$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210562.roa File: AS210562.roa (raw, json) Hash identifier: A8RAmDf48O8a4w+LD53Sg0ocQ/x2k0s1w/pzou8DUVw= Subject key identifier: A6:9B:32:10:FB:E1:26:55:3D:A0:00:BF:E2:20:C1:02:28:76:8D:C3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 343A42C967AB2B5E66D78BD7A107809938BF31C1 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210562.roa Signing time: Sun 05 Nov 2023 04:07:10 +0000 ROA not before: Sun 05 Nov 2023 04:02:10 +0000 ROA not after: Sun 03 Nov 2024 04:07:10 +0000 asID: 210562 IP address blocks: 2a0a:6040:ca00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:3a:42:c9:67:ab:2b:5e:66:d7:8b:d7:a1:07:80:99:38:bf:31:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:10 2023 GMT Not After : Nov 3 04:07:10 2024 GMT Subject: CN=A69B3210FBE126553DA000BFE220C10228768DC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2c:a9:45:63:a1:73:4f:90:48:ad:25:e5:ec: 49:9f:29:12:44:de:50:37:81:39:3a:f3:4f:cf:0c: 8a:d4:31:79:a6:7b:f7:ef:6d:91:a5:23:3a:6a:2f: ca:28:02:0a:ea:cb:24:61:56:14:76:47:ee:2d:4d: 64:a6:a4:45:62:67:66:57:03:a0:c8:14:82:90:dc: 2b:9f:55:b2:c8:67:c6:ae:ce:c9:45:3e:fa:3e:36: 15:38:bf:c1:cc:8c:8a:34:2d:60:51:17:90:a7:52: af:d9:e3:ba:79:99:47:c2:3a:80:ae:91:cc:a7:bc: 94:21:a3:d0:82:8c:cb:01:52:15:9e:aa:54:40:5e: 46:2d:db:92:e5:27:ec:33:6a:4d:ec:40:e2:0b:38: 4c:c1:38:e0:bc:5e:75:cb:d8:e3:ac:b3:1f:e0:df: fe:72:2f:e5:30:b1:cb:8f:cb:9e:f9:f1:0a:01:af: 00:0b:45:84:de:a2:d7:84:df:3d:c9:1c:61:a5:1f: a9:86:e7:10:35:bc:b0:94:77:2b:e4:c7:61:0f:7c: 66:e1:0c:63:3a:3b:b5:31:27:c4:81:77:a5:7b:5e: 30:32:98:32:27:ae:2f:1f:75:6f:20:58:88:e6:d3: 72:9e:ba:d7:37:30:ea:7a:5f:60:60:b6:18:d7:60: 3a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9B:32:10:FB:E1:26:55:3D:A0:00:BF:E2:20:C1:02:28:76:8D:C3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210562.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ca00::/40 Signature Algorithm: sha256WithRSAEncryption 57:8f:fb:35:52:a8:3d:d6:d6:fa:d2:87:75:b2:2c:01:23:87: f8:c9:e7:ad:63:58:10:9b:e2:c0:66:15:de:01:59:ac:d0:82: 2d:34:f7:7a:3b:eb:3a:15:bd:19:67:f9:37:92:5e:2e:d6:77: 84:36:65:0d:66:44:74:8b:8d:84:98:01:13:d7:49:78:e1:f0: 5f:33:0b:01:99:c4:37:36:04:1c:48:d3:f0:4c:52:3c:13:be: 0f:05:11:e5:3f:44:db:bf:eb:03:5e:6e:27:a2:c1:49:14:a6: ec:09:ac:e9:dc:10:92:10:35:eb:ed:81:89:9d:50:8b:e0:c2: 82:1e:d4:df:a4:be:41:63:c8:07:56:26:76:94:13:8b:34:8e: 44:a2:bf:4d:f2:6a:9e:d4:18:f8:b3:15:6c:44:b4:7c:52:3b: 2f:36:55:fc:8f:88:f3:1b:bc:be:ea:bf:11:22:32:ed:48:77: 14:fd:7f:80:e2:c8:a7:a6:34:e8:ae:30:4e:ab:80:07:60:21: 8f:2f:b1:39:2c:7e:46:a5:16:b4:e6:85:59:ca:22:04:10:00: d0:21:f0:55:d8:89:a3:10:79:b2:e9:ec:b8:7a:36:35:4a:a4: 0d:45:7f:ed:da:86:95:95:56:e7:40:75:84:b3:f4:7d:1c:67: dc:f2:f6:03 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNDpCyWerK15m14vXoQeAmTi/McEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTBaFw0yNDExMDMwNDA3MTBaMDMxMTAvBgNV BAMTKEE2OUIzMjEwRkJFMTI2NTUzREEwMDBCRkUyMjBDMTAyMjg3NjhEQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJLKlFY6FzT5BIrSXl7EmfKRJE 3lA3gTk680/PDIrUMXmme/fvbZGlIzpqL8ooAgrqyyRhVhR2R+4tTWSmpEViZ2ZX A6DIFIKQ3CufVbLIZ8auzslFPvo+NhU4v8HMjIo0LWBRF5CnUq/Z47p5mUfCOoCu kcynvJQho9CCjMsBUhWeqlRAXkYt25LlJ+wzak3sQOILOEzBOOC8XnXL2OOssx/g 3/5yL+UwscuPy5758QoBrwALRYTeoteE3z3JHGGlH6mG5xA1vLCUdyvkx2EPfGbh DGM6O7UxJ8SBd6V7XjAymDInri8fdW8gWIjm03Keutc3MOp6X2BgthjXYDpPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUppsyEPvhJlU9oAC/4iDBAih2jcMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNTYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMowDQYJKoZIhvcNAQELBQADggEBAFeP +zVSqD3W1vrSh3WyLAEjh/jJ561jWBCb4sBmFd4BWazQgi0093o76zoVvRln+TeS Xi7Wd4Q2ZQ1mRHSLjYSYARPXSXjh8F8zCwGZxDc2BBxI0/BMUjwTvg8FEeU/RNu/ 6wNebieiwUkUpuwJrOncEJIQNevtgYmdUIvgwoIe1N+kvkFjyAdWJnaUE4s0jkSi v03yap7UGPizFWxEtHxSOy82VfyPiPMbvL7qvxEiMu1IdxT9f4DiyKemNOiuME6r gAdgIY8vsTksfkalFrTmhVnKIgQQANAh8FXYiaMQebLp7Lh6NjVKpA1Ff+3ahpWV VudAdYSz9H0cZ9zy9gM= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org