$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210152.roa File: AS210152.roa (raw, json) Hash identifier: m2L3cVPJAn6MXjUJtw/jQ0bZIDxYpQ7p5ObDN1AKBoI= Subject key identifier: 0E:F1:2D:E5:AE:DA:49:BF:04:D0:5A:68:F8:B5:74:6D:1F:D3:61:1B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 55D679DBFBE479C0AEF90E0D41190347859974A5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210152.roa Signing time: Sun 05 Nov 2023 04:07:06 +0000 ROA not before: Sun 05 Nov 2023 04:02:06 +0000 ROA not after: Sun 03 Nov 2024 04:07:06 +0000 asID: 210152 IP address blocks: 2a0a:6040:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:d6:79:db:fb:e4:79:c0:ae:f9:0e:0d:41:19:03:47:85:99:74:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:06 2023 GMT Not After : Nov 3 04:07:06 2024 GMT Subject: CN=0EF12DE5AEDA49BF04D05A68F8B5746D1FD3611B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:03:a8:20:5f:b9:d0:7d:7d:72:13:22:6f:f6: 4b:2f:82:78:0f:cd:a3:21:a7:45:bb:64:01:e8:69: a6:53:9d:41:3a:6a:85:7f:e0:1d:84:1a:05:f5:60: 6f:f9:10:91:7a:cb:e3:b1:22:94:a0:29:5e:75:10: 71:ea:38:eb:9c:cd:3f:e3:6f:40:84:37:2d:7c:a7: 59:df:ed:14:44:5f:88:d3:7d:4a:95:56:b3:29:ad: c5:e8:04:46:86:da:53:16:f5:47:7c:65:a1:be:c8: 94:ed:0b:23:14:3d:54:a1:7b:df:f1:8d:c9:d1:6a: 37:11:86:06:bf:88:3f:91:b2:08:ae:fa:9e:ad:18: f6:65:8a:da:29:31:25:df:c6:ef:07:f3:24:c1:42: 01:6c:2a:f4:65:d3:25:73:80:cb:0c:b0:e9:63:d9: 90:4c:0f:58:81:9e:a4:15:a0:50:37:b8:1b:46:60: 71:2e:f8:4d:ce:53:1e:e5:0d:6d:ce:89:67:2a:90: aa:b1:be:b5:f5:c9:79:8f:37:85:b0:25:3a:a2:28: 28:f7:d8:be:e4:75:96:63:1b:1d:50:aa:ab:f4:95: 43:8d:64:82:ee:c0:1b:aa:54:67:61:c6:6b:f9:38: 4c:3a:22:2c:80:e2:02:b2:97:c5:ad:c9:e0:5f:33: 81:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F1:2D:E5:AE:DA:49:BF:04:D0:5A:68:F8:B5:74:6D:1F:D3:61:1B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e000::/40 Signature Algorithm: sha256WithRSAEncryption b9:7c:cc:a3:be:f7:6f:42:f2:38:0e:06:f0:1d:4b:c7:fd:5a: 5c:f1:9e:8e:97:42:e4:de:e2:e3:51:14:8c:87:6a:fe:57:ed: ca:87:53:75:75:a9:6e:56:0b:09:96:09:fd:a9:4a:05:a4:fe: 6b:11:d0:26:0e:a4:3b:df:10:63:6b:3d:88:97:5a:57:ac:1a: a1:3d:23:cb:24:00:02:19:5d:9c:2a:92:8e:b4:0b:b3:35:7f: 6f:9b:de:d7:f3:f6:84:18:db:61:62:cf:c8:0a:e3:08:20:16: b6:94:cc:a0:b2:ff:a8:92:72:64:11:de:cd:fa:66:5e:ce:e1: eb:79:9a:48:9e:0b:a8:fd:0c:62:95:9d:ed:56:0c:6b:65:39: 37:5b:66:3b:9b:fc:24:3e:10:84:ed:3c:58:8f:f8:9b:80:63: e7:7e:f1:49:24:b3:85:40:b2:ab:17:85:0a:c6:bf:99:1e:15: 95:83:8d:27:45:66:f2:ec:7a:f0:12:40:b3:06:a9:d7:c1:43: ef:8e:f5:f8:db:68:8d:c8:b8:9e:67:ba:66:21:bb:e0:3c:c8: 01:a2:5d:13:a4:5a:26:a4:6c:a7:24:de:fd:52:24:6f:9c:9a: 9a:b1:3c:b2:16:f2:c6:b7:86:1a:0c:e2:2f:a1:71:46:7b:df: bd:4b:cf:89 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVdZ52/vkecCu+Q4NQRkDR4WZdKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDZaFw0yNDExMDMwNDA3MDZaMDMxMTAvBgNV BAMTKDBFRjEyREU1QUVEQTQ5QkYwNEQwNUE2OEY4QjU3NDZEMUZEMzYxMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2A6ggX7nQfX1yEyJv9ksvgngP zaMhp0W7ZAHoaaZTnUE6aoV/4B2EGgX1YG/5EJF6y+OxIpSgKV51EHHqOOuczT/j b0CENy18p1nf7RREX4jTfUqVVrMprcXoBEaG2lMW9Ud8ZaG+yJTtCyMUPVShe9/x jcnRajcRhga/iD+Rsgiu+p6tGPZlitopMSXfxu8H8yTBQgFsKvRl0yVzgMsMsOlj 2ZBMD1iBnqQVoFA3uBtGYHEu+E3OUx7lDW3OiWcqkKqxvrX1yXmPN4WwJTqiKCj3 2L7kdZZjGx1Qqqv0lUONZILuwBuqVGdhxmv5OEw6IiyA4gKyl8WtyeBfM4H5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUDvEt5a7aSb8E0Fpo+LV0bR/TYRswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwMTUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOAwDQYJKoZIhvcNAQELBQADggEBALl8 zKO+929C8jgOBvAdS8f9Wlzxno6XQuTe4uNRFIyHav5X7cqHU3V1qW5WCwmWCf2p SgWk/msR0CYOpDvfEGNrPYiXWlesGqE9I8skAAIZXZwqko60C7M1f2+b3tfz9oQY 22Fiz8gK4wggFraUzKCy/6iScmQR3s36Zl7O4et5mkieC6j9DGKVne1WDGtlOTdb Zjub/CQ+EITtPFiP+JuAY+d+8Ukks4VAsqsXhQrGv5keFZWDjSdFZvLsevASQLMG qdfBQ++O9fjbaI3IuJ5numYhu+A8yAGiXROkWiakbKck3v1SJG+cmpqxPLIW8sa3 hhoM4i+hcUZ7371Lz4k= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org