$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210152.roa File: AS210152.roa (raw, json) Hash identifier: Cq2UPy5aqahHV4he2OQPOyoqmkgkLQUsKRw27VJ8/3M= Subject key identifier: 02:EE:54:97:78:33:45:BB:77:3E:70:1A:90:C6:70:E2:61:73:78:C2 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 51A07DD560A47F1485636D32CA365D862783AE6B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210152.roa Signing time: Sun 06 Oct 2024 04:45:03 +0000 ROA not before: Sun 06 Oct 2024 04:40:03 +0000 ROA not after: Sun 05 Oct 2025 04:45:03 +0000 asID: 210152 IP address blocks: 2a0a:6040:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a0:7d:d5:60:a4:7f:14:85:63:6d:32:ca:36:5d:86:27:83:ae:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:03 2024 GMT Not After : Oct 5 04:45:03 2025 GMT Subject: CN=02EE5497783345BB773E701A90C670E2617378C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c4:d2:68:13:ab:c3:4f:f1:b5:a7:c7:0f:50: 3d:a3:6f:30:80:e4:9c:a1:f8:6a:eb:5b:e3:43:22: 9b:d0:83:23:08:37:e0:07:a1:aa:24:4b:3c:70:ca: 03:8e:1d:90:1b:bf:55:21:e7:5d:c3:e0:ea:df:6a: 48:b6:65:ae:f3:a4:99:f6:3c:72:a3:2f:65:bd:63: 8c:43:1e:1f:54:8a:61:ae:35:d8:b1:6b:b1:ab:a3: 6c:4e:fa:08:13:f0:62:7a:a0:bb:1c:a6:dd:e1:0c: 50:f8:ef:ea:33:41:f0:64:ed:73:3e:3e:f2:14:cc: 74:e3:87:b2:76:b0:42:44:49:18:02:c1:34:52:46: f6:0e:1e:73:08:e7:e3:b5:b6:0b:7f:b3:51:e3:3f: 31:fc:ff:a5:ee:75:1d:b0:5f:80:cf:67:35:d5:01: 7c:a4:06:66:dd:5e:63:49:84:cf:33:ae:f0:37:cc: 5a:ca:9e:85:73:7d:c3:a7:92:83:f7:71:79:67:f0: af:3d:14:0c:fd:5c:9c:64:b2:dc:df:98:1c:dd:ba: 37:1f:9b:1e:28:1b:e3:0a:66:54:50:7d:ee:2f:ae: 76:84:1c:11:47:18:e1:14:47:2f:14:87:cb:2a:48: 1c:61:66:1f:ca:8b:54:d6:46:00:cb:e0:f6:41:09: aa:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:EE:54:97:78:33:45:BB:77:3E:70:1A:90:C6:70:E2:61:73:78:C2 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e000::/40 Signature Algorithm: sha256WithRSAEncryption 05:83:44:c0:d7:b2:5b:87:25:46:d0:dd:c7:03:90:44:93:93: 91:0d:80:1b:be:9c:6e:a6:88:dc:7b:26:5b:f3:7d:a5:e8:f5: fe:42:13:1c:45:19:8d:97:85:ac:d5:a4:c4:69:d2:24:47:81: 42:e6:d2:97:c0:7d:5b:d0:5e:26:26:df:92:93:9b:a0:62:bb: 0b:d3:f4:99:85:e6:a1:d0:4c:18:c0:cd:0a:d5:03:6e:e1:d1: 02:24:e2:62:0f:68:bc:4f:59:d8:23:71:ec:f7:a2:5b:ac:15: b5:e4:44:0c:67:6c:88:e8:0e:18:61:b3:cf:47:c7:a8:71:fd: 8e:ff:cf:6c:66:36:62:2c:b7:af:2d:68:f0:a7:fb:a4:15:25: bf:2c:b3:7b:fe:70:4f:96:13:a6:ad:72:78:3c:38:e4:eb:19: 01:57:3a:fa:36:b2:a7:e9:03:43:8f:b0:0f:9f:d7:93:5e:0e: 3c:2c:90:c6:76:72:41:6b:18:7f:cc:79:52:a4:bc:24:d1:05: 86:e3:8f:a5:15:a3:d1:24:a2:05:a3:95:91:32:29:65:20:10: 9b:b6:e2:09:ad:9e:51:65:08:6f:7d:3a:44:5d:c1:10:7f:88: 0d:62:87:cd:41:7b:49:77:17:86:f2:60:f3:4e:f4:ee:93:b8: 02:a0:8e:d1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUaB91WCkfxSFY20yyjZdhieDrmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDNaFw0yNTEwMDUwNDQ1MDNaMDMxMTAvBgNV BAMTKDAyRUU1NDk3NzgzMzQ1QkI3NzNFNzAxQTkwQzY3MEUyNjE3Mzc4QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbxNJoE6vDT/G1p8cPUD2jbzCA 5Jyh+GrrW+NDIpvQgyMIN+AHoaokSzxwygOOHZAbv1Uh513D4Orfaki2Za7zpJn2 PHKjL2W9Y4xDHh9UimGuNdixa7Gro2xO+ggT8GJ6oLscpt3hDFD47+ozQfBk7XM+ PvIUzHTjh7J2sEJESRgCwTRSRvYOHnMI5+O1tgt/s1HjPzH8/6XudR2wX4DPZzXV AXykBmbdXmNJhM8zrvA3zFrKnoVzfcOnkoP3cXln8K89FAz9XJxkstzfmBzdujcf mx4oG+MKZlRQfe4vrnaEHBFHGOEURy8Uh8sqSBxhZh/Ki1TWRgDL4PZBCap1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUAu5Ul3gzRbt3PnAakMZw4mFzeMIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwMTUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOAwDQYJKoZIhvcNAQELBQADggEBAAWD RMDXsluHJUbQ3ccDkESTk5ENgBu+nG6miNx7JlvzfaXo9f5CExxFGY2XhazVpMRp 0iRHgULm0pfAfVvQXiYm35KTm6BiuwvT9JmF5qHQTBjAzQrVA27h0QIk4mIPaLxP Wdgjcez3olusFbXkRAxnbIjoDhhhs89Hx6hx/Y7/z2xmNmIst68taPCn+6QVJb8s s3v+cE+WE6atcng8OOTrGQFXOvo2sqfpA0OPsA+f15NeDjwskMZ2ckFrGH/MeVKk vCTRBYbjj6UVo9EkogWjlZEyKWUgEJu24gmtnlFlCG99OkRdwRB/iA1ih81Be0l3 F4byYPNO9O6TuAKgjtE= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org