$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211407.roa File: AS211407.roa (raw, json) Hash identifier: zrT+rJoM/VTUioJ6oXeGeAQZOzJMMsFu3VxFSxr0oMw= Subject key identifier: 3A:58:6C:0F:66:47:D5:AF:81:CF:AA:04:83:9F:64:98:08:8D:07:5C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7C04E54329F21A484A47E8F8DE2D126ACF15F870 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211407.roa Signing time: Sun 06 Oct 2024 04:44:59 +0000 ROA not before: Sun 06 Oct 2024 04:39:59 +0000 ROA not after: Sun 05 Oct 2025 04:44:59 +0000 asID: 211407 IP address blocks: 2a0a:6040:1200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:04:e5:43:29:f2:1a:48:4a:47:e8:f8:de:2d:12:6a:cf:15:f8:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:59 2024 GMT Not After : Oct 5 04:44:59 2025 GMT Subject: CN=3A586C0F6647D5AF81CFAA04839F6498088D075C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c2:e5:3a:87:79:94:8d:e6:a7:1c:b4:04:7a: 7b:35:0b:e8:f3:d6:ec:cb:bb:a9:b1:33:72:e3:8a: 0d:1a:06:31:6f:03:cd:e3:b9:59:35:84:74:2d:1e: ec:6d:1d:c7:2f:8f:56:b3:90:17:37:7d:47:77:4e: e2:3e:b4:1f:e3:5c:3e:a3:1b:e5:7c:7b:1f:e5:bb: e0:26:71:80:bc:db:34:84:15:d4:2b:bc:5d:96:3a: d6:30:9c:d9:eb:28:b3:47:ae:d1:59:59:12:05:c2: eb:4c:75:9d:fc:5a:da:fa:77:96:a4:6b:07:84:71: bc:8a:3d:20:a5:67:99:52:45:2c:4f:27:70:43:15: 73:08:fd:c0:8f:56:7b:2b:07:57:4e:b1:23:6b:ab: b5:14:72:8c:a4:7f:1c:cf:22:f1:51:cf:40:dd:2d: 69:91:6a:0e:f7:a6:43:fd:97:cf:96:81:4f:41:8a: 84:7c:05:bb:e1:e0:6c:09:36:a6:7b:ec:e7:6f:29: ef:88:53:e6:34:0a:ef:14:51:7f:14:7d:c0:59:2c: 76:df:ce:51:a3:d8:87:13:40:fa:f5:e0:06:d4:70: a9:df:1f:59:48:ec:07:ef:d2:d3:41:f3:6b:02:c4: a3:1d:9e:e9:b4:8c:0b:6c:81:dd:48:88:e6:5d:30: 4e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:58:6C:0F:66:47:D5:AF:81:CF:AA:04:83:9F:64:98:08:8D:07:5C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211407.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1200::/40 Signature Algorithm: sha256WithRSAEncryption b5:aa:61:59:56:b2:2f:82:94:37:62:ba:e4:4d:55:80:dd:a6: 14:da:a3:31:00:42:77:bf:f9:bd:ef:04:47:89:53:83:de:90: ee:3f:74:42:7b:d2:30:19:95:98:ee:9b:6c:73:d3:e3:ed:c6: cf:d2:24:c8:46:5b:26:18:9a:14:87:77:98:81:70:6f:7d:a5: 94:c4:de:5a:c5:91:9e:30:4e:7e:e2:23:72:0d:27:59:25:c1: ec:d7:97:d4:89:95:dd:a0:7b:e2:06:9f:71:cb:2c:bf:28:17: 7b:07:75:03:50:7a:06:eb:26:15:d0:dc:ae:24:08:43:ad:1b: 69:e6:de:10:92:2a:dd:03:a3:00:1b:c2:8c:39:0e:d2:0c:67: 26:d4:57:9d:85:ef:3e:3e:bb:a5:fe:bf:61:c0:02:40:86:e5: 37:28:7d:16:3d:33:5b:c6:06:08:27:d1:d1:99:98:46:6f:83: 11:96:c8:5b:eb:9d:9a:30:60:24:6f:09:e2:7c:6d:8b:cb:3c: 47:7c:a3:88:b3:2f:b2:32:15:39:9e:3d:1a:cb:88:59:3d:02: 97:42:86:63:dd:77:77:d5:26:a7:0b:3b:50:74:63:2a:34:3c: 34:62:60:64:8f:14:78:16:7d:62:89:9f:a9:8e:37:b7:15:c4: 6d:e0:ce:d9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUfATlQynyGkhKR+j43i0Sas8V+HAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTlaFw0yNTEwMDUwNDQ0NTlaMDMxMTAvBgNV BAMTKDNBNTg2QzBGNjY0N0Q1QUY4MUNGQUEwNDgzOUY2NDk4MDg4RDA3NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcwuU6h3mUjeanHLQEens1C+jz 1uzLu6mxM3Ljig0aBjFvA83juVk1hHQtHuxtHccvj1azkBc3fUd3TuI+tB/jXD6j G+V8ex/lu+AmcYC82zSEFdQrvF2WOtYwnNnrKLNHrtFZWRIFwutMdZ38Wtr6d5ak aweEcbyKPSClZ5lSRSxPJ3BDFXMI/cCPVnsrB1dOsSNrq7UUcoykfxzPIvFRz0Dd LWmRag73pkP9l8+WgU9BioR8Bbvh4GwJNqZ77OdvKe+IU+Y0Cu8UUX8UfcBZLHbf zlGj2IcTQPr14AbUcKnfH1lI7Afv0tNB82sCxKMdnum0jAtsgd1IiOZdME4vAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUOlhsD2ZH1a+Bz6oEg59kmAiNB1wwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNDA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBIwDQYJKoZIhvcNAQELBQADggEBALWq YVlWsi+ClDdiuuRNVYDdphTaozEAQne/+b3vBEeJU4PekO4/dEJ70jAZlZjum2xz 0+Ptxs/SJMhGWyYYmhSHd5iBcG99pZTE3lrFkZ4wTn7iI3INJ1klwezXl9SJld2g e+IGn3HLLL8oF3sHdQNQegbrJhXQ3K4kCEOtG2nm3hCSKt0DowAbwow5DtIMZybU V52F7z4+u6X+v2HAAkCG5TcofRY9M1vGBggn0dGZmEZvgxGWyFvrnZowYCRvCeJ8 bYvLPEd8o4izL7IyFTmePRrLiFk9ApdChmPdd3fVJqcLO1B0Yyo0PDRiYGSPFHgW fWKJn6mON7cVxG3gztk= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org