$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS51087.roa File: AS51087.roa (raw, json) Hash identifier: jI/p8IiRYAjKW+3gpE2a0NwgKNNVlh5rpq+49G0BpG0= Subject key identifier: 1D:31:5A:1D:18:3B:F9:BE:95:88:89:1D:2E:33:8F:3A:4A:AF:78:58 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1A863B09956AB4842732868E2F6CA5ABDC349574 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS51087.roa Signing time: Sun 06 Oct 2024 04:45:01 +0000 ROA not before: Sun 06 Oct 2024 04:40:01 +0000 ROA not after: Sun 05 Oct 2025 04:45:01 +0000 asID: 51087 IP address blocks: 2a0a:6040:7d00::/40 maxlen: 48 2a0a:6040:d800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:86:3b:09:95:6a:b4:84:27:32:86:8e:2f:6c:a5:ab:dc:34:95:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:01 2024 GMT Not After : Oct 5 04:45:01 2025 GMT Subject: CN=1D315A1D183BF9BE9588891D2E338F3A4AAF7858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:05:ef:7d:be:89:9e:55:d5:55:61:32:ef: 17:ba:18:65:77:9d:93:dc:4a:49:85:ef:a2:20:08: 26:fb:3f:e8:12:b0:c4:30:66:b4:5b:49:05:07:71: 26:27:fd:53:cb:2d:20:a1:93:bd:aa:7c:76:00:70: 85:11:1d:13:ec:8d:a3:6a:02:a9:8c:cc:60:0d:1e: 59:42:54:1c:8c:cb:d9:0f:58:dd:c1:0b:89:e9:ea: 0b:c1:d6:b7:54:4e:23:c3:3c:44:6d:45:46:71:fa: b0:63:f8:59:ff:8a:4a:1c:1d:9e:8e:74:a9:cc:9e: 8d:e0:62:f7:2e:ea:22:3a:27:96:3d:bd:26:ac:11: 8a:54:9d:2c:99:ea:ac:98:d0:22:d6:de:94:bc:b9: 0c:51:8f:0b:99:da:83:7e:56:c2:8e:e0:6e:ba:63: fb:02:89:5a:5a:6f:a6:89:38:56:31:1a:91:ef:0c: b9:0b:7c:c4:57:13:d5:b1:13:7b:40:78:24:c8:cc: ed:1e:7a:9c:c2:dc:a7:35:d9:1b:21:d6:c2:4f:e4: d0:e0:8e:4b:8d:4d:c6:a5:1a:5f:3c:8b:72:25:fa: 18:b4:a2:0b:2e:aa:3d:cb:7d:41:71:e6:b7:f1:8f: c8:4f:f2:86:4b:ad:35:7f:3d:95:c8:43:b3:82:60: 96:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:31:5A:1D:18:3B:F9:BE:95:88:89:1D:2E:33:8F:3A:4A:AF:78:58 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS51087.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7d00::/40 2a0a:6040:d800::/40 Signature Algorithm: sha256WithRSAEncryption a0:b7:20:cb:30:0a:46:2a:d0:1d:2d:d1:17:d9:d8:73:78:f0: e3:e5:cc:f6:a0:18:f6:06:5d:7c:b2:97:32:8e:63:db:cb:a8: a1:26:15:79:09:c5:b9:38:c4:6c:d8:45:b5:67:9a:33:f7:0b: f0:54:15:bc:05:e3:6d:b4:23:25:d4:2c:03:6c:b8:d9:97:4b: ff:30:bb:83:72:5a:fb:1b:85:cb:67:d9:7d:5f:89:10:2a:f7: 64:be:58:01:fe:9f:20:d4:a0:2e:fb:55:fd:32:17:d4:cc:03: 46:11:dc:6c:75:5c:13:12:25:ad:d4:98:18:40:c2:78:92:b9: 32:90:3b:7e:8a:7a:8b:2e:0d:6d:11:7a:12:56:a8:81:ec:16: 89:3e:d4:fd:31:36:89:27:91:11:82:1d:0b:33:47:f0:8e:08: d6:c4:ac:31:39:67:fc:b1:2a:b2:fb:25:be:15:96:8c:b2:a0: e4:8e:83:ff:ed:3f:99:70:2e:58:8f:31:e2:dd:1c:3b:35:2b: 3b:db:77:cc:91:6a:8d:3d:02:61:95:03:66:e8:13:fd:78:63: 9f:1d:73:81:47:7a:6d:8f:1f:a4:fa:6d:ba:a8:ef:7a:bf:0f: 0a:7f:75:b9:4b:fa:35:5b:d3:9c:b2:e0:b4:3d:4e:04:0c:7e: e7:8b:64:f1 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUGoY7CZVqtIQnMoaOL2ylq9w0lXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDFaFw0yNTEwMDUwNDQ1MDFaMDMxMTAvBgNV BAMTKDFEMzE1QTFEMTgzQkY5QkU5NTg4ODkxRDJFMzM4RjNBNEFBRjc4NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA7AXvfb6JnlXVVWEy7xe6GGV3 nZPcSkmF76IgCCb7P+gSsMQwZrRbSQUHcSYn/VPLLSChk72qfHYAcIURHRPsjaNq AqmMzGANHllCVByMy9kPWN3BC4np6gvB1rdUTiPDPERtRUZx+rBj+Fn/ikocHZ6O dKnMno3gYvcu6iI6J5Y9vSasEYpUnSyZ6qyY0CLW3pS8uQxRjwuZ2oN+VsKO4G66 Y/sCiVpab6aJOFYxGpHvDLkLfMRXE9WxE3tAeCTIzO0eepzC3Kc12Rsh1sJP5NDg jkuNTcalGl88i3Il+hi0ogsuqj3LfUFx5rfxj8hP8oZLrTV/PZXIQ7OCYJb3AgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUHTFaHRg7+b6ViIkdLjOPOkqveFgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTEwODcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqCmBAfQMGACoKYEDYMA0GCSqGSIb3DQEBCwUA A4IBAQCgtyDLMApGKtAdLdEX2dhzePDj5cz2oBj2Bl18spcyjmPby6ihJhV5CcW5 OMRs2EW1Z5oz9wvwVBW8BeNttCMl1CwDbLjZl0v/MLuDclr7G4XLZ9l9X4kQKvdk vlgB/p8g1KAu+1X9MhfUzANGEdxsdVwTEiWt1JgYQMJ4krkykDt+inqLLg1tEXoS VqiB7BaJPtT9MTaJJ5ERgh0LM0fwjgjWxKwxOWf8sSqy+yW+FZaMsqDkjoP/7T+Z cC5YjzHi3Rw7NSs723fMkWqNPQJhlQNm6BP9eGOfHXOBR3ptjx+k+m26qO96vw8K f3W5S/o1W9OcsuC0PU4EDH7ni2Tx -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org