$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49286.roa File: AS49286.roa (raw, json) Hash identifier: qBMNumwc6C5Yk4U97CA6oG3l3TT0bvdtbC/3htXD900= Subject key identifier: 71:E4:5E:68:67:56:7C:B5:38:5B:A3:3D:F6:D0:F4:F2:F9:58:72:00 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4EC7937181633594E7A8A1B42F60087C26D1F490 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49286.roa Signing time: Sun 05 Nov 2023 04:07:16 +0000 ROA not before: Sun 05 Nov 2023 04:02:16 +0000 ROA not after: Sun 03 Nov 2024 04:07:16 +0000 asID: 49286 IP address blocks: 2a0a:6040:6a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:c7:93:71:81:63:35:94:e7:a8:a1:b4:2f:60:08:7c:26:d1:f4:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:16 2023 GMT Not After : Nov 3 04:07:16 2024 GMT Subject: CN=71E45E6867567CB5385BA33DF6D0F4F2F9587200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:52:8a:d6:3d:14:77:89:13:3b:ec:de:9e:7f: 44:49:cc:f7:52:12:97:ab:83:90:15:29:21:1f:80: 00:22:f0:8c:df:d5:ea:b9:6a:74:e8:b1:2d:c7:9a: c0:54:ff:70:4c:87:f8:90:66:15:fd:ab:14:a1:01: fd:ad:32:3b:a6:9e:1e:25:a1:56:4d:20:14:ff:86: 98:b8:e4:81:41:88:d9:02:44:b1:ee:80:fb:6e:7d: 76:c5:87:19:0d:ea:f8:37:05:8c:b3:61:61:cf:94: 77:9e:e0:67:36:c5:2f:d5:51:e9:a1:6b:18:5e:01: c0:b4:2a:5e:f0:33:d9:8f:dd:ae:60:06:81:14:60: 4a:e0:a5:8e:75:a6:2f:84:02:12:d6:1a:32:c4:59: 72:a8:59:8e:e5:8c:8a:cb:1a:d4:f2:2a:1c:51:49: 5b:5f:5e:dd:d8:6b:23:05:47:a5:e7:8f:8a:88:ff: 61:de:d1:5a:cd:1a:49:70:e7:6b:2d:79:c7:05:c1: b9:71:b4:1b:7a:ca:2b:c9:df:d1:45:fd:8f:82:ac: 41:50:6a:f6:7c:c7:dc:e9:e5:10:47:a3:c7:64:62: c7:bf:50:cb:27:33:6a:63:bb:ae:78:0c:84:0f:bc: 2a:aa:ef:ac:1c:2f:e9:61:f6:52:ef:99:0a:86:13: 37:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E4:5E:68:67:56:7C:B5:38:5B:A3:3D:F6:D0:F4:F2:F9:58:72:00 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49286.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6a00::/40 Signature Algorithm: sha256WithRSAEncryption 6b:17:e3:3a:bd:57:77:b9:46:4d:c5:64:c0:8c:61:49:1b:07: 26:bb:12:53:fc:e6:b2:25:d1:4a:52:35:d8:e0:32:6c:5e:38: 46:9c:9c:ca:f7:9d:d9:e9:52:07:e2:9d:84:7a:d9:3b:f3:83: 20:0f:31:9b:94:f9:d5:c0:27:9b:88:ae:1f:d2:50:e5:bb:28: 83:ec:ec:89:f8:6a:f9:86:3f:dd:b5:ea:5e:c5:da:61:c7:0b: 4a:aa:25:85:7c:8f:42:82:34:f4:9d:4e:dd:d6:13:b3:5f:4d: 19:0e:c5:9e:e0:ef:3a:a1:28:47:bf:e1:f7:d7:f4:46:fc:9c: bf:88:92:fa:dc:bf:dc:f2:41:84:6c:f3:1c:84:e9:0c:93:a7: 6c:e2:d7:46:1a:2f:04:9f:d4:44:8d:fc:7c:35:70:43:3b:1f: a1:8f:30:97:3b:22:f5:57:ed:69:42:36:ca:71:62:da:b7:1a: 18:b3:4e:67:f0:6c:66:32:cb:c4:6d:15:28:fc:5c:a0:01:ed: 94:5a:d3:a7:f6:3d:ba:52:2b:ce:a5:dc:41:53:ce:b2:61:14: 41:cc:cc:fd:f8:f9:fb:25:72:da:a9:69:c4:d1:5d:7e:a8:ac: 20:86:95:90:89:3a:da:85:0e:39:b0:bc:52:7f:b3:22:7c:3e: 41:c6:2e:b4 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUTseTcYFjNZTnqKG0L2AIfCbR9JAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTZaFw0yNDExMDMwNDA3MTZaMDMxMTAvBgNV BAMTKDcxRTQ1RTY4Njc1NjdDQjUzODVCQTMzREY2RDBGNEYyRjk1ODcyMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZUorWPRR3iRM77N6ef0RJzPdS Eperg5AVKSEfgAAi8Izf1eq5anTosS3HmsBU/3BMh/iQZhX9qxShAf2tMjumnh4l oVZNIBT/hpi45IFBiNkCRLHugPtufXbFhxkN6vg3BYyzYWHPlHee4Gc2xS/VUemh axheAcC0Kl7wM9mP3a5gBoEUYErgpY51pi+EAhLWGjLEWXKoWY7ljIrLGtTyKhxR SVtfXt3YayMFR6Xnj4qI/2He0VrNGklw52steccFwblxtBt6yivJ39FF/Y+CrEFQ avZ8x9zp5RBHo8dkYse/UMsnM2pju654DIQPvCqq76wcL+lh9lLvmQqGEzclAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUceReaGdWfLU4W6M99tD08vlYcgAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDkyODYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAajANBgkqhkiG9w0BAQsFAAOCAQEAaxfj Or1Xd7lGTcVkwIxhSRsHJrsSU/zmsiXRSlI12OAybF44Rpycyved2elSB+KdhHrZ O/ODIA8xm5T51cAnm4iuH9JQ5bsog+zsifhq+YY/3bXqXsXaYccLSqolhXyPQoI0 9J1O3dYTs19NGQ7FnuDvOqEoR7/h99f0Rvycv4iS+ty/3PJBhGzzHITpDJOnbOLX RhovBJ/URI38fDVwQzsfoY8wlzsi9VftaUI2ynFi2rcaGLNOZ/BsZjLLxG0VKPxc oAHtlFrTp/Y9ulIrzqXcQVPOsmEUQczM/fj5+yVy2qlpxNFdfqisIIaVkIk62oUO ObC8Un+zInw+QcYutA== -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org