$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/635C29FF238CC286AC1625A68EFCC04E2E460171.cer File: 635C29FF238CC286AC1625A68EFCC04E2E460171.cer (raw, json) Hash identifier: lyUnOewF+nlMpdi2qr/MDMRdXrCkN37EM1N9TgxYJ4U= Subject key identifier: 63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6C178246FF585909F7A8D3AB07DACB6470F6D462 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Manifest: rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.mft caRepository: rsync://krill.stonham.info/repo/Stonham/1/ Notify URL: https://krill.stonham.uk/rrdp/notification.xml Certificate not before: Fri 20 Sep 2024 11:07:46 +0000 Certificate not after: Fri 19 Sep 2025 11:12:46 +0000 Subordinate resources: IP: 2a05:dfc1:8900::/40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:17:82:46:ff:58:59:09:f7:a8:d3:ab:07:da:cb:64:70:f6:d4:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 20 11:07:46 2024 GMT Not After : Sep 19 11:12:46 2025 GMT Subject: CN=635C29FF238CC286AC1625A68EFCC04E2E460171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0e:39:dc:c5:a7:6d:fe:e5:fe:ad:ab:a3:83: 4a:05:7c:6e:96:4f:13:ea:4d:f3:bf:1a:33:19:75: 31:2b:e4:74:f7:72:e3:20:11:10:b9:d4:db:7f:89: 6f:40:54:0d:b6:d6:55:f9:f9:32:45:31:81:11:51: 07:93:19:e9:07:4b:f4:96:2e:74:c4:30:a3:10:84: ec:cf:50:15:fb:5d:b9:a3:4c:7c:4f:29:49:3c:ef: 4e:ed:65:d4:04:95:5f:a6:35:ea:fb:d9:e2:c8:b2: 5b:08:b5:3a:67:cd:fa:0e:f2:d5:6a:9c:1d:b4:e5: 3d:d8:18:cc:07:dc:4f:19:29:ca:b9:7a:d8:3b:83: da:01:d6:91:91:96:f1:c1:56:c3:75:75:35:59:6e: 53:8e:29:e3:09:7b:71:ce:b5:19:bc:4a:da:02:25: b7:8b:6a:0a:5d:69:5e:05:a9:69:7a:b5:6a:03:a2: c3:0d:2c:1f:4e:46:00:2e:9d:aa:49:6f:55:80:56: 02:08:f2:d5:be:15:f1:a8:b6:ee:02:df:95:8d:77: 7d:72:68:7c:ba:b2:18:e4:ce:05:d9:00:02:1b:de: e6:0d:ba:2c:89:95:b6:33:10:62:6f:7e:8b:41:3c: 88:57:e9:8b:0e:9e:88:fb:8a:45:dc:32:5a:d9:73: 85:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: CA Repository - URI:rsync://krill.stonham.info/repo/Stonham/1/ RPKI Manifest - URI:rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.mft RPKI Notify - URI:https://krill.stonham.uk/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8900::/40 Signature Algorithm: sha256WithRSAEncryption 3e:1b:71:b6:0f:11:f6:58:65:12:43:6f:58:8e:e3:30:9d:0f: 72:83:52:9d:16:15:05:fc:22:02:f6:2c:04:b4:2e:47:a6:bd: 60:15:ac:65:56:3f:33:4a:68:ae:14:90:d6:63:96:cb:14:58: ee:81:a3:4c:c4:c8:b2:df:a1:35:05:16:86:08:80:76:bb:98: 08:57:07:7f:87:68:42:61:26:c3:9c:8b:ce:a6:83:89:29:10: 