$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211443.roa File: AS211443.roa (raw, json) Hash identifier: jaKoVst/wDApG5KVkwVIPJLvWg5fU0VBrXbmjldws5g= Subject key identifier: 93:10:80:80:A0:4D:B2:BD:99:6F:95:CC:DA:64:D2:33:01:1A:F1:8A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6772B444574D264BFF8689FCF94A9DE48E19C148 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211443.roa Signing time: Sun 05 Nov 2023 04:06:58 +0000 ROA not before: Sun 05 Nov 2023 04:01:58 +0000 ROA not after: Sun 03 Nov 2024 04:06:58 +0000 asID: 211443 IP address blocks: 2a0a:6040:e200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:72:b4:44:57:4d:26:4b:ff:86:89:fc:f9:4a:9d:e4:8e:19:c1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:58 2023 GMT Not After : Nov 3 04:06:58 2024 GMT Subject: CN=93108080A04DB2BD996F95CCDA64D233011AF18A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:42:76:a1:f9:23:d9:00:c5:6e:bb:75:4d:0c: 33:f3:a4:3a:d3:a0:e7:a3:31:a4:88:06:0b:52:5e: 1c:73:b7:62:e6:e3:03:8f:1f:d3:e8:c8:5c:c8:80: 2e:e4:a6:a7:54:e1:c8:e4:29:29:0e:b1:f5:f1:79: a4:51:cb:97:32:b8:71:9f:54:96:f3:d4:65:65:a6: c1:6e:71:a3:2f:47:33:d4:85:e3:a3:dd:fa:06:8f: 91:24:e6:62:51:b2:32:84:96:e2:7b:1f:69:df:d3: c6:11:1a:58:6c:48:21:ef:5a:8b:9a:69:93:b4:c0: fe:f0:11:88:ad:0e:26:20:48:87:58:be:e0:9d:66: e0:2d:0f:bd:5b:16:50:14:5c:85:d6:b2:cb:93:a7: bc:06:3f:40:f8:da:6b:93:41:a7:06:a8:1e:e4:98: b7:b5:9d:43:47:da:c0:e0:12:6d:94:66:a7:49:e3: 3a:41:32:50:0c:0f:4c:13:24:29:bf:13:6e:43:7e: 54:78:7a:fb:53:2d:a9:8a:87:81:c4:9e:4a:ca:67: 95:22:03:6c:be:86:cc:85:a0:68:45:88:6c:95:87: 4e:34:36:17:3e:5f:f5:83:05:f5:59:70:b6:c6:40: c0:57:1c:a8:9a:73:3c:80:0d:e6:e0:c9:e3:b2:a5: c6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:10:80:80:A0:4D:B2:BD:99:6F:95:CC:DA:64:D2:33:01:1A:F1:8A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211443.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e200::/40 Signature Algorithm: sha256WithRSAEncryption 43:b8:08:92:fb:92:b4:20:a0:ac:fd:fb:7c:0d:e5:94:49:06: cd:1d:cf:04:3d:65:cd:cf:f3:2d:f4:9b:4d:99:60:bc:70:cb: 27:fe:a1:7d:b5:2f:84:90:c3:7f:65:20:08:46:00:04:d4:42: fa:03:f1:a3:31:b8:51:1e:fa:d9:a2:a4:67:94:21:da:ab:9e: 05:15:9f:53:5d:ef:fb:0e:f7:cc:d9:7e:60:56:00:c2:56:ad: 06:59:4c:6d:38:91:6a:cc:47:70:7b:4a:fb:d6:fd:99:b6:46: be:92:ec:9f:43:c1:be:86:7f:74:b3:70:88:2d:6f:ea:0e:96: 25:07:4e:d9:46:78:ed:19:5c:a8:54:07:83:7f:79:35:20:86: 08:0e:7e:0b:49:98:40:ad:c0:ac:df:8f:14:78:fa:1e:27:06: 4f:8a:db:dd:ac:62:7f:41:73:90:fd:24:61:b2:04:96:b7:3e: 38:fb:8c:5b:7f:84:69:f4:90:2a:b0:51:f1:05:5d:fe:64:87: 55:11:2a:65:72:43:ff:75:0e:81:95:3a:6e:fa:06:41:a2:9c: cd:41:19:fe:dc:36:47:31:02:af:3a:0e:c3:1c:45:f8:f9:ad: 7d:46:5f:c9:5c:e4:fb:ca:5f:df:6a:1a:f9:31:80:4b:e6:4a: 4f:ca:18:ec -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZ3K0RFdNJkv/hon8+Uqd5I4ZwUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNThaFw0yNDExMDMwNDA2NThaMDMxMTAvBgNV BAMTKDkzMTA4MDgwQTA0REIyQkQ5OTZGOTVDQ0RBNjREMjMzMDExQUYxOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnQnah+SPZAMVuu3VNDDPzpDrT oOejMaSIBgtSXhxzt2Lm4wOPH9PoyFzIgC7kpqdU4cjkKSkOsfXxeaRRy5cyuHGf VJbz1GVlpsFucaMvRzPUheOj3foGj5Ek5mJRsjKEluJ7H2nf08YRGlhsSCHvWoua aZO0wP7wEYitDiYgSIdYvuCdZuAtD71bFlAUXIXWssuTp7wGP0D42muTQacGqB7k mLe1nUNH2sDgEm2UZqdJ4zpBMlAMD0wTJCm/E25DflR4evtTLamKh4HEnkrKZ5Ui A2y+hsyFoGhFiGyVh040Nhc+X/WDBfVZcLbGQMBXHKiaczyADebgyeOypcbrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUkxCAgKBNsr2Zb5XM2mTSMwEa8YowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNDQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOIwDQYJKoZIhvcNAQELBQADggEBAEO4 CJL7krQgoKz9+3wN5ZRJBs0dzwQ9Zc3P8y30m02ZYLxwyyf+oX21L4SQw39lIAhG AATUQvoD8aMxuFEe+tmipGeUIdqrngUVn1Nd7/sO98zZfmBWAMJWrQZZTG04kWrM R3B7SvvW/Zm2Rr6S7J9Dwb6Gf3SzcIgtb+oOliUHTtlGeO0ZXKhUB4N/eTUghggO fgtJmECtwKzfjxR4+h4nBk+K292sYn9Bc5D9JGGyBJa3Pjj7jFt/hGn0kCqwUfEF Xf5kh1URKmVyQ/91DoGVOm76BkGinM1BGf7cNkcxAq86DsMcRfj5rX1GX8lc5PvK X99qGvkxgEvmSk/KGOw= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org