$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211562.roa File: AS211562.roa (raw, json) Hash identifier: 1Yc5OVkpIflu7iGOPeACo/QoQtwgygnGOmffyTga4jU= Subject key identifier: 8B:F8:97:68:14:65:50:B8:4D:2D:D5:40:87:2C:B9:9D:04:39:2A:DB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 739FF8730E75BCA89C8A369817DA7FCD102931 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211562.roa Signing time: Mon 22 Jan 2024 22:47:34 +0000 ROA not before: Mon 22 Jan 2024 22:42:34 +0000 ROA not after: Mon 20 Jan 2025 22:47:34 +0000 asID: 211562 IP address blocks: 2a06:9f81:3500::/40 maxlen: 48 2a06:9f81:3600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:9f:f8:73:0e:75:bc:a8:9c:8a:36:98:17:da:7f:cd:10:29:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jan 22 22:42:34 2024 GMT Not After : Jan 20 22:47:34 2025 GMT Subject: CN=8BF89768146550B84D2DD540872CB99D04392ADB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d1:82:4f:ea:35:72:e4:d9:ae:f3:4b:87:cc: ff:ec:ed:6b:f0:05:7e:60:2a:a2:1e:12:fa:47:ce: 8e:8e:07:03:b8:e0:ba:c0:a2:35:7b:b9:7f:43:99: 7a:24:ec:c1:04:bb:5b:a8:9c:88:b9:fe:f3:13:d8: 02:55:e5:29:67:86:68:5c:1e:98:e0:80:4c:48:07: cc:70:83:7e:fb:82:e0:ea:a7:e2:96:37:02:86:3c: ff:6f:03:1b:c9:d0:d5:4d:03:1f:af:ed:a0:48:15: 8a:a0:ca:16:3c:9a:94:c2:53:93:ef:70:7d:58:a0: 63:16:54:e2:e5:e7:80:1a:b1:22:a5:52:29:80:62: 6d:49:4e:56:47:a0:2a:c6:cc:00:4a:0e:2f:e3:04: 13:31:a2:64:7d:71:7b:7c:39:17:04:ee:0b:52:bb: 3c:df:b2:31:e1:c1:43:5d:66:a0:df:5b:4e:0b:3f: 72:5e:ba:6b:06:0d:fe:40:65:b0:43:09:21:9a:f3: 51:32:0a:c3:4f:87:d0:09:b3:8f:07:56:df:b3:83: ab:e7:19:58:00:7f:ec:0b:c3:5c:58:36:b1:4d:4e: 1f:21:19:03:16:8a:c1:ee:28:fe:d7:e5:07:bb:09: 34:29:94:db:69:65:4e:b2:23:d3:c2:22:af:a9:9a: 7f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F8:97:68:14:65:50:B8:4D:2D:D5:40:87:2C:B9:9D:04:39:2A:DB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211562.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3500::-2a06:9f81:36ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 16:ca:5d:da:e6:49:44:22:37:e4:c9:cf:08:74:c8:84:f2:99: a5:1c:e6:ac:26:0e:f3:96:89:8b:6a:3f:c4:c3:60:be:c2:27: 3d:49:a5:bc:e4:96:07:4b:4e:a5:43:45:45:74:17:bd:63:d2: a1:e6:ef:3e:2e:52:fa:62:95:97:6f:d6:a8:bc:cc:f0:ab:3e: 95:3d:6b:9b:2b:6e:f0:97:6c:4c:f6:d9:75:84:9a:dc:2a:71: 61:7b:b3:54:91:d5:a5:96:11:bf:ac:06:b8:96:62:bf:65:0d: