$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211233.roa File: AS211233.roa (raw, json) Hash identifier: G+Sw0h8XzvOrVQ1VOYChFF/qNayAIQtYeopyfM3y65g= Subject key identifier: 07:31:6A:69:FE:26:97:0A:F4:D7:96:0C:EE:3D:FE:5A:8A:80:8C:F7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0F701B0DB9509A6935FA4441FC4F0C4624862ECE Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211233.roa Signing time: Sun 05 Nov 2023 04:07:23 +0000 ROA not before: Sun 05 Nov 2023 04:02:23 +0000 ROA not after: Sun 03 Nov 2024 04:07:23 +0000 asID: 211233 IP address blocks: 2a0a:6040:8e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:70:1b:0d:b9:50:9a:69:35:fa:44:41:fc:4f:0c:46:24:86:2e:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:23 2023 GMT Not After : Nov 3 04:07:23 2024 GMT Subject: CN=07316A69FE26970AF4D7960CEE3DFE5A8A808CF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5c:a4:d4:8a:ec:f0:02:c6:3c:4d:bb:ce:0c: a0:9c:c2:a7:0f:3d:9e:b1:59:de:8b:5e:46:85:a1: 7c:ed:ab:af:41:e3:d6:21:1b:c5:ad:e3:db:e0:05: 04:66:1d:20:15:a4:e2:7e:13:84:74:6f:61:ea:1d: 1d:58:02:2f:af:7e:61:6f:cc:0f:13:e8:c7:60:b3: 9f:5a:b9:02:75:2b:05:83:71:91:f9:ab:39:d9:8e: 2d:c1:0f:af:5c:88:22:f3:5c:89:ab:65:f7:1e:cb: 00:f1:83:98:fe:76:4c:74:9d:bc:07:10:10:14:d8: 94:fe:1c:19:8d:aa:75:54:e2:20:fa:d3:ec:32:cd: 03:a7:2b:8b:fa:94:73:89:26:d2:d5:9c:fb:7c:dc: 20:1f:14:31:25:6a:b5:17:dd:d0:1b:74:69:d9:bf: b0:35:da:21:a1:bc:38:29:99:3c:9c:2a:a9:c7:10: c1:a5:b4:4f:06:44:a6:09:0d:50:6d:f5:f9:4a:05: 84:1c:a6:3b:1f:35:47:a3:ed:5e:10:d3:8d:a0:73: 36:be:24:2c:7c:98:c9:83:23:c9:f3:23:6c:8b:2e: 93:dc:80:57:1c:dc:e0:30:f5:f0:c2:03:38:50:1d: 65:ff:53:68:bd:db:48:07:a2:0d:ff:44:89:05:3a: 00:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:31:6A:69:FE:26:97:0A:F4:D7:96:0C:EE:3D:FE:5A:8A:80:8C:F7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8e00::/40 Signature Algorithm: sha256WithRSAEncryption 0c:94:af:e9:fe:a8:e2:a8:d2:b4:3e:9a:57:1f:d1:5e:34:8b: 9c:e3:35:14:9d:4d:54:af:90:cc:3f:8a:ba:c7:30:9b:80:1e: b7:80:13:51:85:ce:61:7f:ee:62:26:0d:58:1c:9e:68:ec:da: 8e:52:b5:01:0c:15:78:0d:21:a4:15:ec:c9:78:00:64:b3:d9: 7d:bf:d4:12:8f:fd:bb:c8:c0:8b:23:3f:3d:b5:2b:21:29:42: 75:a2:20:13:23:ff:3a:3c:cf:5d:76:96:f6:71:68:9c:e7:aa: 6f:b9:c6:db:0e:d3:a0:01:e6:f1:1a:67:93:73:eb:20:37:9e: 5a:aa:39:60:aa:1e:da:c1:ac:ba:8f:fd:b1:ff:0b:43:be:29: ec:26:75:08:e1:ec:ac:a8:24:d3:45:39:b8:80:08:82:44:a5: 20:df:5c:0f:65:58:d2:20:14:f9:4f:59:e8:96:65:29:e6:4b: c6:84:cb:6b:59:f5:4d:c5:f2:5e:fc:af:34:c8:16:71:7b:77: da:35:f1:62:7c:33:fe:ab:9a:13:05:5a:29:6f:60:71:2f:89: ab:de:9c:4f:9a:8c:c3:6d:bf:93:d3:f4:c6:09:fe:b7:b3:52: 0d:7f:7b:16:ea:89:06:4a:6d:d8:a5:05:eb:86:c0:a8:60:c3: d1:67:83:16 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUD3AbDblQmmk1+kRB/E8MRiSGLs4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjNaFw0yNDExMDMwNDA3MjNaMDMxMTAvBgNV BAMTKDA3MzE2QTY5RkUyNjk3MEFGNEQ3OTYwQ0VFM0RGRTVBOEE4MDhDRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzXKTUiuzwAsY8TbvODKCcwqcP PZ6xWd6LXkaFoXztq69B49YhG8Wt49vgBQRmHSAVpOJ+E4R0b2HqHR1YAi+vfmFv zA8T6Mdgs59auQJ1KwWDcZH5qznZji3BD69ciCLzXImrZfceywDxg5j+dkx0nbwH EBAU2JT+HBmNqnVU4iD60+wyzQOnK4v6lHOJJtLVnPt83CAfFDElarUX3dAbdGnZ v7A12iGhvDgpmTycKqnHEMGltE8GRKYJDVBt9flKBYQcpjsfNUej7V4Q042gcza+ JCx8mMmDI8nzI2yLLpPcgFcc3OAw9fDCAzhQHWX/U2i920gHog3/RIkFOgCRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUBzFqaf4mlwr015YM7j3+WoqAjPcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQI4wDQYJKoZIhvcNAQELBQADggEBAAyU r+n+qOKo0rQ+mlcf0V40i5zjNRSdTVSvkMw/irrHMJuAHreAE1GFzmF/7mImDVgc nmjs2o5StQEMFXgNIaQV7Ml4AGSz2X2/1BKP/bvIwIsjPz21KyEpQnWiIBMj/zo8 z112lvZxaJznqm+5xtsO06AB5vEaZ5Nz6yA3nlqqOWCqHtrBrLqP/bH/C0O+Kewm dQjh7KyoJNNFObiACIJEpSDfXA9lWNIgFPlPWeiWZSnmS8aEy2tZ9U3F8l78rzTI FnF7d9o18WJ8M/6rmhMFWilvYHEviavenE+ajMNtv5PT9MYJ/rezUg1/exbqiQZK bdilBeuGwKhgw9FngxY= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org