$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209574.roa File: AS209574.roa (raw, json) Hash identifier: P12Mtht7CmeGLOQ/T/MhiU5T46j5nKriiDg8leXCpKk= Subject key identifier: 2E:2E:7A:B8:F2:A2:E5:12:A4:9D:BF:FA:ED:82:84:5F:29:26:52:6A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 682A80A8DEC3F8F3C49477B06B98F7A33C269E6F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209574.roa Signing time: Wed 26 Jul 2023 06:29:11 +0000 ROA not before: Wed 26 Jul 2023 06:24:11 +0000 ROA not after: Wed 24 Jul 2024 06:29:11 +0000 asID: 209574 IP address blocks: 2a05:dfc1:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:2a:80:a8:de:c3:f8:f3:c4:94:77:b0:6b:98:f7:a3:3c:26:9e:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 26 06:24:11 2023 GMT Not After : Jul 24 06:29:11 2024 GMT Subject: CN=2E2E7AB8F2A2E512A49DBFFAED82845F2926526A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:34:2d:b3:01:66:4e:ca:96:1f:a9:3d:a2:e0: da:c6:80:3f:6e:04:fb:15:96:4b:5f:b9:73:73:70: d5:44:eb:41:2b:38:89:46:da:41:4c:d4:67:46:07: fa:98:6a:ab:54:ad:7a:35:3b:4d:bc:f2:27:ae:3b: 56:36:bf:27:35:c2:fa:d4:63:fc:0c:d0:c5:3c:38: 59:7d:2c:ef:1c:d1:48:d4:f8:9f:2a:46:29:0f:28: e9:7a:27:e2:73:37:dd:c8:35:48:fc:f7:0d:d9:36: 53:22:a8:e0:5c:6b:7f:a6:36:f3:c7:11:78:10:18: 2d:b7:ea:67:a2:be:a7:29:9c:d8:df:b9:a0:8f:94: 95:6e:d2:26:96:15:78:fb:43:34:5f:93:e9:ce:9c: 77:48:64:19:14:69:f6:c1:99:f8:18:50:2a:4f:5f: b4:5a:6a:50:c8:87:df:99:d8:1b:33:4c:85:cc:2f: 61:f0:e8:08:f2:39:f3:cc:30:5f:cf:12:38:68:79: 60:0f:d8:e6:6e:36:48:9e:e9:c1:7b:13:0c:2b:b1: 72:04:9f:2f:e4:af:d6:fd:44:8f:f7:2b:73:3c:db: de:e2:1b:d7:b7:d6:45:d2:18:fa:c1:37:8b:63:8f: 3d:44:83:92:78:93:ba:5c:5a:e8:61:99:82:de:1b: 17:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:2E:7A:B8:F2:A2:E5:12:A4:9D:BF:FA:ED:82:84:5F:29:26:52:6A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209574.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7100::/40 Signature Algorithm: sha256WithRSAEncryption 11:e0:cb:41:69:ae:e8:e9:4a:28:71:33:f5:13:30:d3:39:81: e9:ed:ae:8f:e7:e4:12:c5:f8:30:d2:eb:87:91:7f:63:f1:a5: 67:fe:95:95:02:56:ec:2e:d0:35:91:a5:a2:74:8e:73:70:01: 99:de:9a:23:c3:cd:ed:b6:ed:14:85:e5:69:a0:0e:6c:35:f5: d1:7c:a1:ad:56:59:59:b5:64:82:15:a2:58:9c:0b:d3:10:10: 6e:88:c5:cb:d7:c9:47:50:97:f7:3f:36:72:a6:8f:53:ce:f3: c2:b9:39:84:f3:7d:4f:25:01:2c:ec:43:23:4c:56:c4:db:e0: 2b:2b:20:24:bd:0b:08:84:e9:29:62:fd:d4:d2:d9:f1:6d:a7: 59:60:81:97:b9:d6:d6:f9:40:cc:82:7f:4d:51:75:b1:24:af: f8:d0:18:e3:93:6a:98:f6:91:8e:64:2f:2a:2e:c8:ac:81:8d: c1:ff:1d:7b:12:43:07:1a:44:1d:90:3a:08:43:3f:2c:cd:9b: 87:d9:cf:55:09:63:45:dc:2b:83:d4:40:f1:b3:9b:f2:08:3c: 6f:59:d2:98:28:70:8b:a2:a9:6e:fc:9f:f5:fc:63:3c:58:ad: 6a:60:9a:07:a0:69:58:ce:27:82:79:b6:a3:63:cf:17:86:0a: 8a:a6:b2:2e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaCqAqN7D+PPElHewa5j3ozwmnm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MjYwNjI0MTFaFw0yNDA3MjQwNjI5MTFaMDMxMTAvBgNV BAMTKDJFMkU3QUI4RjJBMkU1MTJBNDlEQkZGQUVEODI4NDVGMjkyNjUyNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcNC2zAWZOypYfqT2i4NrGgD9u BPsVlktfuXNzcNVE60ErOIlG2kFM1GdGB/qYaqtUrXo1O0288ieuO1Y2vyc1wvrU Y/wM0MU8OFl9LO8c0UjU+J8qRikPKOl6J+JzN93INUj89w3ZNlMiqOBca3+mNvPH EXgQGC236meivqcpnNjfuaCPlJVu0iaWFXj7QzRfk+nOnHdIZBkUafbBmfgYUCpP X7RaalDIh9+Z2BszTIXML2Hw6AjyOfPMMF/PEjhoeWAP2OZuNkie6cF7EwwrsXIE ny/kr9b9RI/3K3M8297iG9e31kXSGPrBN4tjjz1Eg5J4k7pcWuhhmYLeGxfNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQULi56uPKi5RKknb/67YKEXykmUmowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA5NTc0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXEwDQYJKoZIhvcNAQELBQADggEBABHg y0FprujpSihxM/UTMNM5gentro/n5BLF+DDS64eRf2PxpWf+lZUCVuwu0DWRpaJ0 jnNwAZnemiPDze227RSF5WmgDmw19dF8oa1WWVm1ZIIVolicC9MQEG6IxcvXyUdQ l/c/NnKmj1PO88K5OYTzfU8lASzsQyNMVsTb4CsrICS9CwiE6Sli/dTS2fFtp1lg gZe51tb5QMyCf01RdbEkr/jQGOOTapj2kY5kLyouyKyBjcH/HXsSQwcaRB2QOghD PyzNm4fZz1UJY0XcK4PUQPGzm/IIPG9Z0pgocIuiqW78n/X8YzxYrWpgmgegaVjO J4J5tqNjzxeGCoqmsi4= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org