$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS62435.roa File: AS62435.roa (raw, json) Hash identifier: eQoNBa8eElmSwkLy18Z0pdK9xl0cMObhcONaJ3N4yT4= Subject key identifier: A1:A7:28:5D:86:67:34:C8:63:44:E3:33:97:B3:08:54:63:0F:94:30 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 13B66F2F9756663F01FE3CA8A1EE93A76101F5AA Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS62435.roa Signing time: Mon 08 Jul 2024 14:00:28 +0000 ROA not before: Mon 08 Jul 2024 13:55:28 +0000 ROA not after: Mon 07 Jul 2025 14:00:28 +0000 asID: 62435 IP address blocks: 2a05:dfc1:7c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:b6:6f:2f:97:56:66:3f:01:fe:3c:a8:a1:ee:93:a7:61:01:f5:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 8 13:55:28 2024 GMT Not After : Jul 7 14:00:28 2025 GMT Subject: CN=A1A7285D866734C86344E33397B30854630F9430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e3:cc:c6:c3:3b:5c:3c:95:d3:dd:4f:de:df: fe:4f:b1:f4:2b:1e:88:58:b8:b5:ed:5d:3c:65:21: 1c:97:54:57:4c:78:fb:51:af:9e:0a:29:0e:11:7e: 46:36:8c:84:f6:91:14:ae:6d:b7:65:e6:e9:3b:24: 7f:9d:a6:2e:2f:56:a8:fd:f8:f0:39:3e:e4:fa:e5: 3b:7d:01:5a:8d:f6:19:59:99:bb:fe:0b:33:be:56: 4f:c9:90:e5:fa:b4:9c:ef:13:e1:32:0f:46:17:08: 5a:29:28:39:cd:46:8e:cc:db:a2:38:4e:1e:2d:31: f9:95:2f:73:41:d5:40:ff:8e:12:9d:ab:24:db:76: 30:38:cf:64:82:26:c0:4b:67:c8:c4:7b:ff:b5:be: 54:ae:69:24:3a:d7:01:16:9c:17:f6:19:5c:71:12: 40:87:8b:06:0c:ec:fe:fa:f2:2c:7a:88:6a:8d:f3: 6b:28:56:58:61:b7:54:39:49:ff:a5:4f:db:d5:67: c8:05:82:da:da:e7:3d:0b:8a:9b:54:25:ea:97:26: f7:74:e5:33:3f:63:76:d1:93:4b:72:8b:2b:e9:5d: 2e:b2:cc:39:b7:9a:6e:89:92:76:50:3e:d4:2e:48: d9:16:61:dc:18:d9:9a:7c:11:56:e7:75:05:01:df: f4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A7:28:5D:86:67:34:C8:63:44:E3:33:97:B3:08:54:63:0F:94:30 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS62435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7c00::/40 Signature Algorithm: sha256WithRSAEncryption b2:ea:fd:1d:71:7f:7a:13:56:45:35:39:b3:fd:e2:47:6f:07: 04:8a:a5:cd:8b:db:f9:0f:e9:eb:17:89:95:88:35:c4:1c:f9: f2:dd:68:ef:ea:88:1c:82:87:18:20:0e:39:e0:ec:85:40:58: 32:01:55:72:cb:00:3d:3c:de:2d:93:93:39:d8:c1:e2:dc:f1: 74:4b:71:0f:2e:1f:8a:ab:25:ef:d2:b9:80:8e:d6:11:32:ff: 36:66:92:04:0b:db:f3:56:2a:0f:65:ab:f6:09:04:ea:3e:26: c4:0f:e6:e5:f8:5c:ec:cd:d0:2d:e4:f2:a3:8e:60:05:3b:cf: 1d:84:51:20:fa:c6:4a:22:ba:04:24:31:6e:d2:60:6b:30:e9: 26:e6:27:0d:15:99:9b:2a:a9:87:5b:7c:ac:69:6e:50:40:f5: 9e:36:e1:d4:69:43:42:b9:e8:81:23:ad:5f:a0:7b:3a:af:c8: 01:fe:9d:35:ba:81:c2:3a:19:5a:36:7a:28:ed:c6:64:de:bf: b7:52:10:b1:1f:04:ae:7b:60:33:24:b3:cb:d8:00:cb:1a:2a: 18:94:cb:fa:4b:53:99:b2:da:e5:7d:23:23:21:af:06:c2:9a: 27:65:d5:53:aa:94:2c:26:6c:7a:3b:68:ac:c9:78:e6:d0:3a: c3:c6:5b:cb -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUE7ZvL5dWZj8B/jyooe6Tp2EB9aowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MDgxMzU1MjhaFw0yNTA3MDcxNDAwMjhaMDMxMTAvBgNV BAMTKEExQTcyODVEODY2NzM0Qzg2MzQ0RTMzMzk3QjMwODU0NjMwRjk0MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC148zGwztcPJXT3U/e3/5PsfQr HohYuLXtXTxlIRyXVFdMePtRr54KKQ4RfkY2jIT2kRSubbdl5uk7JH+dpi4vVqj9 +PA5PuT65Tt9AVqN9hlZmbv+CzO+Vk/JkOX6tJzvE+EyD0YXCFopKDnNRo7M26I4 Th4tMfmVL3NB1UD/jhKdqyTbdjA4z2SCJsBLZ8jEe/+1vlSuaSQ61wEWnBf2GVxx EkCHiwYM7P768ix6iGqN82soVlhht1Q5Sf+lT9vVZ8gFgtra5z0LiptUJeqXJvd0 5TM/Y3bRk0tyiyvpXS6yzDm3mm6JknZQPtQuSNkWYdwY2Zp8EVbndQUB3/S9AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUoacoXYZnNMhjROMzl7MIVGMPlDAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNjI0MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BfDANBgkqhkiG9w0BAQsFAAOCAQEAsur9 HXF/ehNWRTU5s/3iR28HBIqlzYvb+Q/p6xeJlYg1xBz58t1o7+qIHIKHGCAOOeDs hUBYMgFVcssAPTzeLZOTOdjB4tzxdEtxDy4fiqsl79K5gI7WETL/NmaSBAvb81Yq D2Wr9gkE6j4mxA/m5fhc7M3QLeTyo45gBTvPHYRRIPrGSiK6BCQxbtJgazDpJuYn DRWZmyqph1t8rGluUED1njbh1GlDQrnogSOtX6B7Oq/IAf6dNbqBwjoZWjZ6KO3G ZN6/t1IQsR8ErntgMySzy9gAyxoqGJTL+ktTmbLa5X0jIyGvBsKaJ2XVU6qULCZs ejtorMl45tA6w8Zbyw== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org