$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210475.roa File: AS210475.roa (raw, json) Hash identifier: TtcRHBUYx8LB/kJDaz8L47SweJZpPwmclkO7FLCeess= Subject key identifier: 7C:02:54:DE:FE:87:A1:BC:D0:2D:17:E9:75:1B:24:8F:33:95:71:5F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3788DBE89D273C0E729D431EB33F975A8B82A913 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210475.roa Signing time: Tue 25 Jul 2023 09:16:37 +0000 ROA not before: Tue 25 Jul 2023 09:11:37 +0000 ROA not after: Tue 23 Jul 2024 09:16:37 +0000 asID: 210475 IP address blocks: 2a05:dfc1:7700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:88:db:e8:9d:27:3c:0e:72:9d:43:1e:b3:3f:97:5a:8b:82:a9:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 25 09:11:37 2023 GMT Not After : Jul 23 09:16:37 2024 GMT Subject: CN=7C0254DEFE87A1BCD02D17E9751B248F3395715F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:08:a7:b6:38:a2:2d:17:5d:52:4f:f6:0d:fc: 35:5f:93:90:ea:c8:b4:f5:46:b4:4b:7f:33:3d:fb: 53:c6:e7:e7:58:8d:40:04:ed:76:23:64:89:19:c6: c3:c0:71:ba:db:4f:8b:62:07:59:04:fd:12:8a:0b: dc:8e:a2:0c:c7:73:52:9a:54:07:c4:10:35:d6:a2: c3:fe:16:7c:53:b0:b1:37:89:4a:10:f7:3b:05:92: 0e:d1:b3:d3:c5:2a:67:06:b2:d9:1d:bb:63:e0:eb: 54:4e:9d:6c:86:ce:37:0e:ed:2b:11:4b:aa:19:f6: e5:2b:3a:0d:5c:dd:d7:e8:ed:8d:36:43:bf:34:bc: 7a:ca:45:80:86:b5:89:4d:d2:a6:3d:46:2c:58:c0: 77:16:03:b1:a6:b8:50:33:32:eb:c7:d4:f2:8e:2e: 44:e8:23:b1:ad:d9:d9:ae:82:7b:fb:a5:07:f9:cb: 02:40:04:4d:0b:16:33:a2:fc:ae:fa:8b:d2:a3:cc: f0:f0:a5:e7:f5:1a:ae:3b:00:47:82:e9:48:c0:f7: d0:c6:95:43:29:57:17:d8:52:8f:5d:bb:8f:3d:54: 03:cf:e7:34:67:d1:e4:cd:04:63:ab:4f:24:3c:2d: 8f:bc:19:04:1c:90:c0:7c:3d:c3:ea:9a:2b:d0:95: ff:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:02:54:DE:FE:87:A1:BC:D0:2D:17:E9:75:1B:24:8F:33:95:71:5F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7700::/40 Signature Algorithm: sha256WithRSAEncryption 03:42:51:a0:49:2d:cd:eb:2b:29:5c:97:35:bc:62:92:ea:70: f0:75:e3:df:94:77:c6:70:dc:e8:53:c2:ca:d9:76:f6:42:cb: f1:07:a6:fe:d1:37:28:13:34:f3:7c:94:97:c5:15:4e:99:45: 77:da:87:ff:b8:7e:bb:95:47:ec:7f:36:c8:a8:2b:77:ee:82: 72:b8:e0:ca:9b:e5:ad:ac:40:b1:15:ae:72:37:03:c2:63:0b: 67:77:94:b0:05:5b:8f:18:f4:45:bc:79:7a:7d:3b:42:99:5c: fb:f2:b3:65:46:a3:46:c9:4f:79:5f:15:39:89:61:7b:f6:7f: 9a:ce:8b:c1:ac:f8:a8:81:19:4f:0c:8b:0b:60:d5:85:8b:fc: 2f:33:ef:87:89:d0:ab:a7:e3:fb:99:75:72:32:d7:fb:d6:21: 2f:38:0c:78:43:40:7a:a9:68:04:e4:27:18:f1:b1:e5:ab:93: db:b2:41:3c:30:7a:a1:83:56:cc:9b:60:d8:cc:40:13:bd:d5: 39:82:34:b5:d2:54:36:b3:9c:18:3a:c7:0a:1f:1e:0b:7f:e7: 0d:49:3a:28:99:19:c1:d1:5d:5a:83:66:bb:3d:0b:be:05:61: 01:9b:8e:74:5b:b2:4b:23:7f:ac:60:d4:de:8d:57:98:7e:2b: e8:d4:4b:c4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUN4jb6J0nPA5ynUMesz+XWouCqRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MjUwOTExMzdaFw0yNDA3MjMwOTE2MzdaMDMxMTAvBgNV BAMTKDdDMDI1NERFRkU4N0ExQkNEMDJEMTdFOTc1MUIyNDhGMzM5NTcxNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXCKe2OKItF11ST/YN/DVfk5Dq yLT1RrRLfzM9+1PG5+dYjUAE7XYjZIkZxsPAcbrbT4tiB1kE/RKKC9yOogzHc1Ka VAfEEDXWosP+FnxTsLE3iUoQ9zsFkg7Rs9PFKmcGstkdu2Pg61ROnWyGzjcO7SsR S6oZ9uUrOg1c3dfo7Y02Q780vHrKRYCGtYlN0qY9RixYwHcWA7GmuFAzMuvH1PKO LkToI7Gt2dmugnv7pQf5ywJABE0LFjOi/K76i9KjzPDwpef1Gq47AEeC6UjA99DG lUMpVxfYUo9du489VAPP5zRn0eTNBGOrTyQ8LY+8GQQckMB8PcPqmivQlf/hAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUfAJU3v6HobzQLRfpdRskjzOVcV8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNDc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXcwDQYJKoZIhvcNAQELBQADggEBAANC UaBJLc3rKylclzW8YpLqcPB149+Ud8Zw3OhTwsrZdvZCy/EHpv7RNygTNPN8lJfF FU6ZRXfah/+4fruVR+x/NsioK3fugnK44Mqb5a2sQLEVrnI3A8JjC2d3lLAFW48Y 9EW8eXp9O0KZXPvys2VGo0bJT3lfFTmJYXv2f5rOi8Gs+KiBGU8Miwtg1YWL/C8z 74eJ0Kun4/uZdXIy1/vWIS84DHhDQHqpaATkJxjxseWrk9uyQTwweqGDVsybYNjM QBO91TmCNLXSVDaznBg6xwofHgt/5w1JOiiZGcHRXVqDZrs9C74FYQGbjnRbsksj f6xg1N6NV5h+K+jUS8Q= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org