$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49707.roa File: AS49707.roa (raw, json) Hash identifier: H9yLnMGq+xkx1HVi1ObxsRY13MIXzo5nwlJq5CeDJPo= Subject key identifier: FA:02:DC:4D:EB:5C:7B:E0:22:A0:AD:89:A1:79:CA:4E:67:FC:E7:71 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 25789D33DFBFFB0FBEA7F025DCD190A1FF6D960B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49707.roa Signing time: Sun 06 Oct 2024 04:44:57 +0000 ROA not before: Sun 06 Oct 2024 04:39:57 +0000 ROA not after: Sun 05 Oct 2025 04:44:57 +0000 asID: 49707 IP address blocks: 2a0a:6040:4c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:78:9d:33:df:bf:fb:0f:be:a7:f0:25:dc:d1:90:a1:ff:6d:96:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:57 2024 GMT Not After : Oct 5 04:44:57 2025 GMT Subject: CN=FA02DC4DEB5C7BE022A0AD89A179CA4E67FCE771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:25:ef:05:f8:d4:ac:b7:ee:7c:9f:fd:54:84: 74:00:09:ff:ce:bb:aa:3b:22:2d:24:fd:23:58:95: 16:30:94:55:1e:6d:5e:96:db:62:29:65:a0:f0:4a: 73:ef:86:0f:52:87:27:8f:7f:dc:9a:08:c9:9e:d4: a8:9a:b8:12:4c:f1:e7:14:f7:22:93:95:44:70:52: 25:b1:a5:8f:ee:60:3d:97:90:e9:3c:23:5a:61:a8: b0:b0:4f:7f:41:5b:fd:bf:9c:0d:c0:85:db:e5:2a: 09:8f:a5:69:6d:3d:e2:33:4d:53:36:56:8b:5f:93: f0:b8:25:44:29:aa:00:6e:55:07:e3:54:09:97:78: 0b:ce:ce:d1:f6:7f:77:42:9b:94:5b:90:5f:c6:a0: 5c:65:74:82:ff:ec:66:73:93:3a:4f:f6:e7:e7:3d: 82:c1:76:0f:cd:4f:9a:0c:fa:a3:19:96:10:ef:bf: 7e:b4:c9:cb:3d:b7:8b:0d:46:4f:35:16:98:3f:9b: 96:b9:a9:07:3d:0b:0d:81:5f:c3:ee:b9:2c:ea:61: 54:4e:06:96:ed:2f:49:b0:6a:10:25:ec:11:bc:7b: bf:1c:32:7b:31:64:24:ca:88:16:3c:d6:4c:f1:b6: 27:76:cd:a9:b3:f0:44:90:ee:a3:28:ee:4c:a7:45: 10:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:02:DC:4D:EB:5C:7B:E0:22:A0:AD:89:A1:79:CA:4E:67:FC:E7:71 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49707.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4c00::/40 Signature Algorithm: sha256WithRSAEncryption 67:ad:3d:14:17:ec:1a:6a:54:c3:b9:d2:05:c0:1c:a2:17:f8: 10:f6:7a:4f:e6:dd:c8:07:40:44:18:2b:b9:12:34:99:1d:1d: 92:8f:85:f0:0d:a6:0c:a2:39:10:02:4f:a2:b8:7c:0a:88:fd: ee:0f:1d:ed:5b:38:1b:f0:a7:70:eb:ea:13:55:f0:da:25:cd: 6d:fb:a7:5c:45:60:26:c6:68:c5:27:04:db:8f:f6:e6:20:1c: 27:5e:16:09:c6:fd:8c:f6:76:a3:4b:51:0a:ed:a1:49:56:63: 50:c3:b4:e7:b4:81:c4:7d:20:9f:1c:5c:f9:1d:03:cd:68:a8: 20:b9:26:7b:38:91:0d:7e:7d:2f:50:ba:bc:16:90:70:2f:6c: 5f:54:90:b1:91:9e:3e:3c:47:ec:bf:37:af:f5:15:2f:6b:60: ee:4f:37:7e:fc:13:44:48:78:db:10:9e:61:e9:5d:84:5d:f1: 5c:b4:5c:ee:a6:2b:a7:7e:fc:ab:80:f7:e3:a8:69:6d:2a:3c: b3:3e:b9:e5:23:90:5e:ac:1d:a6:a3:2e:55:e1:81:ea:ba:37: ed:e3:81:ef:15:27:d7:2a:f9:1d:d0:36:67:8f:17:91:71:ce: d6:65:04:ff:59:12:94:a9:76:72:29:bc:37:a9:f1:9f:6a:65: d9:d4:00:47 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUJXidM9+/+w++p/Al3NGQof9tlgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTdaFw0yNTEwMDUwNDQ0NTdaMDMxMTAvBgNV BAMTKEZBMDJEQzRERUI1QzdCRTAyMkEwQUQ4OUExNzlDQTRFNjdGQ0U3NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFJe8F+NSst+58n/1UhHQACf/O u6o7Ii0k/SNYlRYwlFUebV6W22IpZaDwSnPvhg9ShyePf9yaCMme1KiauBJM8ecU 9yKTlURwUiWxpY/uYD2XkOk8I1phqLCwT39BW/2/nA3AhdvlKgmPpWltPeIzTVM2 Votfk/C4JUQpqgBuVQfjVAmXeAvOztH2f3dCm5RbkF/GoFxldIL/7GZzkzpP9ufn PYLBdg/NT5oM+qMZlhDvv360ycs9t4sNRk81Fpg/m5a5qQc9Cw2BX8PuuSzqYVRO BpbtL0mwahAl7BG8e78cMnsxZCTKiBY81kzxtid2zamz8ESQ7qMo7kynRRB/AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU+gLcTetce+AioK2JoXnKTmf853EwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDk3MDcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBATDANBgkqhkiG9w0BAQsFAAOCAQEAZ609 FBfsGmpUw7nSBcAcohf4EPZ6T+bdyAdARBgruRI0mR0dko+F8A2mDKI5EAJPorh8 Coj97g8d7Vs4G/CncOvqE1Xw2iXNbfunXEVgJsZoxScE24/25iAcJ14WCcb9jPZ2 o0tRCu2hSVZjUMO057SBxH0gnxxc+R0DzWioILkmeziRDX59L1C6vBaQcC9sX1SQ sZGePjxH7L83r/UVL2tg7k83fvwTREh42xCeYeldhF3xXLRc7qYrp378q4D346hp bSo8sz655SOQXqwdpqMuVeGB6ro37eOB7xUn1yr5HdA2Z48XkXHO1mUE/1kSlKl2 cim8N6nxn2pl2dQARw== -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org