$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210476.roa File: AS210476.roa (raw, json) Hash identifier: fB5qPGSpGzuz57MfR93SfilUiGFj5bWRXWOPUXFOppk= Subject key identifier: 85:35:1B:16:8F:33:A5:A6:A1:10:CE:AA:FC:13:58:2C:39:EF:A7:CA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 45EAEC8F92866A78B28D220494C7AF392C4EB2B0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210476.roa Signing time: Thu 22 Jun 2023 10:01:02 +0000 ROA not before: Thu 22 Jun 2023 09:56:02 +0000 ROA not after: Thu 20 Jun 2024 10:01:02 +0000 asID: 210476 IP address blocks: 2a05:dfc1:5b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:ea:ec:8f:92:86:6a:78:b2:8d:22:04:94:c7:af:39:2c:4e:b2:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 22 09:56:02 2023 GMT Not After : Jun 20 10:01:02 2024 GMT Subject: CN=85351B168F33A5A6A110CEAAFC13582C39EFA7CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:75:23:2d:1a:1c:fb:d2:45:4b:48:ab:52:00: b9:61:66:97:64:5e:4c:69:f6:85:d1:f5:4f:a5:95: 94:ac:42:41:47:87:9c:e8:27:01:5c:ee:cd:b6:7b: f4:00:7d:43:20:66:ba:24:37:1d:63:cc:ea:6b:c7: 21:6a:e2:94:18:92:53:ca:d6:c0:4d:3f:32:12:a0: c5:54:08:02:5f:9b:44:bc:91:14:93:53:ab:4e:e6: 86:e7:a7:42:7a:8f:74:bd:a4:9c:b2:0e:b5:02:4b: c7:d2:6b:8e:56:c9:76:d4:f4:4b:93:34:5f:da:e2: 2a:48:25:e9:26:ae:ef:bc:6d:47:61:99:59:65:91: 01:4b:aa:79:1d:fa:c7:25:83:a9:9f:63:3a:9d:15: 38:b3:05:08:c7:81:37:96:96:c5:e2:64:a6:e1:bd: 49:1c:f9:b0:dd:c7:9b:c1:4e:3c:8e:7a:71:09:dd: 2d:57:51:40:30:5c:c5:23:d8:f8:1c:bf:5b:51:a6: 99:46:6c:ac:64:7e:34:91:28:5c:35:52:a0:20:d8: 78:6c:5a:b3:61:b8:2f:45:37:78:4f:4f:bc:76:13: 9b:88:f7:74:36:49:1a:07:bd:a9:b0:e7:69:50:e2: d4:8d:ef:2b:fa:61:f2:a4:8b:f5:59:37:f3:db:7b: dc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:35:1B:16:8F:33:A5:A6:A1:10:CE:AA:FC:13:58:2C:39:EF:A7:CA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210476.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5b00::/40 Signature Algorithm: sha256WithRSAEncryption 5d:ab:ee:80:97:40:e0:17:19:2f:f3:66:09:c3:d7:15:59:4a: 27:82:47:f8:54:b8:8f:ad:d3:4c:df:f3:c8:ed:5b:5b:59:b7: 56:71:03:da:bb:02:51:24:ad:c1:82:7d:d3:47:2b:87:1e:db: 09:10:1a:ab:15:20:ae:6a:44:68:79:88:ca:d4:43:b0:1a:e4: 05:f3:bc:27:94:02:6d:76:30:92:82:2a:0d:11:1c:0c:bd:33: f2:f2:41:7d:f3:8f:6d:17:f4:05:d4:d4:8e:c1:69:31:46:b2: 72:99:da:bd:4d:32:b8:fa:23:b0:5b:4b:f0:2c:78:01:18:36: 95:4c:e4:e0:e5:11:58:b6:23:9a:9b:c0:59:f7:54:91:30:bf: 37:7b:b9:e7:ae:ad:09:f2:b0:27:81:0d:0f:f5:01:d4:99:77: c6:0e:81:9e:fd:24:01:44:4f:eb:e6:46:52:99:ee:17:58:25: 4d:22:e4:3c:a6:b0:1f:1e:4f:69:1f:20:bc:47:84:4e:7a:f2: 4e:6c:8e:a5:56:0d:db:d6:5d:a8:70:a4:e8:fa:55:26:80:38: 68:76:8b:be:23:4b:80:52:4e:30:f9:8c:8a:ab:76:cf:68:bf: d7:66:66:28:8b:98:cd:d8:b4:e5:91:ee:7d:51:2d:0b:91:2d: 04:25:cb:25 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURersj5KGaniyjSIElMevOSxOsrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA2MjIwOTU2MDJaFw0yNDA2MjAxMDAxMDJaMDMxMTAvBgNV BAMTKDg1MzUxQjE2OEYzM0E1QTZBMTEwQ0VBQUZDMTM1ODJDMzlFRkE3Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmdSMtGhz70kVLSKtSALlhZpdk Xkxp9oXR9U+llZSsQkFHh5zoJwFc7s22e/QAfUMgZrokNx1jzOprxyFq4pQYklPK 1sBNPzISoMVUCAJfm0S8kRSTU6tO5obnp0J6j3S9pJyyDrUCS8fSa45WyXbU9EuT NF/a4ipIJekmru+8bUdhmVllkQFLqnkd+sclg6mfYzqdFTizBQjHgTeWlsXiZKbh vUkc+bDdx5vBTjyOenEJ3S1XUUAwXMUj2Pgcv1tRpplGbKxkfjSRKFw1UqAg2Hhs WrNhuC9FN3hPT7x2E5uI93Q2SRoHvamw52lQ4tSN7yv6YfKki/VZN/Pbe9yrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhTUbFo8zpaahEM6q/BNYLDnvp8owHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNDc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVswDQYJKoZIhvcNAQELBQADggEBAF2r 7oCXQOAXGS/zZgnD1xVZSieCR/hUuI+t00zf88jtW1tZt1ZxA9q7AlEkrcGCfdNH K4ce2wkQGqsVIK5qRGh5iMrUQ7Aa5AXzvCeUAm12MJKCKg0RHAy9M/LyQX3zj20X 9AXU1I7BaTFGsnKZ2r1NMrj6I7BbS/AseAEYNpVM5ODlEVi2I5qbwFn3VJEwvzd7 ueeurQnysCeBDQ/1AdSZd8YOgZ79JAFET+vmRlKZ7hdYJU0i5DymsB8eT2kfILxH hE568k5sjqVWDdvWXahwpOj6VSaAOGh2i74jS4BSTjD5jIqrds9ov9dmZiiLmM3Y tOWR7n1RLQuRLQQlyyU= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org