$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209686.roa File: AS209686.roa (raw, json) Hash identifier: TzKbv9wlRZoPXo1L3GYaQmvU3rvm40QXIIAesEImxRk= Subject key identifier: 8F:CF:B5:FD:D4:79:1E:26:9B:9C:72:2C:5F:A9:27:E2:B1:CA:58:F8 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 51A1144FCF4EFCD6627C88ADACE60E0758DB981A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209686.roa Signing time: Thu 23 May 2024 11:59:41 +0000 ROA not before: Thu 23 May 2024 11:54:41 +0000 ROA not after: Thu 22 May 2025 11:59:41 +0000 asID: 209686 IP address blocks: 2a05:dfc1:5a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a1:14:4f:cf:4e:fc:d6:62:7c:88:ad:ac:e6:0e:07:58:db:98:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 23 11:54:41 2024 GMT Not After : May 22 11:59:41 2025 GMT Subject: CN=8FCFB5FDD4791E269B9C722C5FA927E2B1CA58F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b5:20:c9:e0:7a:5c:2a:51:c8:9f:27:50:7b: 10:35:e9:97:c6:f4:07:5a:3f:e0:b2:45:89:ee:22: a8:9b:8a:8b:99:c9:a2:a4:c5:e5:ce:e3:15:5e:a9: d6:17:dc:20:fa:03:d2:fe:fc:f3:e7:c1:99:aa:d6: 11:92:ca:3d:c3:05:e1:92:ae:85:94:c3:0f:f5:4e: a6:2d:28:34:04:9c:c5:17:38:d1:97:45:12:30:74: 1a:03:a9:32:5d:1e:26:6d:4a:84:57:ab:18:29:73: 7e:c8:b4:a3:49:95:59:c1:49:8c:ba:bb:19:43:41: 49:9e:96:15:58:df:8d:dc:f2:05:98:d3:d9:29:42: 88:7d:05:26:85:72:78:7d:4d:89:83:bc:9a:09:60: 40:e8:6e:d8:0b:c5:5d:d6:4c:1a:a1:69:ed:da:fe: c4:e4:ce:58:63:b4:ac:ee:6f:6d:e1:cb:06:0d:a9: 3d:44:84:d8:16:ad:90:f9:c0:3f:32:55:de:8c:f0: 83:14:c5:73:c0:6a:09:f8:aa:b2:fb:29:9c:28:0d: aa:32:59:ba:c8:c1:0b:30:1a:f1:0f:09:62:4b:73: bd:a4:22:41:32:7e:44:f1:44:51:c6:d2:9e:fb:dd: 6a:e3:0d:aa:fb:a7:c0:7c:7f:99:9e:44:9b:dc:76: e9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CF:B5:FD:D4:79:1E:26:9B:9C:72:2C:5F:A9:27:E2:B1:CA:58:F8 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209686.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5a00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:12:1a:f3:68:1e:9b:21:ae:b4:b8:ea:5b:bb:b3:ad:c6:ff: db:68:e4:f0:a1:3d:4b:c1:7e:a1:6a:1e:35:3e:68:8f:d3:ed: d0:22:de:5c:a7:24:4f:66:f6:4f:98:de:e8:1f:2f:b7:cd:47: 51:fe:9a:fd:5a:80:1d:c2:77:bb:14:f7:32:2b:21:c8:cd:d2: 44:a0:d4:28:d2:ea:f2:62:16:de:d8:b5:33:2a:78:2a:47:66: 72:92:21:32:94:af:0f:cf:16:54:d3:d8:bf:f1:9a:ac:39:c0: 33:e2:82:c3:ca:20:8f:38:f7:1b:0c:20:d6:77:d0:17:44:0a: 9d:e2:25:56:b2:d7:0f:c1:2b:ce:1e:63:bc:01:27:03:7e:5f: d4:15:ee:f7:48:a0:c1:02:c3:70:d3:76:02:1e:0a:34:ff:0d: b8:1b:d9:62:1f:a1:41:f3:93:5e:a6:1d:3b:e2:90:27:97:46: d0:9b:24:ee:fa:70:8f:09:1e:e1:63:53:5e:ff:de:06:9d:79: 5f:af:03:4f:a7:ff:03:ca:a7:38:82:99:7d:c2:d3:4a:46:61: 96:39:9e:22:3d:0f:e4:5a:8c:03:53:ac:f0:3f:8d:a5:5e:b1: 75:67:de:d0:90:a3:6a:16:bf:39:41:a2:bb:04:13:ca:cc:71: 14:fd:10:06 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUaEUT89O/NZifIitrOYOB1jbmBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MjMxMTU0NDFaFw0yNTA1MjIxMTU5NDFaMDMxMTAvBgNV BAMTKDhGQ0ZCNUZERDQ3OTFFMjY5QjlDNzIyQzVGQTkyN0UyQjFDQTU4RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxtSDJ4HpcKlHInydQexA16ZfG 9AdaP+CyRYnuIqibiouZyaKkxeXO4xVeqdYX3CD6A9L+/PPnwZmq1hGSyj3DBeGS roWUww/1TqYtKDQEnMUXONGXRRIwdBoDqTJdHiZtSoRXqxgpc37ItKNJlVnBSYy6 uxlDQUmelhVY343c8gWY09kpQoh9BSaFcnh9TYmDvJoJYEDobtgLxV3WTBqhae3a /sTkzlhjtKzub23hywYNqT1EhNgWrZD5wD8yVd6M8IMUxXPAagn4qrL7KZwoDaoy WbrIwQswGvEPCWJLc72kIkEyfkTxRFHG0p773WrjDar7p8B8f5meRJvcdum9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUj8+1/dR5HiabnHIsX6kn4rHKWPgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA5Njg2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVowDQYJKoZIhvcNAQELBQADggEBAJ4S GvNoHpshrrS46lu7s63G/9to5PChPUvBfqFqHjU+aI/T7dAi3lynJE9m9k+Y3ugf L7fNR1H+mv1agB3Cd7sU9zIrIcjN0kSg1CjS6vJiFt7YtTMqeCpHZnKSITKUrw/P FlTT2L/xmqw5wDPigsPKII849xsMINZ30BdECp3iJVay1w/BK84eY7wBJwN+X9QV 7vdIoMECw3DTdgIeCjT/Dbgb2WIfoUHzk16mHTvikCeXRtCbJO76cI8JHuFjU17/ 3gadeV+vA0+n/wPKpziCmX3C00pGYZY5niI9D+RajANTrPA/jaVesXVn3tCQo2oW vzlBorsEE8rMcRT9EAY= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org