$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57934.roa File: AS57934.roa (raw, json) Hash identifier: x45mI5nN45R3OlNWA1KPPYmlancZHYLcQEVfGbDVO00= Subject key identifier: DB:5E:E1:34:8A:B6:38:74:3C:1B:8B:99:A1:8C:48:A3:C6:DB:16:6A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 30BFE99E2B1E84F19120561EA90D7083E3DC97A5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57934.roa Signing time: Sun 05 Nov 2023 04:06:58 +0000 ROA not before: Sun 05 Nov 2023 04:01:58 +0000 ROA not after: Sun 03 Nov 2024 04:06:58 +0000 asID: 57934 IP address blocks: 2a0a:6040:5800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:bf:e9:9e:2b:1e:84:f1:91:20:56:1e:a9:0d:70:83:e3:dc:97:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:58 2023 GMT Not After : Nov 3 04:06:58 2024 GMT Subject: CN=DB5EE1348AB638743C1B8B99A18C48A3C6DB166A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7a:b1:78:a7:5e:9f:4e:01:1d:c1:d8:1d:cf: a9:d2:ff:4c:44:28:bd:ea:ba:8e:b8:3c:6c:20:21: 95:d5:3c:e8:81:d5:c2:46:42:c4:c4:a4:04:11:f2: 9b:13:6c:f5:2b:fd:6d:25:5f:da:37:03:35:26:f9: e7:e6:ca:d7:c1:5f:66:ab:6b:eb:25:85:23:43:7d: e8:73:b8:16:df:ef:1d:0e:b9:71:12:79:21:26:42: 6e:d7:84:ec:8a:61:9d:23:b3:f4:eb:bf:f7:d5:db: 62:45:bf:50:4c:62:17:82:6c:ad:c5:c6:77:c8:17: 79:32:aa:d1:74:c7:10:09:96:e1:6d:3f:a0:29:10: f9:7c:f4:8e:e9:a4:08:0e:26:07:12:52:ae:0a:37: c5:d5:0d:f3:83:ec:a7:9c:38:4f:37:39:c6:a3:8d: 99:8d:b5:24:dd:2c:93:e9:9e:89:9b:c4:0d:d4:64: 7a:e7:af:87:f1:ad:d8:b3:1f:0d:28:bd:4b:bb:ae: 17:85:2e:36:f1:e5:b0:71:9b:94:f5:0a:56:2e:92: 56:31:66:55:8d:09:58:58:c1:8e:28:c2:be:a4:bc: 98:bc:52:b1:ac:22:a2:52:87:98:f2:d2:47:7b:d3: 32:84:a6:4b:97:92:21:81:44:3f:fc:8e:50:03:fc: fb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5E:E1:34:8A:B6:38:74:3C:1B:8B:99:A1:8C:48:A3:C6:DB:16:6A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5800::/40 Signature Algorithm: sha256WithRSAEncryption 66:b3:40:25:4b:02:94:35:36:29:21:63:40:25:fe:66:c4:99: 2a:5b:9c:21:f6:c1:2e:cf:f2:cd:8b:99:f6:a0:0f:82:e9:1d: f6:48:54:41:03:05:d4:cd:71:d0:00:74:a7:dc:27:0c:6d:92: 37:64:86:e4:10:b6:b1:aa:1f:41:37:86:34:64:5f:2b:16:2c: ba:32:85:e7:28:85:93:4c:62:d1:1e:e9:ba:9b:4b:e6:c5:91: d8:1e:e2:d9:d7:08:f5:6b:9a:94:d9:a5:37:83:85:7a:ee:53: 77:ce:3b:6f:a8:d4:d1:5c:38:a9:61:eb:b3:1c:e3:f9:c9:2e: 92:f7:4b:2a:a5:b0:c3:d9:ad:50:0c:42:25:ca:3e:61:27:ff: d7:ca:d3:04:fe:88:78:b9:c3:1a:a1:d5:dc:65:c6:55:e8:de: f7:b6:83:e7:68:17:f9:1c:eb:4e:ef:f7:fb:ef:05:51:6e:11: 03:85:c1:57:d7:84:1a:45:ec:19:ff:92:e6:7d:dd:14:95:b5: 9e:68:4c:de:fb:5c:af:68:28:90:16:d7:a9:f6:f6:bb:53:fc: 68:10:18:16:a3:41:98:e5:c6:04:49:fa:a9:6f:bd:7b:7f:aa: 09:44:7a:18:c1:b8:e7:3a:4c:4f:dc:9b:0c:f5:3c:2d:af:4c: 4e:4e:e5:2d -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUML/pnisehPGRIFYeqQ1wg+Pcl6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNThaFw0yNDExMDMwNDA2NThaMDMxMTAvBgNV BAMTKERCNUVFMTM0OEFCNjM4NzQzQzFCOEI5OUExOEM0OEEzQzZEQjE2NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+erF4p16fTgEdwdgdz6nS/0xE KL3quo64PGwgIZXVPOiB1cJGQsTEpAQR8psTbPUr/W0lX9o3AzUm+efmytfBX2ar a+slhSNDfehzuBbf7x0OuXESeSEmQm7XhOyKYZ0js/Trv/fV22JFv1BMYheCbK3F xnfIF3kyqtF0xxAJluFtP6ApEPl89I7ppAgOJgcSUq4KN8XVDfOD7KecOE83Ocaj jZmNtSTdLJPpnombxA3UZHrnr4fxrdizHw0ovUu7rheFLjbx5bBxm5T1ClYuklYx ZlWNCVhYwY4owr6kvJi8UrGsIqJSh5jy0kd70zKEpkuXkiGBRD/8jlAD/PstAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU217hNIq2OHQ8G4uZoYxIo8bbFmowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTc5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAWDANBgkqhkiG9w0BAQsFAAOCAQEAZrNA JUsClDU2KSFjQCX+ZsSZKlucIfbBLs/yzYuZ9qAPgukd9khUQQMF1M1x0AB0p9wn DG2SN2SG5BC2saofQTeGNGRfKxYsujKF5yiFk0xi0R7puptL5sWR2B7i2dcI9Wua lNmlN4OFeu5Td847b6jU0Vw4qWHrsxzj+ckukvdLKqWww9mtUAxCJco+YSf/18rT BP6IeLnDGqHV3GXGVeje97aD52gX+RzrTu/3++8FUW4RA4XBV9eEGkXsGf+S5n3d FJW1nmhM3vtcr2gokBbXqfb2u1P8aBAYFqNBmOXGBEn6qW+9e3+qCUR6GMG45zpM T9ybDPU8La9MTk7lLQ== -----END CERTIFICATE-----Generated at Tue May 21 04:45:07 2024 by rpki-client on console-fra.rpki-client.org