$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211576.roa File: AS211576.roa (raw, json) Hash identifier: 2l8dNLJXcqaYwIEUwQc88V7X0MEvrg8jEYptBXoTjqs= Subject key identifier: 95:50:BA:6E:5B:F5:78:B6:DB:7F:8B:8B:4F:3B:B9:58:74:17:6A:35 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 010C22CA74D3BE07C78CCDC541947169CF8D3ACB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211576.roa Signing time: Sun 06 Oct 2024 04:44:56 +0000 ROA not before: Sun 06 Oct 2024 04:39:56 +0000 ROA not after: Sun 05 Oct 2025 04:44:56 +0000 asID: 211576 IP address blocks: 2a0a:6040:4500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0c:22:ca:74:d3:be:07:c7:8c:cd:c5:41:94:71:69:cf:8d:3a:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:56 2024 GMT Not After : Oct 5 04:44:56 2025 GMT Subject: CN=9550BA6E5BF578B6DB7F8B8B4F3BB95874176A35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:34:c4:a8:60:2b:30:74:87:8c:63:b6:0c:69: cb:66:77:b1:c3:96:86:e1:90:93:b2:51:ea:23:8a: dc:c4:8a:c9:78:ae:0e:44:cb:da:22:97:64:f0:c1: f6:6a:c0:e3:b7:95:8e:94:ed:6b:16:6c:c4:42:cd: 88:e2:6e:38:75:3c:fa:b9:6e:35:b3:59:d4:d2:ba: 42:d4:f4:6e:bb:09:24:73:55:ba:1f:49:07:69:4d: 1c:43:8f:f6:f3:39:9e:36:69:b6:c3:44:ce:95:fb: 38:25:9a:f7:0e:7f:9e:0e:52:81:8d:b1:d3:5c:19: 87:18:37:d4:61:64:4d:df:f3:bf:66:fc:a4:7d:09: 6f:ba:8d:a5:39:6b:08:59:3a:5f:02:6f:8c:ed:7c: 92:dd:9f:ee:bb:68:05:2b:2d:10:ed:54:bd:fe:f7: f7:b4:71:d0:cd:31:d0:ac:c8:85:ab:eb:c5:22:ad: 13:bb:2b:cb:03:0b:fe:f6:87:d3:a4:9b:d3:6b:e8: ae:39:68:f3:14:ef:4b:f9:55:b9:c2:7b:62:b7:b1: 77:d3:eb:d5:a2:05:64:6f:1b:4e:cd:bd:6e:f8:c5: b5:0d:01:b0:98:d6:74:10:81:f4:c1:34:15:98:7e: e5:36:bc:38:c5:69:fa:ac:5d:8b:51:9b:46:d6:49: 20:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:50:BA:6E:5B:F5:78:B6:DB:7F:8B:8B:4F:3B:B9:58:74:17:6A:35 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211576.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4500::/40 Signature Algorithm: sha256WithRSAEncryption 0e:e6:e7:57:6f:e4:fc:bc:b4:c5:3a:67:b9:da:4a:6a:3f:7d: 75:3c:f4:f1:e4:e1:ca:f8:c8:f5:af:c7:ec:ef:09:0e:83:0c: e1:aa:aa:0f:4f:9a:c3:e6:97:76:c1:23:b1:4d:9d:85:c2:a9: bd:4d:79:1d:bb:76:3c:17:c5:79:e5:3b:c0:b5:b5:1b:37:98: 67:da:a8:d7:76:5a:0b:6d:c1:2b:b8:bb:24:fb:56:b3:8b:07: 76:ab:a1:1a:5f:18:de:47:6b:2f:98:df:76:34:fb:ad:d8:31: d6:37:b2:a5:d0:2e:42:ad:e4:b8:1c:be:c9:d8:bc:6c:fa:4c: 19:eb:20:d8:eb:a1:59:09:b9:90:7c:39:b9:80:ed:e9:03:38: 6c:94:89:f7:f0:c4:19:96:1c:de:43:5a:85:94:84:97:64:5f: 1f:2c:5f:20:5f:2f:ed:e8:0f:a3:9d:c8:6c:fa:3f:7d:ba:af: 41:cf:20:85:be:15:59:fb:20:12:7f:74:63:18:de:95:0e:b5: b2:ed:7a:c7:84:8e:93:47:49:ab:13:6c:d2:eb:4e:9e:04:73: 06:ce:fb:43:e2:e8:4f:08:e9:5f:92:e5:f8:85:80:f2:9f:f5: cd:a9:46:be:9a:3b:66:fd:ef:5b:48:48:14:0a:90:b9:c3:8c: 0f:fe:cd:b6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAQwiynTTvgfHjM3FQZRxac+NOsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTZaFw0yNTEwMDUwNDQ0NTZaMDMxMTAvBgNV BAMTKDk1NTBCQTZFNUJGNTc4QjZEQjdGOEI4QjRGM0JCOTU4NzQxNzZBMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBNMSoYCswdIeMY7YMactmd7HD lobhkJOyUeojitzEisl4rg5Ey9oil2TwwfZqwOO3lY6U7WsWbMRCzYjibjh1PPq5 bjWzWdTSukLU9G67CSRzVbofSQdpTRxDj/bzOZ42abbDRM6V+zglmvcOf54OUoGN sdNcGYcYN9RhZE3f879m/KR9CW+6jaU5awhZOl8Cb4ztfJLdn+67aAUrLRDtVL3+ 9/e0cdDNMdCsyIWr68UirRO7K8sDC/72h9Okm9Nr6K45aPMU70v5VbnCe2K3sXfT 69WiBWRvG07NvW74xbUNAbCY1nQQgfTBNBWYfuU2vDjFafqsXYtRm0bWSSCxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlVC6blv1eLbbf4uLTzu5WHQXajUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNTc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEUwDQYJKoZIhvcNAQELBQADggEBAA7m 51dv5Py8tMU6Z7naSmo/fXU89PHk4cr4yPWvx+zvCQ6DDOGqqg9PmsPml3bBI7FN nYXCqb1NeR27djwXxXnlO8C1tRs3mGfaqNd2WgttwSu4uyT7VrOLB3aroRpfGN5H ay+Y33Y0+63YMdY3sqXQLkKt5LgcvsnYvGz6TBnrINjroVkJuZB8ObmA7ekDOGyU iffwxBmWHN5DWoWUhJdkXx8sXyBfL+3oD6OdyGz6P326r0HPIIW+FVn7IBJ/dGMY 3pUOtbLteseEjpNHSasTbNLrTp4EcwbO+0Pi6E8I6V+S5fiFgPKf9c2pRr6aO2b9 71tISBQKkLnDjA/+zbY= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org