKtqoDT4tfC36DJ/Gcn1L0F//c9BngAsyco02 8FdR6Fez/81XrWZ5zQ== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org