$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210738.roa File: AS210738.roa (raw, json) Hash identifier: VEUDtyXxhn1EzT8oa808F6ZkOOZrkomNUNILHne3W5U= Subject key identifier: B3:BC:3F:EB:01:CC:9A:E1:66:BA:C6:8B:27:8A:9D:12:F6:F5:BE:01 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 385291C00416C058653CA39F7ACFDD32C8EE0181 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210738.roa Signing time: Sun 05 Nov 2023 04:07:16 +0000 ROA not before: Sun 05 Nov 2023 04:02:16 +0000 ROA not after: Sun 03 Nov 2024 04:07:16 +0000 asID: 210738 IP address blocks: 2a0a:6040:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:52:91:c0:04:16:c0:58:65:3c:a3:9f:7a:cf:dd:32:c8:ee:01:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:16 2023 GMT Not After : Nov 3 04:07:16 2024 GMT Subject: CN=B3BC3FEB01CC9AE166BAC68B278A9D12F6F5BE01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:49:3c:59:11:70:67:28:49:1d:89:b0:48:04: f3:08:0c:5e:08:3c:0a:db:0a:e5:05:14:08:1b:f5: bc:5c:ff:c6:9c:3b:82:b5:1b:b9:b2:4e:16:bb:47: 71:00:c3:8b:a2:59:5a:16:b0:3c:bc:4f:04:55:59: 26:99:8c:76:c0:03:7b:19:04:2a:1d:16:1a:24:68: a0:49:86:51:7a:18:80:f5:c1:c2:88:c2:5f:b3:8f: 3c:9f:bf:10:4e:1c:fe:f7:1b:3c:f3:66:e4:c5:70: f4:2f:03:2f:e5:34:8f:b6:27:70:e7:3e:7f:a3:de: bc:e0:2e:63:18:0e:3a:6a:a3:16:55:9a:21:95:5b: e9:a2:d1:74:1b:63:86:29:d7:7e:64:90:40:0e:2c: e4:ab:40:6b:18:96:88:70:d6:55:86:ea:20:33:5c: 18:84:58:85:de:b4:c4:3f:49:aa:90:67:43:c4:fc: e5:01:e7:75:1c:c7:95:84:08:e0:43:3e:5e:4f:19: e1:d0:f0:4a:cb:4c:48:73:81:e4:7b:10:17:45:1e: 77:00:33:8a:38:99:94:d6:95:27:8f:05:73:b2:ca: d4:f9:75:88:9e:e9:ea:f4:09:05:9c:c5:87:8c:2b: cf:81:4d:5f:7e:85:d7:fc:18:aa:43:f9:a7:27:d4: c4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:BC:3F:EB:01:CC:9A:E1:66:BA:C6:8B:27:8A:9D:12:F6:F5:BE:01 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6500::/40 Signature Algorithm: sha256WithRSAEncryption 0a:ea:88:a1:0f:6c:15:3c:27:12:e3:1e:69:74:d0:7d:71:7e: 30:ed:74:29:2d:f9:77:66:41:28:98:b2:2d:0e:a2:72:ee:0c: 7a:6a:ae:93:3b:b1:47:6d:57:18:61:31:f0:86:05:2b:e2:98: 7b:cc:53:d1:51:57:f3:04:23:b5:ea:ca:1e:79:b4:df:a7:bc: cc:43:bf:52:54:0e:b4:87:c3:28:a0:d9:69:f2:bb:cb:d0:f4: a2:0a:8e:2a:fd:1f:5e:64:e5:99:d8:9b:b0:e8:88:64:43:6b: 6e:90:82:f2:df:8a:fd:c3:2c:bd:ca:fe:87:ee:6a:1b:e9:fe: 93:61:11:a4:23:cf:e6:f7:a1:18:2a:c5:07:82:ba:dd:12:b1: 51:dd:ad:89:7c:75:03:a4:76:9a:db:4d:70:3c:f9:3a:23:6c: 65:15:21:cf:b6:3e:88:8f:3e:b8:1c:bd:68:ed:21:da:2b:26: c9:39:83:6d:24:4a:44:7f:3d:fd:f5:e2:5d:fd:2c:a1:2a:e1: 51:c2:8c:fd:c1:4a:64:e2:77:40:5f:8b:4a:e1:c3:33:70:18: e6:e8:97:5f:52:38:a5:ad:df:11:4c:05:f0:4d:2d:f5:19:cb: 0c:23:fe:df:57:fe:d0:55:34:23:dd:ef:c7:ef:f0:f7:c1:66: f2:5d:93:f3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOFKRwAQWwFhlPKOfes/dMsjuAYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTZaFw0yNDExMDMwNDA3MTZaMDMxMTAvBgNV BAMTKEIzQkMzRkVCMDFDQzlBRTE2NkJBQzY4QjI3OEE5RDEyRjZGNUJFMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtSTxZEXBnKEkdibBIBPMIDF4I PArbCuUFFAgb9bxc/8acO4K1G7myTha7R3EAw4uiWVoWsDy8TwRVWSaZjHbAA3sZ BCodFhokaKBJhlF6GID1wcKIwl+zjzyfvxBOHP73GzzzZuTFcPQvAy/lNI+2J3Dn Pn+j3rzgLmMYDjpqoxZVmiGVW+mi0XQbY4Yp135kkEAOLOSrQGsYlohw1lWG6iAz XBiEWIXetMQ/SaqQZ0PE/OUB53Ucx5WECOBDPl5PGeHQ8ErLTEhzgeR7EBdFHncA M4o4mZTWlSePBXOyytT5dYie6er0CQWcxYeMK8+BTV9+hdf8GKpD+acn1MS1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUs7w/6wHMmuFmusaLJ4qdEvb1vgEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGUwDQYJKoZIhvcNAQELBQADggEBAArq iKEPbBU8JxLjHml00H1xfjDtdCkt+XdmQSiYsi0OonLuDHpqrpM7sUdtVxhhMfCG BSvimHvMU9FRV/MEI7Xqyh55tN+nvMxDv1JUDrSHwyig2Wnyu8vQ9KIKjir9H15k 5ZnYm7DoiGRDa26QgvLfiv3DLL3K/ofuahvp/pNhEaQjz+b3oRgqxQeCut0SsVHd rYl8dQOkdprbTXA8+TojbGUVIc+2PoiPPrgcvWjtIdorJsk5g20kSkR/Pf314l39 LKEq4VHCjP3BSmTid0Bfi0rhwzNwGObol19SOKWt3xFMBfBNLfUZywwj/t9X/tBV NCPd78fv8PfBZvJdk/M= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org