$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210965.roa File: AS210965.roa (raw, json) Hash identifier: l4dDlQUpRY8qsIU0VkgruhcpUigfmwDh6sZLFeXMRes= Subject key identifier: A8:56:12:9A:EC:B8:F6:91:AD:9A:AB:5D:DE:FC:32:34:14:5A:32:32 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2C5DE5B4C0C3BB30409394BE1EF24FAED1B07F32 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210965.roa Signing time: Sun 06 Oct 2024 04:45:20 +0000 ROA not before: Sun 06 Oct 2024 04:40:20 +0000 ROA not after: Sun 05 Oct 2025 04:45:20 +0000 asID: 210965 IP address blocks: 2a0a:6040:b400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:5d:e5:b4:c0:c3:bb:30:40:93:94:be:1e:f2:4f:ae:d1:b0:7f:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:20 2024 GMT Not After : Oct 5 04:45:20 2025 GMT Subject: CN=A856129AECB8F691AD9AAB5DDEFC3234145A3232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:68:4d:eb:dd:15:c5:57:07:1a:66:cb:e7:4a: ae:cd:e6:fd:dc:2e:e7:51:5f:f2:ce:cb:e3:a9:13: b5:5e:6a:ac:8e:9f:22:90:94:e1:42:a0:69:fa:b6: 22:31:e8:e0:ec:eb:31:20:6c:8f:7a:d1:91:0f:dc: 3b:8a:3f:54:c6:e9:d9:14:27:10:3c:da:33:2d:71: 0e:f9:1a:06:bd:f2:ed:91:95:ec:d5:58:b4:7a:5d: 6c:64:00:9f:6b:8f:42:55:ea:41:f8:64:67:af:a4: 96:92:2d:f6:a3:ba:46:c4:c5:4c:7f:15:79:44:f9: 82:4d:1d:8a:b3:c3:ee:9d:d5:3d:72:59:a0:ce:b9: dc:5e:5a:2b:ec:9a:b3:ad:6d:92:f9:6d:6e:e9:ac: 32:81:4a:8a:d8:d8:50:a6:24:9b:6f:32:80:0a:ab: 32:28:d9:1b:11:02:79:28:4c:b4:c2:36:b3:3b:8b: 3d:a8:e6:64:9a:5b:44:b5:20:bf:e5:63:4e:45:72: 33:f4:e1:8d:e2:f6:5f:8e:c7:29:41:9c:76:53:15: 19:10:f2:e5:ee:0e:c0:de:05:3a:48:9b:55:4c:d5: d5:1d:64:9b:77:1a:b6:95:66:8f:9e:c1:13:80:65: 77:59:ed:78:ad:dd:02:cb:b8:23:21:b5:14:a7:19: ce:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:56:12:9A:EC:B8:F6:91:AD:9A:AB:5D:DE:FC:32:34:14:5A:32:32 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210965.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b400::/40 Signature Algorithm: sha256WithRSAEncryption 11:a7:5f:15:1c:0a:01:56:d9:4e:bc:11:7e:42:f5:dc:89:fb: 5f:ba:f8:2c:67:ea:46:d1:13:42:dc:0a:b8:3d:91:6c:c7:0d: 2a:94:e8:11:19:15:50:b8:1e:8e:f4:64:ae:e5:c9:52:56:d5: 83:b3:1b:3b:b7:16:84:dc:5e:a8:90:95:69:53:8f:ca:9e:03: 81:46:9f:99:95:2a:e6:45:c2:67:01:d1:90:4e:e5:81:a7:d2: 0a:85:69:4c:40:65:d5:ba:a7:c3:eb:cf:4e:b3:0f:67:9e:1c: 18:2e:8a:66:5a:0a:30:58:3b:14:3c:b5:39:c0:9b:e2:35:64: c3:d0:a2:d0:65:8a:11:cb:64:83:f8:10:70:ac:4c:7a:0e:56: 9e:9c:fc:01:00:cf:1c:2a:33:77:12:af:c9:a6:f6:a4:5b:c7: cb:32:a7:16:33:23:69:1e:d8:81:4b:10:89:f1:04:9c:5c:d7: ff:6e:08:01:b1:02:d4:13:42:04:14:07:95:00:74:83:0a:14: 25:a7:21:d0:b0:81:d9:fe:c0:16:af:fe:be:47:7e:2a:09:13: dc:40:a9:b8:77:31:d8:9b:93:65:70:c2:7c:fa:54:02:60:bd: 0d:f5:d7:27:32:ad:9f:a3:ec:53:5a:91:3b:2b:dd:56:97:c7: 66:95:bc:c3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIULF3ltMDDuzBAk5S+HvJPrtGwfzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMjBaFw0yNTEwMDUwNDQ1MjBaMDMxMTAvBgNV BAMTKEE4NTYxMjlBRUNCOEY2OTFBRDlBQUI1RERFRkMzMjM0MTQ1QTMyMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9aE3r3RXFVwcaZsvnSq7N5v3c LudRX/LOy+OpE7VeaqyOnyKQlOFCoGn6tiIx6ODs6zEgbI960ZEP3DuKP1TG6dkU JxA82jMtcQ75Gga98u2RlezVWLR6XWxkAJ9rj0JV6kH4ZGevpJaSLfajukbExUx/ FXlE+YJNHYqzw+6d1T1yWaDOudxeWivsmrOtbZL5bW7prDKBSorY2FCmJJtvMoAK qzIo2RsRAnkoTLTCNrM7iz2o5mSaW0S1IL/lY05FcjP04Y3i9l+OxylBnHZTFRkQ 8uXuDsDeBTpIm1VM1dUdZJt3GraVZo+ewROAZXdZ7Xit3QLLuCMhtRSnGc77AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUqFYSmuy49pGtmqtd3vwyNBRaMjIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwOTY1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLQwDQYJKoZIhvcNAQELBQADggEBABGn XxUcCgFW2U68EX5C9dyJ+1+6+Cxn6kbRE0LcCrg9kWzHDSqU6BEZFVC4Ho70ZK7l yVJW1YOzGzu3FoTcXqiQlWlTj8qeA4FGn5mVKuZFwmcB0ZBO5YGn0gqFaUxAZdW6 p8Prz06zD2eeHBguimZaCjBYOxQ8tTnAm+I1ZMPQotBlihHLZIP4EHCsTHoOVp6c /AEAzxwqM3cSr8mm9qRbx8sypxYzI2ke2IFLEInxBJxc1/9uCAGxAtQTQgQUB5UA dIMKFCWnIdCwgdn+wBav/r5HfioJE9xAqbh3Mdibk2Vwwnz6VAJgvQ311ycyrZ+j 7FNakTsr3VaXx2aVvMM= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org