$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS51087.roa File: AS51087.roa (raw, json) Hash identifier: a6EyOWsDWGNdumcDOiSFeLi58ratAfy0HSnao+285+w= Subject key identifier: 71:7C:C4:FA:8B:C5:A0:12:55:41:DC:C5:36:DB:6C:9B:6D:FE:08:DD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 69621197BD2F5F19B0E039A9F669375C05332A58 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS51087.roa Signing time: Sun 05 Nov 2023 04:07:06 +0000 ROA not before: Sun 05 Nov 2023 04:02:06 +0000 ROA not after: Sun 03 Nov 2024 04:07:06 +0000 asID: 51087 IP address blocks: 2a0a:6040:7d00::/40 maxlen: 48 2a0a:6040:d800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:62:11:97:bd:2f:5f:19:b0:e0:39:a9:f6:69:37:5c:05:33:2a:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:06 2023 GMT Not After : Nov 3 04:07:06 2024 GMT Subject: CN=717CC4FA8BC5A0125541DCC536DB6C9B6DFE08DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:63:30:9c:ae:d8:4a:a9:f0:a3:30:fe:0b:7e: 0b:f4:e9:0d:fb:23:7e:7c:57:4b:d1:6a:83:5a:ed: cc:b2:12:38:4a:d1:0f:30:b0:98:91:9b:68:a5:63: d1:a3:c0:62:64:ce:2e:66:fd:12:ec:22:58:80:bc: 41:63:8c:2d:75:eb:bc:9c:fe:08:4d:9b:df:ad:2e: a1:fa:85:f6:6c:c2:db:6b:e1:ed:2e:03:c4:52:6b: 21:52:61:82:31:f9:bf:ff:e3:d4:26:bc:16:5a:39: e4:8d:bc:20:1c:4c:c9:aa:6a:c2:1a:72:ad:2b:95: b5:a0:5c:e1:05:7e:57:c9:2d:5c:31:c2:ce:92:9e: 62:88:a0:74:02:e4:03:fc:9f:3b:03:c2:37:29:77: 25:e7:38:39:fa:cd:50:2d:1f:a8:28:07:c1:bf:07: e0:ae:f7:88:b4:9c:a2:0d:eb:b0:9b:3b:3c:d7:54: 64:41:72:17:19:e9:d1:e0:6b:5c:6e:aa:b5:6e:2e: 14:d3:b7:a8:5a:35:c9:ae:26:99:a3:57:06:52:69: 7a:a9:9d:55:28:d1:26:46:3b:7a:73:f2:02:9a:ca: ec:a4:e9:e3:ee:f4:06:af:3e:ad:1e:b7:b0:fb:29: 2b:04:b9:68:62:25:8f:b0:8a:c1:36:f2:18:68:52: 4b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:7C:C4:FA:8B:C5:A0:12:55:41:DC:C5:36:DB:6C:9B:6D:FE:08:DD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS51087.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7d00::/40 2a0a:6040:d800::/40 Signature Algorithm: sha256WithRSAEncryption 4d:b4:c9:1b:c2:3d:8c:a6:09:7e:67:ac:91:9a:49:87:5b:94: aa:90:f6:72:ba:50:81:06:65:2a:e8:4c:e2:c7:a0:65:6e:c0: 0b:9a:fe:03:f8:04:c7:c0:2e:d5:1f:72:e3:99:7e:6a:bc:9c: 59:53:f3:63:98:00:bb:0a:8c:d2:28:e7:6c:04:05:a4:01:59: 9b:05:31:f0:b1:b3:09:f1:41:42:3b:19:e0:53:d6:77:b4:a9: 53:b2:00:d5:94:d9:c6:89:b1:1c:e1:ac:4a:78:a2:36:bd:15: 13:49:7b:73:28:fd:8b:9e:95:42:52:10:55:12:f8:9b:a3:cd: ff:ae:ae:a2:82:b4:2c:a7:75:1d:a5:e6:4c:e8:42:84:68:2e: f7:0d:e2:59:77:ac:d2:c0:b5:5d:b8:d5:53:00:e7:49:58:2a: aa:37:1d:c4:4e:5d:66:76:4f:d2:51:13:c5:6b:35:a2:66:e0: fd:7b:26:d4:76:10:d0:04:43:87:29:c0:b9:95:c7:16:aa:a4: c9:f7:43:b2:28:44:eb:55:f8:11:20:67:82:55:83:cf:d5:68: 05:ba:92:b1:1f:0d:ec:1e:a3:64:9b:5b:5a:13:be:90:80:5a: ac:5d:13:9c:99:f2:90:42:8b:6a:de:0d:87:09:cf:8b:ea:0f: 8e:e2:dd:e3 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUaWIRl70vXxmw4Dmp9mk3XAUzKlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDZaFw0yNDExMDMwNDA3MDZaMDMxMTAvBgNV BAMTKDcxN0NDNEZBOEJDNUEwMTI1NTQxRENDNTM2REI2QzlCNkRGRTA4REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOYzCcrthKqfCjMP4Lfgv06Q37 I358V0vRaoNa7cyyEjhK0Q8wsJiRm2ilY9GjwGJkzi5m/RLsIliAvEFjjC1167yc /ghNm9+tLqH6hfZswttr4e0uA8RSayFSYYIx+b//49QmvBZaOeSNvCAcTMmqasIa cq0rlbWgXOEFflfJLVwxws6SnmKIoHQC5AP8nzsDwjcpdyXnODn6zVAtH6goB8G/ B+Cu94i0nKIN67CbOzzXVGRBchcZ6dHga1xuqrVuLhTTt6haNcmuJpmjVwZSaXqp nVUo0SZGO3pz8gKayuyk6ePu9AavPq0et7D7KSsEuWhiJY+wisE28hhoUkt5AgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUcXzE+ovFoBJVQdzFNttsm23+CN0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTEwODcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqCmBAfQMGACoKYEDYMA0GCSqGSIb3DQEBCwUA A4IBAQBNtMkbwj2Mpgl+Z6yRmkmHW5SqkPZyulCBBmUq6Ezix6BlbsALmv4D+ATH wC7VH3LjmX5qvJxZU/NjmAC7CozSKOdsBAWkAVmbBTHwsbMJ8UFCOxngU9Z3tKlT sgDVlNnGibEc4axKeKI2vRUTSXtzKP2LnpVCUhBVEvibo83/rq6igrQsp3UdpeZM 6EKEaC73DeJZd6zSwLVduNVTAOdJWCqqNx3ETl1mdk/SURPFazWiZuD9eybUdhDQ BEOHKcC5lccWqqTJ90OyKETrVfgRIGeCVYPP1WgFupKxHw3sHqNkm1taE76QgFqs XROcmfKQQotq3g2HCc+L6g+O4t3j -----END CERTIFICATE-----Generated at Tue May 21 04:45:07 2024 by rpki-client on console-fra.rpki-client.org