$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211443.roa File: AS211443.roa (raw, json) Hash identifier: ep6n8QG5BUme4A5jS8/wHi0dDmUF1+6Ddk1O8blcoTQ= Subject key identifier: B9:B5:DD:5C:BA:34:1A:8E:DD:CE:D2:9E:E8:AD:56:31:FA:E4:D6:AB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2D328AD2523C6CF7400062AF9407314B7065989A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211443.roa Signing time: Sun 06 Oct 2024 04:45:09 +0000 ROA not before: Sun 06 Oct 2024 04:40:09 +0000 ROA not after: Sun 05 Oct 2025 04:45:09 +0000 asID: 211443 IP address blocks: 2a0a:6040:e200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:32:8a:d2:52:3c:6c:f7:40:00:62:af:94:07:31:4b:70:65:98:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:09 2024 GMT Not After : Oct 5 04:45:09 2025 GMT Subject: CN=B9B5DD5CBA341A8EDDCED29EE8AD5631FAE4D6AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5d:de:76:c9:a7:58:02:e6:71:fc:23:af:c1: 0b:0d:0f:58:75:0a:44:2d:33:e8:7e:60:80:58:f8: dd:f3:70:3b:16:65:72:d3:cc:c9:46:f9:80:f7:a1: 23:f7:69:ca:58:61:9d:25:43:19:7b:85:30:26:29: fd:a3:86:16:a3:df:8a:44:94:0c:90:ba:31:36:91: fa:74:e6:8b:84:cd:1d:9c:11:3f:f1:25:a7:1c:d1: 2e:0f:10:9e:74:49:eb:97:b2:fe:18:41:68:93:43: 45:2c:10:ac:46:f3:2a:72:88:70:72:90:ea:ca:c6: a8:5a:a0:de:ef:14:14:69:58:8c:10:56:3b:77:c3: b1:02:9f:07:b9:79:02:e4:b7:ef:16:fc:85:62:e1: 9a:84:aa:3f:ca:17:24:b5:73:6e:d0:2d:6f:d1:95: 94:4f:3c:e0:79:29:46:01:c6:09:83:79:82:08:d3: 5b:f7:fa:13:50:3f:b3:6b:17:4f:24:b2:54:9e:53: c1:7c:67:c8:7b:25:ae:1d:e3:73:7a:be:2c:11:d9: 23:c6:7e:e0:74:6d:5d:a8:c1:4e:e3:9b:d7:bb:67: c6:87:2b:c0:82:b4:27:db:e4:9c:e9:de:6f:77:4e: c2:93:78:73:b3:8e:32:d0:68:f6:89:5f:99:bb:b2: a1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B5:DD:5C:BA:34:1A:8E:DD:CE:D2:9E:E8:AD:56:31:FA:E4:D6:AB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211443.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e200::/40 Signature Algorithm: sha256WithRSAEncryption 7b:90:f1:8f:f2:f6:9f:e8:62:1e:b7:af:8c:37:d1:57:13:b3: 54:2b:0e:37:b7:06:78:7a:4d:54:3f:0e:87:86:c2:cf:ae:05: 07:06:3f:3f:13:cd:68:56:0d:cc:63:60:5d:42:66:f8:2b:aa: fc:65:c3:75:8d:55:37:1e:5f:ee:a9:96:c2:a2:5e:c7:c5:1d: 9c:89:ce:b4:f3:5a:94:00:98:d5:be:56:68:77:b5:20:0d:28: 94:91:99:c6:35:67:02:22:58:32:4c:ee:89:9f:ce:18:b9:2e: 45:fe:32:e7:19:d1:5e:cf:38:2a:1a:53:d7:6e:35:fb:72:47: 6d:32:e6:0f:40:fd:03:c5:e9:38:3e:ca:e4:fd:fe:61:b3:e4: 5c:4f:c4:df:b6:5b:45:e9:7d:78:c3:5a:71:ae:49:cd:eb:5d: c6:9a:64:14:de:14:11:f2:83:45:1d:fc:9d:ed:1a:b5:d3:dc: b9:ae:36:ee:56:bc:c1:6a:71:13:5a:af:3a:b6:fb:d2:b3:76: 47:14:a9:2f:00:61:3d:6d:ff:63:ac:7b:a7:4b:0e:dc:22:af: 8c:ec:54:b5:2c:08:ed:16:bf:ba:eb:3a:54:24:8e:24:07:4c: c7:f4:79:01:08:b1:e6:71:71:34:31:84:d8:77:ec:19:b0:c5: dc:6c:8b:f4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIULTKK0lI8bPdAAGKvlAcxS3BlmJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDlaFw0yNTEwMDUwNDQ1MDlaMDMxMTAvBgNV BAMTKEI5QjVERDVDQkEzNDFBOEVERENFRDI5RUU4QUQ1NjMxRkFFNEQ2QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNXd52yadYAuZx/COvwQsND1h1 CkQtM+h+YIBY+N3zcDsWZXLTzMlG+YD3oSP3acpYYZ0lQxl7hTAmKf2jhhaj34pE lAyQujE2kfp05ouEzR2cET/xJacc0S4PEJ50SeuXsv4YQWiTQ0UsEKxG8ypyiHBy kOrKxqhaoN7vFBRpWIwQVjt3w7ECnwe5eQLkt+8W/IVi4ZqEqj/KFyS1c27QLW/R lZRPPOB5KUYBxgmDeYII01v3+hNQP7NrF08kslSeU8F8Z8h7Ja4d43N6viwR2SPG fuB0bV2owU7jm9e7Z8aHK8CCtCfb5Jzp3m93TsKTeHOzjjLQaPaJX5m7sqHrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUubXdXLo0Go7dztKe6K1WMfrk1qswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNDQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOIwDQYJKoZIhvcNAQELBQADggEBAHuQ 8Y/y9p/oYh63r4w30VcTs1QrDje3Bnh6TVQ/DoeGws+uBQcGPz8TzWhWDcxjYF1C Zvgrqvxlw3WNVTceX+6plsKiXsfFHZyJzrTzWpQAmNW+Vmh3tSANKJSRmcY1ZwIi WDJM7omfzhi5LkX+MucZ0V7POCoaU9duNftyR20y5g9A/QPF6Tg+yuT9/mGz5FxP xN+2W0XpfXjDWnGuSc3rXcaaZBTeFBHyg0Ud/J3tGrXT3LmuNu5WvMFqcRNarzq2 +9KzdkcUqS8AYT1t/2Ose6dLDtwir4zsVLUsCO0Wv7rrOlQkjiQHTMf0eQEIseZx cTQxhNh37Bmwxdxsi/Q= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org