$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210475.roa File: AS210475.roa (raw, json) Hash identifier: urojgtyg1sA5uOoe/uXxBfXMyga3ewXQGea5qNaV0Zo= Subject key identifier: 9F:6F:95:40:D4:02:CB:6F:97:5A:6E:7E:ED:F0:3B:A8:8D:4B:FA:5F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 44B48C78D45325197F40DD1832216F936E68F929 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210475.roa Signing time: Tue 25 Jun 2024 10:00:24 +0000 ROA not before: Tue 25 Jun 2024 09:55:24 +0000 ROA not after: Tue 24 Jun 2025 10:00:24 +0000 asID: 210475 IP address blocks: 2a05:dfc1:7700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:b4:8c:78:d4:53:25:19:7f:40:dd:18:32:21:6f:93:6e:68:f9:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 25 09:55:24 2024 GMT Not After : Jun 24 10:00:24 2025 GMT Subject: CN=9F6F9540D402CB6F975A6E7EEDF03BA88D4BFA5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4e:a1:38:42:a3:f3:12:8a:e1:e8:bc:a3:d2: 94:76:40:ae:65:dd:54:34:4b:43:3d:35:e0:4a:9f: b5:37:b5:a2:38:b7:fd:f1:bd:dc:7c:5e:fb:a2:fb: 7d:d2:2f:eb:4e:ec:20:48:0a:a1:45:22:b1:a1:6a: 3f:b9:d5:0d:81:88:d1:95:29:10:29:24:71:ef:31: 65:fc:f5:cd:52:db:03:ca:35:ad:59:57:90:97:64: 47:f7:3e:86:85:78:ee:f6:20:49:2c:41:99:8c:31: 40:10:79:71:a7:8a:3f:75:2e:2d:4a:fb:be:b1:a9: 16:fd:3f:23:4a:93:18:d6:3a:a7:c6:78:b1:30:e9: 6e:4a:a8:96:97:be:a2:80:77:ab:29:4a:19:83:c4: 58:3e:2f:d6:c0:12:4f:6f:52:80:fd:11:29:e6:fd: ec:17:24:70:bf:9f:e1:ad:05:52:d6:0e:20:62:14: 44:98:b0:b3:c6:1f:4c:17:38:6d:0d:06:39:41:fc: 3f:46:6f:42:fc:61:dc:2a:69:f2:f1:64:44:f9:d7: 6c:d9:4b:e4:ce:f4:d9:bc:f5:e1:e6:fc:19:f3:3f: 2b:d4:a5:47:4b:01:f1:21:d3:03:1a:6a:09:71:aa: 18:08:ba:72:77:e5:26:06:9c:72:0e:00:21:50:31: b5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:6F:95:40:D4:02:CB:6F:97:5A:6E:7E:ED:F0:3B:A8:8D:4B:FA:5F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7700::/40 Signature Algorithm: sha256WithRSAEncryption 9b:0f:a7:57:71:6d:5a:a2:b8:df:22:cb:b5:6c:c9:46:b3:78: d6:88:1a:22:a0:b1:f5:ce:cf:19:60:de:97:c1:ca:6f:d2:8b: 96:fa:d3:63:c1:3c:7d:dc:1b:9e:37:01:69:b5:20:8e:8a:f2: 82:c5:43:e6:28:06:26:56:e0:3d:1d:7e:89:14:b3:98:c4:96: 49:43:20:31:9a:34:e1:96:d8:38:e5:c4:4a:e8:c1:a5:ce:d6: 4f:23:99:95:0d:d4:e6:fe:66:86:ee:f3:97:2b:4c:b4:07:a3: 24:74:b4:00:4f:2e:26:9f:cb:2e:bd:dc:d6:f4:38:d9:fa:fe: c9:b1:2c:f4:7c:48:f4:de:b5:e0:17:da:17:7d:32:e5:03:9c: 02:8d:d8:d9:d4:97:a3:6e:56:b4:1d:fb:f4:79:78:74:e1:e4: 13:60:96:65:da:78:b6:c0:0a:28:44:d9:1c:a3:1b:89:60:22: 75:36:4b:9a:4a:15:f0:37:5a:df:80:5a:22:51:62:9b:58:a4: 01:80:fb:7a:9f:b4:8c:c2:32:26:38:ec:d9:7d:48:9b:e5:7d: 8a:9d:2d:b0:9d:8b:29:bf:46:f9:6a:2f:dc:34:ac:ba:95:c0: ed:96:bc:7f:a6:91:7c:9a:42:26:01:08:6b:fb:1d:92:65:17: 3e:28:8f:d3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURLSMeNRTJRl/QN0YMiFvk25o+SkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MjUwOTU1MjRaFw0yNTA2MjQxMDAwMjRaMDMxMTAvBgNV BAMTKDlGNkY5NTQwRDQwMkNCNkY5NzVBNkU3RUVERjAzQkE4OEQ0QkZBNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyTqE4QqPzEorh6Lyj0pR2QK5l 3VQ0S0M9NeBKn7U3taI4t/3xvdx8Xvui+33SL+tO7CBICqFFIrGhaj+51Q2BiNGV KRApJHHvMWX89c1S2wPKNa1ZV5CXZEf3PoaFeO72IEksQZmMMUAQeXGnij91Li1K +76xqRb9PyNKkxjWOqfGeLEw6W5KqJaXvqKAd6spShmDxFg+L9bAEk9vUoD9ESnm /ewXJHC/n+GtBVLWDiBiFESYsLPGH0wXOG0NBjlB/D9Gb0L8YdwqafLxZET512zZ S+TO9Nm89eHm/BnzPyvUpUdLAfEh0wMaaglxqhgIunJ35SYGnHIOACFQMbVZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUn2+VQNQCy2+XWm5+7fA7qI1L+l8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNDc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXcwDQYJKoZIhvcNAQELBQADggEBAJsP p1dxbVqiuN8iy7VsyUazeNaIGiKgsfXOzxlg3pfBym/Si5b602PBPH3cG543AWm1 II6K8oLFQ+YoBiZW4D0dfokUs5jElklDIDGaNOGW2DjlxErowaXO1k8jmZUN1Ob+ Zobu85crTLQHoyR0tABPLiafyy693Nb0ONn6/smxLPR8SPTeteAX2hd9MuUDnAKN 2NnUl6NuVrQd+/R5eHTh5BNglmXaeLbACihE2RyjG4lgInU2S5pKFfA3Wt+AWiJR YptYpAGA+3qftIzCMiY47Nl9SJvlfYqdLbCdiym/RvlqL9w0rLqVwO2WvH+mkXya QiYBCGv7HZJlFz4oj9M= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org