68:29:41:dc:02:9f:77:9a:24:d5:b3:e9:4d:0e:51:da:00:f9: 0a:b9:94:22:89:ba:87:31:20:d1:39:44:3f:5d:e7:d1:9b:1e: 8b:89:74:9c:56:fe:16:06:da:19:93:32:1e:52:06:0e:dd:82: 06:92:c9:4c:3a:13:bf:e7:4b:d6:fe:52:c7:d7:1d:2a:09:a5: 3d:50:9a:5f:02:8e:2f:79:b0:c8:e5:30:2e:18:e5:42:b4:44: 6b:0a:6d:64:f6:10:df:de:83:26:3d:1b:db:46:fa:f7:56:ec: d8:61:66:76:a9:72:8c:e1:1f:8e:f0:ee:a0:f6:81:b9:81:c1: 79:9d:bf:78:97:51:fd:02:7f:95:33:f0:5d:75:04:a1:8e:4c: 31:08:f8:52:1a:ba:18:6c:bf:b0:43:4e:81:78:69:1e:2b:66: 3b:69:73:a6 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIUbBeCRv9YWQn3qNOrB9rLZHD21GIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MjAxMTA3NDZaFw0yNTA5MTkxMTEyNDZaMDMxMTAvBgNV BAMTKDYzNUMyOUZGMjM4Q0MyODZBQzE2MjVBNjhFRkNDMDRFMkU0NjAxNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtDjncxadt/uX+raujg0oFfG6W TxPqTfO/GjMZdTEr5HT3cuMgERC51Nt/iW9AVA221lX5+TJFMYERUQeTGekHS/SW LnTEMKMQhOzPUBX7XbmjTHxPKUk8707tZdQElV+mNer72eLIslsItTpnzfoO8tVq nB205T3YGMwH3E8ZKcq5etg7g9oB1pGRlvHBVsN1dTVZblOOKeMJe3HOtRm8StoC JbeLagpdaV4FqWl6tWoDosMNLB9ORgAunapJb1WAVgII8tW+FfGotu4C35WNd31y aHy6shjkzgXZAAIb3uYNuiyJlbYzEGJvfotBPIhX6YsOnoj7ikXcMlrZc4WTAgMB AAGjggKUMIICkDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRjXCn/I4zChqwW JaaO/MBOLkYBcTAfBgNVHSMEGDAWgBQONX3aBLgQdiYST1LPwkObdtha+TAOBgNV HQ8BAf8EBAMCAQYwbwYDVR0fBGgwZjBkoGKgYIZecnN5bmM6Ly9jbG91ZGllLXJl cG8ucnBraS5hcHAvcmVwby9DTE9VRElFLVJQS0kvMC8wRTM1N0REQTA0QjgxMDc2 MjYxMjRGNTJDRkMyNDM5Qjc2RDg1QUY5LmNybDCBkwYIKwYBBQUHAQEEgYYwgYMw gYAGCCsGAQUFBzAChnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi8wRTM1N0REQTA0 QjgxMDc2MjYxMjRGNTJDRkMyNDM5Qjc2RDg1QUY5LmNlcjCB6AYIKwYBBQUHAQsE gdswgdgwNgYIKwYBBQUHMAWGKnJzeW5jOi8va3JpbGwuc3RvbmhhbS5pbmZvL3Jl cG8vU3RvbmhhbS8xLzBiBggrBgEFBQcwCoZWcnN5bmM6Ly9rcmlsbC5zdG9uaGFt LmluZm8vcmVwby9TdG9uaGFtLzEvNjM1QzI5RkYyMzhDQzI4NkFDMTYyNUE2OEVG Q0MwNEUyRTQ2MDE3MS5tZnQwOgYIKwYBBQUHMA2GLmh0dHBzOi8va3JpbGwuc3Rv bmhhbS51ay9ycmRwL25vdGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF38GJMA0GCSqG SIb3DQEBCwUAA4IBAQA+G3G2DxH2WGUSQ29YjuMwnQ9yg1KdFhUF/CIC9iwEtC5H pr1gFaxlVj8zSmiuFJDWY5bLFFjugaNMxMiy36E1BRaGCIB2u5gIVwd/h2hCYSbD nIvOpoOJKRBoKUHcAp93miTVs+lNDlHaAPkKuZQiibqHMSDROUQ/XefRmx6LiXSc Vv4WBtoZkzIeUgYO3YIGkslMOhO/50vW/lLH1x0qCaU9UJpfAo4vebDI5TAuGOVC tERrCm1k9hDf3oMmPRvbRvr3VuzYYWZ2qXKM4R+O8O6g9oG5gcF5nb94l1H9An+V M/BddQShjkwxCPhSGroYbL+wQ06BeGkeK2Y7aXOm -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org