$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210667.roa File: AS210667.roa (raw, json) Hash identifier: hJgbuKd5dxNeC/UcM7G0qF1nX5/P9Wn+TNY7RfMg4GE= Subject key identifier: 39:EC:0D:91:6D:EF:4D:ED:14:B6:3B:36:70:86:93:6D:A4:8E:8F:31 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 38BFB9B91F7C96E8AF8C85B1EA7578FD8E4CB304 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210667.roa Signing time: Sun 06 Oct 2024 04:44:56 +0000 ROA not before: Sun 06 Oct 2024 04:39:56 +0000 ROA not after: Sun 05 Oct 2025 04:44:56 +0000 asID: 210667 IP address blocks: 2a0a:6040:5100::/40 maxlen: 48 2a0a:6040:6100::/40 maxlen: 48 2a0a:6040:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:bf:b9:b9:1f:7c:96:e8:af:8c:85:b1:ea:75:78:fd:8e:4c:b3:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:56 2024 GMT Not After : Oct 5 04:44:56 2025 GMT Subject: CN=39EC0D916DEF4DED14B63B367086936DA48E8F31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:36:eb:46:92:9e:c6:66:2d:0d:b9:49:58:ba: 1f:3e:b7:08:5a:8c:30:59:73:bd:7e:90:68:10:96: 76:91:fa:ed:27:35:e0:88:59:ac:0e:14:12:17:45: 90:12:1a:26:6b:f1:99:d3:d5:95:cb:a5:9e:b9:9a: 09:e7:bd:ca:d7:e4:f8:1c:e4:fa:76:08:ab:62:74: 47:b5:e1:8c:fa:7f:af:9c:08:48:b1:68:0b:03:52: 3a:5e:03:c9:2b:95:58:1a:d0:78:3c:c9:b1:9f:86: a7:55:9a:22:c5:f9:6d:1e:f1:3d:de:d4:58:67:d5: 98:48:71:9d:1b:ae:f2:3e:4e:fe:2a:73:41:ea:ca: 65:51:7f:62:14:3d:8b:ba:7f:14:56:d0:8f:28:b8: 3c:22:46:93:98:9b:2e:26:c9:a6:03:af:73:61:ce: 94:91:15:a0:69:e9:c0:1e:3b:e5:be:30:31:fa:fd: d8:f9:04:d2:60:4a:74:34:dc:5c:96:76:36:e9:7c: 7d:ed:95:8e:a6:88:a3:60:26:70:58:ab:0c:8d:9c: 01:f2:78:23:51:1d:35:b9:ad:60:3d:4b:e6:99:7d: c4:fb:19:3a:9d:b4:8b:02:86:fa:c3:31:9d:9f:12: 75:84:9d:5e:8e:cb:b5:ab:3a:78:8a:c3:67:a6:8e: 53:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:EC:0D:91:6D:EF:4D:ED:14:B6:3B:36:70:86:93:6D:A4:8E:8F:31 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5100::/40 2a0a:6040:6100::/40 2a0a:6040:7100::/40 Signature Algorithm: sha256WithRSAEncryption ba:9d:43:55:17:53:89:b5:bb:6e:7e:1f:19:e7:cc:c5:26:a3: bc:a5:55:27:92:ac:16:68:46:92:eb:ba:5c:40:db:cd:a0:d8: 11:0e:21:01:69:93:2b:53:c8:be:ef:36:c7:8a:27:41:3c:bc: b6:d4:5c:ac:7e:10:71:ba:1e:e1:d4:96:51:49:58:2a:24:f0: 4c:ae:44:c0:e5:24:ef:e1:82:71:e4:be:97:fc:de:4b:4b:e5: c4:3f:0e:c2:5b:37:c5:6c:1a:16:d8:f3:6b:f1:c8:ea:e2:51: 51:f2:16:05:87:a7:05:9c:f2:f7:cd:84:55:13:d6:5b:27:8e: 97:ed:78:99:01:86:f5:99:99:ab:6d:20:67:76:c7:be:fa:c3: e6:f8:98:5a:71:19:49:1d:02:3b:09:f9:c6:78:c1:d0:e4:66: 02:32:5e:ee:0d:15:df:77:95:59:5b:80:c0:30:7e:60:b2:68: 8b:55:32:2c:4f:05:2d:bf:ef:0d:6b:5d:3a:dc:fb:e4:b1:57: bb:68:6b:80:12:63:f7:c7:48:d0:c0:63:76:0b:e4:88:36:a6: 88:d9:24:7f:df:b0:fb:a9:2c:ac:5a:4c:b8:f4:da:3f:cf:87: 69:3d:38:ec:40:61:56:da:ad:11:d6:95:a1:17:e9:1c:53:42: dc:a5:9d:7c -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUOL+5uR98luivjIWx6nV4/Y5MswQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTZaFw0yNTEwMDUwNDQ0NTZaMDMxMTAvBgNV BAMTKDM5RUMwRDkxNkRFRjRERUQxNEI2M0IzNjcwODY5MzZEQTQ4RThGMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8NutGkp7GZi0NuUlYuh8+twha jDBZc71+kGgQlnaR+u0nNeCIWawOFBIXRZASGiZr8ZnT1ZXLpZ65mgnnvcrX5Pgc 5Pp2CKtidEe14Yz6f6+cCEixaAsDUjpeA8krlVga0Hg8ybGfhqdVmiLF+W0e8T3e 1Fhn1ZhIcZ0brvI+Tv4qc0HqymVRf2IUPYu6fxRW0I8ouDwiRpOYmy4myaYDr3Nh zpSRFaBp6cAeO+W+MDH6/dj5BNJgSnQ03FyWdjbpfH3tlY6miKNgJnBYqwyNnAHy eCNRHTW5rWA9S+aZfcT7GTqdtIsChvrDMZ2fEnWEnV6Oy7WrOniKw2emjlOZAgMB AAGjggIEMIICADAdBgNVHQ4EFgQUOewNkW3vTe0Utjs2cIaTbaSOjzEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNjY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAAjAYAwYAKgpgQFEDBgAqCmBAYQMGACoKYEBxMA0GCSqG SIb3DQEBCwUAA4IBAQC6nUNVF1OJtbtufh8Z58zFJqO8pVUnkqwWaEaS67pcQNvN oNgRDiEBaZMrU8i+7zbHiidBPLy21FysfhBxuh7h1JZRSVgqJPBMrkTA5STv4YJx 5L6X/N5LS+XEPw7CWzfFbBoW2PNr8cjq4lFR8hYFh6cFnPL3zYRVE9ZbJ46X7XiZ AYb1mZmrbSBndse++sPm+JhacRlJHQI7CfnGeMHQ5GYCMl7uDRXfd5VZW4DAMH5g smiLVTIsTwUtv+8Na1063PvksVe7aGuAEmP3x0jQwGN2C+SINqaI2SR/37D7qSys Wky49No/z4dpPTjsQGFW2q0R1pWhF+kcU0LcpZ18 -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org