$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49707.roa File: AS49707.roa (raw, json) Hash identifier: zITsQ1HYA2mGskn9BUPW+U7bzWuoEYUvMh+w/rAy8/w= Subject key identifier: A6:A5:72:29:02:F0:B8:8D:76:93:86:E6:AB:07:17:2E:4C:20:A6:24 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 743E2C69298C810047879580A0C81DAA16B3CB62 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49707.roa Signing time: Sun 05 Nov 2023 04:07:23 +0000 ROA not before: Sun 05 Nov 2023 04:02:23 +0000 ROA not after: Sun 03 Nov 2024 04:07:23 +0000 asID: 49707 IP address blocks: 2a0a:6040:4c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:3e:2c:69:29:8c:81:00:47:87:95:80:a0:c8:1d:aa:16:b3:cb:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:23 2023 GMT Not After : Nov 3 04:07:23 2024 GMT Subject: CN=A6A5722902F0B88D769386E6AB07172E4C20A624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:60:20:28:4f:6f:c1:ab:58:31:cf:9c:07:61: bf:a1:c5:8c:27:42:8a:a5:58:6e:a7:d6:9e:43:6c: b1:70:4e:c6:41:d0:50:7b:13:f8:b5:8d:1a:41:72: 20:79:64:53:8b:f5:4c:c6:3d:a0:9e:ee:c3:63:b9: fb:02:a7:6f:7b:b1:56:87:8b:6c:00:0b:f1:fc:79: e0:fc:6b:fe:a7:5e:bc:87:7d:ef:70:19:78:0b:7a: 66:6f:3b:04:92:49:99:19:40:ee:35:6c:a9:a3:23: a4:27:03:88:12:4c:03:de:48:1d:e0:1c:5b:85:11: 8c:41:c0:ab:09:c4:41:d9:d5:70:ac:03:b7:1b:49: a4:59:1e:17:f4:f5:fc:e3:57:69:8e:23:04:9c:70: c4:49:0c:a8:c3:fc:bd:b5:e9:8b:b7:6f:73:9c:63: 57:af:6b:4f:07:91:d3:25:2f:1f:5a:60:15:be:e8: 13:65:42:69:64:27:bc:dd:5f:e1:d4:d0:9f:69:d9: 0c:37:ce:8b:11:e4:bd:22:c4:f5:d4:79:e7:bb:2a: d3:8d:36:ec:c0:30:ea:e5:2a:ad:25:18:c8:6c:44: 7b:87:7d:69:94:6b:bc:d3:ba:e3:49:a8:4a:ef:13: b7:bb:fe:69:09:f3:bd:ae:5f:fe:d9:03:ab:85:04: 89:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A5:72:29:02:F0:B8:8D:76:93:86:E6:AB:07:17:2E:4C:20:A6:24 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS49707.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4c00::/40 Signature Algorithm: sha256WithRSAEncryption 48:44:1c:b6:d4:d9:2e:76:9f:77:29:da:5c:e1:7b:11:c5:b0: bc:46:01:ec:88:04:09:23:c4:86:2e:a6:8c:2b:86:48:dd:cb: d0:34:5a:2f:62:28:dd:51:56:82:0f:f5:fb:53:89:38:4c:04: c7:d8:8d:64:00:23:75:ed:da:05:06:15:df:a7:fe:3a:4b:0b: 37:8b:c6:9b:c0:66:05:22:da:86:bb:46:b5:99:05:9d:3c:a4: 89:0c:81:79:ed:8a:a3:fb:c6:e7:08:df:cc:58:96:89:42:3a: be:e3:17:ac:98:cb:53:4b:10:d1:75:22:bc:90:58:a3:0a:d1: 92:da:18:35:d5:f2:97:3f:fb:0a:20:7c:20:4e:f7:90:a1:e3: 4f:19:38:c8:39:14:f1:50:2f:86:41:71:b3:20:ca:6a:f8:d0: f9:a2:f5:50:42:b7:eb:8b:ba:1b:ca:66:30:f8:76:31:71:49: 1f:13:af:56:e4:8d:b8:7d:ce:b2:a5:86:7c:ec:4a:b0:11:99: 97:7a:c0:63:2e:e5:8f:9e:a6:a0:cb:ac:c1:86:a5:7c:48:f4: d6:98:2c:de:80:f8:11:21:b8:0b:03:e0:af:e2:f8:54:a5:2e: ca:17:3b:1f:fd:6c:d0:55:e4:51:5f:cc:44:3d:31:ba:d5:e8: 0e:c2:a0:a0 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUdD4saSmMgQBHh5WAoMgdqhazy2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjNaFw0yNDExMDMwNDA3MjNaMDMxMTAvBgNV BAMTKEE2QTU3MjI5MDJGMEI4OEQ3NjkzODZFNkFCMDcxNzJFNEMyMEE2MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzYCAoT2/Bq1gxz5wHYb+hxYwn QoqlWG6n1p5DbLFwTsZB0FB7E/i1jRpBciB5ZFOL9UzGPaCe7sNjufsCp297sVaH i2wAC/H8eeD8a/6nXryHfe9wGXgLemZvOwSSSZkZQO41bKmjI6QnA4gSTAPeSB3g HFuFEYxBwKsJxEHZ1XCsA7cbSaRZHhf09fzjV2mOIwSccMRJDKjD/L216Yu3b3Oc Y1eva08HkdMlLx9aYBW+6BNlQmlkJ7zdX+HU0J9p2Qw3zosR5L0ixPXUeee7KtON NuzAMOrlKq0lGMhsRHuHfWmUa7zTuuNJqErvE7e7/mkJ872uX/7ZA6uFBIl5AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUpqVyKQLwuI12k4bmqwcXLkwgpiQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDk3MDcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBATDANBgkqhkiG9w0BAQsFAAOCAQEASEQc ttTZLnafdynaXOF7EcWwvEYB7IgECSPEhi6mjCuGSN3L0DRaL2Io3VFWgg/1+1OJ OEwEx9iNZAAjde3aBQYV36f+OksLN4vGm8BmBSLahrtGtZkFnTykiQyBee2Ko/vG 5wjfzFiWiUI6vuMXrJjLU0sQ0XUivJBYowrRktoYNdXylz/7CiB8IE73kKHjTxk4 yDkU8VAvhkFxsyDKavjQ+aL1UEK364u6G8pmMPh2MXFJHxOvVuSNuH3OsqWGfOxK sBGZl3rAYy7lj56moMuswYalfEj01pgs3oD4ESG4CwPgr+L4VKUuyhc7H/1s0FXk UV/MRD0xutXoDsKgoA== -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org