$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS58270.roa File: AS58270.roa (raw, json) Hash identifier: s2LoUM7LFbTBu2CEhhj0RhwuHlW2MziMTlWMAVMWQS0= Subject key identifier: CA:69:1F:8E:E5:B6:E5:78:67:1C:A9:3C:A8:D7:89:39:DD:4A:17:4B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 45C2EC47939A0AFC8ABE0C4CAA1DE7F9810D745E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS58270.roa Signing time: Sun 06 Oct 2024 04:45:11 +0000 ROA not before: Sun 06 Oct 2024 04:40:11 +0000 ROA not after: Sun 05 Oct 2025 04:45:11 +0000 asID: 58270 IP address blocks: 2a0a:6040:5200::/40 maxlen: 48 2a0a:6040:6200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c2:ec:47:93:9a:0a:fc:8a:be:0c:4c:aa:1d:e7:f9:81:0d:74:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:11 2024 GMT Not After : Oct 5 04:45:11 2025 GMT Subject: CN=CA691F8EE5B6E578671CA93CA8D78939DD4A174B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:13:c1:95:f5:42:4a:52:6a:5e:5e:e3:39:80: 78:fe:16:f9:4c:d9:f1:01:5b:f6:c4:60:ce:2d:fc: a5:98:be:4f:8f:e5:0d:db:da:bb:36:06:48:03:5b: 92:38:6e:1c:90:f0:40:f0:7d:b0:b1:41:d0:bf:39: 13:28:d6:38:3b:9c:66:3d:ac:da:08:6c:48:13:37: c2:d3:6c:db:03:70:e5:42:ef:31:8a:fe:8e:38:93: 2f:7b:94:6c:6b:96:e5:ca:00:49:38:21:ba:0b:79: ff:8f:84:6a:46:67:1c:7f:f4:a0:72:9f:1f:38:48: f2:14:c7:38:4e:f1:2b:34:b0:97:a5:25:45:6d:1b: 56:64:8b:73:89:65:36:bc:b4:35:53:5f:31:53:7c: d5:ba:b8:9b:4a:35:47:fe:fc:99:4f:da:ba:c3:a9: c3:75:62:68:dc:34:f2:e8:23:00:6f:6b:fa:8a:d1: 71:c1:7f:85:74:56:b6:cc:05:29:4e:5b:7e:76:b5: 43:9f:b1:70:28:f6:f0:e0:7e:21:c3:a8:e3:40:4d: f6:39:91:fe:07:1c:24:92:3e:9a:ef:87:4a:c2:a0: a4:33:c6:b2:cc:4f:49:d5:92:74:cf:cd:43:fb:e2: c2:04:66:b1:0c:96:84:6b:88:c8:08:c4:96:8e:1b: 9b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:69:1F:8E:E5:B6:E5:78:67:1C:A9:3C:A8:D7:89:39:DD:4A:17:4B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS58270.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5200::/40 2a0a:6040:6200::/40 Signature Algorithm: sha256WithRSAEncryption 5d:ee:38:74:58:63:30:07:7e:95:00:a9:12:87:03:97:29:0e: 53:93:45:62:d0:cd:91:52:94:f6:db:03:0b:b9:f8:13:bb:77: a7:8d:d2:d7:58:00:b2:c0:5b:48:da:55:2d:1c:8e:30:d6:2d: 94:70:89:d2:8c:99:a4:67:4a:cb:2b:d4:df:1c:f9:0d:31:cb: df:21:89:a2:19:3c:12:a8:05:5f:be:cd:81:32:d0:b9:81:34: 3b:ed:ee:6d:4a:c9:bd:0c:df:a3:84:84:6c:01:d2:ea:68:a6: d3:1c:5d:14:84:37:1a:74:79:c0:c3:08:5a:43:04:f3:09:45: 62:b8:fa:45:20:94:fb:23:a3:ee:65:e1:64:54:93:a4:fe:8a: 21:8b:11:07:99:8b:ab:84:9c:2f:5c:f1:c3:51:1c:04:3f:0d: ba:49:cc:ba:66:64:26:30:fe:fe:6f:fd:e1:6c:0c:52:54:c6: dc:74:9b:e3:01:0f:1e:a1:13:d6:be:16:ab:ce:4f:ee:57:74: 99:0f:e2:fd:c6:c7:20:4c:0f:b5:a0:03:bc:85:df:1a:61:a0: 6e:cd:91:12:7a:d7:06:aa:bc:68:9f:71:c0:90:19:15:10:5e: e1:01:c9:10:bd:b3:71:cc:a3:a8:4f:42:5c:0e:48:9b:d1:e8: aa:5c:45:ac -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIURcLsR5OaCvyKvgxMqh3n+YENdF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTFaFw0yNTEwMDUwNDQ1MTFaMDMxMTAvBgNV BAMTKENBNjkxRjhFRTVCNkU1Nzg2NzFDQTkzQ0E4RDc4OTM5REQ0QTE3NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9E8GV9UJKUmpeXuM5gHj+FvlM 2fEBW/bEYM4t/KWYvk+P5Q3b2rs2BkgDW5I4bhyQ8EDwfbCxQdC/ORMo1jg7nGY9 rNoIbEgTN8LTbNsDcOVC7zGK/o44ky97lGxrluXKAEk4IboLef+PhGpGZxx/9KBy nx84SPIUxzhO8Ss0sJelJUVtG1Zki3OJZTa8tDVTXzFTfNW6uJtKNUf+/JlP2rrD qcN1YmjcNPLoIwBva/qK0XHBf4V0VrbMBSlOW352tUOfsXAo9vDgfiHDqONATfY5 kf4HHCSSPprvh0rCoKQzxrLMT0nVknTPzUP74sIEZrEMloRriMgIxJaOG5tVAgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUymkfjuW25XhnHKk8qNeJOd1KF0swHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTgyNzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqCmBAUgMGACoKYEBiMA0GCSqGSIb3DQEBCwUA A4IBAQBd7jh0WGMwB36VAKkShwOXKQ5Tk0Vi0M2RUpT22wMLufgTu3enjdLXWACy wFtI2lUtHI4w1i2UcInSjJmkZ0rLK9TfHPkNMcvfIYmiGTwSqAVfvs2BMtC5gTQ7 7e5tSsm9DN+jhIRsAdLqaKbTHF0UhDcadHnAwwhaQwTzCUViuPpFIJT7I6PuZeFk VJOk/oohixEHmYurhJwvXPHDURwEPw26Scy6ZmQmMP7+b/3hbAxSVMbcdJvjAQ8e oRPWvharzk/uV3SZD+L9xscgTA+1oAO8hd8aYaBuzZESetcGqrxon3HAkBkVEF7h AckQvbNxzKOoT0JcDkib0eiqXEWs -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org