$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210738.roa File: AS210738.roa (raw, json) Hash identifier: hvy5q9bxeUOJ4K5S039FtOPMVJqCxsn4AQvzfx61zUo= Subject key identifier: D0:CE:FC:F8:EE:B6:B2:FE:08:64:10:BA:D0:03:64:4B:66:E1:F6:C3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 18B13ABB03224D3CF425BED489C1F853B9E0AFDB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210738.roa Signing time: Sun 06 Oct 2024 04:44:58 +0000 ROA not before: Sun 06 Oct 2024 04:39:58 +0000 ROA not after: Sun 05 Oct 2025 04:44:58 +0000 asID: 210738 IP address blocks: 2a0a:6040:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:b1:3a:bb:03:22:4d:3c:f4:25:be:d4:89:c1:f8:53:b9:e0:af:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:58 2024 GMT Not After : Oct 5 04:44:58 2025 GMT Subject: CN=D0CEFCF8EEB6B2FE086410BAD003644B66E1F6C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:88:16:6c:cb:c4:91:bd:ac:aa:67:30:eb:4a: 31:4b:c1:b5:96:57:48:6a:66:cf:fd:b8:84:38:27: a4:bd:56:bc:80:36:f4:53:b9:f9:3a:ca:6f:39:a5: 0e:9f:67:ef:19:0c:26:67:af:10:e0:b3:14:72:86: 71:25:cd:b3:bf:28:ff:c5:54:c2:cf:f7:90:48:53: f8:fa:16:4f:a5:62:14:81:56:b8:c5:fb:ce:b3:21: 2d:5d:ef:10:49:d9:3b:69:7a:04:ac:05:f0:25:16: c9:9d:c9:dc:70:31:24:45:e0:15:52:49:05:28:82: 9a:dc:b0:97:04:7d:d3:2a:cb:7d:e3:a0:3c:c4:fc: 29:5f:ec:41:28:00:96:e9:f3:b8:b9:f4:f1:81:46: ba:fe:98:14:99:cb:83:3b:c6:b6:9e:36:e3:e7:9b: dc:b1:6d:30:52:cb:f0:6f:e7:fd:0b:61:3e:49:24: 37:b5:89:73:bd:2c:72:e8:1b:b1:32:44:9d:0e:23: e8:03:5b:e7:bc:9a:46:b0:60:cb:66:49:96:b7:ce: 76:ad:f0:50:95:86:c7:31:bd:99:d9:af:bf:59:a8: bd:1b:9a:b3:11:3f:a4:92:d7:5d:60:51:5c:e8:d3: 73:12:0e:ee:ca:c9:fd:78:a8:88:d2:9a:80:7b:2c: e2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:CE:FC:F8:EE:B6:B2:FE:08:64:10:BA:D0:03:64:4B:66:E1:F6:C3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6500::/40 Signature Algorithm: sha256WithRSAEncryption 58:c6:c0:9c:a8:d2:1f:28:55:1a:76:a0:7f:f5:be:f1:4a:1f: 6e:1a:bf:26:e9:9b:02:c1:c6:56:8f:4a:83:55:32:11:f4:d3: 96:7f:8a:e2:50:87:4e:e1:39:1b:24:bc:14:09:6e:db:95:a9: 2a:85:ea:92:e6:76:69:cf:47:02:1b:bf:45:76:65:61:fc:e3: 93:5b:22:76:d7:42:67:dd:01:93:08:9b:4b:fe:a3:80:19:a9: 02:e0:56:6c:37:d0:0e:09:9d:61:47:da:05:12:c4:2e:4e:00: 4a:ae:d8:e1:95:a2:8b:d1:06:d8:d9:ad:10:6d:4b:30:53:b5: cd:94:6d:c4:e4:8d:e4:f9:a4:cb:f4:1c:29:cb:94:51:36:21: 17:1e:8e:36:f5:ff:bb:58:0b:c8:e2:44:31:b1:82:c4:7b:bc: b2:07:83:9d:f0:fb:19:bf:73:f5:46:5d:11:6a:3f:bd:15:8b: c0:95:df:d6:c3:a7:75:6f:a2:96:37:8b:5e:34:3e:8d:52:eb: ef:42:de:2f:d7:10:04:97:ff:bc:b6:cc:cd:e1:00:44:cd:03: e8:83:71:77:99:f4:3c:b9:f5:91:46:bf:2a:ae:4d:91:5d:b3: 2d:be:d2:e1:32:ff:4b:a6:a7:07:11:62:34:d5:66:8a:8a:1d: 8c:25:b9:aa -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGLE6uwMiTTz0Jb7UicH4U7ngr9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NThaFw0yNTEwMDUwNDQ0NThaMDMxMTAvBgNV BAMTKEQwQ0VGQ0Y4RUVCNkIyRkUwODY0MTBCQUQwMDM2NDRCNjZFMUY2QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyiBZsy8SRvayqZzDrSjFLwbWW V0hqZs/9uIQ4J6S9VryANvRTufk6ym85pQ6fZ+8ZDCZnrxDgsxRyhnElzbO/KP/F VMLP95BIU/j6Fk+lYhSBVrjF+86zIS1d7xBJ2TtpegSsBfAlFsmdydxwMSRF4BVS SQUogprcsJcEfdMqy33joDzE/Clf7EEoAJbp87i59PGBRrr+mBSZy4M7xraeNuPn m9yxbTBSy/Bv5/0LYT5JJDe1iXO9LHLoG7EyRJ0OI+gDW+e8mkawYMtmSZa3znat 8FCVhscxvZnZr79ZqL0bmrMRP6SS111gUVzo03MSDu7Kyf14qIjSmoB7LOKnAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU0M78+O62sv4IZBC60ANkS2bh9sMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGUwDQYJKoZIhvcNAQELBQADggEBAFjG wJyo0h8oVRp2oH/1vvFKH24avybpmwLBxlaPSoNVMhH005Z/iuJQh07hORskvBQJ btuVqSqF6pLmdmnPRwIbv0V2ZWH845NbInbXQmfdAZMIm0v+o4AZqQLgVmw30A4J nWFH2gUSxC5OAEqu2OGVoovRBtjZrRBtSzBTtc2UbcTkjeT5pMv0HCnLlFE2IRce jjb1/7tYC8jiRDGxgsR7vLIHg53w+xm/c/VGXRFqP70Vi8CV39bDp3VvopY3i140 Po1S6+9C3i/XEASX/7y2zM3hAETNA+iDcXeZ9Dy59ZFGvyquTZFdsy2+0uEy/0um pwcRYjTVZoqKHYwluao= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org