$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211407.roa File: AS211407.roa (raw, json) Hash identifier: SFQDOG8LanYmSMqc1cMdceaQ+9yLgB/Jr3KqD7e/dNY= Subject key identifier: E1:C4:39:AA:68:3F:F9:04:3C:C9:47:2E:7B:3A:3C:B6:8C:DA:33:DA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3B56CE0A600DEF3D9043F29E5E3A9800E2F2576F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211407.roa Signing time: Sun 05 Nov 2023 04:07:12 +0000 ROA not before: Sun 05 Nov 2023 04:02:12 +0000 ROA not after: Sun 03 Nov 2024 04:07:12 +0000 asID: 211407 IP address blocks: 2a0a:6040:1200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:56:ce:0a:60:0d:ef:3d:90:43:f2:9e:5e:3a:98:00:e2:f2:57:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:12 2023 GMT Not After : Nov 3 04:07:12 2024 GMT Subject: CN=E1C439AA683FF9043CC9472E7B3A3CB68CDA33DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:28:f3:3e:20:6c:9b:57:ba:ac:e4:4f:79: 2f:d5:d9:74:48:ff:c9:17:1a:8d:59:df:51:8a:f2: a4:23:9d:86:dc:21:d5:94:fa:fe:ec:79:0f:61:45: b6:66:5e:19:85:f8:8f:53:30:36:ff:fa:b5:be:13: d5:b0:2b:b3:f0:46:60:24:b3:2d:8e:2b:ec:52:47: 95:8d:e3:cb:27:b8:ac:16:97:39:ac:e0:e9:8e:f9: c0:1a:fe:e9:3e:6c:d8:2d:c9:d2:18:a8:96:09:90: 65:cc:2d:80:23:e7:43:b1:9d:cf:72:29:c7:b4:ed: 7b:34:48:3e:f8:c6:ef:93:00:bf:46:1e:83:c4:a9: c0:e1:a5:a0:c6:2e:35:6a:fd:9a:79:b7:71:17:c4: 36:bf:4f:f5:f7:cc:23:d1:ed:89:d2:c9:63:43:99: c0:f6:cc:08:b0:1e:0d:9f:69:d3:d4:82:5d:bd:ef: 31:4b:ab:9a:4b:ac:ea:ab:a2:d3:3a:2e:d6:76:8b: 0a:e5:28:53:c0:be:7b:a4:7d:ae:bf:b0:6d:26:b5: 23:c4:90:6a:fa:40:f2:56:d1:0a:2c:4f:30:f1:aa: 14:56:2d:54:d8:d5:1a:a2:03:e2:2b:58:cb:20:3f: a5:38:ac:b5:3c:7e:c5:96:8a:06:dd:46:89:8f:d1: 97:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C4:39:AA:68:3F:F9:04:3C:C9:47:2E:7B:3A:3C:B6:8C:DA:33:DA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211407.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1200::/40 Signature Algorithm: sha256WithRSAEncryption 20:01:b5:d9:98:3a:a1:6f:3f:56:59:f4:55:22:e9:2b:2d:33: e2:4f:23:84:39:63:fe:02:a8:61:fe:9f:c0:9a:73:bc:e5:11: 1b:b9:6b:9b:cc:f2:ec:fc:90:bb:3c:ae:2b:0e:25:59:1c:07: 94:3d:51:ab:bb:5c:82:de:59:99:3c:23:85:ca:a9:4d:e2:c0: 87:22:df:b1:54:d0:0a:7b:aa:91:7a:35:8d:28:d4:b3:ae:fd: 38:41:b5:57:48:c9:8d:35:1d:b2:c1:c7:64:9d:d6:32:27:51: c6:34:45:e1:fa:63:83:4f:13:48:94:0e:1d:9f:09:24:e7:dd: dc:7e:2b:e0:46:36:81:ee:f1:d1:d9:12:cc:65:25:7d:8b:49: be:56:d1:c9:80:e8:c0:5d:4a:69:f0:6b:95:9e:7e:0c:13:8a: 58:22:1c:7a:b8:88:15:22:d1:ae:d2:c8:85:d1:a4:16:fc:b3: 18:fc:df:3f:36:4d:a5:b4:51:36:02:c4:c1:ac:88:71:7c:56: d6:6e:55:f8:56:e3:f3:51:9c:bd:10:79:dc:c7:a5:56:fe:50: c6:5a:a2:24:37:3d:35:40:00:5c:7d:7d:5e:aa:0f:19:b1:22: e3:9e:ea:77:bb:50:ba:9f:8f:42:43:74:bd:79:ec:89:96:e6: 42:51:ec:43 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUO1bOCmAN7z2QQ/KeXjqYAOLyV28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTJaFw0yNDExMDMwNDA3MTJaMDMxMTAvBgNV BAMTKEUxQzQzOUFBNjgzRkY5MDQzQ0M5NDcyRTdCM0EzQ0I2OENEQTMzREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyuyjzPiBsm1e6rORPeS/V2XRI /8kXGo1Z31GK8qQjnYbcIdWU+v7seQ9hRbZmXhmF+I9TMDb/+rW+E9WwK7PwRmAk sy2OK+xSR5WN48snuKwWlzms4OmO+cAa/uk+bNgtydIYqJYJkGXMLYAj50Oxnc9y Kce07Xs0SD74xu+TAL9GHoPEqcDhpaDGLjVq/Zp5t3EXxDa/T/X3zCPR7YnSyWND mcD2zAiwHg2fadPUgl297zFLq5pLrOqrotM6LtZ2iwrlKFPAvnukfa6/sG0mtSPE kGr6QPJW0QosTzDxqhRWLVTY1RqiA+IrWMsgP6U4rLU8fsWWigbdRomP0ZcdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4cQ5qmg/+QQ8yUcuezo8tozaM9owHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNDA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBIwDQYJKoZIhvcNAQELBQADggEBACAB tdmYOqFvP1ZZ9FUi6SstM+JPI4Q5Y/4CqGH+n8Cac7zlERu5a5vM8uz8kLs8risO JVkcB5Q9Uau7XILeWZk8I4XKqU3iwIci37FU0Ap7qpF6NY0o1LOu/ThBtVdIyY01 HbLBx2Sd1jInUcY0ReH6Y4NPE0iUDh2fCSTn3dx+K+BGNoHu8dHZEsxlJX2LSb5W 0cmA6MBdSmnwa5WefgwTilgiHHq4iBUi0a7SyIXRpBb8sxj83z82TaW0UTYCxMGs iHF8VtZuVfhW4/NRnL0QedzHpVb+UMZaoiQ3PTVAAFx9fV6qDxmxIuOe6ne7ULqf j0JDdL157ImW5kJR7EM= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org