$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS61228.roa File: AS61228.roa (raw, json) Hash identifier: f9zLyAglK9cYTEC4F7RlH8L9CS8B1G2PGNI/rWKpd2U= Subject key identifier: 15:E9:BC:14:9E:F1:7A:C7:9E:9A:27:C1:4D:40:CC:2A:73:A8:45:F9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1B1CB0DA5721A587A3F5CB78CE2CE833A4D6945B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS61228.roa Signing time: Sun 05 Nov 2023 04:07:16 +0000 ROA not before: Sun 05 Nov 2023 04:02:16 +0000 ROA not after: Sun 03 Nov 2024 04:07:16 +0000 asID: 61228 IP address blocks: 2a0a:6040:cf00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1c:b0:da:57:21:a5:87:a3:f5:cb:78:ce:2c:e8:33:a4:d6:94:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:16 2023 GMT Not After : Nov 3 04:07:16 2024 GMT Subject: CN=15E9BC149EF17AC79E9A27C14D40CC2A73A845F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3a:19:3b:6e:c0:3f:85:b8:95:68:9e:b5:d1: 48:3b:35:28:71:c6:64:fa:a7:17:0b:c2:5a:eb:02: 62:10:bc:10:e6:04:bb:01:3b:95:db:7e:78:b6:60: f3:43:56:c4:a1:79:4b:39:4d:0d:04:8e:17:b6:29: 99:f6:5a:3a:af:fe:08:57:5a:c7:40:02:be:66:7b: 55:e8:bd:d4:d2:82:05:fb:b3:e1:98:5b:7e:11:cd: 6b:1e:4e:b9:ac:56:8e:29:07:53:61:54:45:35:82: f4:33:ce:72:f8:ad:f1:c4:0c:42:bb:01:e4:9f:17: 85:c3:62:bf:0f:da:ef:d5:fc:a1:58:c2:97:2e:83: c9:97:28:88:12:24:1b:7e:68:8b:24:5c:3b:0f:82: 57:0b:72:9c:de:b9:62:87:69:06:63:a4:cf:9c:6a: b3:16:f3:ab:86:a2:37:61:f4:d2:64:5f:81:9a:e1: f5:3a:8d:68:40:98:22:ce:0e:4c:54:fe:1d:9b:e9: 10:bb:29:fd:de:6c:77:b4:fe:48:62:ad:d8:0c:92: fc:1c:51:26:63:46:07:a4:c6:db:7a:4b:0c:f5:74: a8:e9:e1:18:6d:5f:f9:0b:a6:5d:6a:1f:19:7d:a5: 85:06:50:b4:f3:ee:e2:4b:c4:00:02:fc:c5:fb:30: 81:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E9:BC:14:9E:F1:7A:C7:9E:9A:27:C1:4D:40:CC:2A:73:A8:45:F9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS61228.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:cf00::/40 Signature Algorithm: sha256WithRSAEncryption 0c:3a:34:a1:6d:5c:a2:44:8d:94:a5:e8:57:56:cd:4f:d6:ed: 56:2a:2e:13:0d:f3:49:c2:b6:59:43:7c:54:87:72:22:fa:b8: 3a:04:30:a9:68:54:a7:a6:11:66:7f:51:c8:a8:95:94:44:de: d3:0a:95:4f:4f:63:b9:83:f2:cf:a5:14:06:c1:4b:cc:d7:24: d3:25:e7:7c:a2:dc:41:8b:c9:e8:4b:f2:49:1d:d1:25:df:16: c2:d8:bb:fb:9a:fc:97:73:1c:29:9c:f2:16:a0:91:21:7d:59: d5:93:7a:7a:f2:30:e1:ec:aa:b8:52:ff:b0:f2:88:47:d2:38: f9:52:80:48:c3:96:4a:14:4d:c9:6b:49:71:de:fd:75:19:f0: 45:17:e6:e0:47:88:f7:67:c9:af:53:be:54:d7:ee:e2:f6:71: 67:4c:d4:dc:6b:79:a9:21:c4:33:8d:08:ad:f0:cd:94:d7:d8: 73:ca:38:2d:50:68:27:d4:23:24:fd:a8:4e:fb:e6:be:4f:b3: da:b7:a0:b0:24:1b:fc:f0:db:a9:50:1c:8e:aa:68:5a:25:ea: 59:29:8c:b9:61:ac:85:6d:11:1c:23:8f:20:36:d2:86:14:44: ad:01:29:5c:12:cf:cc:e1:2c:bf:ba:73:5d:61:6e:1c:4a:81: 49:62:53:a1 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUGxyw2lchpYej9ct4zizoM6TWlFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTZaFw0yNDExMDMwNDA3MTZaMDMxMTAvBgNV BAMTKDE1RTlCQzE0OUVGMTdBQzc5RTlBMjdDMTRENDBDQzJBNzNBODQ1RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Ohk7bsA/hbiVaJ610Ug7NShx xmT6pxcLwlrrAmIQvBDmBLsBO5Xbfni2YPNDVsSheUs5TQ0Ejhe2KZn2Wjqv/ghX WsdAAr5me1XovdTSggX7s+GYW34RzWseTrmsVo4pB1NhVEU1gvQzznL4rfHEDEK7 AeSfF4XDYr8P2u/V/KFYwpcug8mXKIgSJBt+aIskXDsPglcLcpzeuWKHaQZjpM+c arMW86uGojdh9NJkX4Ga4fU6jWhAmCLODkxU/h2b6RC7Kf3ebHe0/khirdgMkvwc USZjRgekxtt6Swz1dKjp4RhtX/kLpl1qHxl9pYUGULTz7uJLxAAC/MX7MIHBAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUFem8FJ7xeseemifBTUDMKnOoRfkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjEyMjgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAzzANBgkqhkiG9w0BAQsFAAOCAQEADDo0 oW1cokSNlKXoV1bNT9btViouEw3zScK2WUN8VIdyIvq4OgQwqWhUp6YRZn9RyKiV lETe0wqVT09juYPyz6UUBsFLzNck0yXnfKLcQYvJ6EvySR3RJd8Wwti7+5r8l3Mc KZzyFqCRIX1Z1ZN6evIw4eyquFL/sPKIR9I4+VKASMOWShRNyWtJcd79dRnwRRfm 4EeI92fJr1O+VNfu4vZxZ0zU3Gt5qSHEM40IrfDNlNfYc8o4LVBoJ9QjJP2oTvvm vk+z2regsCQb/PDbqVAcjqpoWiXqWSmMuWGshW0RHCOPIDbShhRErQEpXBLPzOEs v7pzXWFuHEqBSWJToQ== -----END CERTIFICATE-----Generated at Fri May 17 13:11:28 2024 by rpki-client on console-ams.rpki-client.org