$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS61142.roa File: AS61142.roa (raw, json) Hash identifier: yyBPdomlZ44LEmGGbsskIgh3gmMfnIo+STxVPGcxCXU= Subject key identifier: 0E:5F:F7:03:2A:35:86:C6:DC:CA:C1:32:0C:B0:22:CD:A3:B9:75:2E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 77A66DCEA7DD30ED0F07CDEDDCDF1B194E65E764 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS61142.roa Signing time: Thu 25 Jul 2024 11:52:37 +0000 ROA not before: Thu 25 Jul 2024 11:47:37 +0000 ROA not after: Thu 24 Jul 2025 11:52:37 +0000 asID: 61142 IP address blocks: 2a06:9f81:5800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:a6:6d:ce:a7:dd:30:ed:0f:07:cd:ed:dc:df:1b:19:4e:65:e7:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 25 11:47:37 2024 GMT Not After : Jul 24 11:52:37 2025 GMT Subject: CN=0E5FF7032A3586C6DCCAC1320CB022CDA3B9752E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:77:d3:5b:4d:2c:1e:6f:9f:5a:fe:e7:50:f8: ad:90:80:59:45:96:0e:34:3e:d9:e8:85:34:a0:f8: 50:de:12:19:3f:00:c8:d8:16:3d:79:5a:31:ba:05: 11:64:03:c7:73:91:59:9c:a8:75:1b:68:8d:97:b9: 12:98:cd:6a:e1:c7:4d:40:ef:7d:c6:bf:0c:11:20: a6:a8:79:39:8a:81:90:42:24:ea:2b:ab:d1:89:17: dd:f7:85:4f:3a:3d:14:73:cb:30:c3:a6:aa:d2:b1: bd:b1:db:f6:76:4e:4e:9d:a1:ec:6e:80:2a:75:32: a5:a1:ca:d6:53:73:56:38:61:bd:fd:49:5d:a3:9a: fb:6c:87:dc:0f:84:60:f0:41:64:76:3b:33:1f:c6: df:63:c3:99:78:ba:33:38:3f:7a:5d:4d:39:e1:8e: b6:71:4f:7c:51:b1:ea:d0:a6:b0:1c:c4:37:66:e5: 87:a5:d7:16:18:0b:9f:ca:9f:a9:36:d1:4d:5a:23: c7:09:18:0d:61:20:5c:07:6c:e3:0a:41:d0:cf:f3: 32:c2:dc:28:a6:d0:c2:39:ec:60:af:0b:fb:74:b7: 07:68:15:2e:7c:c6:cb:0d:19:d2:b3:b1:7c:e8:b0: 7e:29:98:43:31:6c:0a:26:4f:cb:19:8b:3d:5c:e8: c8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:5F:F7:03:2A:35:86:C6:DC:CA:C1:32:0C:B0:22:CD:A3:B9:75:2E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS61142.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5800::/40 Signature Algorithm: sha256WithRSAEncryption 51:37:5e:2c:42:b0:ed:d2:da:37:3a:3f:59:ad:df:87:df:55: d4:4b:d9:8a:96:d5:47:3f:8b:fd:a0:c4:36:93:1a:b2:b3:a4: 9e:f9:3d:b4:32:9a:56:4c:8a:15:6a:b1:3e:7b:c2:f8:1b:5e: 5e:f7:80:2a:d4:b1:70:c0:b0:90:2f:b5:18:ef:97:5b:20:ac: 12:7c:92:2d:3b:db:b3:65:85:17:07:36:1f:63:2c:bc:cf:78: 0f:78:1d:69:c2:91:74:8b:74:c3:24:3a:f4:ef:ea:68:30:3d: fb:ec:50:dc:89:79:22:e4:36:1f:5c:e4:d7:38:97:a2:12:43: 59:78:e7:99:72:5f:48:13:fc:cd:22:77:a2:c4:82:7f:46:d4: 12:a3:3c:81:41:62:f6:1b:b2:bf:b7:9c:d8:c4:66:af:8f:4d: 03:1d:80:7c:b5:2c:9d:e9:78:9d:22:b4:7f:73:67:96:19:40: 19:54:5c:6e:9b:f6:d8:aa:d6:8d:57:21:e1:ca:0b:5e:34:0f: e7:f8:6f:f4:08:dc:49:c1:a1:ed:ed:f8:17:68:7e:d3:30:a8: 30:2a:f1:5a:a7:f6:ec:fa:b6:8f:2b:bc:c5:88:65:40:bb:35: 4a:62:93:bd:6f:2a:e6:bc:c0:0b:28:61:03:54:d6:69:44:f5: 31:e2:5a:91 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUd6ZtzqfdMO0PB83t3N8bGU5l52QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MjUxMTQ3MzdaFw0yNTA3MjQxMTUyMzdaMDMxMTAvBgNV BAMTKDBFNUZGNzAzMkEzNTg2QzZEQ0NBQzEzMjBDQjAyMkNEQTNCOTc1MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKd9NbTSweb59a/udQ+K2QgFlF lg40PtnohTSg+FDeEhk/AMjYFj15WjG6BRFkA8dzkVmcqHUbaI2XuRKYzWrhx01A 733GvwwRIKaoeTmKgZBCJOorq9GJF933hU86PRRzyzDDpqrSsb2x2/Z2Tk6doexu gCp1MqWhytZTc1Y4Yb39SV2jmvtsh9wPhGDwQWR2OzMfxt9jw5l4ujM4P3pdTTnh jrZxT3xRserQprAcxDdm5Yel1xYYC5/Kn6k20U1aI8cJGA1hIFwHbOMKQdDP8zLC 3Cim0MI57GCvC/t0twdoFS58xssNGdKzsXzosH4pmEMxbAomT8sZiz1c6MhnAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUDl/3Ayo1hsbcysEyDLAizaO5dS4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjExNDIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBp+BWDANBgkqhkiG9w0BAQsFAAOCAQEAUTde LEKw7dLaNzo/Wa3fh99V1EvZipbVRz+L/aDENpMasrOknvk9tDKaVkyKFWqxPnvC +BteXveAKtSxcMCwkC+1GO+XWyCsEnySLTvbs2WFFwc2H2MsvM94D3gdacKRdIt0 wyQ69O/qaDA9++xQ3Il5IuQ2H1zk1ziXohJDWXjnmXJfSBP8zSJ3osSCf0bUEqM8 gUFi9huyv7ec2MRmr49NAx2AfLUsnel4nSK0f3NnlhlAGVRcbpv22KrWjVch4coL XjQP5/hv9AjcScGh7e34F2h+0zCoMCrxWqf27Pq2jyu8xYhlQLs1SmKTvW8q5rzA CyhhA1TWaUT1MeJakQ== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org