$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/635C29FF238CC286AC1625A68EFCC04E2E460171.cer File: 635C29FF238CC286AC1625A68EFCC04E2E460171.cer (raw, json) Hash identifier: xf85m6qi1I//9bdTvi6fxYMWfkBA/S/C0BhmilS+VtI= Subject key identifier: 63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 437BE431FA333467DB780FE677540D5151F52D36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Manifest: rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.mft caRepository: rsync://krill.stonham.info/repo/Stonham/1/ Notify URL: https://krill.stonham.uk/rrdp/notification.xml Certificate not before: Thu 19 Oct 2023 23:36:31 +0000 Certificate not after: Thu 17 Oct 2024 23:41:31 +0000 Subordinate resources: IP: 2a05:dfc1:8900::/40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7b:e4:31:fa:33:34:67:db:78:0f:e6:77:54:0d:51:51:f5:2d:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 19 23:36:31 2023 GMT Not After : Oct 17 23:41:31 2024 GMT Subject: CN=635C29FF238CC286AC1625A68EFCC04E2E460171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0e:39:dc:c5:a7:6d:fe:e5:fe:ad:ab:a3:83: 4a:05:7c:6e:96:4f:13:ea:4d:f3:bf:1a:33:19:75: 31:2b:e4:74:f7:72:e3:20:11:10:b9:d4:db:7f:89: 6f:40:54:0d:b6:d6:55:f9:f9:32:45:31:81:11:51: 07:93:19:e9:07:4b:f4:96:2e:74:c4:30:a3:10:84: ec:cf:50:15:fb:5d:b9:a3:4c:7c:4f:29:49:3c:ef: 4e:ed:65:d4:04:95:5f:a6:35:ea:fb:d9:e2:c8:b2: 5b:08:b5:3a:67:cd:fa:0e:f2:d5:6a:9c:1d:b4:e5: 3d:d8:18:cc:07:dc:4f:19:29:ca:b9:7a:d8:3b:83: da:01:d6:91:91:96:f1:c1:56:c3:75:75:35:59:6e: 53:8e:29:e3:09:7b:71:ce:b5:19:bc:4a:da:02:25: b7:8b:6a:0a:5d:69:5e:05:a9:69:7a:b5:6a:03:a2: c3:0d:2c:1f:4e:46:00:2e:9d:aa:49:6f:55:80:56: 02:08:f2:d5:be:15:f1:a8:b6:ee:02:df:95:8d:77: 7d:72:68:7c:ba:b2:18:e4:ce:05:d9:00:02:1b:de: e6:0d:ba:2c:89:95:b6:33:10:62:6f:7e:8b:41:3c: 88:57:e9:8b:0e:9e:88:fb:8a:45:dc:32:5a:d9:73: 85:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: CA Repository - URI:rsync://krill.stonham.info/repo/Stonham/1/ RPKI Manifest - URI:rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.mft RPKI Notify - URI:https://krill.stonham.uk/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8900::/40 Signature Algorithm: sha256WithRSAEncryption 3f:7b:cb:3f:1d:82:6b:92:ee:c3:54:7b:f3:8f:e2:9e:57:b5: 76:ec:83:a7:73:0b:f9:76:e7:9e:5e:40:ba:e3:1a:20:8f:5d: a3:8d:d7:97:e9:03:66:53:92:14:2f:d9:56:e3:09:13:d4:40: d9:2b:50:14:c9:20:56:61:70:7b:51:5c:a1:b1:6c:a3:ce:e4: 68:9c:9c:ef:c3:1d:46:53:db:00:ab:f5:b7:50:97:8c:32:ff: