$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS62425.roa File: AS62425.roa (raw, json) Hash identifier: flVQtfWV4lqPdM2uzGbs0ZfCMg89u/3sXAqEIjwOj0I= Subject key identifier: 57:83:D0:E4:BC:BC:8A:76:31:6A:4F:F2:01:03:AA:CF:EE:B6:FC:A3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 37ABC99DC261F68148C70A11ACFDEE2BC276AE94 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS62425.roa Signing time: Thu 05 Sep 2024 00:49:55 +0000 ROA not before: Thu 05 Sep 2024 00:44:55 +0000 ROA not after: Thu 04 Sep 2025 00:49:55 +0000 asID: 62425 IP address blocks: 2a05:dfc1:700::/40 maxlen: 40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:ab:c9:9d:c2:61:f6:81:48:c7:0a:11:ac:fd:ee:2b:c2:76:ae:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 5 00:44:55 2024 GMT Not After : Sep 4 00:49:55 2025 GMT Subject: CN=5783D0E4BCBC8A76316A4FF20103AACFEEB6FCA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:70:38:34:91:ca:b0:97:9f:2f:03:12:c7:02: f6:9a:4c:2c:81:fb:67:78:b3:90:83:59:f7:35:9f: d5:bc:8f:99:33:7a:da:83:85:57:17:95:1f:8c:a6: 1a:09:3b:93:5b:70:bb:57:60:71:90:0c:2e:7d:c5: 55:c3:1a:dd:e9:56:f0:40:d0:49:a5:6d:fc:1c:79: 35:32:38:4f:de:73:29:f2:e5:66:9b:32:8f:63:a1: 21:98:3d:18:12:13:d4:ef:41:ee:fd:8f:ff:59:3f: 2b:e8:80:25:5e:be:a5:33:4b:26:18:3c:d7:14:1e: 90:55:31:ad:c0:75:b5:3e:d2:a3:53:46:78:99:65: cb:b3:a4:ce:c4:0e:8a:2c:4d:65:2b:6a:0c:d1:b4: 8d:5e:ed:5b:ae:1f:a3:bd:1e:6c:45:b2:97:d3:5c: 9a:76:8b:62:a5:f4:e1:5b:5d:86:84:2a:04:2d:28: 75:26:e9:2c:34:1a:e9:81:1e:c5:e3:59:2e:85:04: ee:1f:3f:50:98:07:f6:5a:58:85:38:d2:b7:4a:84: c4:c6:96:71:24:83:ad:f2:16:f9:69:aa:a6:3a:f3: 01:c7:c0:dd:8c:ac:cd:af:fe:cb:75:8b:9c:e5:09: 3a:30:0e:c0:0e:1e:7a:92:3f:e1:88:36:9c:d0:73: d2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:83:D0:E4:BC:BC:8A:76:31:6A:4F:F2:01:03:AA:CF:EE:B6:FC:A3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS62425.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:700::/40 Signature Algorithm: sha256WithRSAEncryption 19:1e:cf:48:09:50:6f:8b:37:f8:ee:53:0a:fd:22:5a:1e:fd: 8c:92:64:d2:2d:fc:cf:a5:ef:ec:48:40:b5:e9:57:d8:8e:00: 62:1e:e2:17:6d:06:21:6b:82:e2:68:fa:e3:d9:96:77:ea:9b: 7d:8c:cd:13:15:ea:22:99:03:74:1a:31:5a:d9:93:f0:5f:9e: 98:51:5a:25:89:34:f6:47:ec:77:97:bb:d7:60:25:aa:f4:de: be:89:0f:ae:3f:8a:c7:bf:0d:6b:6d:40:ca:0a:96:44:63:50: 59:dc:f3:5f:a6:14:06:3f:44:da:4b:5e:40:c3:d9:31:2f:e6: 30:3d:7b:b0:e2:6c:a5:02:ba:01:3e:7f:bc:e8:87:b0:eb:d6: 6d:9f:a5:6c:bd:e5:ff:a3:9c:9a:4a:02:86:fc:64:7f:97:4f: 6f:75:b6:6e:8e:fb:fa:f4:54:44:58:1a:ef:5f:54:67:94:7f: ec:d4:a6:87:31:41:a0:4f:32:4e:bf:21:8f:de:66:17:47:16: e5:09:4a:d8:e8:5d:83:23:57:73:41:48:57:68:84:cf:5e:6b: 13:b5:4d:63:73:f5:64:fb:5f:90:85:5c:0a:26:02:c8:48:a1: 38:9a:a5:04:cc:c0:ef:83:0d:78:27:68:92:ab:92:80:5c:e4: d6:f1:99:e2 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUN6vJncJh9oFIxwoRrP3uK8J2rpQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MDUwMDQ0NTVaFw0yNTA5MDQwMDQ5NTVaMDMxMTAvBgNV BAMTKDU3ODNEMEU0QkNCQzhBNzYzMTZBNEZGMjAxMDNBQUNGRUVCNkZDQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzcDg0kcqwl58vAxLHAvaaTCyB +2d4s5CDWfc1n9W8j5kzetqDhVcXlR+MphoJO5NbcLtXYHGQDC59xVXDGt3pVvBA 0EmlbfwceTUyOE/ecyny5WabMo9joSGYPRgSE9TvQe79j/9ZPyvogCVevqUzSyYY PNcUHpBVMa3AdbU+0qNTRniZZcuzpM7EDoosTWUragzRtI1e7VuuH6O9HmxFspfT XJp2i2Kl9OFbXYaEKgQtKHUm6Sw0GumBHsXjWS6FBO4fP1CYB/ZaWIU40rdKhMTG lnEkg63yFvlpqqY68wHHwN2MrM2v/st1i5zlCTowDsAOHnqSP+GINpzQc9IXAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUV4PQ5Ly8inYxak/yAQOqz+62/KMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjI0MjUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BBzANBgkqhkiG9w0BAQsFAAOCAQEAGR7P SAlQb4s3+O5TCv0iWh79jJJk0i38z6Xv7EhAtelX2I4AYh7iF20GIWuC4mj649mW d+qbfYzNExXqIpkDdBoxWtmT8F+emFFaJYk09kfsd5e712AlqvTevokPrj+Kx78N a21AygqWRGNQWdzzX6YUBj9E2kteQMPZMS/mMD17sOJspQK6AT5/vOiHsOvWbZ+l bL3l/6OcmkoChvxkf5dPb3W2bo77+vRURFga719UZ5R/7NSmhzFBoE8yTr8hj95m F0cW5QlK2OhdgyNXc0FIV2iEz15rE7VNY3P1ZPtfkIVcCiYCyEihOJqlBMzA74MN eCdokquSgFzk1vGZ4g== -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org