Route Origin Authorization

$ rpki-client -vvf cloudie-repo.rpki.app/repo/SVENS-RPKI/1/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa
File:                     326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa (raw, json)
Hash identifier:          AeGhFJB8PWQhoqPY/Bys84r6QwYtWRnp08PisTOsGgk=
Subject key identifier:   2A:33:E6:F7:D8:D7:D2:4D:ED:58:29:A4:60:A6:2C:D2:CE:B6:02:61
Certificate issuer:       /CN=0C3177E3D69C2E575BA929C25CA552115583F707
Certificate serial:       11B06745A4C94E29A9DA65342237A6FAFD4C2C0B
Authority key identifier: 0C:31:77:E3:D6:9C:2E:57:5B:A9:29:C2:5C:A5:52:11:55:83:F7:07
Authority info access:    rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0C3177E3D69C2E575BA929C25CA552115583F707.cer
Subject info access:      rsync://cloudie-repo.rpki.app/repo/SVENS-RPKI/1/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa
Signing time:             Sun 24 Mar 2024 02:20:13 +0000
ROA not before:           Sun 24 Mar 2024 02:15:13 +0000
ROA not after:            Sun 23 Mar 2025 02:20:13 +0000
asID:                     200676
IP address blocks:        2a06:a003:1337::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://cloudie-repo.rpki.app/repo/SVENS-RPKI/1/0C3177E3D69C2E575BA929C25CA552115583F707.crl
                          rsync://cloudie-repo.rpki.app/repo/SVENS-RPKI/1/0C3177E3D69C2E575BA929C25CA552115583F707.mft
                          rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0C3177E3D69C2E575BA929C25CA552115583F707.cer
                          rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
                          rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 05:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            11:b0:67:45:a4:c9:4e:29:a9:da:65:34:22:37:a6:fa:fd:4c:2c:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0C3177E3D69C2E575BA929C25CA552115583F707
        Validity
            Not Before: Mar 24 02:15:13 2024 GMT
            Not After : Mar 23 02:20:13 2025 GMT
        Subject: CN=2A33E6F7D8D7D24DED5829A460A62CD2CEB60261
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:39:40:62:2e:1a:fb:49:de:11:49:da:db:2a:
                    46:4e:1d:bb:80:72:57:49:0b:b2:93:52:38:e6:bc:
                    1f:0a:d8:6b:a3:42:73:dd:7e:74:d2:d8:ee:b0:d6:
                    44:22:bb:7a:30:c7:55:9b:6b:0d:fe:e4:12:cf:15:
                    6c:ba:13:aa:eb:6c:96:a2:f2:cd:1a:5e:d3:e5:4a:
                    67:36:e2:a8:b3:a6:c6:fe:ea:3f:66:ed:d5:32:5a:
                    b5:97:84:e1:29:17:09:9d:fb:06:e0:c7:c1:2d:a5:
                    24:43:78:c8:c3:52:62:de:06:b6:b0:b8:d6:49:83:
                    fe:0a:6b:88:8d:97:92:a6:1b:6c:f4:1f:3f:59:5d:
                    28:12:bd:76:05:1a:ee:f9:54:ee:e0:1e:1b:2f:e9:
                    7a:75:df:35:1b:9d:59:d3:a8:09:a5:db:bc:77:04:
                    43:a8:2a:a6:ea:8e:52:19:41:01:0e:26:6e:d7:2d:
                    70:93:69:7b:1e:08:ac:46:fa:45:85:80:b9:ba:3e:
                    ec:06:7b:4e:35:bd:2e:15:f8:56:27:25:2a:6e:10:
                    c8:1e:be:29:d3:ad:48:26:7b:2e:bd:50:bd:04:22:
                    0b:5e:24:79:8c:fa:45:f8:94:0f:66:ab:79:c3:eb:
                    1e:82:d3:8e:bf:b0:93:ce:54:a2:e3:d3:7f:74:d4:
                    39:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:33:E6:F7:D8:D7:D2:4D:ED:58:29:A4:60:A6:2C:D2:CE:B6:02:61
            X509v3 Authority Key Identifier:
                keyid:0C:31:77:E3:D6:9C:2E:57:5B:A9:29:C2:5C:A5:52:11:55:83:F7:07

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://cloudie-repo.rpki.app/repo/SVENS-RPKI/1/0C3177E3D69C2E575BA929C25CA552115583F707.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0C3177E3D69C2E575BA929C25CA552115583F707.cer

            Subject Information Access:
                Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/SVENS-RPKI/1/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a06:a003:1337::/48

    Signature Algorithm: sha256WithRSAEncryption
         8b:58:42:6f:6f:22:1f:9a:1a:00:26:29:f9:3b:9c:10:e5:99:
         8c:80:4a:d4:f5:f2:3d:23:b1:5c:d5:e6:bd:a2:67:69:ab:85:
         5b:6d:7f:c6:a5:ab:17:e9:08:ab:b3:eb:79:ee:24:ac:4d:84:
         dc:38:ff:92:21:b6:00:04:bd:6b:a1:a9:82:1d:b8:cb:2e:56:
         82:af:d0:93:f2:2c:e9:b8:a4:84:e9:15:22:d3:4f:71:5e:c2:
         cd:f6:29:2a:32:42:93:1b:30:61:ed:39:5f:1e:80:b7:53:b6:
         82:4e:a9:d9:6b:4b:88:66:2e:8c:45:97:64:91:a3:11:c0:d3:
         70:c6:ec:4d:11:ab:49:c7:5b:ab:bc:d6:c5:93:d7:15:19:5b:
         e8:fe:19:72:40:ab:2f:84:db:7e:c6:1e:8b:2b:61:55:fd:6b:
         98:01:07:6b:e2:fc:91:b6:cb:eb:06:7c:3f:e8:bb:a3:04:26:
         32:b5:b9:32:25:f3:a1:9f:e8:63:5b:62:f3:58:ab:4b:de:b7:
         14:61:fb:82:1d:2d:b4:87:74:94:bc:7d:b0:e4:2c:5e:22:80:
         e0:95:c2:92:94:ac:3d:7c:e8:7d:bf:8d:2e:4c:4e:2b:fd:26:
         f0:0e:34:31:7d:a4:9a:1c:90:9e:07:1c:41:c0:b8:e4:be:01:
         44:83:68:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 14:20:44 2024 by rpki-client on console-fra.rpki-client.org