$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210476.roa File: AS210476.roa (raw, json) Hash identifier: n5z0jgnpRhQVhwZ1N7fp4uM/oiK3IdWv+6SdfxIIEbQ= Subject key identifier: EF:2E:DE:D6:55:92:D0:6C:E5:07:91:A6:5D:1D:E3:30:34:A2:4D:64 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 331C1AB031AD460B0FB065227790DED64325B873 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210476.roa Signing time: Thu 23 May 2024 10:59:40 +0000 ROA not before: Thu 23 May 2024 10:54:40 +0000 ROA not after: Thu 22 May 2025 10:59:40 +0000 asID: 210476 IP address blocks: 2a05:dfc1:5b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Nov 2024 14:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:1c:1a:b0:31:ad:46:0b:0f:b0:65:22:77:90:de:d6:43:25:b8:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 23 10:54:40 2024 GMT Not After : May 22 10:59:40 2025 GMT Subject: CN=EF2EDED65592D06CE50791A65D1DE33034A24D64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:37:93:8d:98:ec:f0:d2:21:d0:5b:fc:02:ef: e8:75:85:fb:ea:2d:be:50:c8:53:4b:ac:c0:07:f0: 61:88:b0:8d:fa:c4:60:6e:1f:95:e1:2b:b2:db:2c: 5d:3a:77:1c:b8:73:72:3b:5e:7c:f6:7b:5e:07:19: 27:b7:5d:17:2f:af:11:b5:0d:c1:37:9c:1e:f8:f4: bc:69:f7:ea:e8:dd:7f:8b:44:39:42:9e:2a:e7:ad: 1e:03:31:f3:44:ba:ec:ef:0e:d6:19:7e:be:85:89: 5e:06:ed:0e:95:c7:91:c5:41:98:cb:b3:6b:72:23: a4:da:56:40:fe:e7:e9:0c:c0:ba:cf:bb:f0:18:b1: 76:a7:3d:52:c5:e4:34:22:a4:71:f7:b4:97:13:82: d9:40:2c:2c:d2:51:cd:28:50:9c:78:67:65:a6:21: 91:e5:7b:e1:50:7b:ad:ab:78:4e:f5:5c:7c:b7:b5: bd:97:1c:80:89:db:64:de:32:06:90:b4:b6:71:72: f5:5c:5a:51:d3:d9:fc:db:05:24:30:8d:76:a0:d6: 19:6b:44:31:77:64:ec:e8:d6:30:36:01:e4:2a:b9: ac:fd:e0:ce:81:6e:20:2c:f3:51:c8:6d:54:03:b8: 06:03:96:5b:94:2c:de:55:42:e9:64:87:77:d4:4b: 89:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:2E:DE:D6:55:92:D0:6C:E5:07:91:A6:5D:1D:E3:30:34:A2:4D:64 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210476.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5b00::/40 Signature Algorithm: sha256WithRSAEncryption 8b:36:00:12:a0:0a:de:92:a3:09:f3:3c:a6:31:e2:2c:66:7f: 4f:26:f2:e5:4e:74:81:79:a6:77:5a:b7:6b:fc:bc:2a:76:8b: 16:cb:29:06:c4:be:5f:a7:97:41:b5:b5:ae:6e:5d:20:db:4e: 00:e8:20:b4:f1:22:bf:d5:38:0e:90:ac:4e:0e:7e:92:a1:6c: 49:39:cb:00:4e:72:53:0d:22:a5:25:12:5a:e9:ef:0c:69:8a: c5:6f:60:2f:83:c5:49:20:8f:9e:4d:02:69:14:9f:16:e5:7d: b2:9d:20:13:93:28:dd:5b:9a:38:12:bc:63:a0:11:b8:bc:85: 6c:1d:ce:0e:de:de:ae:d1:c8:83:b2:98:b8:92:e6:dd:f0:ee: c5:06:ea:4f:da:eb:5c:aa:95:13:ab:f4:50:53:27:d4:09:aa: b0:57:51:8f:54:4a:69:af:a3:d7:ba:3d:c1:64:8c:3c:52:2d: f9:0a:1f:ba:53:d9:3d:4c:ab:75:05:40:47:c3:29:84:01:25: a0:65:f7:4d:fa:57:fb:2a:e3:b6:a3:d5:1e:32:02:81:f0:2b: d1:1a:09:8b:4a:66:f0:22:e6:72:d5:55:8a:2e:6e:0b:5b:10: 1d:b9:4c:79:72:c5:c6:19:7e:89:c6:ae:4c:b7:55:d0:e3:9a: 20:25:87:44 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMxwasDGtRgsPsGUid5De1kMluHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MjMxMDU0NDBaFw0yNTA1MjIxMDU5NDBaMDMxMTAvBgNV BAMTKEVGMkVERUQ2NTU5MkQwNkNFNTA3OTFBNjVEMURFMzMwMzRBMjRENjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSN5ONmOzw0iHQW/wC7+h1hfvq Lb5QyFNLrMAH8GGIsI36xGBuH5XhK7LbLF06dxy4c3I7Xnz2e14HGSe3XRcvrxG1 DcE3nB749Lxp9+ro3X+LRDlCnirnrR4DMfNEuuzvDtYZfr6FiV4G7Q6Vx5HFQZjL s2tyI6TaVkD+5+kMwLrPu/AYsXanPVLF5DQipHH3tJcTgtlALCzSUc0oUJx4Z2Wm IZHle+FQe62reE71XHy3tb2XHICJ22TeMgaQtLZxcvVcWlHT2fzbBSQwjXag1hlr RDF3ZOzo1jA2AeQquaz94M6BbiAs81HIbVQDuAYDlluULN5VQulkh3fUS4nhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7y7e1lWS0GzlB5GmXR3jMDSiTWQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNDc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVswDQYJKoZIhvcNAQELBQADggEBAIs2 ABKgCt6SownzPKYx4ixmf08m8uVOdIF5pndat2v8vCp2ixbLKQbEvl+nl0G1ta5u XSDbTgDoILTxIr/VOA6QrE4OfpKhbEk5ywBOclMNIqUlElrp7wxpisVvYC+DxUkg j55NAmkUnxblfbKdIBOTKN1bmjgSvGOgEbi8hWwdzg7e3q7RyIOymLiS5t3w7sUG 6k/a61yqlROr9FBTJ9QJqrBXUY9USmmvo9e6PcFkjDxSLfkKH7pT2T1Mq3UFQEfD KYQBJaBl9036V/sq47aj1R4yAoHwK9EaCYtKZvAi5nLVVYoubgtbEB25THlyxcYZ fonGrky3VdDjmiAlh0Q= -----END CERTIFICATE-----Generated at Sun Nov 24 02:34:14 2024 by rpki-client on console-fra.rpki-client.org