$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57308.roa File: AS57308.roa (raw, json) Hash identifier: GIb98X5MpTluXiDdFzKdCfah/hqwbdh4XJ64PeyTcUU= Subject key identifier: 5C:73:0B:1C:48:FC:66:2E:62:EA:59:87:44:9B:4E:EA:A1:CC:5D:54 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6A29A37AE6007792740323D3B65FF9F253653E39 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57308.roa Signing time: Fri 02 May 2025 08:46:18 +0000 ROA not before: Fri 02 May 2025 08:41:18 +0000 ROA not after: Fri 01 May 2026 08:46:18 +0000 asID: 57308 IP address blocks: 2a05:dfc1:4e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 20:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:29:a3:7a:e6:00:77:92:74:03:23:d3:b6:5f:f9:f2:53:65:3e:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 2 08:41:18 2025 GMT Not After : May 1 08:46:18 2026 GMT Subject: CN=5C730B1C48FC662E62EA5987449B4EEAA1CC5D54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:68:ae:2c:bf:22:bc:0c:6a:aa:7b:f5:cd:c5: c3:35:08:8f:15:8b:ee:81:3b:e0:37:32:40:0e:a1: fe:d7:65:61:f2:95:2d:76:20:24:fa:47:e7:6c:c4: 8d:e0:2e:fe:05:58:c9:e1:a2:9a:b9:72:1c:53:04: 45:6c:2c:bd:d8:4d:28:79:f0:97:6d:f6:03:9e:66: d4:bf:77:20:2a:1d:a5:cf:db:8c:ef:ad:63:54:b0: 50:90:34:21:4f:55:dd:35:d1:5a:df:7a:fe:03:dd: 0b:1c:91:b5:26:89:28:41:a7:69:a0:bb:8e:aa:90: 48:dd:eb:a5:07:e0:52:21:63:a5:ae:32:56:d8:3c: b6:ef:f6:12:b4:7a:46:4a:36:5f:2d:44:8f:49:5b: 60:54:e2:1c:17:8c:99:3a:81:80:b2:e6:01:d8:c5: 86:b7:ed:61:99:0e:5c:67:f7:cd:1f:2d:d1:57:e2: 58:90:c9:bb:2b:bf:c5:c6:ab:db:bf:7c:6e:95:af: bf:65:f5:30:02:d4:50:e0:fd:21:fc:66:53:57:5e: dd:1f:b8:a3:0b:c0:b9:38:49:96:0d:f9:0f:47:f6: 46:2b:5e:0d:d7:77:d6:39:78:fc:c0:ea:2c:1e:d8: 57:52:b6:f6:c7:d5:0d:6e:1a:b0:5b:81:7b:9f:80: 23:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:73:0B:1C:48:FC:66:2E:62:EA:59:87:44:9B:4E:EA:A1:CC:5D:54 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS57308.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4e00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:3a:89:83:ba:b3:7b:a9:dc:4d:84:20:18:32:52:fb:df:c3: 07:bb:57:7f:d0:ab:24:04:be:27:c6:9c:be:7d:7b:1e:9c:ab: 17:b2:d0:4c:da:32:11:56:a8:14:3b:43:cf:6c:70:59:93:7e: ff:b0:6b:1b:56:e1:6e:67:74:2b:6a:67:83:db:31:b1:d8:1d: 48:06:f0:29:90:0d:e6:5f:48:fe:5e:ea:59:10:fa:23:b7:fb: 3b:10:ad:c2:ed:ff:da:74:bb:f4:b7:44:b3:5f:19:1e:d5:d1: 81:b0:9e:7f:aa:2e:fb:61:eb:91:47:7f:50:c7:ae:cb:06:a4: 1e:04:0f:05:23:2d:a4:76:0a:24:13:2c:0e:5b:93:5e:a1:45: 7f:5c:57:03:ff:01:a1:d2:ca:03:7f:b9:3f:78:22:89:2e:a6: 5a:f3:db:fb:18:47:ef:96:0b:82:e8:e1:fb:4c:bd:95:cc:ef: b8:62:c0:a0:be:9e:57:18:e9:3f:60:8e:d0:b7:a6:a6:b7:48: d9:11:32:60:ef:90:59:fe:c7:d7:37:ea:ba:7b:f2:8f:17:40: 1a:fa:c2:aa:2c:07:b0:73:35:22:88:10:12:c5:90:fc:85:73: eb:82:54:4a:dd:c4:50:25:8c:89:f0:06:0d:39:06:cf:bd:64: 34:88:0c:a6 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUaimjeuYAd5J0AyPTtl/58lNlPjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MDIwODQxMThaFw0yNjA1MDEwODQ2MThaMDMxMTAvBgNV BAMTKDVDNzMwQjFDNDhGQzY2MkU2MkVBNTk4NzQ0OUI0RUVBQTFDQzVENTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtaK4svyK8DGqqe/XNxcM1CI8V i+6BO+A3MkAOof7XZWHylS12ICT6R+dsxI3gLv4FWMnhopq5chxTBEVsLL3YTSh5 8Jdt9gOeZtS/dyAqHaXP24zvrWNUsFCQNCFPVd010Vrfev4D3QsckbUmiShBp2mg u46qkEjd66UH4FIhY6WuMlbYPLbv9hK0ekZKNl8tRI9JW2BU4hwXjJk6gYCy5gHY xYa37WGZDlxn980fLdFX4liQybsrv8XGq9u/fG6Vr79l9TAC1FDg/SH8ZlNXXt0f uKMLwLk4SZYN+Q9H9kYrXg3Xd9Y5ePzA6iwe2FdStvbH1Q1uGrBbgXufgCNZAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUXHMLHEj8Zi5i6lmHRJtO6qHMXVQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTczMDgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BTjANBgkqhkiG9w0BAQsFAAOCAQEAnjqJ g7qze6ncTYQgGDJS+9/DB7tXf9CrJAS+J8acvn17HpyrF7LQTNoyEVaoFDtDz2xw WZN+/7BrG1bhbmd0K2png9sxsdgdSAbwKZAN5l9I/l7qWRD6I7f7OxCtwu3/2nS7 9LdEs18ZHtXRgbCef6ou+2HrkUd/UMeuywakHgQPBSMtpHYKJBMsDluTXqFFf1xX A/8BodLKA3+5P3giiS6mWvPb+xhH75YLgujh+0y9lczvuGLAoL6eVxjpP2CO0Lem prdI2REyYO+QWf7H1zfqunvyjxdAGvrCqiwHsHM1IogQEsWQ/IVz64JUSt3EUCWM ifAGDTkGz71kNIgMpg== -----END CERTIFICATE-----Generated at Thu May 8 05:34:55 2025 by rpki-client