$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS62425.roa File: AS62425.roa (raw, json) Hash identifier: M8rqbuYeT+He1B/VjWtVzS9uc0eie/oFZy21UI2gJPI= Subject key identifier: 1E:6A:CF:86:08:A7:76:BB:85:12:87:64:23:AF:3E:A0:68:00:28:30 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 59578D4387EFBFBF619155A7A2C3D557DD9E4B6D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS62425.roa Signing time: Thu 05 Oct 2023 00:01:24 +0000 ROA not before: Wed 04 Oct 2023 23:56:24 +0000 ROA not after: Thu 03 Oct 2024 00:01:24 +0000 asID: 62425 IP address blocks: 2a05:dfc1:700::/40 maxlen: 40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:57:8d:43:87:ef:bf:bf:61:91:55:a7:a2:c3:d5:57:dd:9e:4b:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 4 23:56:24 2023 GMT Not After : Oct 3 00:01:24 2024 GMT Subject: CN=1E6ACF8608A776BB8512876423AF3EA068002830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:78:a3:02:de:1f:cd:23:d4:65:f0:3a:e4:ab: 9b:06:54:2c:17:f8:03:79:11:31:47:ee:61:1d:bf: 04:a4:df:d2:13:b0:14:7b:42:aa:db:09:2a:78:36: 4f:86:07:13:95:5a:a9:c5:c1:47:9e:c4:5b:e4:0a: db:73:27:08:45:cf:3f:7f:a0:63:43:ca:f7:66:c3: 5b:65:00:8d:cd:4b:49:df:35:f6:d7:e7:ba:d2:3a: 17:3b:0a:39:94:1c:01:a0:a0:43:c4:e3:9b:8a:81: ce:47:2c:a8:93:64:ac:ab:46:5a:42:e8:9b:de:b8: 4d:c0:20:df:34:54:ac:7e:3c:62:c2:da:08:ae:2c: d2:e5:0d:75:4d:fc:ee:8f:ed:e8:98:8e:2f:6f:a4: dc:67:0e:e4:09:d8:12:1e:47:85:cc:b6:13:f2:40: 18:62:50:57:34:5b:95:e1:d9:3a:bf:d1:fc:69:42: d8:91:60:65:57:67:97:e9:5f:00:4c:a4:e1:41:3b: 87:39:95:f2:28:2b:4d:fb:27:df:61:b9:50:b5:73: 97:12:fd:a7:6a:74:d9:83:55:56:35:55:4b:1d:ef: 20:4f:30:69:2e:31:18:c2:1d:10:a9:fa:84:d5:1b: a8:ba:59:e4:fe:e4:a6:e5:07:e1:e0:95:00:65:e4: 99:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6A:CF:86:08:A7:76:BB:85:12:87:64:23:AF:3E:A0:68:00:28:30 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS62425.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:700::/40 Signature Algorithm: sha256WithRSAEncryption 70:5c:54:c4:9b:7f:ca:4a:c3:da:97:74:f7:70:2d:3d:86:da: 2e:06:01:96:9a:3b:0a:a5:8a:29:4d:22:bc:d9:e0:01:2e:d8: 37:09:cd:45:66:32:14:92:6c:84:32:cf:1b:8a:61:aa:87:a7: 2d:a2:9a:df:05:c6:57:47:d2:f7:7b:b1:33:99:49:ee:b3:2f: 42:a1:ad:b7:4d:ac:c6:e1:7a:66:43:33:15:fb:ef:a9:0c:8d: ef:96:04:bd:75:08:0e:8e:44:9b:6f:29:6e:c9:de:b1:1c:e7: ad:92:fc:3e:a9:14:14:50:1c:24:14:5e:a4:3a:1b:6d:0a:7d: bc:d0:27:69:08:cb:f2:ea:32:e8:67:96:dc:53:57:66:71:13: 24:09:fe:07:11:51:6a:00:94:d3:55:3f:35:69:e4:ee:05:ca: 8a:d5:c4:57:33:fa:6d:88:d7:61:ae:83:1d:9d:f9:24:69:a4: 18:dd:7d:b5:29:a5:ec:51:8e:89:24:d6:c4:f1:51:12:09:cb: 8c:e3:a7:74:d8:d2:c2:02:91:40:68:ec:59:a5:af:95:68:00: 6b:2c:66:0e:89:30:97:44:c8:19:b8:4c:84:e0:7a:f3:92:07: aa:ab:16:fb:cd:4a:28:c2:e0:0c:be:04:50:61:6b:fa:8a:ea: 2f:b9:ad:f6 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUWVeNQ4fvv79hkVWnosPVV92eS20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMDQyMzU2MjRaFw0yNDEwMDMwMDAxMjRaMDMxMTAvBgNV BAMTKDFFNkFDRjg2MDhBNzc2QkI4NTEyODc2NDIzQUYzRUEwNjgwMDI4MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleKMC3h/NI9Rl8Drkq5sGVCwX +AN5ETFH7mEdvwSk39ITsBR7QqrbCSp4Nk+GBxOVWqnFwUeexFvkCttzJwhFzz9/ oGNDyvdmw1tlAI3NS0nfNfbX57rSOhc7CjmUHAGgoEPE45uKgc5HLKiTZKyrRlpC 6JveuE3AIN80VKx+PGLC2giuLNLlDXVN/O6P7eiYji9vpNxnDuQJ2BIeR4XMthPy QBhiUFc0W5Xh2Tq/0fxpQtiRYGVXZ5fpXwBMpOFBO4c5lfIoK037J99huVC1c5cS /adqdNmDVVY1VUsd7yBPMGkuMRjCHRCp+oTVG6i6WeT+5KblB+HglQBl5JnJAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUHmrPhgindruFEodkI68+oGgAKDAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjI0MjUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BBzANBgkqhkiG9w0BAQsFAAOCAQEAcFxU xJt/ykrD2pd093AtPYbaLgYBlpo7CqWKKU0ivNngAS7YNwnNRWYyFJJshDLPG4ph qoenLaKa3wXGV0fS93uxM5lJ7rMvQqGtt02sxuF6ZkMzFfvvqQyN75YEvXUIDo5E m28pbsnesRznrZL8PqkUFFAcJBRepDobbQp9vNAnaQjL8uoy6GeW3FNXZnETJAn+ BxFRagCU01U/NWnk7gXKitXEVzP6bYjXYa6DHZ35JGmkGN19tSml7FGOiSTWxPFR EgnLjOOndNjSwgKRQGjsWaWvlWgAayxmDokwl0TIGbhMhOB685IHqqsW+81KKMLg DL4EUGFr+orqL7mt9g== -----END CERTIFICATE-----Generated at Fri May 17 14:07:01 2024 by rpki-client on console-fra.rpki-client.org