$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60431.roa File: AS60431.roa (raw, json) Hash identifier: crn2YRxCZPTEimpJbPLqfteyEhb7SgmJruYvlAtGlmo= Subject key identifier: CA:4D:B1:4B:1C:92:CE:6A:B9:22:46:D1:B8:C3:6D:F4:17:AE:1A:4F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 07A14C518F8922B04F1B77A670CEB43DD9E5CA0B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60431.roa Signing time: Thu 02 May 2024 08:59:29 +0000 ROA not before: Thu 02 May 2024 08:54:29 +0000 ROA not after: Thu 01 May 2025 08:59:29 +0000 asID: 60431 IP address blocks: 2a05:dfc1:4c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 21:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a1:4c:51:8f:89:22:b0:4f:1b:77:a6:70:ce:b4:3d:d9:e5:ca:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 2 08:54:29 2024 GMT Not After : May 1 08:59:29 2025 GMT Subject: CN=CA4DB14B1C92CE6AB92246D1B8C36DF417AE1A4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f8:73:33:69:f7:03:51:9b:50:f8:f6:9e:75: 4e:8f:f8:68:b1:00:43:d2:27:04:e2:d3:f9:f1:47: c8:33:f5:8e:12:a5:ec:05:71:92:55:cf:2f:42:02: 76:56:53:a0:31:ce:85:a3:01:a0:23:c2:2e:bc:e8: a5:5f:eb:d2:fe:43:a6:3c:22:17:76:1a:00:f5:14: 42:1d:3c:d8:33:54:7a:9e:7e:45:dc:2b:93:db:f1: 3e:8a:7d:b2:18:b0:4d:c8:0c:9a:db:aa:63:b6:43: 05:24:02:8c:43:58:3c:77:ca:b7:82:c7:c0:88:df: 37:0f:25:8b:5a:64:b1:38:ab:76:6e:cd:4d:e4:20: 2a:ab:9d:ce:07:af:67:13:1a:c3:c0:79:c8:c2:21: b2:3b:ee:15:c9:38:d8:65:56:23:25:f1:8b:c1:c0: a2:5b:cb:25:16:af:51:e8:db:94:5a:e7:7e:b4:52: ff:ba:3a:a4:13:45:03:48:c1:65:de:be:da:4a:b9: 21:14:54:eb:06:73:82:a5:89:81:6f:c9:e5:fd:90: 70:2c:66:5e:0e:a9:db:a5:d2:d6:2e:91:19:e4:b7: 17:78:bf:df:40:8b:ed:c7:bd:8a:59:dc:27:41:2e: b7:10:e3:61:d9:55:1a:08:1b:a3:09:7f:ec:a7:fc: 84:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:4D:B1:4B:1C:92:CE:6A:B9:22:46:D1:B8:C3:6D:F4:17:AE:1A:4F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS60431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4c00::/40 Signature Algorithm: sha256WithRSAEncryption 0e:98:05:d5:a5:cc:f1:5b:9c:8d:ec:7d:a0:c1:35:de:11:cd: ed:e6:18:99:cc:92:d1:19:a3:bd:1f:5b:b7:5c:54:0f:44:7f: 63:81:d5:7a:96:e0:ef:e7:5e:4f:e1:5e:cf:08:d0:7f:b2:b5: ca:a1:a1:0f:be:d5:33:9e:df:49:24:ae:6b:5d:b1:d9:fc:a5: ba:6a:ad:70:55:d5:25:b5:98:4b:38:11:8b:75:6b:ce:ca:92: 90:6f:0c:f4:7d:f0:f6:49:05:d0:cb:87:33:81:95:6f:f5:90: 53:61:28:9e:47:67:5d:77:bc:ac:4d:d6:70:8b:ff:89:6d:be: 71:88:db:cc:0c:b1:8a:5c:bd:5b:29:ac:da:8a:89:19:0a:be: 61:26:e8:b0:a3:22:32:2d:8c:01:d4:79:80:90:a1:9c:ee:6a: 69:52:f6:be:c0:2d:fd:b3:70:c8:ae:04:95:98:42:70:83:c1: 58:61:f1:47:43:06:d3:c6:cb:56:de:f6:3f:27:9e:b8:42:75: f3:5b:57:bb:c7:82:2f:3b:fe:62:cb:b2:dc:f0:9c:42:02:67: 8c:f9:68:6f:c3:09:77:76:17:ab:7c:a4:3f:8a:46:32:4b:af: 3d:75:87:57:9a:c1:3c:3b:0b:2f:ce:39:f8:ec:94:b4:61:6c: 30:bc:9c:c1 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUB6FMUY+JIrBPG3emcM60PdnlygswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MDIwODU0MjlaFw0yNTA1MDEwODU5MjlaMDMxMTAvBgNV BAMTKENBNERCMTRCMUM5MkNFNkFCOTIyNDZEMUI4QzM2REY0MTdBRTFBNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0+HMzafcDUZtQ+PaedU6P+Gix AEPSJwTi0/nxR8gz9Y4SpewFcZJVzy9CAnZWU6AxzoWjAaAjwi686KVf69L+Q6Y8 Ihd2GgD1FEIdPNgzVHqefkXcK5Pb8T6KfbIYsE3IDJrbqmO2QwUkAoxDWDx3yreC x8CI3zcPJYtaZLE4q3ZuzU3kICqrnc4Hr2cTGsPAecjCIbI77hXJONhlViMl8YvB wKJbyyUWr1Ho25Ra5360Uv+6OqQTRQNIwWXevtpKuSEUVOsGc4KliYFvyeX9kHAs Zl4Oqdul0tYukRnktxd4v99Ai+3HvYpZ3CdBLrcQ42HZVRoIG6MJf+yn/IQ/AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUyk2xSxySzmq5IkbRuMNt9BeuGk8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjA0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BTDANBgkqhkiG9w0BAQsFAAOCAQEADpgF 1aXM8Vucjex9oME13hHN7eYYmcyS0RmjvR9bt1xUD0R/Y4HVepbg7+deT+FezwjQ f7K1yqGhD77VM57fSSSua12x2fylumqtcFXVJbWYSzgRi3VrzsqSkG8M9H3w9kkF 0MuHM4GVb/WQU2EonkdnXXe8rE3WcIv/iW2+cYjbzAyxily9Wyms2oqJGQq+YSbo sKMiMi2MAdR5gJChnO5qaVL2vsAt/bNwyK4ElZhCcIPBWGHxR0MG08bLVt72Pyee uEJ181tXu8eCLzv+Ysuy3PCcQgJnjPlob8MJd3YXq3ykP4pGMkuvPXWHV5rBPDsL L845+OyUtGFsMLycwQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:20:46 2024 by rpki-client on console-fra.rpki-client.org