$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS61228.roa File: AS61228.roa (raw, json) Hash identifier: YIrXUQflpDGH7WaDbxjcl+2LGOCcKD4ht0sB5uk37bA= Subject key identifier: 19:F1:E2:FB:B6:6B:91:C2:D3:3B:60:52:7F:99:8C:00:E8:F7:80:6C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3DF460847268565E264FFCB8FBA26E178FFB413B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS61228.roa Signing time: Sun 06 Oct 2024 04:45:13 +0000 ROA not before: Sun 06 Oct 2024 04:40:13 +0000 ROA not after: Sun 05 Oct 2025 04:45:13 +0000 asID: 61228 IP address blocks: 2a0a:6040:cf00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:f4:60:84:72:68:56:5e:26:4f:fc:b8:fb:a2:6e:17:8f:fb:41:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:13 2024 GMT Not After : Oct 5 04:45:13 2025 GMT Subject: CN=19F1E2FBB66B91C2D33B60527F998C00E8F7806C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4b:ad:b4:41:a8:d4:42:6c:b8:f7:52:50:e7: ff:2a:66:1c:11:1f:ce:2b:57:19:62:53:d5:5f:65: 81:51:65:5a:a9:45:18:1f:dd:32:0d:90:8a:9e:0b: 67:c0:65:eb:80:6b:9e:40:99:ae:87:d9:49:7e:9f: 5b:1e:50:2e:1f:07:a5:ba:43:fd:3c:66:eb:87:00: b6:d3:8b:e7:56:45:a7:18:b3:88:f6:53:82:7a:c1: 19:2c:e9:da:88:11:e7:0a:63:8c:6c:f6:57:c5:3c: 0d:cc:6e:ee:80:9a:09:bf:d3:87:c7:3e:46:3c:89: 4f:b0:3d:72:21:72:90:90:d9:44:24:c9:7e:6e:e2: 73:30:d6:7a:4a:dd:eb:b6:8f:54:ae:fa:43:30:3c: c3:05:6a:e6:13:15:89:df:2a:0c:85:d1:b2:5a:c4: d7:db:b8:95:c1:e6:b5:9f:03:4e:bb:ab:27:76:c7: ae:fc:c7:0d:f1:c9:20:12:27:cf:be:8f:7f:e1:19: 0e:59:83:01:83:28:d8:8c:26:54:a0:43:0b:0d:c5: 77:5a:c8:db:78:13:72:2a:53:e2:8d:20:52:83:ba: 99:93:14:e1:8f:56:bb:c2:7a:29:2f:59:94:97:dc: 8c:4e:55:e6:41:60:42:37:f8:a1:eb:7a:a0:c4:d0: 29:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F1:E2:FB:B6:6B:91:C2:D3:3B:60:52:7F:99:8C:00:E8:F7:80:6C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS61228.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:cf00::/40 Signature Algorithm: sha256WithRSAEncryption 54:8e:59:34:8d:6b:57:01:96:2f:bf:16:24:09:c3:e2:01:53: 4d:de:4d:99:10:83:42:91:ab:dc:7a:75:b7:c8:3a:7d:be:a8: a5:3f:8e:a9:99:f2:0a:7c:7a:9c:b0:5d:62:f1:2f:57:d8:76: 65:04:13:96:87:b3:24:b6:e1:47:d0:1a:e6:e1:4e:13:8c:6a: 53:b0:01:58:1d:22:55:81:0b:4e:7f:3e:e5:31:bb:72:9c:d4: 57:a5:85:67:2e:e3:17:a2:51:4b:15:33:67:ee:e3:2d:1c:5e: 63:b6:47:68:71:53:5d:dd:a0:3f:bc:6e:2d:c0:04:1c:3a:d4: d3:78:eb:95:8b:58:1a:d0:85:97:64:cc:94:14:1e:74:4f:f6: 39:7f:a4:11:d8:ef:d5:e3:a6:9c:12:93:e8:85:82:c5:44:65: 8b:78:7a:14:ca:d4:d7:74:a4:02:4c:de:9a:96:e5:96:e5:50: 98:f1:e7:49:77:1f:90:b8:37:f1:d6:f9:51:26:1d:ce:44:92: 1b:22:74:61:ca:84:9f:f3:48:8b:21:4b:71:f9:5e:ff:92:5f: 04:f3:54:2e:95:5c:5e:57:d5:76:ff:d3:ad:e5:ae:d0:3d:14: 57:e6:85:f8:56:5d:28:7b:bd:75:58:b4:25:f6:0e:06:4b:18: a7:82:7a:c5 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUPfRghHJoVl4mT/y4+6JuF4/7QTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTNaFw0yNTEwMDUwNDQ1MTNaMDMxMTAvBgNV BAMTKDE5RjFFMkZCQjY2QjkxQzJEMzNCNjA1MjdGOTk4QzAwRThGNzgwNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvS620QajUQmy491JQ5/8qZhwR H84rVxliU9VfZYFRZVqpRRgf3TINkIqeC2fAZeuAa55Ama6H2Ul+n1seUC4fB6W6 Q/08ZuuHALbTi+dWRacYs4j2U4J6wRks6dqIEecKY4xs9lfFPA3Mbu6Amgm/04fH PkY8iU+wPXIhcpCQ2UQkyX5u4nMw1npK3eu2j1Su+kMwPMMFauYTFYnfKgyF0bJa xNfbuJXB5rWfA067qyd2x678xw3xySASJ8++j3/hGQ5ZgwGDKNiMJlSgQwsNxXda yNt4E3IqU+KNIFKDupmTFOGPVrvCeikvWZSX3IxOVeZBYEI3+KHreqDE0ClBAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUGfHi+7ZrkcLTO2BSf5mMAOj3gGwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjEyMjgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAzzANBgkqhkiG9w0BAQsFAAOCAQEAVI5Z NI1rVwGWL78WJAnD4gFTTd5NmRCDQpGr3Hp1t8g6fb6opT+OqZnyCnx6nLBdYvEv V9h2ZQQTloezJLbhR9Aa5uFOE4xqU7ABWB0iVYELTn8+5TG7cpzUV6WFZy7jF6JR SxUzZ+7jLRxeY7ZHaHFTXd2gP7xuLcAEHDrU03jrlYtYGtCFl2TMlBQedE/2OX+k Edjv1eOmnBKT6IWCxURli3h6FMrU13SkAkzempblluVQmPHnSXcfkLg38db5USYd zkSSGyJ0YcqEn/NIiyFLcfle/5JfBPNULpVcXlfVdv/TreWu0D0UV+aF+FZdKHu9 dVi0JfYOBksYp4J6xQ== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org