$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS924.roa File: AS924.roa (raw, json) Hash identifier: tEQZhG83cqVckenVESgC/XPIwtBChx/azfUARbelwFI= Subject key identifier: 1A:20:71:89:DA:01:96:82:3A:0D:21:B3:54:48:01:BE:B8:E2:A1:30 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4B715E7478C0C847B5D75DD98CE38CC518511A0C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS924.roa Signing time: Mon 18 Nov 2024 23:36:23 +0000 ROA not before: Mon 18 Nov 2024 23:31:23 +0000 ROA not after: Mon 17 Nov 2025 23:36:23 +0000 asID: 924 IP address blocks: 2a06:9f80::/32 maxlen: 36 2a06:9f81::/32 maxlen: 48 2a06:9f87::/32 maxlen: 48 2a0a:6040:5f00::/40 maxlen: 48 2a0a:6040:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:71:5e:74:78:c0:c8:47:b5:d7:5d:d9:8c:e3:8c:c5:18:51:1a:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 18 23:31:23 2024 GMT Not After : Nov 17 23:36:23 2025 GMT Subject: CN=1A207189DA0196823A0D21B3544801BEB8E2A130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8d:45:93:9b:e3:c4:d1:19:da:fe:15:7f:4d: 6d:81:e7:14:5c:0f:ef:b2:92:9d:49:58:39:5a:05: e2:de:ae:e0:11:5c:6e:f0:b7:cb:e3:1a:88:23:46: 11:47:a8:9a:d4:e5:26:e3:93:9b:dc:54:18:9d:3d: c3:df:16:dc:ee:85:73:86:9e:99:f2:a5:4b:c6:e1: 03:64:f3:b0:b5:2a:1d:1b:f0:5e:fc:12:1a:af:f8: 09:bf:a3:ba:f5:26:5f:b4:b4:ed:5c:9a:a2:8f:ae: 5f:fb:1d:1c:22:c0:b9:ba:30:7f:a5:35:b8:3f:2e: 79:36:39:40:b3:31:3c:98:2f:2a:71:61:0d:51:b6: 21:bf:a2:27:c9:05:c0:4d:6e:e8:1a:97:94:7b:01: e0:75:d6:6b:e8:ff:7a:67:22:50:6f:05:cc:10:36: 7f:86:0d:48:e0:0a:57:f6:97:ca:bc:4a:98:8d:d8: 23:25:78:79:35:30:91:0e:c3:29:94:e0:2f:27:e7: 1b:b7:10:31:73:12:6e:f2:d8:77:99:3a:6d:3f:2f: 51:5c:30:a0:32:04:0f:d9:2c:d9:e2:bb:29:df:2f: ef:82:08:48:3a:ee:58:06:d3:de:49:dd:36:53:a3: dc:a2:dc:f8:25:ba:80:6f:c1:b2:47:cb:46:dc:13: d9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:20:71:89:DA:01:96:82:3A:0D:21:B3:54:48:01:BE:B8:E2:A1:30 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS924.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f80::/31 2a06:9f87::/32 2a0a:6040:5f00::/40 2a0a:6040:ff00::/40 Signature Algorithm: sha256WithRSAEncryption bd:36:fb:23:ad:9e:15:0e:01:bf:a1:fa:dc:a7:8e:44:77:5c: 21:e3:eb:df:e8:a9:28:a3:19:67:d3:a7:f1:8a:14:d1:6f:57: c4:47:a4:66:20:ee:37:9b:44:65:7c:19:99:c5:5f:c7:65:19: 43:99:30:0f:59:f9:2e:cc:dd:0b:a1:51:d9:91:f9:5c:1d:ca: 08:ea:79:2f:1d:f5:55:c9:6b:96:9f:f4:4f:47:25:38:a3:6f: 14:ae:08:02:38:cc:48:db:5b:9f:ff:c1:bd:c5:ca:d1:e3:b5: 50:ea:b5:0b:da:78:d7:bd:f0:6b:15:bc:2a:9b:53:42:fa:b2: 4b:f1:c5:14:53:f7:e5:69:28:95:e9:df:45:e1:b3:64:80:0c: ba:8e:96:fd:ad:d6:56:0b:e9:1a:f8:a7:33:f5:72:b7:0c:f2: 67:ce:62:02:18:63:f4:40:21:ce:f5:7d:4a:43:7b:f4:1c:73: c3:82:a1:fe:7c:52:c1:b9:95:8e:5d:cd:f0:8e:26:a0:6f:0a: 66:85:e8:0d:1a:e8:e8:ae:95:a0:14:82:29:ef:fe:12:ec:1a: 89:5e:d0:ce:55:58:1c:53:1e:bf:0a:a9:b3:c7:ec:3d:dc:a7: 2c:5f:df:82:60:c1:d5:4d:c8:0e:b2:fa:15:62:16:ea:57:20: a4:68:de:a3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUS3FedHjAyEe1113ZjOOMxRhRGgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDExMTgyMzMxMjNaFw0yNTExMTcyMzM2MjNaMDMxMTAvBgNV BAMTKDFBMjA3MTg5REEwMTk2ODIzQTBEMjFCMzU0NDgwMUJFQjhFMkExMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIjUWTm+PE0Rna/hV/TW2B5xRc D++ykp1JWDlaBeLeruARXG7wt8vjGogjRhFHqJrU5Sbjk5vcVBidPcPfFtzuhXOG npnypUvG4QNk87C1Kh0b8F78Ehqv+Am/o7r1Jl+0tO1cmqKPrl/7HRwiwLm6MH+l Nbg/Lnk2OUCzMTyYLypxYQ1RtiG/oifJBcBNbugal5R7AeB11mvo/3pnIlBvBcwQ Nn+GDUjgClf2l8q8SpiN2CMleHk1MJEOwymU4C8n5xu3EDFzEm7y2HeZOm0/L1Fc MKAyBA/ZLNniuynfL++CCEg67lgG095J3TZTo9yi3PgluoBvwbJHy0bcE9k9AgMB AAGjggIHMIICAzAdBgNVHQ4EFgQUGiBxidoBloI6DSGzVEgBvrjioTAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwVwYIKwYBBQUHAQsESzBJMEcGCCsGAQUFBzALhjty c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTOTI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEH AQH/BCgwJjAkBAIAAjAeAwUBKgafgAMFACoGn4cDBgAqCmBAXwMGACoKYED/MA0G CSqGSIb3DQEBCwUAA4IBAQC9NvsjrZ4VDgG/ofrcp45Ed1wh4+vf6Kkooxln06fx ihTRb1fER6RmIO43m0RlfBmZxV/HZRlDmTAPWfkuzN0LoVHZkflcHcoI6nkvHfVV yWuWn/RPRyU4o28UrggCOMxI21uf/8G9xcrR47VQ6rUL2njXvfBrFbwqm1NC+rJL 8cUUU/flaSiV6d9F4bNkgAy6jpb9rdZWC+ka+Kcz9XK3DPJnzmICGGP0QCHO9X1K Q3v0HHPDgqH+fFLBuZWOXc3wjiagbwpmhegNGujorpWgFIIp7/4S7BqJXtDOVVgc Ux6/Cqmzx+w93KcsX9+CYMHVTcgOsvoVYhbqVyCkaN6j -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org