$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210965.roa File: AS210965.roa (raw, json) Hash identifier: RrOAMbBZBFpCMxj+YvCue6QS2AVRPQWViqjsymx3lWU= Subject key identifier: 4D:BB:25:11:5A:7E:79:DD:3A:88:58:F1:85:BE:E0:3F:52:89:C5:5A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1784AD3ADC4785C13DE6591909D78230AFACD8CD Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210965.roa Signing time: Sun 05 Nov 2023 04:06:57 +0000 ROA not before: Sun 05 Nov 2023 04:01:57 +0000 ROA not after: Sun 03 Nov 2024 04:06:57 +0000 asID: 210965 IP address blocks: 2a0a:6040:b400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:84:ad:3a:dc:47:85:c1:3d:e6:59:19:09:d7:82:30:af:ac:d8:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:57 2023 GMT Not After : Nov 3 04:06:57 2024 GMT Subject: CN=4DBB25115A7E79DD3A8858F185BEE03F5289C55A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:63:87:ab:a9:ea:8c:91:f5:69:db:87:f6:2f: e1:58:2d:4d:b7:d1:89:dc:30:de:c2:34:ac:49:00: 42:a8:39:4d:e5:1c:29:d9:ed:70:3b:89:6e:7e:f5: c5:c9:f9:b5:ba:df:49:b5:a3:1f:df:2b:f8:48:cd: a5:d4:85:03:5c:2a:73:45:e1:51:51:bc:e8:58:44: 1b:41:64:cd:7f:6f:da:d5:36:78:0d:6a:cf:1a:a2: 7f:22:5c:39:5d:67:2e:3f:28:0b:3a:c2:db:b0:db: 78:ed:a5:bd:84:04:bc:c1:0d:97:8e:3b:80:9d:ab: bb:28:9a:1a:26:ff:1e:58:2f:73:b4:a1:ff:87:d8: 4d:7d:18:78:13:23:e0:92:18:ea:9f:65:b7:c6:6a: a1:6b:bf:29:d6:b1:92:70:44:31:f5:da:24:e4:6e: 39:66:b1:5f:1a:62:b8:ce:a2:a4:c2:e9:d2:0a:b8: 74:c2:5b:13:c6:48:73:2a:c1:db:f2:54:4e:f4:d3: dc:84:c4:4d:08:03:8c:75:ac:0f:c9:1c:03:55:eb: 24:17:64:24:c8:8a:00:89:43:81:68:b5:20:e4:a6: 1d:e6:08:77:9f:59:82:0b:79:96:84:c3:29:ee:0d: 05:d8:8e:e6:da:24:c2:e6:6c:87:c5:94:14:65:31: 50:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BB:25:11:5A:7E:79:DD:3A:88:58:F1:85:BE:E0:3F:52:89:C5:5A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210965.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b400::/40 Signature Algorithm: sha256WithRSAEncryption 0b:98:53:e3:18:7d:ea:6c:4c:86:2c:66:08:a6:5b:ae:b8:08: d6:7b:f8:b4:b6:80:b5:32:67:e7:7d:ad:5b:f3:2f:40:9c:6a: 15:3f:1c:ea:9f:17:64:36:89:66:2a:ce:6e:df:c3:69:a3:0c: f8:25:c3:74:d6:e0:b9:d6:a2:33:79:9b:11:f8:f2:b5:44:06: b1:06:4c:e7:6c:16:70:20:f1:82:96:96:2b:c5:e9:f9:d5:96: 86:8b:a3:6c:0f:4f:3c:83:38:56:33:55:04:22:8f:8e:03:7a: 45:3f:7f:ba:31:3b:b0:d3:c2:f3:cf:4b:a9:af:f8:4b:d8:ae: e6:1d:6d:88:23:6a:63:a4:3b:68:90:0c:e0:c3:3f:d9:2f:b0: ed:0a:92:48:81:bb:7d:04:a5:d5:30:1c:46:a7:7c:d5:1f:ce: 6c:07:9c:06:8c:5a:86:b6:9e:61:d7:e9:45:be:e9:1d:07:82: 67:cd:08:c3:dd:dd:4b:c4:71:df:bf:0a:cf:0f:a2:2e:b8:7a: 0e:23:db:f9:83:43:ba:27:b0:bf:0c:b2:a2:5e:5e:17:06:a4: 73:48:84:88:67:e8:ce:51:89:63:f9:08:da:c5:27:9f:5b:0e: d7:73:68:b4:4a:8c:d6:e8:77:d8:09:22:7b:4d:46:e2:b2:1d: 88:49:10:91 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUF4StOtxHhcE95lkZCdeCMK+s2M0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNTdaFw0yNDExMDMwNDA2NTdaMDMxMTAvBgNV BAMTKDREQkIyNTExNUE3RTc5REQzQTg4NThGMTg1QkVFMDNGNTI4OUM1NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClY4erqeqMkfVp24f2L+FYLU23 0YncMN7CNKxJAEKoOU3lHCnZ7XA7iW5+9cXJ+bW630m1ox/fK/hIzaXUhQNcKnNF 4VFRvOhYRBtBZM1/b9rVNngNas8aon8iXDldZy4/KAs6wtuw23jtpb2EBLzBDZeO O4Cdq7somhom/x5YL3O0of+H2E19GHgTI+CSGOqfZbfGaqFrvynWsZJwRDH12iTk bjlmsV8aYrjOoqTC6dIKuHTCWxPGSHMqwdvyVE7009yExE0IA4x1rA/JHANV6yQX ZCTIigCJQ4FotSDkph3mCHefWYILeZaEwynuDQXYjubaJMLmbIfFlBRlMVAbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTbslEVp+ed06iFjxhb7gP1KJxVowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwOTY1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLQwDQYJKoZIhvcNAQELBQADggEBAAuY U+MYfepsTIYsZgimW664CNZ7+LS2gLUyZ+d9rVvzL0CcahU/HOqfF2Q2iWYqzm7f w2mjDPglw3TW4LnWojN5mxH48rVEBrEGTOdsFnAg8YKWlivF6fnVloaLo2wPTzyD OFYzVQQij44DekU/f7oxO7DTwvPPS6mv+EvYruYdbYgjamOkO2iQDODDP9kvsO0K kkiBu30EpdUwHEanfNUfzmwHnAaMWoa2nmHX6UW+6R0HgmfNCMPd3UvEcd+/Cs8P oi64eg4j2/mDQ7onsL8MsqJeXhcGpHNIhIhn6M5RiWP5CNrFJ59bDtdzaLRKjNbo d9gJIntNRuKyHYhJEJE= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org