$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211233.roa File: AS211233.roa (raw, json) Hash identifier: g/mdzfoKd3fMqcOLdSBdlqjninWRsF+bncRKpoVxHSc= Subject key identifier: 97:68:B5:81:11:76:81:AC:DD:EC:E3:5F:FF:70:4D:E8:E0:46:F6:05 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 01C81A639147F185FB768703D7A1194FE60F1DED Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211233.roa Signing time: Sun 06 Oct 2024 04:45:15 +0000 ROA not before: Sun 06 Oct 2024 04:40:15 +0000 ROA not after: Sun 05 Oct 2025 04:45:15 +0000 asID: 211233 IP address blocks: 2a0a:6040:8e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c8:1a:63:91:47:f1:85:fb:76:87:03:d7:a1:19:4f:e6:0f:1d:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:15 2024 GMT Not After : Oct 5 04:45:15 2025 GMT Subject: CN=9768B581117681ACDDECE35FFF704DE8E046F605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:42:df:c6:90:6d:4e:a7:26:c1:89:10:6e:f5: f8:86:fb:cc:83:bf:ca:0d:49:ba:34:f7:2c:c1:b0: db:d6:71:4e:0e:63:83:2e:04:a2:3e:f0:92:7b:cd: bf:59:ca:c4:88:cb:b3:f7:f2:33:fd:11:bf:4b:97: 3b:7e:5a:ca:f8:5f:56:59:ea:c0:a5:9b:c8:31:ef: eb:43:45:2e:1f:98:6f:76:8f:5d:3a:a6:5a:78:c4: 90:2c:63:b7:d9:6e:55:4b:4c:21:97:77:67:ba:38: cf:59:1c:92:6e:8e:0d:14:1e:e2:d3:2d:ea:31:00: c6:63:b0:f4:ea:41:ba:b6:16:37:89:fb:4c:ff:27: b8:29:a8:a5:00:ef:10:26:72:fa:57:1e:28:08:0e: 6c:32:04:02:b5:2c:1d:d1:e0:28:36:b3:6a:52:44: 36:11:15:51:cb:b0:48:ed:8c:af:f9:9e:62:54:05: 66:1f:e6:35:82:f9:be:c8:3a:3a:65:62:11:54:56: d5:1e:1a:06:6f:8b:d9:08:e9:5a:fc:71:81:81:dc: 7b:eb:74:6d:83:d0:79:49:10:5c:40:ce:8a:be:e3: 56:6e:1b:8e:0b:c3:0a:ba:e6:1e:65:9b:18:ef:b6: a9:44:a0:51:12:fc:7a:02:b3:c0:75:45:97:26:3c: ce:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:68:B5:81:11:76:81:AC:DD:EC:E3:5F:FF:70:4D:E8:E0:46:F6:05 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8e00::/40 Signature Algorithm: sha256WithRSAEncryption 63:12:f5:56:9f:fd:0a:48:40:c0:47:e1:99:b3:ef:fa:c1:91: 87:ad:de:4b:6f:70:9f:6e:d4:7a:e1:5e:eb:aa:be:2e:32:23: 06:b0:16:a6:ce:d9:85:fd:6f:ef:63:eb:2a:aa:0b:59:7d:8b: 08:94:18:b6:ee:43:54:17:df:a8:f9:8d:cc:d9:25:80:91:2a: f9:db:5c:f4:5b:6a:9f:b7:f7:54:23:52:68:96:db:39:f4:c3: d7:4c:3a:54:64:00:c1:f8:33:47:d2:3a:44:dc:f0:e4:66:1a: 7d:84:e3:6f:d4:e3:f5:a9:85:42:26:54:a5:2b:35:f3:47:92: 29:d9:8c:a9:af:10:54:ed:bb:c1:0f:22:15:71:e7:fe:4a:69: a5:ca:0a:a2:db:fc:27:d4:85:fa:06:19:56:a8:25:c7:6b:5f: ba:e1:d5:f1:94:bc:d3:18:df:39:06:ff:bf:87:b2:cd:4b:e6: 9b:36:3b:ea:27:cf:c9:35:04:a7:81:f9:47:ae:ca:08:7b:73: fe:36:6a:85:05:20:73:fa:41:dd:cb:cd:9f:41:2f:cd:a5:55: 94:52:81:fd:72:32:50:02:d2:f0:ce:bd:20:26:8b:7f:43:05: 36:34:52:17:9b:18:13:c3:e2:09:42:41:77:44:e9:ee:a7:20: d9:0f:19:bc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAcgaY5FH8YX7docD16EZT+YPHe0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTVaFw0yNTEwMDUwNDQ1MTVaMDMxMTAvBgNV BAMTKDk3NjhCNTgxMTE3NjgxQUNEREVDRTM1RkZGNzA0REU4RTA0NkY2MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsQt/GkG1OpybBiRBu9fiG+8yD v8oNSbo09yzBsNvWcU4OY4MuBKI+8JJ7zb9ZysSIy7P38jP9Eb9Llzt+Wsr4X1ZZ 6sClm8gx7+tDRS4fmG92j106plp4xJAsY7fZblVLTCGXd2e6OM9ZHJJujg0UHuLT LeoxAMZjsPTqQbq2FjeJ+0z/J7gpqKUA7xAmcvpXHigIDmwyBAK1LB3R4Cg2s2pS RDYRFVHLsEjtjK/5nmJUBWYf5jWC+b7IOjplYhFUVtUeGgZvi9kI6Vr8cYGB3Hvr dG2D0HlJEFxAzoq+41ZuG44Lwwq65h5lmxjvtqlEoFES/HoCs8B1RZcmPM4nAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUl2i1gRF2gazd7ONf/3BN6OBG9gUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQI4wDQYJKoZIhvcNAQELBQADggEBAGMS 9Vaf/QpIQMBH4Zmz7/rBkYet3ktvcJ9u1HrhXuuqvi4yIwawFqbO2YX9b+9j6yqq C1l9iwiUGLbuQ1QX36j5jczZJYCRKvnbXPRbap+391QjUmiW2zn0w9dMOlRkAMH4 M0fSOkTc8ORmGn2E42/U4/WphUImVKUrNfNHkinZjKmvEFTtu8EPIhVx5/5KaaXK CqLb/CfUhfoGGVaoJcdrX7rh1fGUvNMY3zkG/7+Hss1L5ps2O+onz8k1BKeB+Ueu ygh7c/42aoUFIHP6Qd3LzZ9BL82lVZRSgf1yMlAC0vDOvSAmi39DBTY0UhebGBPD 4glCQXdE6e6nINkPGbw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org