$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210667.roa File: AS210667.roa (raw, json) Hash identifier: glbfr1pf/T7b/+qfukD8eCUKBVZfcmMXOUKXwZ+HfyY= Subject key identifier: 8D:7D:00:4C:3E:CB:18:64:3B:DF:77:25:BE:E1:8A:A2:A4:A4:BC:9C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1C80D280FCEB91DF7BBC1D972A72723ED2E0AA04 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210667.roa Signing time: Sun 05 Nov 2023 04:07:08 +0000 ROA not before: Sun 05 Nov 2023 04:02:08 +0000 ROA not after: Sun 03 Nov 2024 04:07:08 +0000 asID: 210667 IP address blocks: 2a0a:6040:5100::/40 maxlen: 48 2a0a:6040:6100::/40 maxlen: 48 2a0a:6040:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:80:d2:80:fc:eb:91:df:7b:bc:1d:97:2a:72:72:3e:d2:e0:aa:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:08 2023 GMT Not After : Nov 3 04:07:08 2024 GMT Subject: CN=8D7D004C3ECB18643BDF7725BEE18AA2A4A4BC9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:3f:b9:84:f8:37:c7:3c:2a:b7:1d:02:b0:aa: 9c:45:65:b7:f5:60:11:a3:b6:88:13:24:2d:9b:72: 46:60:49:f6:a7:ce:60:be:fc:0d:3a:53:ed:14:3c: a1:0a:66:6a:c5:8f:4f:a3:84:32:cb:40:fb:9e:96: a0:f7:3d:71:30:ad:c0:a7:b5:36:bc:4b:1d:f4:48: a5:7c:7e:ee:dc:55:84:64:d0:80:cb:c8:e6:84:bd: 5d:a5:a1:aa:41:fc:52:03:a7:dc:2d:c2:65:76:88: 32:a1:db:88:9a:cf:7a:d4:96:c7:9b:97:99:55:ad: d4:8b:86:9c:3c:a4:94:28:03:89:1a:6e:86:8b:cf: 28:06:0b:a2:0a:a1:0c:94:7d:2b:cb:ad:d1:7e:2c: 7e:e8:ca:53:0f:2a:a8:e0:e5:a8:02:72:4d:c7:c5: a2:56:fc:8c:a9:11:ab:43:73:20:89:80:b3:1a:25: 98:11:59:39:1d:8a:7f:a9:8c:34:b3:92:82:68:56: b3:31:65:27:02:5f:6c:b1:55:f7:d9:55:c2:4a:c6: b1:10:a6:f3:60:06:77:a9:0a:91:8d:bc:58:3d:9d: 20:84:17:85:ef:63:13:8e:ea:45:36:3e:e0:9c:49: 42:bd:2c:69:41:c6:9f:7b:c4:de:29:67:f8:17:4d: 21:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7D:00:4C:3E:CB:18:64:3B:DF:77:25:BE:E1:8A:A2:A4:A4:BC:9C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5100::/40 2a0a:6040:6100::/40 2a0a:6040:7100::/40 Signature Algorithm: sha256WithRSAEncryption b7:36:62:48:c3:2e:5b:d3:11:88:a2:b6:f2:a7:93:d8:9e:c0: 6d:9d:6c:c7:78:ba:5f:5b:51:52:02:ec:fa:03:d1:23:cc:4e: 2a:90:f1:cf:06:ec:59:83:46:bb:37:25:17:b4:17:f1:05:00: 19:2b:f4:d4:21:d8:d9:db:a5:f6:74:f6:c1:e0:44:81:28:ad: ad:4d:84:bc:27:d6:62:7c:f1:63:7c:ac:6e:e7:24:72:05:d2: af:24:64:cf:fd:4d:2e:34:69:78:f3:8c:ad:cb:cc:d8:3e:60: 7e:fd:b4:d1:d0:fc:27:26:5d:45:73:29:c3:24:04:7c:c1:11: b4:82:93:50:63:97:c3:96:d6:ef:7a:63:a9:59:39:81:a2:74: 84:3a:b5:2a:2a:1c:03:d3:d4:79:43:a2:f3:a3:2d:93:04:04: 7d:02:bf:d5:a3:69:af:37:38:70:e2:49:49:20:16:05:3b:4b: 9b:10:11:79:5a:eb:80:bf:92:cf:20:bc:41:b8:5e:f0:62:40: 04:1e:40:49:7c:17:89:12:3c:cd:d9:5c:c2:b8:3b:f1:bc:2b: 3c:de:49:ef:77:2e:7d:fe:98:2c:96:a7:30:29:b5:20:2b:52: 6d:1a:20:71:d8:75:4f:a6:16:44:7b:fa:9a:b2:9b:17:08:5e: 76:10:95:20 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUHIDSgPzrkd97vB2XKnJyPtLgqgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDhaFw0yNDExMDMwNDA3MDhaMDMxMTAvBgNV BAMTKDhEN0QwMDRDM0VDQjE4NjQzQkRGNzcyNUJFRTE4QUEyQTRBNEJDOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtP7mE+DfHPCq3HQKwqpxFZbf1 YBGjtogTJC2bckZgSfanzmC+/A06U+0UPKEKZmrFj0+jhDLLQPuelqD3PXEwrcCn tTa8Sx30SKV8fu7cVYRk0IDLyOaEvV2loapB/FIDp9wtwmV2iDKh24iaz3rUlseb l5lVrdSLhpw8pJQoA4kaboaLzygGC6IKoQyUfSvLrdF+LH7oylMPKqjg5agCck3H xaJW/IypEatDcyCJgLMaJZgRWTkdin+pjDSzkoJoVrMxZScCX2yxVffZVcJKxrEQ pvNgBnepCpGNvFg9nSCEF4XvYxOO6kU2PuCcSUK9LGlBxp97xN4pZ/gXTSEpAgMB AAGjggIEMIICADAdBgNVHQ4EFgQUjX0ATD7LGGQ733clvuGKoqSkvJwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNjY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAAjAYAwYAKgpgQFEDBgAqCmBAYQMGACoKYEBxMA0GCSqG SIb3DQEBCwUAA4IBAQC3NmJIwy5b0xGIorbyp5PYnsBtnWzHeLpfW1FSAuz6A9Ej zE4qkPHPBuxZg0a7NyUXtBfxBQAZK/TUIdjZ26X2dPbB4ESBKK2tTYS8J9ZifPFj fKxu5yRyBdKvJGTP/U0uNGl484yty8zYPmB+/bTR0PwnJl1FcynDJAR8wRG0gpNQ Y5fDltbvemOpWTmBonSEOrUqKhwD09R5Q6Lzoy2TBAR9Ar/Vo2mvNzhw4klJIBYF O0ubEBF5WuuAv5LPILxBuF7wYkAEHkBJfBeJEjzN2VzCuDvxvCs83knvdy59/pgs lqcwKbUgK1JtGiBx2HVPphZEe/qaspsXCF52EJUg -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org