$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS58339.roa File: AS58339.roa (raw, json) Hash identifier: lwC0vNJPaScIRlMWjIwOqmrg+i9pCbKCt42mF6AvOg8= Subject key identifier: 50:9F:38:03:DC:BC:48:70:3B:93:C2:29:BA:55:61:78:2D:25:F2:79 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 698D17C38634620ED446416BA2CF9BDB3E52398A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS58339.roa Signing time: Wed 07 Aug 2024 12:49:45 +0000 ROA not before: Wed 07 Aug 2024 12:44:45 +0000 ROA not after: Wed 06 Aug 2025 12:49:45 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f00::/40 maxlen: 48 2a05:dfc1:8e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:8d:17:c3:86:34:62:0e:d4:46:41:6b:a2:cf:9b:db:3e:52:39:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 7 12:44:45 2024 GMT Not After : Aug 6 12:49:45 2025 GMT Subject: CN=509F3803DCBC48703B93C229BA5561782D25F279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0e:2a:11:8a:b8:22:c7:83:cb:63:1c:40:36: 5a:62:cf:b6:4a:08:db:3a:74:fd:d3:9e:ee:10:db: a8:93:ca:e4:0f:32:82:31:6c:d8:1e:80:c1:df:01: 45:75:1a:5a:03:46:37:8f:64:8c:f8:07:92:46:e0: 18:7b:8d:5c:8b:f8:65:48:a3:5a:69:3d:3f:aa:0a: 7d:da:88:f8:5c:b7:61:05:fd:48:ab:04:67:3e:70: 8b:ab:a6:4b:70:a7:e7:1f:06:c1:38:f4:9f:d9:43: cf:02:cf:9e:3e:a1:9c:f4:84:77:f7:68:1e:48:c2: df:9d:cf:67:94:8c:a8:2a:a0:07:a3:50:6f:5a:b1: 2e:a6:43:0d:88:5f:c3:0e:f8:e2:0f:ca:53:b2:ad: 07:c8:b9:b0:61:aa:61:26:da:7d:c8:70:84:40:7f: 0e:9d:2d:55:ee:05:d5:27:08:35:31:61:55:d3:ca: 7f:85:04:36:d1:59:52:c2:5d:ac:3d:9a:67:10:dc: a4:02:02:34:ca:71:16:3c:b7:67:1d:1b:dd:c2:b5: 9d:f3:ed:15:e5:c2:35:9e:d8:98:ec:0a:86:db:aa: d6:d7:af:20:f6:7b:4e:21:c6:78:3b:f0:d2:63:fc: c5:bf:fd:da:75:73:24:7d:b7:18:a1:34:1c:64:0d: 58:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:9F:38:03:DC:BC:48:70:3B:93:C2:29:BA:55:61:78:2D:25:F2:79 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS58339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f00::/40 2a05:dfc1:8e00::/40 Signature Algorithm: sha256WithRSAEncryption 1a:6c:49:81:ec:db:61:86:eb:fe:54:de:85:39:13:34:9b:ae: b0:96:77:1e:bd:d4:5e:f3:21:ac:38:c3:03:96:3a:2b:5b:79: be:26:7e:9a:a9:b4:02:04:e5:a9:c6:52:a3:18:26:57:d5:4b: 0b:20:25:aa:53:03:50:f8:ed:f5:2f:9e:4d:ea:98:55:e5:f7: 71:11:88:6b:22:0e:43:8b:ca:5b:0f:25:42:8e:2a:b8:10:80: 3d:60:0d:24:7a:94:ff:bf:3d:c4:ed:8c:0e:9f:4e:d7:ee:1a: fd:24:b1:93:8c:33:4d:ef:64:59:5b:a5:b7:c6:d8:2a:a7:f2: 97:bd:2d:bc:15:68:68:8f:1a:f2:8c:80:d8:86:8c:65:ad:77: d7:f0:7a:1a:5e:6f:92:7d:01:ca:71:00:be:9e:80:2c:7a:6b: 0d:f1:97:f8:c5:61:44:48:66:db:ca:6b:13:cd:91:1c:99:68: f5:a9:e7:40:5c:8b:60:50:50:a5:4e:4c:56:d5:98:31:58:5d: f8:70:17:bd:2c:86:cb:2a:e2:c2:06:96:ca:dd:9c:d0:60:25: 83:26:b9:f4:b9:3b:f3:47:55:65:1c:0e:38:01:69:c9:aa:d9: fa:b9:eb:f0:8b:96:86:f7:90:bc:b3:c3:96:a5:22:c0:dd:dd: e0:f2:a0:13 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUaY0Xw4Y0Yg7URkFros+b2z5SOYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MDcxMjQ0NDVaFw0yNTA4MDYxMjQ5NDVaMDMxMTAvBgNV BAMTKDUwOUYzODAzRENCQzQ4NzAzQjkzQzIyOUJBNTU2MTc4MkQyNUYyNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+DioRirgix4PLYxxANlpiz7ZK CNs6dP3Tnu4Q26iTyuQPMoIxbNgegMHfAUV1GloDRjePZIz4B5JG4Bh7jVyL+GVI o1ppPT+qCn3aiPhct2EF/UirBGc+cIurpktwp+cfBsE49J/ZQ88Cz54+oZz0hHf3 aB5Iwt+dz2eUjKgqoAejUG9asS6mQw2IX8MO+OIPylOyrQfIubBhqmEm2n3IcIRA fw6dLVXuBdUnCDUxYVXTyn+FBDbRWVLCXaw9mmcQ3KQCAjTKcRY8t2cdG93CtZ3z 7RXlwjWe2JjsCobbqtbXryD2e04hxng78NJj/MW//dp1cyR9txihNBxkDVgFAgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUUJ84A9y8SHA7k8IpulVheC0l8nkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTgzMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqBd/BXwMGACoF38GOMA0GCSqGSIb3DQEBCwUA A4IBAQAabEmB7Nthhuv+VN6FORM0m66wlncevdRe8yGsOMMDljorW3m+Jn6aqbQC BOWpxlKjGCZX1UsLICWqUwNQ+O31L55N6phV5fdxEYhrIg5Di8pbDyVCjiq4EIA9 YA0kepT/vz3E7YwOn07X7hr9JLGTjDNN72RZW6W3xtgqp/KXvS28FWhojxryjIDY hoxlrXfX8HoaXm+SfQHKcQC+noAsemsN8Zf4xWFESGbbymsTzZEcmWj1qedAXItg UFClTkxW1ZgxWF34cBe9LIbLKuLCBpbK3ZzQYCWDJrn0uTvzR1VlHA44AWnJqtn6 uevwi5aG95C8s8OWpSLA3d3g8qAT -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org