be:ed:f8:74:ac:60:97:7b:3d:12:4e:1d:02:bd:93:a7:0d:92: ff:d8:fb:19:7d:9c:e8:db:ed:4e:8e:09:f5:4a:49:15:23:ff: 3c:53:ed:0d:93:d4:45:89:ea:71:92:c0:e0:51:e7:a5:85:64: 5a:ff:2c:6a:75:a9:75:e5:8c:2a:24:f4:31:8d:0a:a8:f9:f5: 43:84:b5:c3:f3:38:89:2d:0c:ef:b7:c9:d6:f7:64:fe:f6:75: 9e:5e:61:3f:41:6a:a0:25:6b:93:70:ac:22:fa:a4:cc:80:f4: f6:3e:6c:55:90:45:f7:80:e1:2d:69:73:a8:3a:c9:97:be:e6: ae:2f:f5:b4:3c:54:3f:94:3e:41:ae:4a:82:5b:0f:b4:6b:1f: 05:af:58:4e:9e:68:60:ba:e0:60:11:a1:28:0d:e0:44:1e:08: c0:e6:32:b8 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIUQ3vkMfozNGfbeA/md1QNUVH1LTYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMTkyMzM2MzFaFw0yNDEwMTcyMzQxMzFaMDMxMTAvBgNV BAMTKDYzNUMyOUZGMjM4Q0MyODZBQzE2MjVBNjhFRkNDMDRFMkU0NjAxNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtDjncxadt/uX+raujg0oFfG6W TxPqTfO/GjMZdTEr5HT3cuMgERC51Nt/iW9AVA221lX5+TJFMYERUQeTGekHS/SW LnTEMKMQhOzPUBX7XbmjTHxPKUk8707tZdQElV+mNer72eLIslsItTpnzfoO8tVq nB205T3YGMwH3E8ZKcq5etg7g9oB1pGRlvHBVsN1dTVZblOOKeMJe3HOtRm8StoC JbeLagpdaV4FqWl6tWoDosMNLB9ORgAunapJb1WAVgII8tW+FfGotu4C35WNd31y aHy6shjkzgXZAAIb3uYNuiyJlbYzEGJvfotBPIhX6YsOnoj7ikXcMlrZc4WTAgMB AAGjggKUMIICkDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRjXCn/I4zChqwW JaaO/MBOLkYBcTAfBgNVHSMEGDAWgBQONX3aBLgQdiYST1LPwkObdtha+TAOBgNV HQ8BAf8EBAMCAQYwbwYDVR0fBGgwZjBkoGKgYIZecnN5bmM6Ly9jbG91ZGllLXJl cG8ucnBraS5hcHAvcmVwby9DTE9VRElFLVJQS0kvMC8wRTM1N0REQTA0QjgxMDc2 MjYxMjRGNTJDRkMyNDM5Qjc2RDg1QUY5LmNybDCBkwYIKwYBBQUHAQEEgYYwgYMw gYAGCCsGAQUFBzAChnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi8wRTM1N0REQTA0 QjgxMDc2MjYxMjRGNTJDRkMyNDM5Qjc2RDg1QUY5LmNlcjCB6AYIKwYBBQUHAQsE gdswgdgwNgYIKwYBBQUHMAWGKnJzeW5jOi8va3JpbGwuc3RvbmhhbS5pbmZvL3Jl cG8vU3RvbmhhbS8xLzBiBggrBgEFBQcwCoZWcnN5bmM6Ly9rcmlsbC5zdG9uaGFt LmluZm8vcmVwby9TdG9uaGFtLzEvNjM1QzI5RkYyMzhDQzI4NkFDMTYyNUE2OEVG Q0MwNEUyRTQ2MDE3MS5tZnQwOgYIKwYBBQUHMA2GLmh0dHBzOi8va3JpbGwuc3Rv bmhhbS51ay9ycmRwL25vdGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF38GJMA0GCSqG SIb3DQEBCwUAA4IBAQA/e8s/HYJrku7DVHvzj+KeV7V27IOncwv5dueeXkC64xog j12jjdeX6QNmU5IUL9lW4wkT1EDZK1AUySBWYXB7UVyhsWyjzuRonJzvwx1GU9sA q/W3UJeMMv++7fh0rGCXez0STh0CvZOnDZL/2PsZfZzo2+1Ojgn1SkkVI/88U+0N k9RFiepxksDgUeelhWRa/yxqdal15YwqJPQxjQqo+fVDhLXD8ziJLQzvt8nW92T+ 9nWeXmE/QWqgJWuTcKwi+qTMgPT2PmxVkEX3gOEtaXOoOsmXvuauL/W0PFQ/lD5B rkqCWw+0ax8Fr1hOnmhguuBgEaEoDeBEHgjA5jK4 -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org