$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60301.roa File: AS60301.roa (raw, json) Hash identifier: 7KRGtaAcjvHfLsCT1sC/IikbvUnWuIeUsMPRegrjZ+s= Subject key identifier: C5:0C:76:DA:C5:D1:B6:B6:CE:DB:C9:24:F0:FF:E3:82:BB:FD:B8:94 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4A571866F52E8E982E76F0BB85E31CB318AF6D20 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60301.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 60301 IP address blocks: 2a05:dfc1:6000::/40 maxlen: 48 2a0a:6040:5f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:57:18:66:f5:2e:8e:98:2e:76:f0:bb:85:e3:1c:b3:18:af:6d:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=C50C76DAC5D1B6B6CEDBC924F0FFE382BBFDB894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:75:64:68:5e:1e:47:32:39:89:11:b9:74:55: dd:66:bb:ea:0d:14:7e:e8:1b:d8:df:3a:52:0c:00: 23:cb:0d:f4:0f:dc:1b:0b:fa:5d:29:57:22:8b:10: df:70:fd:a6:f8:c4:16:8f:46:b4:f0:4e:dd:f3:d0: 51:9c:fc:a9:e2:1e:93:9e:91:60:1f:88:da:33:c3: a7:28:5c:8b:2c:c8:94:55:b5:b2:78:3c:6a:db:a1: f4:c9:c2:f1:9f:08:0b:1a:30:13:60:ba:d5:91:35: 33:bd:8a:6c:50:11:68:45:b1:e0:a3:57:8b:ce:2f: 76:54:01:db:db:aa:bb:77:ba:81:38:ec:50:5f:33: e2:e6:6e:88:fe:82:da:bb:00:7a:fc:72:84:c4:cf: b9:45:ed:a0:c8:0e:4f:c6:03:9a:a8:ef:3a:99:55: 0a:99:7f:13:cf:41:3e:ae:72:9d:a3:2e:51:80:dc: 3c:48:fc:10:90:40:60:ce:be:28:4b:10:6e:fc:b3: 1d:c2:8b:08:aa:d1:a5:61:3c:aa:7e:7c:f9:05:0f: 98:f7:5d:e0:02:24:a3:40:39:09:41:3e:79:ba:5d: 88:96:b3:45:a6:c4:8f:2c:4e:4b:02:24:7d:d6:15: 9d:ee:ff:e7:a7:fc:8b:86:1a:ee:bd:ae:ab:64:66: 65:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0C:76:DA:C5:D1:B6:B6:CE:DB:C9:24:F0:FF:E3:82:BB:FD:B8:94 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60301.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6000::/40 2a0a:6040:5f00::/40 Signature Algorithm: sha256WithRSAEncryption a3:a4:9e:f5:42:fb:36:52:36:fc:77:20:fe:39:33:9d:78:09: 59:75:44:a2:72:de:65:70:af:09:c7:e9:6d:b1:d4:8f:c7:4a: e4:39:22:fe:3e:b2:fa:aa:d3:43:f5:a5:40:c2:c0:5e:db:43: 9e:8c:b5:a1:d1:50:c6:31:35:9a:6d:95:e5:61:ef:1a:db:25: e9:5d:1f:6a:ab:f7:40:e6:41:ed:a2:89:d6:94:12:8e:0e:fe: b2:65:77:dd:e0:6e:a6:ae:bc:96:48:1e:a8:9c:6b:9e:4a:24: ed:be:5a:f5:27:50:b2:a8:bf:29:7f:22:1e:68:5f:70:04:ac: 0a:e3:7f:41:35:8a:59:37:35:2d:db:a9:e1:87:69:5b:83:66: 7b:b1:e5:d8:eb:ea:b4:d1:13:22:61:01:7b:a4:8f:38:fb:13: ef:93:fc:cc:82:b3:a6:07:68:1d:78:2a:b6:0b:b1:99:fe:55: ef:e2:8b:2d:d7:a3:ec:e8:7a:c1:3f:97:21:7e:55:a9:0d:fa: de:ce:81:65:03:ba:c3:11:ed:29:a5:3b:24:15:2a:0c:91:48: 42:76:97:79:f8:68:4b:ba:97:49:26:82:d3:44:d0:f1:8d:61: 82:cc:43:42:45:be:07:7e:05:cf:df:17:9e:78:14:a0:28:b0: 19:f7:66:cf -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUSlcYZvUujpgudvC7heMcsxivbSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKEM1MEM3NkRBQzVEMUI2QjZDRURCQzkyNEYwRkZFMzgyQkJGREI4OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDddWRoXh5HMjmJEbl0Vd1mu+oN FH7oG9jfOlIMACPLDfQP3BsL+l0pVyKLEN9w/ab4xBaPRrTwTt3z0FGc/KniHpOe kWAfiNozw6coXIssyJRVtbJ4PGrbofTJwvGfCAsaMBNgutWRNTO9imxQEWhFseCj V4vOL3ZUAdvbqrt3uoE47FBfM+Lmboj+gtq7AHr8coTEz7lF7aDIDk/GA5qo7zqZ VQqZfxPPQT6ucp2jLlGA3DxI/BCQQGDOvihLEG78sx3Ciwiq0aVhPKp+fPkFD5j3 XeACJKNAOQlBPnm6XYiWs0WmxI8sTksCJH3WFZ3u/+en/IuGGu69rqtkZmWtAgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUxQx22sXRtrbO28kk8P/jgrv9uJQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjAzMDEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqBd/BYAMGACoKYEBfMA0GCSqGSIb3DQEBCwUA A4IBAQCjpJ71Qvs2Ujb8dyD+OTOdeAlZdUSict5lcK8Jx+ltsdSPx0rkOSL+PrL6 qtND9aVAwsBe20OejLWh0VDGMTWabZXlYe8a2yXpXR9qq/dA5kHtoonWlBKODv6y ZXfd4G6mrryWSB6onGueSiTtvlr1J1CyqL8pfyIeaF9wBKwK439BNYpZNzUt26nh h2lbg2Z7seXY6+q00RMiYQF7pI84+xPvk/zMgrOmB2gdeCq2C7GZ/lXv4ost16Ps 6HrBP5chflWpDfrezoFlA7rDEe0ppTskFSoMkUhCdpd5+GhLupdJJoLTRNDxjWGC zENCRb4HfgXP3xeeeBSgKLAZ92bP -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org