$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57934.roa File: AS57934.roa (raw, json) Hash identifier: OCxQPj1VvR5pmgU/ZnykS1pAA0SSSiYpLgl/loFNjy8= Subject key identifier: 97:5C:A2:2C:6A:49:BF:7D:F5:B3:9C:A1:DD:E8:14:E2:36:02:B0:3F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 375F466080234C1A11B75603ED4729F573171CC0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57934.roa Signing time: Sun 06 Oct 2024 04:45:04 +0000 ROA not before: Sun 06 Oct 2024 04:40:04 +0000 ROA not after: Sun 05 Oct 2025 04:45:04 +0000 asID: 57934 IP address blocks: 2a0a:6040:5800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:5f:46:60:80:23:4c:1a:11:b7:56:03:ed:47:29:f5:73:17:1c:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:04 2024 GMT Not After : Oct 5 04:45:04 2025 GMT Subject: CN=975CA22C6A49BF7DF5B39CA1DDE814E23602B03F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:19:cb:e5:99:d8:73:dc:26:21:51:34:71:02: ce:26:08:2b:64:f3:3a:59:d2:cc:90:7e:00:94:b7: 62:76:cb:84:e1:6e:39:dd:cb:f0:8c:8f:96:c3:94: a5:12:ac:5e:74:a0:5d:b1:1c:d5:ab:20:e2:89:a6: 49:18:71:e0:8c:33:2f:9e:f7:62:1d:37:67:ca:88: ca:1a:49:b3:ac:9d:a3:63:e3:49:8f:16:1c:73:8f: 74:c5:7b:23:b9:f1:4d:ea:92:47:e8:fa:c8:f1:04: 1b:78:b2:8d:73:9d:19:cb:2c:af:b0:91:e8:ae:30: a7:71:5f:1d:b3:0a:52:8c:6e:0b:ce:ac:e5:96:39: 3d:1e:b3:9e:8e:bb:2a:ed:14:23:59:cf:ae:be:13: 02:f9:d6:c5:37:ed:b7:d4:9d:c2:45:1e:9b:cc:fb: cb:cd:64:f5:6a:a9:b2:b2:aa:0b:dc:c1:79:0a:02: 24:3f:35:c4:93:a1:61:10:77:36:0a:79:b8:23:7f: 20:00:b4:11:9c:64:eb:48:9f:b6:57:46:28:61:6a: 62:a4:1c:a7:21:8a:d1:44:de:83:bf:9f:00:54:ca: 45:d2:27:0f:e0:ee:a8:2f:67:e8:5a:84:2c:71:60: f4:99:84:45:04:d5:82:44:58:e7:1a:8a:ac:98:1a: 80:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:5C:A2:2C:6A:49:BF:7D:F5:B3:9C:A1:DD:E8:14:E2:36:02:B0:3F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5800::/40 Signature Algorithm: sha256WithRSAEncryption 5d:0f:60:6a:d8:5a:a7:1d:78:61:9e:78:29:dc:a3:4e:90:19: 49:19:8c:79:75:94:e7:e0:b6:45:a3:7b:c8:c6:a6:85:63:c8: a0:5e:10:9f:6f:df:62:e4:62:85:35:dc:2e:5b:f4:65:6b:6b: 63:95:68:7d:fd:75:71:8e:aa:dd:21:fd:ee:10:9e:24:d9:c6: 69:8c:95:55:3a:f4:84:24:be:4e:52:2d:6a:da:46:1f:a4:a2: 5f:b2:5c:d7:23:f2:7e:ee:2d:8e:27:4d:74:46:0b:8a:30:bd: 94:f2:9c:5a:68:3b:d2:62:a2:10:85:a9:4b:fa:e9:d4:54:4f: 55:a9:81:3b:c7:cc:1a:5e:ea:87:88:85:d1:e2:3d:7a:b3:93: 9e:dd:27:83:6c:57:9b:d0:68:5d:a4:cf:47:4d:e9:66:d9:1b: dc:3a:85:f0:9f:97:73:77:3c:f9:53:45:cd:d4:39:8b:3e:5c: 67:a3:de:0a:e1:cd:aa:52:e5:e6:6b:de:5a:a4:4b:ab:41:01: f5:39:67:a2:63:44:26:e5:90:d9:6a:53:53:19:fc:21:b4:f5: 47:c8:0a:b5:df:45:23:26:de:44:fe:d7:ca:78:8f:2d:83:50: 52:c1:2e:6d:cb:26:28:36:f8:85:75:fb:0f:4a:70:f4:bc:73: 61:d7:d1:bc -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUN19GYIAjTBoRt1YD7Ucp9XMXHMAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDRaFw0yNTEwMDUwNDQ1MDRaMDMxMTAvBgNV BAMTKDk3NUNBMjJDNkE0OUJGN0RGNUIzOUNBMURERTgxNEUyMzYwMkIwM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Gcvlmdhz3CYhUTRxAs4mCCtk 8zpZ0syQfgCUt2J2y4Thbjndy/CMj5bDlKUSrF50oF2xHNWrIOKJpkkYceCMMy+e 92IdN2fKiMoaSbOsnaNj40mPFhxzj3TFeyO58U3qkkfo+sjxBBt4so1znRnLLK+w keiuMKdxXx2zClKMbgvOrOWWOT0es56OuyrtFCNZz66+EwL51sU37bfUncJFHpvM +8vNZPVqqbKyqgvcwXkKAiQ/NcSToWEQdzYKebgjfyAAtBGcZOtIn7ZXRihhamKk HKchitFE3oO/nwBUykXSJw/g7qgvZ+hahCxxYPSZhEUE1YJEWOcaiqyYGoClAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUl1yiLGpJv331s5yh3egU4jYCsD8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTc5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAWDANBgkqhkiG9w0BAQsFAAOCAQEAXQ9g athapx14YZ54KdyjTpAZSRmMeXWU5+C2RaN7yMamhWPIoF4Qn2/fYuRihTXcLlv0 ZWtrY5Voff11cY6q3SH97hCeJNnGaYyVVTr0hCS+TlItatpGH6SiX7Jc1yPyfu4t jidNdEYLijC9lPKcWmg70mKiEIWpS/rp1FRPVamBO8fMGl7qh4iF0eI9erOTnt0n g2xXm9BoXaTPR03pZtkb3DqF8J+Xc3c8+VNFzdQ5iz5cZ6PeCuHNqlLl5mveWqRL q0EB9TlnomNEJuWQ2WpTUxn8IbT1R8gKtd9FIybeRP7XyniPLYNQUsEubcsmKDb4 hXX7D0pw9LxzYdfRvA== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org