$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210562.roa File: AS210562.roa (raw, json) Hash identifier: sdzcZJWZOgapOWXromwOXftZEP9JLP0G0tnkFrMfC0g= Subject key identifier: C5:AF:20:09:5D:AD:F2:E7:AD:59:A9:F4:4B:D2:49:96:FB:C8:4F:E6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 33FB455331238500139DBA6CE2A3705C05CE534F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210562.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 210562 IP address blocks: 2a0a:6040:ca00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:fb:45:53:31:23:85:00:13:9d:ba:6c:e2:a3:70:5c:05:ce:53:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=C5AF20095DADF2E7AD59A9F44BD24996FBC84FE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:dc:d3:dd:a6:67:be:23:81:fe:35:19:ee:e3: 7c:e5:62:08:14:6d:b6:ec:3e:d2:46:22:00:3e:66: 8c:d8:ec:b9:a8:4c:90:69:e3:4a:c4:fd:e0:6c:db: 75:cd:ef:3a:34:95:a8:10:29:b9:68:1c:6e:38:f5: 77:f8:4f:bf:ab:ae:19:15:f4:67:81:2d:42:58:3e: 37:97:53:07:bb:fb:6b:91:af:a9:c6:b5:98:d5:86: 5f:8b:c4:0b:96:bf:02:d6:8f:bc:44:ee:64:14:57: 78:09:8f:59:9f:f0:e6:e3:ae:4a:60:bb:83:55:a8: 9c:cd:75:8c:02:3c:97:21:15:5d:a4:57:90:50:87: 7a:f7:f9:87:ee:84:d3:72:33:5c:16:d3:a2:9d:e2: 0e:a0:90:b4:b2:ec:86:a3:ac:57:cc:bf:b1:50:58: ac:93:0c:61:83:12:f9:59:19:63:57:06:9c:29:3e: 81:a0:71:55:99:94:df:a8:f8:05:f4:f2:b9:71:7c: c2:e4:6d:68:91:3a:b8:9b:1e:68:36:72:7d:d0:2a: 0f:63:4b:02:11:a9:d1:fc:53:2c:af:7d:c7:2b:c7: 8c:95:c7:d0:b6:22:99:13:78:67:de:e2:59:08:a6: 7a:79:70:8d:43:6f:43:1e:4f:31:e1:45:d3:8a:e8: 95:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:AF:20:09:5D:AD:F2:E7:AD:59:A9:F4:4B:D2:49:96:FB:C8:4F:E6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210562.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ca00::/40 Signature Algorithm: sha256WithRSAEncryption b1:8c:79:f1:cb:9f:dd:58:1c:e3:ef:19:94:0e:6b:48:d4:0a: e2:c7:e2:47:8e:70:48:15:a7:76:8c:25:d1:b1:5f:01:b2:b8: a3:2c:6f:3c:b2:b4:bf:67:7f:76:76:7c:17:55:7b:58:7a:22: ab:25:6d:bb:13:05:e3:2c:79:b5:ad:20:a8:e6:31:fc:5d:fb: 15:87:35:41:3e:24:e3:22:94:0d:6a:03:38:fa:4a:1b:f6:a9: 25:e0:b1:1a:d8:5c:71:08:6b:5a:4f:a8:d4:ff:40:be:40:7d: a6:82:30:65:8e:e4:6c:23:6d:44:77:11:7e:2d:85:0d:b1:58: f5:2b:9d:59:2a:44:67:d4:a3:9d:e2:0c:18:03:4e:46:52:49: b4:b6:0e:98:c9:33:26:3e:0c:e6:7c:5e:80:1b:c8:1c:f1:9a: 11:37:61:50:d0:13:7a:6a:a5:e8:bb:15:72:76:23:bd:0a:ab: 71:09:69:ad:9d:a3:ed:5a:d0:a8:da:ee:3c:2c:db:33:7d:d4: 2c:6c:ed:8b:c5:86:b0:f3:ed:f0:fa:d2:d5:23:0f:89:df:e8: d0:64:4c:35:df:cf:bc:f1:65:dd:53:ce:37:05:4d:2c:be:ec: 1d:8c:bb:f6:ca:8a:f1:88:9f:54:4a:ba:98:a3:ea:fb:54:93: 28:fe:46:2d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUM/tFUzEjhQATnbps4qNwXAXOU08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKEM1QUYyMDA5NURBREYyRTdBRDU5QTlGNDRCRDI0OTk2RkJDODRGRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp3NPdpme+I4H+NRnu43zlYggU bbbsPtJGIgA+ZozY7LmoTJBp40rE/eBs23XN7zo0lagQKbloHG449Xf4T7+rrhkV 9GeBLUJYPjeXUwe7+2uRr6nGtZjVhl+LxAuWvwLWj7xE7mQUV3gJj1mf8Objrkpg u4NVqJzNdYwCPJchFV2kV5BQh3r3+YfuhNNyM1wW06Kd4g6gkLSy7IajrFfMv7FQ WKyTDGGDEvlZGWNXBpwpPoGgcVWZlN+o+AX08rlxfMLkbWiROribHmg2cn3QKg9j SwIRqdH8Uyyvfccrx4yVx9C2IpkTeGfe4lkIpnp5cI1Db0MeTzHhRdOK6JXJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUxa8gCV2t8uetWan0S9JJlvvIT+YwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNTYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMowDQYJKoZIhvcNAQELBQADggEBALGM efHLn91YHOPvGZQOa0jUCuLH4keOcEgVp3aMJdGxXwGyuKMsbzyytL9nf3Z2fBdV e1h6IqslbbsTBeMsebWtIKjmMfxd+xWHNUE+JOMilA1qAzj6Shv2qSXgsRrYXHEI a1pPqNT/QL5AfaaCMGWO5GwjbUR3EX4thQ2xWPUrnVkqRGfUo53iDBgDTkZSSbS2 DpjJMyY+DOZ8XoAbyBzxmhE3YVDQE3pqpei7FXJ2I70Kq3EJaa2do+1a0Kja7jws 2zN91Cxs7YvFhrDz7fD60tUjD4nf6NBkTDXfz7zxZd1TzjcFTSy+7B2Mu/bKivGI n1RKupij6vtUkyj+Ri0= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org