$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60301.roa File: AS60301.roa (raw, json) Hash identifier: cQP1uoDPoELvv4xx7xDbghuqNcejPXunrh2Bq2pyFpU= Subject key identifier: 9A:23:A3:79:05:17:85:79:78:94:E8:3D:F1:DE:AF:CC:9B:0F:04:96 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 097BECAB5FED529F3276CDBC5BDD1FD63966C098 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60301.roa Signing time: Thu 19 Dec 2024 09:58:32 +0000 ROA not before: Thu 19 Dec 2024 09:53:32 +0000 ROA not after: Thu 18 Dec 2025 09:58:32 +0000 asID: 60301 IP address blocks: 2a05:dfc1:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7b:ec:ab:5f:ed:52:9f:32:76:cd:bc:5b:dd:1f:d6:39:66:c0:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Dec 19 09:53:32 2024 GMT Not After : Dec 18 09:58:32 2025 GMT Subject: CN=9A23A379051785797894E83DF1DEAFCC9B0F0496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c1:29:93:47:2a:d3:d8:8f:df:ec:bd:3f:5e: 9f:26:d5:0a:e7:b6:50:61:36:0e:ce:2c:9b:86:cd: 0f:71:c6:cb:a0:a7:e1:b2:15:29:21:44:04:94:81: cb:a1:10:d8:a6:27:ed:6b:f2:68:ea:17:06:7d:20: 20:17:94:93:a4:b2:3e:0f:bf:4b:c7:bc:21:ac:9a: 74:6a:cf:92:13:55:07:7b:f8:23:21:9e:71:a0:cb: fa:32:bc:c5:6d:5b:ab:66:ec:6e:5c:19:ba:a9:ec: 72:75:3e:25:63:56:db:26:c4:f6:69:13:8a:ce:5b: d0:5f:95:ed:bf:e6:c7:49:42:f7:2b:b7:b0:68:28: 57:73:4d:ad:ca:65:f1:bc:91:f3:a8:f1:91:0e:83: 8f:de:63:4c:1f:1e:27:34:c4:11:ed:39:dc:aa:38: 3e:63:ae:29:ab:67:8e:8d:e1:47:61:1d:75:0f:fe: 6c:da:df:91:2e:68:66:de:09:78:dc:3d:66:80:c4: c1:4e:af:81:ec:c0:e2:cb:1c:09:c0:49:65:58:1a: 42:48:e9:6c:07:42:cc:b2:e0:f3:18:9f:2f:11:c3: 8b:00:f5:73:7b:f3:4d:a0:63:d8:05:00:21:ab:92: 06:c3:fc:90:c9:48:45:e4:af:48:e0:e5:19:9a:35: a5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:23:A3:79:05:17:85:79:78:94:E8:3D:F1:DE:AF:CC:9B:0F:04:96 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60301.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6000::/40 Signature Algorithm: sha256WithRSAEncryption 8a:d7:1d:a2:e7:ec:d7:85:2e:b7:c6:64:7b:1b:b8:fe:2f:78: 6f:40:fc:de:4f:01:38:1e:df:4f:ac:fb:c4:06:26:f1:85:81: 55:08:95:31:b7:0c:da:72:2c:f5:6e:fe:37:93:97:b9:53:6a: fd:74:35:88:75:81:3b:c1:4d:c7:ef:0b:e9:8e:14:59:91:7b: d9:7b:18:f0:ea:75:89:73:fa:18:fb:5d:33:e4:f3:53:4a:c2: 93:67:75:7d:31:7e:40:91:54:67:5b:b9:92:17:f4:dc:d9:9f: 14:9e:4e:f6:f7:d5:24:f2:6d:11:fc:61:8e:0d:11:70:4b:46: d7:38:7e:61:e2:0c:dc:1a:a0:b7:fe:ff:b8:ac:88:4b:df:a4: 77:41:d0:aa:04:e2:41:44:f6:e1:d0:18:2a:04:3e:04:b4:0c: 5b:2d:32:4c:3a:b1:18:bd:1d:14:af:2e:d2:6d:f2:74:16:8b: ed:45:62:51:84:f5:21:dd:51:bd:92:d0:5b:33:9a:38:57:89: 0c:69:f6:63:96:6a:dc:32:b4:71:cc:f9:77:95:54:c5:8e:26: d0:1f:49:2d:54:47:c4:7e:0f:d4:ea:0f:9f:1a:c2:f5:d3:e0: fe:34:29:ec:fb:75:62:fc:6b:e6:45:4f:96:ca:c5:60:e0:d2: 85:55:b0:db -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUCXvsq1/tUp8yds28W90f1jlmwJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEyMTkwOTUzMzJaFw0yNTEyMTgwOTU4MzJaMDMxMTAvBgNV BAMTKDlBMjNBMzc5MDUxNzg1Nzk3ODk0RTgzREYxREVBRkNDOUIwRjA0OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEwSmTRyrT2I/f7L0/Xp8m1Qrn tlBhNg7OLJuGzQ9xxsugp+GyFSkhRASUgcuhENimJ+1r8mjqFwZ9ICAXlJOksj4P v0vHvCGsmnRqz5ITVQd7+CMhnnGgy/oyvMVtW6tm7G5cGbqp7HJ1PiVjVtsmxPZp E4rOW9Bfle2/5sdJQvcrt7BoKFdzTa3KZfG8kfOo8ZEOg4/eY0wfHic0xBHtOdyq OD5jrimrZ46N4UdhHXUP/mza35EuaGbeCXjcPWaAxMFOr4HswOLLHAnASWVYGkJI 6WwHQsyy4PMYny8Rw4sA9XN7802gY9gFACGrkgbD/JDJSEXkr0jg5RmaNaXjAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUmiOjeQUXhXl4lOg98d6vzJsPBJYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjAzMDEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BYDANBgkqhkiG9w0BAQsFAAOCAQEAitcd oufs14Uut8Zkexu4/i94b0D83k8BOB7fT6z7xAYm8YWBVQiVMbcM2nIs9W7+N5OX uVNq/XQ1iHWBO8FNx+8L6Y4UWZF72XsY8Op1iXP6GPtdM+TzU0rCk2d1fTF+QJFU Z1u5khf03NmfFJ5O9vfVJPJtEfxhjg0RcEtG1zh+YeIM3Bqgt/7/uKyIS9+kd0HQ qgTiQUT24dAYKgQ+BLQMWy0yTDqxGL0dFK8u0m3ydBaL7UViUYT1Id1RvZLQWzOa OFeJDGn2Y5Zq3DK0ccz5d5VUxY4m0B9JLVRHxH4P1OoPnxrC9dPg/jQp7Pt1Yvxr 5kVPlsrFYODShVWw2w== -----END CERTIFICATE-----Generated at Fri Apr 4 16:59:10 2025 by rpki-client