$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209686.roa File: AS209686.roa (raw, json) Hash identifier: Ts0PkNeY1pfFG4ePZVueod1vbKHK+4DxlKM1dDKZ6xE= Subject key identifier: 6E:7B:AA:EF:65:28:F4:6E:A7:C5:DB:1C:3B:C9:0D:29:E2:0B:58:D6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 57501635CEBD74BA6188F1EDA31ED3F594D931C5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209686.roa Signing time: Thu 22 Jun 2023 11:29:03 +0000 ROA not before: Thu 22 Jun 2023 11:24:03 +0000 ROA not after: Thu 20 Jun 2024 11:29:03 +0000 asID: 209686 IP address blocks: 2a05:dfc1:5a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:50:16:35:ce:bd:74:ba:61:88:f1:ed:a3:1e:d3:f5:94:d9:31:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 22 11:24:03 2023 GMT Not After : Jun 20 11:29:03 2024 GMT Subject: CN=6E7BAAEF6528F46EA7C5DB1C3BC90D29E20B58D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7a:c9:27:fa:8c:8a:a5:7c:e0:c2:9a:e9:24: c8:c9:72:45:fe:dc:19:b1:7e:d9:03:df:e9:70:93: e9:8d:74:d8:b5:6a:0f:87:4e:96:59:bc:93:22:da: c0:22:a2:ef:2c:70:5a:d7:65:4c:5f:b1:62:74:03: 28:4a:a2:2d:22:8c:f4:33:1c:1a:ba:4a:67:95:79: e3:a7:b3:4d:a3:79:71:1e:9f:ad:69:91:65:da:a2: e0:02:4b:c0:b9:14:b8:80:b4:4a:3f:6b:9b:23:52: cd:75:df:e7:cd:72:ef:38:90:ea:cf:e8:2f:f8:a1: 82:70:d1:ab:2d:50:f6:14:32:c8:bb:87:27:55:29: b2:55:60:70:64:49:d3:07:5f:a8:01:5a:9b:dc:2f: 09:61:65:a3:f9:75:fd:64:ad:61:e6:dc:ab:9b:86: 17:22:e4:f0:7b:a3:68:ea:16:08:c2:06:62:a2:6e: c1:c7:bc:00:ad:d7:86:5f:5d:87:57:96:66:aa:b0: c9:4d:bf:c9:7f:29:1f:40:a5:59:8f:98:ca:aa:4e: c7:48:3d:e9:ee:76:2e:ab:55:89:46:22:f6:be:46: db:33:c7:2f:0d:f7:fa:80:59:5e:1a:29:06:10:63: 0f:97:d8:73:35:2a:b8:78:1a:0a:40:c6:e1:b8:09: 76:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:7B:AA:EF:65:28:F4:6E:A7:C5:DB:1C:3B:C9:0D:29:E2:0B:58:D6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209686.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5a00::/40 Signature Algorithm: sha256WithRSAEncryption 9c:f5:8a:95:ed:f0:3b:2e:79:5e:a3:1d:de:3c:0e:08:f8:5b: 17:bf:1a:fa:1b:e5:78:a7:65:4f:a5:32:14:9d:50:8d:af:80: e1:13:53:c7:ae:9b:fb:a9:64:18:27:c0:80:27:bb:e8:64:de: c8:96:54:9d:98:41:49:08:ab:58:21:90:bb:e8:a2:55:c5:6e: 81:39:27:c1:83:dd:6d:47:ce:7f:ea:e8:b5:f3:c6:fc:5c:ee: a5:2d:9e:fc:2a:0a:97:19:c7:28:2a:3d:f4:c4:22:10:29:bf: 3a:99:72:09:e4:af:c5:d5:f2:06:15:9e:c2:30:94:1d:27:62: 5c:dc:ea:e8:d8:47:af:dc:3e:bb:04:74:15:16:0f:bc:0e:6f: e9:b4:b3:a3:90:2b:7f:25:c5:9b:ce:71:b8:66:d4:67:a5:d7: 0d:1e:5b:a4:35:23:07:9a:bc:b4:6b:30:55:99:07:96:77:e3: 90:32:2f:06:64:b7:14:31:d1:e3:ea:0e:e3:2b:12:96:f3:d8: 11:be:7a:98:9c:b7:df:fb:80:67:f7:46:c7:90:14:ff:e3:47: 9f:9c:db:7a:ba:09:5d:ab:53:e5:23:c0:7c:ff:51:4a:bf:e2: 75:40:52:72:46:b1:80:ae:75:98:2b:72:53:5b:d9:4b:5e:f8: 9f:74:3d:ea -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUV1AWNc69dLphiPHtox7T9ZTZMcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA2MjIxMTI0MDNaFw0yNDA2MjAxMTI5MDNaMDMxMTAvBgNV BAMTKDZFN0JBQUVGNjUyOEY0NkVBN0M1REIxQzNCQzkwRDI5RTIwQjU4RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSeskn+oyKpXzgwprpJMjJckX+ 3BmxftkD3+lwk+mNdNi1ag+HTpZZvJMi2sAiou8scFrXZUxfsWJ0AyhKoi0ijPQz HBq6SmeVeeOns02jeXEen61pkWXaouACS8C5FLiAtEo/a5sjUs113+fNcu84kOrP 6C/4oYJw0astUPYUMsi7hydVKbJVYHBkSdMHX6gBWpvcLwlhZaP5df1krWHm3Kub hhci5PB7o2jqFgjCBmKibsHHvACt14ZfXYdXlmaqsMlNv8l/KR9ApVmPmMqqTsdI Penudi6rVYlGIva+Rtszxy8N9/qAWV4aKQYQYw+X2HM1Krh4GgpAxuG4CXbdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUbnuq72Uo9G6nxdscO8kNKeILWNYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA5Njg2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVowDQYJKoZIhvcNAQELBQADggEBAJz1 ipXt8DsueV6jHd48Dgj4Wxe/Gvob5XinZU+lMhSdUI2vgOETU8eum/upZBgnwIAn u+hk3siWVJ2YQUkIq1ghkLvoolXFboE5J8GD3W1Hzn/q6LXzxvxc7qUtnvwqCpcZ xygqPfTEIhApvzqZcgnkr8XV8gYVnsIwlB0nYlzc6ujYR6/cPrsEdBUWD7wOb+m0 s6OQK38lxZvOcbhm1Gel1w0eW6Q1IweavLRrMFWZB5Z345AyLwZktxQx0ePqDuMr Epbz2BG+epict9/7gGf3RseQFP/jR5+c23q6CV2rU+UjwHz/UUq/4nVAUnJGsYCu dZgrclNb2Ute+J90Peo= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org