$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57308.roa File: AS57308.roa (raw, json) Hash identifier: braHP3gjrCkEq1r3b8AJEIpRxkPpm5BSEdXfm5xiYvw= Subject key identifier: C3:74:D9:E9:FE:48:E0:B4:72:4B:4D:79:1C:80:D9:E2:00:04:2E:35 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4E1A37D53C7DE6F62ACACB4710E82A47EE45A964 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57308.roa Signing time: Fri 30 Jun 2023 07:28:36 +0000 ROA not before: Fri 30 Jun 2023 07:23:36 +0000 ROA not after: Fri 28 Jun 2024 07:28:36 +0000 asID: 57308 IP address blocks: 2a05:dfc1:4e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:1a:37:d5:3c:7d:e6:f6:2a:ca:cb:47:10:e8:2a:47:ee:45:a9:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 30 07:23:36 2023 GMT Not After : Jun 28 07:28:36 2024 GMT Subject: CN=C374D9E9FE48E0B4724B4D791C80D9E200042E35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b6:ed:44:ab:db:7a:17:b5:30:5a:96:5a:9d: 8b:0e:8e:d3:8a:38:da:21:c8:f5:dc:09:6c:ec:05: ec:1a:97:57:a8:b4:a9:cb:1d:93:d7:9a:e1:3a:03: 1e:db:aa:f5:95:34:76:aa:d5:a0:12:1b:b9:5e:53: 54:96:68:6c:1a:ec:21:08:2f:38:67:66:de:f7:61: 07:1b:76:0c:24:e7:fe:4c:a2:4e:b3:ee:af:46:f1: a2:44:96:ad:bf:9f:71:56:ec:c1:f9:a7:b6:35:fc: c7:7e:52:66:6c:6a:b1:f2:cc:8b:9f:2b:f4:f5:01: 1f:0a:c2:1b:69:c1:d8:2f:99:c9:62:54:74:79:c1: 13:e5:6a:df:a6:5e:e6:3d:aa:bc:2d:12:2b:4f:16: f9:55:13:94:84:ed:98:ce:79:56:9c:12:07:ea:16: fa:a9:3c:aa:e6:a6:74:ce:70:2c:b2:9d:7e:01:c4: d5:56:df:db:02:51:b1:7d:0d:ea:85:c6:b4:01:f1: 95:5d:29:91:f8:2b:18:f4:c3:34:2f:20:19:02:02: d9:55:ca:64:e0:6d:87:08:6e:18:ae:d3:10:3e:91: 3a:1d:98:4d:40:99:92:5d:46:81:bb:d8:94:03:30: 58:ae:c7:8d:27:d2:82:fd:73:15:27:28:d9:5e:24: 1d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:74:D9:E9:FE:48:E0:B4:72:4B:4D:79:1C:80:D9:E2:00:04:2E:35 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57308.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4e00::/40 Signature Algorithm: sha256WithRSAEncryption 55:aa:f0:ab:30:7a:42:35:d1:9a:81:25:85:02:32:7c:99:83: 1e:7c:34:f0:9c:d5:a7:45:63:92:ab:12:d9:7b:78:7d:6d:e1: 79:7c:7c:75:bc:dd:58:f7:0b:10:63:ff:2b:b3:99:0b:29:8d: 3d:e3:07:36:db:9e:b1:6a:00:10:68:fe:b7:cd:81:41:50:0f: 52:f3:9e:a7:97:2f:cb:43:fa:9e:07:b9:6b:ac:95:e1:32:03: ee:5c:af:0b:f6:9e:72:12:61:90:61:25:57:08:c9:58:9c:8c: e7:1a:c4:5e:6f:81:a5:3b:80:10:09:50:b9:40:63:66:0f:2e: 50:fa:e4:59:da:a8:4f:79:84:87:9c:63:5a:e0:51:9f:0e:3a: d6:84:44:5c:0d:a5:b7:a9:25:c3:1a:fc:7d:ea:5d:dc:42:f3: 16:22:b3:76:e5:15:7e:fe:9d:a7:2f:e6:82:f4:54:06:56:9d: 65:35:2c:e2:ee:d3:7f:80:02:bb:29:7f:6c:ce:4b:e8:19:e7: aa:4c:0c:d1:fe:10:fe:a3:f9:49:2b:97:4b:98:8f:19:9d:29: 96:e8:c2:98:8c:f9:4d:22:d0:d1:0e:2f:a3:8c:c0:be:c8:54: a3:de:0c:2d:fc:5a:90:6c:af:07:55:75:40:69:c0:5c:7d:bc: 89:13:5a:57 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUTho31Tx95vYqystHEOgqR+5FqWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA2MzAwNzIzMzZaFw0yNDA2MjgwNzI4MzZaMDMxMTAvBgNV BAMTKEMzNzREOUU5RkU0OEUwQjQ3MjRCNEQ3OTFDODBEOUUyMDAwNDJFMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVtu1Eq9t6F7UwWpZanYsOjtOK ONohyPXcCWzsBewal1eotKnLHZPXmuE6Ax7bqvWVNHaq1aASG7leU1SWaGwa7CEI LzhnZt73YQcbdgwk5/5Mok6z7q9G8aJElq2/n3FW7MH5p7Y1/Md+UmZsarHyzIuf K/T1AR8KwhtpwdgvmcliVHR5wRPlat+mXuY9qrwtEitPFvlVE5SE7ZjOeVacEgfq FvqpPKrmpnTOcCyynX4BxNVW39sCUbF9DeqFxrQB8ZVdKZH4Kxj0wzQvIBkCAtlV ymTgbYcIbhiu0xA+kTodmE1AmZJdRoG72JQDMFiux40n0oL9cxUnKNleJB0zAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUw3TZ6f5I4LRyS015HIDZ4gAELjUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTczMDgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BTjANBgkqhkiG9w0BAQsFAAOCAQEAVarw qzB6QjXRmoElhQIyfJmDHnw08JzVp0VjkqsS2Xt4fW3heXx8dbzdWPcLEGP/K7OZ CymNPeMHNtuesWoAEGj+t82BQVAPUvOep5cvy0P6nge5a6yV4TID7lyvC/aechJh kGElVwjJWJyM5xrEXm+BpTuAEAlQuUBjZg8uUPrkWdqoT3mEh5xjWuBRnw461oRE XA2lt6klwxr8fepd3ELzFiKzduUVfv6dpy/mgvRUBladZTUs4u7Tf4ACuyl/bM5L 6BnnqkwM0f4Q/qP5SSuXS5iPGZ0plujCmIz5TSLQ0Q4vo4zAvshUo94MLfxakGyv B1V1QGnAXH28iRNaVw== -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org