$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209652.roa File: AS209652.roa (raw, json) Hash identifier: F4HSrwMZsHhL4tklSmQR0xm9GKhP94H31T76QV4PHrI= Subject key identifier: 30:1B:60:6A:6D:DD:24:38:D7:2B:D7:06:55:1A:62:06:BD:2E:E0:71 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 77F841595991553BCE249DDC126B1649D081B0F9 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209652.roa Signing time: Sun 05 Nov 2023 04:06:57 +0000 ROA not before: Sun 05 Nov 2023 04:01:57 +0000 ROA not after: Sun 03 Nov 2024 04:06:57 +0000 asID: 209652 IP address blocks: 2a0a:6040:2400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f8:41:59:59:91:55:3b:ce:24:9d:dc:12:6b:16:49:d0:81:b0:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:57 2023 GMT Not After : Nov 3 04:06:57 2024 GMT Subject: CN=301B606A6DDD2438D72BD706551A6206BD2EE071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4e:15:4b:2d:c4:1d:1f:7a:69:40:5e:13:6c: ae:43:0d:09:74:41:89:cd:77:25:d7:9e:59:7d:2f: 0b:70:2f:c0:ed:51:68:6e:8f:03:57:db:73:51:bc: 6c:8c:df:98:42:cf:06:64:6c:c2:5b:6d:a4:e8:fb: 0f:f5:22:10:78:45:c7:e9:16:4e:52:e7:11:50:6f: ba:6b:6f:a6:80:6f:59:3f:60:fc:74:2c:44:fe:41: b4:67:b2:6e:a1:e3:e7:ec:0a:71:36:bb:e8:57:cb: 92:9d:3d:51:4f:94:7e:c7:13:0d:fd:35:f9:e7:6b: b9:ce:8a:06:c5:4b:52:58:42:7e:d9:bd:17:46:d8: 5b:26:0a:c2:05:50:36:38:fd:80:4c:66:86:37:e9: 47:81:d7:ef:4f:af:71:4a:54:73:3a:df:b8:e6:1b: f2:20:df:da:44:2d:1b:3f:a3:89:2d:a2:f8:a5:71: 4c:10:f6:13:c3:29:0c:1b:3b:ac:4f:3c:ec:57:b6: 46:d1:d2:c8:a0:c3:15:04:76:a1:6c:a2:2e:07:f7: 5e:90:1a:08:66:e8:cd:fe:ed:8d:ad:08:32:c3:64: e5:9a:c8:e5:88:15:6e:87:0b:05:64:ce:54:a2:6b: 44:45:a4:75:07:db:1e:98:19:48:74:b4:6f:ed:02: 79:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1B:60:6A:6D:DD:24:38:D7:2B:D7:06:55:1A:62:06:BD:2E:E0:71 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209652.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2400::/40 Signature Algorithm: sha256WithRSAEncryption 4e:00:e4:fe:b5:fb:07:99:c1:16:76:72:d0:7d:c5:4b:23:28: b4:b2:6e:2a:9f:64:0e:e1:f7:5f:5e:1f:4f:40:38:d5:83:f4: e1:6d:db:e9:8d:9e:4d:0a:d0:89:8b:7b:58:25:ac:6c:30:d4: a5:3a:a6:07:57:05:94:8e:16:29:ed:7d:28:75:58:85:9a:3b: 2c:fa:20:3d:bf:9e:4b:38:62:df:f0:95:21:ad:13:8b:e6:39: 7e:69:c8:ae:db:52:ac:8b:2d:33:f9:7a:48:e8:70:83:f0:97: f4:b3:a8:e8:ce:2e:a5:84:44:04:d4:6d:05:0a:e5:87:05:7f: 54:aa:46:c5:2a:92:45:a9:30:1b:c6:88:4b:bf:75:1a:6d:ac: 1f:e7:d5:57:7b:e0:bc:2c:94:8a:14:16:9d:ab:09:80:64:cd: 44:4d:22:cd:08:c9:ce:72:27:ea:da:a1:25:bd:22:36:c2:6e: c8:b9:6b:23:28:0e:2e:e3:c8:53:65:2e:16:e9:e5:e0:b7:ac: 23:38:9e:3d:3e:d8:7a:b1:0c:7b:e8:76:57:ec:dc:03:bd:64: fd:91:15:cd:4a:fa:4c:76:df:94:20:3d:0c:75:86:17:05:06: 93:2a:48:ad:36:e9:bd:af:b4:9d:e0:7d:f6:eb:46:38:65:1a: d8:7a:01:72 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd/hBWVmRVTvOJJ3cEmsWSdCBsPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNTdaFw0yNDExMDMwNDA2NTdaMDMxMTAvBgNV BAMTKDMwMUI2MDZBNkRERDI0MzhENzJCRDcwNjU1MUE2MjA2QkQyRUUwNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRThVLLcQdH3ppQF4TbK5DDQl0 QYnNdyXXnll9LwtwL8DtUWhujwNX23NRvGyM35hCzwZkbMJbbaTo+w/1IhB4Rcfp Fk5S5xFQb7prb6aAb1k/YPx0LET+QbRnsm6h4+fsCnE2u+hXy5KdPVFPlH7HEw39 Nfnna7nOigbFS1JYQn7ZvRdG2FsmCsIFUDY4/YBMZoY36UeB1+9Pr3FKVHM637jm G/Ig39pELRs/o4ktovilcUwQ9hPDKQwbO6xPPOxXtkbR0sigwxUEdqFsoi4H916Q Gghm6M3+7Y2tCDLDZOWayOWIFW6HCwVkzlSia0RFpHUH2x6YGUh0tG/tAnlFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUMBtgam3dJDjXK9cGVRpiBr0u4HEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA5NjUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCQwDQYJKoZIhvcNAQELBQADggEBAE4A 5P61+weZwRZ2ctB9xUsjKLSybiqfZA7h919eH09AONWD9OFt2+mNnk0K0ImLe1gl rGww1KU6pgdXBZSOFintfSh1WIWaOyz6ID2/nks4Yt/wlSGtE4vmOX5pyK7bUqyL LTP5ekjocIPwl/SzqOjOLqWERATUbQUK5YcFf1SqRsUqkkWpMBvGiEu/dRptrB/n 1Vd74LwslIoUFp2rCYBkzURNIs0Iyc5yJ+raoSW9IjbCbsi5ayMoDi7jyFNlLhbp 5eC3rCM4nj0+2HqxDHvodlfs3AO9ZP2RFc1K+kx235QgPQx1hhcFBpMqSK026b2v tJ3gffbrRjhlGth6AXI= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org