$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48935.roa File: AS48935.roa (raw, json) Hash identifier: QvfiiKK7hi76cX0N5iSwTS81qdqG7sdks1RVC+8U8H0= Subject key identifier: 5A:DB:C3:D5:E3:C4:36:56:1A:C6:A3:01:52:6B:71:62:D0:2F:C0:FB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7DA5F6161135457E5A84EA6B5D2FF164A93867C8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48935.roa Signing time: Sun 05 Nov 2023 04:07:05 +0000 ROA not before: Sun 05 Nov 2023 04:02:05 +0000 ROA not after: Sun 03 Nov 2024 04:07:05 +0000 asID: 48935 IP address blocks: 2a0a:6040:7500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a5:f6:16:11:35:45:7e:5a:84:ea:6b:5d:2f:f1:64:a9:38:67:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:05 2023 GMT Not After : Nov 3 04:07:05 2024 GMT Subject: CN=5ADBC3D5E3C436561AC6A301526B7162D02FC0FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0f:f7:55:e4:a4:fd:21:3c:f2:c7:b5:27:96: bf:33:6e:a6:66:e8:37:b5:be:ac:8f:c0:99:02:5c: 80:c4:f1:30:13:d6:c2:5b:d6:fe:30:5b:de:13:ee: 2f:30:13:b3:a4:01:1a:da:93:56:61:b9:71:53:57: d2:b3:a4:aa:af:10:f7:0e:7e:5d:94:b5:3f:22:b6: a8:54:a9:9f:a1:21:94:83:3e:79:e5:c9:66:f8:12: 26:62:70:70:28:66:70:aa:32:16:0a:cc:f1:f5:1b: b9:ee:44:21:13:ed:cd:64:cb:2f:7c:92:46:a1:db: 62:7b:ff:f6:2f:b1:a1:e7:8c:ac:25:b0:2e:44:fd: a1:21:2d:6b:cf:f5:d1:74:e4:cf:14:e5:59:95:a4: c2:25:ae:0c:32:2b:b3:d9:48:82:e1:bb:1c:fc:7a: 27:79:f0:e9:92:08:ad:62:d1:e2:6d:7c:31:b2:f1: ea:56:54:9e:fa:64:82:6c:74:12:32:83:78:13:63: 4a:48:3c:80:da:08:fd:bc:66:9a:6a:b7:89:01:e0: dd:01:4f:f1:35:5a:8a:6d:6e:21:36:b4:f1:08:f8: fb:bf:cf:34:c4:58:49:4c:68:68:cd:6f:99:3a:87: 50:7e:7a:7f:98:47:79:03:85:44:e9:bf:07:91:9d: 3b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DB:C3:D5:E3:C4:36:56:1A:C6:A3:01:52:6B:71:62:D0:2F:C0:FB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7500::/40 Signature Algorithm: sha256WithRSAEncryption c0:44:ee:c0:06:fa:68:03:cc:aa:b0:bd:df:4e:d8:e6:a6:44: d0:f4:d3:00:18:ce:55:5b:79:5d:55:6a:2a:07:80:c6:54:23: c3:5a:c7:90:f7:dd:e9:88:ab:e3:05:bc:18:b0:97:0c:73:2a: 82:d2:39:73:75:30:68:4e:60:2e:55:6e:35:9e:4c:89:2a:0a: 59:a5:f6:94:4a:0d:3e:9b:04:ce:f2:24:4b:24:07:f7:73:f4: e1:90:c2:39:78:3d:46:37:5a:2d:87:e3:b5:0d:51:f9:f2:b3: 62:34:ef:25:8a:93:04:5c:c1:00:12:12:b1:2b:ec:81:56:c6: ae:62:3c:3c:5a:73:22:77:d1:8a:fd:90:e3:e2:8a:68:9e:6c: 80:73:67:7a:de:b7:6b:70:24:2a:2c:37:ed:3e:e1:b6:65:ce: 7d:a6:13:80:b8:e0:bf:d1:44:50:dc:4d:ef:d3:1e:1b:e1:f3: 8a:6f:c0:2e:4f:d8:55:4b:9f:22:66:de:ca:fb:ca:66:1b:e9: 42:1c:51:6a:d8:b2:7d:5f:fa:97:0e:4a:a3:cf:06:33:9a:1c: bb:4b:e7:4f:36:28:c3:6e:6f:6f:57:17:45:ea:c1:5b:37:fd: ad:7d:71:96:8a:3e:76:36:1f:f8:57:27:81:03:24:6a:58:18: 8d:f8:ea:20 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUfaX2FhE1RX5ahOprXS/xZKk4Z8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDVaFw0yNDExMDMwNDA3MDVaMDMxMTAvBgNV BAMTKDVBREJDM0Q1RTNDNDM2NTYxQUM2QTMwMTUyNkI3MTYyRDAyRkMwRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrD/dV5KT9ITzyx7Unlr8zbqZm 6De1vqyPwJkCXIDE8TAT1sJb1v4wW94T7i8wE7OkARrak1ZhuXFTV9KzpKqvEPcO fl2UtT8itqhUqZ+hIZSDPnnlyWb4EiZicHAoZnCqMhYKzPH1G7nuRCET7c1kyy98 kkah22J7//YvsaHnjKwlsC5E/aEhLWvP9dF05M8U5VmVpMIlrgwyK7PZSILhuxz8 eid58OmSCK1i0eJtfDGy8epWVJ76ZIJsdBIyg3gTY0pIPIDaCP28Zppqt4kB4N0B T/E1WoptbiE2tPEI+Pu/zzTEWElMaGjNb5k6h1B+en+YR3kDhUTpvweRnTvFAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUWtvD1ePENlYaxqMBUmtxYtAvwPswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDg5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAdTANBgkqhkiG9w0BAQsFAAOCAQEAwETu wAb6aAPMqrC9307Y5qZE0PTTABjOVVt5XVVqKgeAxlQjw1rHkPfd6Yir4wW8GLCX DHMqgtI5c3UwaE5gLlVuNZ5MiSoKWaX2lEoNPpsEzvIkSyQH93P04ZDCOXg9Rjda LYfjtQ1R+fKzYjTvJYqTBFzBABISsSvsgVbGrmI8PFpzInfRiv2Q4+KKaJ5sgHNn et63a3AkKiw37T7htmXOfaYTgLjgv9FEUNxN79MeG+Hzim/ALk/YVUufImbeyvvK ZhvpQhxRatiyfV/6lw5Ko88GM5ocu0vnTzYow25vb1cXRerBWzf9rX1xloo+djYf +FcngQMkalgYjfjqIA== -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org