$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60301.roa File: AS60301.roa (raw, json) Hash identifier: p5XVvRH4AKY7nWedMfLfKp7/ZYIuBkQ7GdxxL3+9A9I= Subject key identifier: B2:D4:B5:14:9D:4D:06:C3:CA:9B:C2:24:8D:F3:02:14:56:6A:48:DE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5E792737878420ACE644481FB8493CB1BA8D33EC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60301.roa Signing time: Sun 05 Nov 2023 04:07:09 +0000 ROA not before: Sun 05 Nov 2023 04:02:09 +0000 ROA not after: Sun 03 Nov 2024 04:07:09 +0000 asID: 60301 IP address blocks: 2a05:dfc1:6000::/40 maxlen: 48 2a0a:6040:5f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:79:27:37:87:84:20:ac:e6:44:48:1f:b8:49:3c:b1:ba:8d:33:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:09 2023 GMT Not After : Nov 3 04:07:09 2024 GMT Subject: CN=B2D4B5149D4D06C3CA9BC2248DF30214566A48DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:dd:a4:6a:d6:ba:59:24:1d:53:bf:97:26:c5: fa:9f:c7:4a:a2:1b:fc:65:eb:1e:01:9b:16:a9:34: 86:fa:6b:8e:83:95:eb:67:10:6f:79:77:00:13:ab: c9:e3:39:59:ee:5b:dd:22:84:6e:fa:c5:b5:b0:11: dc:d9:19:9c:27:f1:a9:0e:ec:68:26:79:06:ae:7f: 70:53:39:96:63:65:85:e8:f9:ff:09:80:dd:0f:61: 88:fb:f3:de:d9:35:df:3a:0d:3d:e8:34:75:85:fc: 5d:e9:e6:98:b6:76:e0:81:6a:41:f0:f1:b2:30:e4: 10:a5:32:8d:25:20:5c:79:07:38:1a:7f:c3:30:38: 25:f5:76:91:03:13:48:c7:6b:09:bf:59:d4:05:cf: fd:94:19:5a:6e:64:87:35:5c:77:7c:4a:c6:42:49: c4:6c:2b:a1:5c:4e:93:5c:17:8b:72:d0:f0:a3:16: 84:42:d1:37:40:9d:1e:15:a8:71:f3:a7:06:83:4c: f9:dd:12:0d:c8:7e:d7:75:26:f6:27:0f:ea:de:62: 08:87:68:8a:4f:b4:9a:cf:21:dd:03:11:9f:d5:7a: 36:4a:0b:67:d2:59:a7:71:66:ae:d7:f2:a5:1f:63: 69:da:39:81:42:b2:ed:57:61:08:b1:d7:df:4f:e6: 2e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D4:B5:14:9D:4D:06:C3:CA:9B:C2:24:8D:F3:02:14:56:6A:48:DE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60301.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6000::/40 2a0a:6040:5f00::/40 Signature Algorithm: sha256WithRSAEncryption 4f:aa:8c:0c:37:62:ee:a5:87:9f:a9:17:ae:c8:69:2a:35:91: 84:3a:81:50:ce:02:d5:81:2e:d0:62:d6:bf:3a:e8:f2:7e:19: 0c:d7:4a:2c:69:2c:42:1b:b7:32:ef:60:f8:3c:04:97:86:79: fd:48:50:bd:4f:00:c1:dd:41:3c:ff:ec:bb:21:ff:34:58:91: 90:d7:5c:e3:af:60:14:6d:57:d1:b4:18:91:7e:d3:08:f2:9d: f0:bc:33:0c:d9:30:ea:ca:df:e7:7f:94:6f:ce:58:6b:97:c3: 8b:e4:08:87:c1:37:90:4f:05:cd:d8:f5:c4:c3:65:0d:6c:ab: e1:33:bb:d7:42:6c:6b:41:a1:12:9f:be:1a:bc:ad:29:c2:68: cc:2b:c3:dc:64:0a:34:6e:08:cc:55:d4:d7:9f:1d:bb:27:d1: 6b:ed:44:af:f1:b9:4a:3c:e5:6b:87:60:1a:6f:b1:76:2f:ae: 53:42:ea:cc:77:19:f8:96:a8:10:fd:51:f5:96:d7:f3:6d:88: 98:b9:c7:14:1a:b9:0c:f6:ea:0e:b1:f7:d7:3a:f6:1c:d7:7e: 4c:51:0a:e9:d0:c8:6b:42:fd:3f:8a:68:e8:93:05:86:ea:9b: 29:d6:79:e4:f1:6d:e7:0e:57:02:1f:8c:d5:b2:ad:92:42:76: e7:63:6a:74 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUXnknN4eEIKzmREgfuEk8sbqNM+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDlaFw0yNDExMDMwNDA3MDlaMDMxMTAvBgNV BAMTKEIyRDRCNTE0OUQ0RDA2QzNDQTlCQzIyNDhERjMwMjE0NTY2QTQ4REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP3aRq1rpZJB1Tv5cmxfqfx0qi G/xl6x4BmxapNIb6a46DletnEG95dwATq8njOVnuW90ihG76xbWwEdzZGZwn8akO 7GgmeQauf3BTOZZjZYXo+f8JgN0PYYj7897ZNd86DT3oNHWF/F3p5pi2duCBakHw 8bIw5BClMo0lIFx5Bzgaf8MwOCX1dpEDE0jHawm/WdQFz/2UGVpuZIc1XHd8SsZC ScRsK6FcTpNcF4ty0PCjFoRC0TdAnR4VqHHzpwaDTPndEg3Iftd1JvYnD+reYgiH aIpPtJrPId0DEZ/VejZKC2fSWadxZq7X8qUfY2naOYFCsu1XYQix199P5i5HAgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUstS1FJ1NBsPKm8IkjfMCFFZqSN4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjAzMDEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqBd/BYAMGACoKYEBfMA0GCSqGSIb3DQEBCwUA A4IBAQBPqowMN2LupYefqReuyGkqNZGEOoFQzgLVgS7QYta/OujyfhkM10osaSxC G7cy72D4PASXhnn9SFC9TwDB3UE8/+y7If80WJGQ11zjr2AUbVfRtBiRftMI8p3w vDMM2TDqyt/nf5Rvzlhrl8OL5AiHwTeQTwXN2PXEw2UNbKvhM7vXQmxrQaESn74a vK0pwmjMK8PcZAo0bgjMVdTXnx27J9Fr7USv8blKPOVrh2Aab7F2L65TQurMdxn4 lqgQ/VH1ltfzbYiYuccUGrkM9uoOsffXOvYc135MUQrp0MhrQv0/imjokwWG6psp 1nnk8W3nDlcCH4zVsq2SQnbnY2p0 -----END CERTIFICATE-----Generated at Fri May 17 14:07:01 2024 by rpki-client on console-fra.rpki-client.org