be:5c:3f:74:81:02:94:5f:a3:45:a3:7b:dc:8d:39:e5:a3:0c: 5e:ae:86:4c:47:37:93:e5:72:27:48:82:f5:47:04:5a:2b:27: 9a:32:3f:3a:2c:e7:a5:65:35:68:da:fd:0a:5a:1c:a9:34:9b: 21:55:e0:61:56:da:a9:11:c4:00:35:e1:1b:f4:8c:5e:ee:cc: 39:59:fb:67:1e:96:df:05:21:af:af:40:e7:50:82:48:2a:61: 41:aa:05:f1:60:44:b0:a0:2f:9f:3d:d9:81:bb:fc:eb:1d:b7: d1:73:85:38:2d:0f:0e:56:65:90:90:e4:46:3e:d3:23:f7:37: bb:72:ef:f8:15:a5:a3:35:9c:09:90:38:f9:af:ba:a6:68:ff: e2:aa:5b:78 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgITc5/4cw51vKicijaYF9p/zRApMTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygwRTM1N0REQTA0QjgxMDc2MjYxMjRGNTJDRkMyNDM5Qjc2 RDg1QUY5MB4XDTI0MDEyMjIyNDIzNFoXDTI1MDEyMDIyNDczNFowMzExMC8GA1UE AxMoOEJGODk3NjgxNDY1NTBCODREMkRENTQwODcyQ0I5OUQwNDM5MkFEQjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANvRgk/qNXLk2a7zS4fM/+zta/AF fmAqoh4S+kfOjo4HA7jgusCiNXu5f0OZeiTswQS7W6iciLn+8xPYAlXlKWeGaFwe mOCATEgHzHCDfvuC4Oqn4pY3AoY8/28DG8nQ1U0DH6/toEgViqDKFjyalMJTk+9w fVigYxZU4uXngBqxIqVSKYBibUlOVkegKsbMAEoOL+MEEzGiZH1xe3w5FwTuC1K7 PN+yMeHBQ11moN9bTgs/cl66awYN/kBlsEMJIZrzUTIKw0+H0AmzjwdW37ODq+cZ WAB/7AvDXFg2sU1OHyEZAxaKwe4o/tflB7sJNCmU22llTrIj08Iir6maf4ECAwEA AaOCAf4wggH6MB0GA1UdDgQWBBSL+JdoFGVQuE0t1UCHLLmdBDkq2zAfBgNVHSME GDAWgBQONX3aBLgQdiYST1LPwkObdtha+TAOBgNVHQ8BAf8EBAMCB4AwbwYDVR0f BGgwZjBkoGKgYIZecnN5bmM6Ly9jbG91ZGllLXJlcG8ucnBraS5hcHAvcmVwby9D TE9VRElFLVJQS0kvMC8wRTM1N0REQTA0QjgxMDc2MjYxMjRGNTJDRkMyNDM5Qjc2 RDg1QUY5LmNybDCBkwYIKwYBBQUHAQEEgYYwgYMwgYAGCCsGAQUFBzAChnRyc3lu YzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYz ZTAxODU3NTVjOTFiZTNmOWQvMi8wRTM1N0REQTA0QjgxMDc2MjYxMjRGNTJDRkMy NDM5Qjc2RDg1QUY5LmNlcjBaBggrBgEFBQcBCwROMEwwSgYIKwYBBQUHMAuGPnJz eW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8vQ0xPVURJRS1SUEtJLzAv QVMyMTE1NjIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUH AQcBAf8EHDAaMBgEAgACMBIwEAMGACoGn4E1AwYAKgafgTYwDQYJKoZIhvcNAQEL BQADggEBABbKXdrmSUQiN+TJzwh0yITymaUc5qwmDvOWiYtqP8TDYL7CJz1Jpbzk lgdLTqVDRUV0F71j0qHm7z4uUvpilZdv1qi8zPCrPpU9a5srbvCXbEz22XWEmtwq cWF7s1SR1aWWEb+sBriWYr9lDb5cP3SBApRfo0Wje9yNOeWjDF6uhkxHN5PlcidI gvVHBForJ5oyPzos56VlNWja/QpaHKk0myFV4GFW2qkRxAA14Rv0jF7uzDlZ+2ce lt8FIa+vQOdQgkgqYUGqBfFgRLCgL5892YG7/Osdt9FzhTgtDw5WZZCQ5EY+0yP3 N7ty7/gVpaM1nAmQOPmvuqZo/+KqW3g= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org