$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49286.roa File: AS49286.roa (raw, json) Hash identifier: pz9cezIPf0ZxB9woAUGUbG7YMFVymlqOzQLbaR0Qzqg= Subject key identifier: 19:86:CE:3F:D9:DD:60:E2:00:FB:BA:A9:9E:FA:F9:9A:D9:93:61:C0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1F206195BD09597F5C7E3D62AA35E182F5685212 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49286.roa Signing time: Sun 06 Oct 2024 04:45:07 +0000 ROA not before: Sun 06 Oct 2024 04:40:07 +0000 ROA not after: Sun 05 Oct 2025 04:45:07 +0000 asID: 49286 IP address blocks: 2a0a:6040:6a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:20:61:95:bd:09:59:7f:5c:7e:3d:62:aa:35:e1:82:f5:68:52:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:07 2024 GMT Not After : Oct 5 04:45:07 2025 GMT Subject: CN=1986CE3FD9DD60E200FBBAA99EFAF99AD99361C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:5a:64:bb:82:31:1a:70:fb:a5:32:71:e7:b7: 95:7e:d6:df:a8:aa:44:71:80:5f:0e:bf:21:9b:4e: ea:a1:15:72:a7:f8:13:3c:46:f4:81:9c:8e:24:f7: c0:04:5a:e8:0e:05:0f:ca:14:9b:18:42:5a:29:9d: fd:44:9a:76:98:d4:c7:d0:b8:c2:50:38:c9:76:9c: 76:49:54:9d:9d:d4:50:0a:4d:0a:b5:10:8f:a7:a7: 96:80:87:75:3b:23:b8:19:a7:e3:c5:cd:41:f4:f9: 4a:a5:6f:0f:d7:96:42:58:6c:44:19:2b:b8:e7:c6: 91:9b:96:9f:ff:83:29:91:c7:79:93:8b:c3:5d:ef: a0:b7:4a:df:3f:ed:b6:2e:db:b9:11:0c:5a:71:bd: fb:20:04:c9:29:35:6b:c4:51:5b:f2:02:85:93:cc: 25:26:41:a0:ce:72:b9:93:ea:73:04:01:4a:77:a5: 5e:ba:e7:46:12:6e:f7:e5:0e:5d:e5:9f:f3:73:42: cc:0d:06:29:49:65:26:5e:af:bd:33:a5:98:72:98: 49:97:71:c7:b8:35:d8:17:4b:76:64:c5:70:00:75: b4:0a:5c:1c:5e:26:ed:38:3f:b9:d0:b9:08:0e:74: 73:d0:d2:38:b4:87:8e:a2:e3:a1:73:0c:65:01:10: 88:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:86:CE:3F:D9:DD:60:E2:00:FB:BA:A9:9E:FA:F9:9A:D9:93:61:C0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49286.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6a00::/40 Signature Algorithm: sha256WithRSAEncryption 8f:c4:4a:cc:27:ea:ff:a5:8b:a3:d9:a5:55:a6:7c:23:5a:7f: 2f:2d:f3:9a:1b:04:3f:25:d5:df:4c:ca:91:df:d1:37:2a:8d: be:18:e5:86:26:4d:74:33:8f:c4:3a:77:34:84:3a:82:3f:9f: 85:0a:8a:42:7b:97:d5:99:91:71:7c:33:37:a2:8c:75:37:5f: a8:b0:01:7b:21:e5:52:5d:66:44:46:10:9e:6e:c8:75:b6:55: e2:b2:4f:6a:1b:64:be:2c:3e:cb:92:e2:46:42:69:b6:ff:69: f7:85:89:79:e0:05:50:4f:3d:9a:42:07:71:bf:89:62:45:3e: 76:a0:32:54:1a:41:7e:4c:76:9e:7d:ec:05:e3:67:6f:27:86: 5f:24:99:63:1c:17:a1:75:8d:28:ba:2c:ff:6f:2b:7e:70:48: bf:df:67:e5:d9:40:c7:a1:11:b7:ad:1f:5d:24:1f:4f:4d:9a: ed:ed:af:ee:79:7a:36:e1:99:78:3e:34:69:63:24:7e:97:07: 1d:0e:72:fe:64:5c:f8:70:4d:8d:0a:66:8a:bf:bd:40:83:39: 01:15:f6:c6:e9:91:36:ad:c8:ce:fe:5b:af:33:75:b4:ec:53: 21:17:98:c1:26:0f:a2:ff:02:67:36:ff:ec:2d:8b:11:20:55: 67:5d:d6:3a -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUHyBhlb0JWX9cfj1iqjXhgvVoUhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDdaFw0yNTEwMDUwNDQ1MDdaMDMxMTAvBgNV BAMTKDE5ODZDRTNGRDlERDYwRTIwMEZCQkFBOTlFRkFGOTlBRDk5MzYxQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3WmS7gjEacPulMnHnt5V+1t+o qkRxgF8OvyGbTuqhFXKn+BM8RvSBnI4k98AEWugOBQ/KFJsYQlopnf1EmnaY1MfQ uMJQOMl2nHZJVJ2d1FAKTQq1EI+np5aAh3U7I7gZp+PFzUH0+Uqlbw/XlkJYbEQZ K7jnxpGblp//gymRx3mTi8Nd76C3St8/7bYu27kRDFpxvfsgBMkpNWvEUVvyAoWT zCUmQaDOcrmT6nMEAUp3pV6650YSbvflDl3ln/NzQswNBilJZSZer70zpZhymEmX cce4NdgXS3ZkxXAAdbQKXBxeJu04P7nQuQgOdHPQ0ji0h46i46FzDGUBEIjrAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUGYbOP9ndYOIA+7qpnvr5mtmTYcAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDkyODYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAajANBgkqhkiG9w0BAQsFAAOCAQEAj8RK zCfq/6WLo9mlVaZ8I1p/Ly3zmhsEPyXV30zKkd/RNyqNvhjlhiZNdDOPxDp3NIQ6 gj+fhQqKQnuX1ZmRcXwzN6KMdTdfqLABeyHlUl1mREYQnm7IdbZV4rJPahtkviw+ y5LiRkJptv9p94WJeeAFUE89mkIHcb+JYkU+dqAyVBpBfkx2nn3sBeNnbyeGXySZ YxwXoXWNKLos/28rfnBIv99n5dlAx6ERt60fXSQfT02a7e2v7nl6NuGZeD40aWMk fpcHHQ5y/mRc+HBNjQpmir+9QIM5ARX2xumRNq3Izv5brzN1tOxTIReYwSYPov8C Zzb/7C2LESBVZ13WOg== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org