$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211576.roa File: AS211576.roa (raw, json) Hash identifier: Iqr8kdCti4rCQOf/mCV8dr004dyV5VEHexSIUE07kY0= Subject key identifier: 8D:7B:99:88:F5:F1:F0:B4:3F:61:55:91:98:57:57:39:22:B2:A8:03 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4DF74DF84E527EED89E9C62C890FADFCA06EE79F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211576.roa Signing time: Sun 05 Nov 2023 04:07:21 +0000 ROA not before: Sun 05 Nov 2023 04:02:21 +0000 ROA not after: Sun 03 Nov 2024 04:07:21 +0000 asID: 211576 IP address blocks: 2a0a:6040:4500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:f7:4d:f8:4e:52:7e:ed:89:e9:c6:2c:89:0f:ad:fc:a0:6e:e7:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:21 2023 GMT Not After : Nov 3 04:07:21 2024 GMT Subject: CN=8D7B9988F5F1F0B43F6155919857573922B2A803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a8:55:28:ba:2d:53:71:12:cc:3a:65:f9:cf: 73:34:3f:f5:de:f0:a5:e0:95:fd:33:ba:79:b0:c0: 84:ce:d9:bd:17:1f:2c:a8:fc:93:f3:cb:34:32:5e: 24:44:c0:54:dd:a8:88:54:3c:ea:62:e9:f8:f1:84: a1:d0:86:d5:0b:ea:98:f3:20:9a:1f:cf:26:af:92: 64:92:9c:6e:ee:cd:70:fa:b9:c3:5f:b3:b1:7d:d9: 76:a4:43:65:09:27:ab:c0:56:2e:ed:ea:a6:0e:a7: 89:5f:6c:ad:ba:47:f8:8d:1a:50:ed:7d:34:b5:d1: 0c:13:e1:61:18:ae:36:20:f0:a9:11:e7:d3:d5:8b: c4:a0:f2:0c:9d:ae:be:b3:94:29:b4:be:06:4b:2b: 29:8b:b7:09:63:61:64:04:92:d5:bc:5d:10:cb:b4: 21:f4:4e:8e:5c:23:4b:a3:02:ec:6d:74:58:1f:90: d4:dd:7a:c9:95:20:3d:75:55:b8:22:a3:70:e0:b4: 80:87:d3:f2:34:b3:62:7b:f0:a6:bb:5c:e6:22:e5: 65:1f:62:a0:42:72:69:80:24:01:39:5b:9b:fa:d4: c7:a0:35:6b:f7:cf:66:ae:b0:c9:ae:d0:b4:5d:68: 60:94:a6:96:8d:e9:0b:d5:86:5b:31:96:a4:91:e8: 0e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7B:99:88:F5:F1:F0:B4:3F:61:55:91:98:57:57:39:22:B2:A8:03 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211576.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4500::/40 Signature Algorithm: sha256WithRSAEncryption aa:8f:e3:0c:4e:9d:44:ce:1c:ad:ef:d8:4b:d4:30:d3:af:b1: 5b:b9:9f:d6:20:a6:ef:81:a3:8a:5e:cd:cb:63:03:f4:95:28: 34:ac:2a:3b:fe:87:ad:b0:02:4d:c4:0e:53:6e:db:c6:c6:95: 7c:e1:ac:0f:0a:15:6b:a7:ea:c4:1e:e2:3b:b4:ed:37:16:bf: a0:c3:0e:f4:40:22:ef:c3:47:50:85:8e:aa:71:ab:34:87:23: 80:62:9d:e5:ad:c8:76:35:8c:da:47:9e:35:cc:2d:a6:7b:f4: 17:5e:9b:25:27:6e:34:28:ea:54:ca:02:01:cf:a7:5f:6f:b6: e4:9c:23:ec:6c:65:5e:7f:d7:0a:29:7b:a9:3a:29:da:c5:bf: 73:54:f7:9a:8d:fd:9a:7b:48:cc:42:0d:1e:01:65:8b:ab:9b: 5f:7c:75:a9:e6:4c:c5:d4:41:70:9e:40:7b:fe:83:c3:23:b6: 67:a1:f7:8a:2c:79:84:e7:65:3a:01:a1:39:1c:ae:81:98:3d: 73:7f:e9:cb:c1:86:78:3f:a8:1e:ed:37:c1:f3:79:90:ed:bd: 1e:28:cb:1f:41:c7:17:ca:da:5b:98:78:88:e4:e5:b0:72:a0: c6:ef:01:89:1c:0f:35:26:3f:2a:98:f1:20:de:51:90:2b:bc: 9d:3f:a2:43 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTfdN+E5Sfu2J6cYsiQ+t/KBu558wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjFaFw0yNDExMDMwNDA3MjFaMDMxMTAvBgNV BAMTKDhEN0I5OTg4RjVGMUYwQjQzRjYxNTU5MTk4NTc1NzM5MjJCMkE4MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIqFUoui1TcRLMOmX5z3M0P/Xe 8KXglf0zunmwwITO2b0XHyyo/JPzyzQyXiREwFTdqIhUPOpi6fjxhKHQhtUL6pjz IJofzyavkmSSnG7uzXD6ucNfs7F92XakQ2UJJ6vAVi7t6qYOp4lfbK26R/iNGlDt fTS10QwT4WEYrjYg8KkR59PVi8Sg8gydrr6zlCm0vgZLKymLtwljYWQEktW8XRDL tCH0To5cI0ujAuxtdFgfkNTdesmVID11Vbgio3DgtICH0/I0s2J78Ka7XOYi5WUf YqBCcmmAJAE5W5v61MegNWv3z2ausMmu0LRdaGCUppaN6QvVhlsxlqSR6A5TAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUjXuZiPXx8LQ/YVWRmFdXOSKyqAMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNTc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEUwDQYJKoZIhvcNAQELBQADggEBAKqP 4wxOnUTOHK3v2EvUMNOvsVu5n9Ygpu+Bo4pezctjA/SVKDSsKjv+h62wAk3EDlNu 28bGlXzhrA8KFWun6sQe4ju07TcWv6DDDvRAIu/DR1CFjqpxqzSHI4BineWtyHY1 jNpHnjXMLaZ79BdemyUnbjQo6lTKAgHPp19vtuScI+xsZV5/1wope6k6KdrFv3NU 95qN/Zp7SMxCDR4BZYurm198danmTMXUQXCeQHv+g8Mjtmeh94oseYTnZToBoTkc roGYPXN/6cvBhng/qB7tN8HzeZDtvR4oyx9BxxfK2luYeIjk5bByoMbvAYkcDzUm PyqY8SDeUZArvJ0/okM= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org