$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211036.roa File: AS211036.roa (raw, json) Hash identifier: LZMgsluWEFxiz7Sf5M8kq1EDgW0ejR+yqoAY6pE969E= Subject key identifier: 7C:49:A9:1F:3E:0E:F8:2B:9D:95:3C:E6:F6:7B:FA:1C:1B:FE:C9:F5 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1D31A00F779DD8FEE1EF5C0780A97CE6B1049F43 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211036.roa Signing time: Wed 28 Feb 2024 08:58:08 +0000 ROA not before: Wed 28 Feb 2024 08:53:08 +0000 ROA not after: Wed 26 Feb 2025 08:58:08 +0000 asID: 211036 IP address blocks: 2a05:dfc1:1a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:31:a0:0f:77:9d:d8:fe:e1:ef:5c:07:80:a9:7c:e6:b1:04:9f:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 28 08:53:08 2024 GMT Not After : Feb 26 08:58:08 2025 GMT Subject: CN=7C49A91F3E0EF82B9D953CE6F67BFA1C1BFEC9F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4f:02:f0:7c:42:f8:81:14:6d:aa:e3:4b:95: 45:6c:8f:ae:c4:50:f6:b9:2d:45:6d:d1:f6:02:af: 9f:b6:85:0e:7e:a7:02:c6:71:aa:f8:5c:26:47:6f: c9:6d:1c:3e:d1:38:08:fc:57:93:ff:63:83:d1:e2: 58:fe:37:b8:15:fa:c5:f5:c7:7d:ac:e6:87:d1:57: f7:9f:32:d7:55:b6:76:d0:70:ef:86:9e:96:03:99: a8:0a:07:2d:f0:ab:87:28:9a:5b:ff:57:6f:08:74: 70:15:cd:b1:82:d6:2b:e6:28:ae:a7:a5:e0:ae:ee: 00:4d:96:4e:2e:4d:25:84:09:c2:28:d3:f2:cc:95: 79:cc:c0:59:92:9a:c7:88:a3:85:5d:01:4b:49:e6: e9:fd:e3:5d:b5:89:e8:c1:93:76:e7:98:02:00:c4: 6e:63:a1:0c:a2:0a:37:37:ef:82:87:cc:22:1e:b6: 35:80:98:9a:b7:8b:71:4f:28:86:15:6d:b8:19:4c: e6:f0:69:2e:a1:83:64:fe:26:7d:d4:e2:cc:9f:f9: 8a:29:ce:06:cb:cb:af:f3:e0:f1:4f:23:c8:a2:78: 7c:1c:5d:37:3c:58:6d:b3:bd:65:9f:36:36:21:72: 7b:8e:36:c5:63:3b:42:52:1e:ca:80:bb:5a:ba:b2: 79:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:49:A9:1F:3E:0E:F8:2B:9D:95:3C:E6:F6:7B:FA:1C:1B:FE:C9:F5 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1a00::/40 Signature Algorithm: sha256WithRSAEncryption 90:65:ca:95:9a:00:63:a0:5c:6b:ea:e8:54:75:44:db:e8:e2: d0:3e:92:a3:f3:89:c8:c8:95:15:a8:81:95:bf:f3:af:a8:22: 62:3c:fe:7e:92:0c:e4:b8:5b:17:7c:91:97:fe:16:c2:ee:83: 1f:17:28:39:b9:b1:ce:70:39:e3:b0:ce:39:1a:8b:c7:67:f9: 36:36:7d:63:19:f2:c2:a6:71:80:d0:27:b3:3a:76:56:66:ee: bc:e2:45:b4:8d:71:d4:bb:0f:66:4a:9d:5e:32:36:ba:87:de: a5:8f:5c:e1:a4:1e:c3:7e:de:ef:89:b3:29:1a:19:fe:2d:6d: 14:1a:1d:25:fa:dc:ab:e6:05:ab:44:e1:8e:2d:cf:c4:35:95: b9:5d:62:f2:9a:c9:37:e5:d7:17:c3:11:68:1c:aa:79:df:f1: ad:8f:2f:5e:89:25:58:52:c9:9a:21:12:c0:02:a1:21:65:32: 63:5c:a2:10:4a:66:67:47:6d:25:69:c4:e0:5f:8a:a1:28:7f: cd:2c:60:2a:b3:1c:ea:c6:21:a3:3e:58:15:4b:95:ea:df:cc: 42:ae:2c:2c:e4:a2:98:c6:40:35:50:bc:f3:56:1d:04:99:2e: 5a:a4:e5:4a:30:51:60:10:28:e2:d0:4b:8a:55:42:ab:5b:34: c4:f0:4d:82 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHTGgD3ed2P7h71wHgKl85rEEn0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMjgwODUzMDhaFw0yNTAyMjYwODU4MDhaMDMxMTAvBgNV BAMTKDdDNDlBOTFGM0UwRUY4MkI5RDk1M0NFNkY2N0JGQTFDMUJGRUM5RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwTwLwfEL4gRRtquNLlUVsj67E UPa5LUVt0fYCr5+2hQ5+pwLGcar4XCZHb8ltHD7ROAj8V5P/Y4PR4lj+N7gV+sX1 x32s5ofRV/efMtdVtnbQcO+GnpYDmagKBy3wq4comlv/V28IdHAVzbGC1ivmKK6n peCu7gBNlk4uTSWECcIo0/LMlXnMwFmSmseIo4VdAUtJ5un94121iejBk3bnmAIA xG5joQyiCjc374KHzCIetjWAmJq3i3FPKIYVbbgZTObwaS6hg2T+Jn3U4syf+Yop zgbLy6/z4PFPI8iieHwcXTc8WG2zvWWfNjYhcnuONsVjO0JSHsqAu1q6snlxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUfEmpHz4O+CudlTzm9nv6HBv+yfUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRowDQYJKoZIhvcNAQELBQADggEBAJBl ypWaAGOgXGvq6FR1RNvo4tA+kqPzicjIlRWogZW/86+oImI8/n6SDOS4Wxd8kZf+ FsLugx8XKDm5sc5wOeOwzjkai8dn+TY2fWMZ8sKmcYDQJ7M6dlZm7rziRbSNcdS7 D2ZKnV4yNrqH3qWPXOGkHsN+3u+JsykaGf4tbRQaHSX63KvmBatE4Y4tz8Q1lbld YvKayTfl1xfDEWgcqnnf8a2PL16JJVhSyZohEsACoSFlMmNcohBKZmdHbSVpxOBf iqEof80sYCqzHOrGIaM+WBVLlerfzEKuLCzkopjGQDVQvPNWHQSZLlqk5UowUWAQ KOLQS4pVQqtbNMTwTYI= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org