$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211679.roa File: AS211679.roa (raw, json) Hash identifier: SJNRUr6YoPZNeprY8sldwLgdDRpioNCE1hH2tj+A4yc= Subject key identifier: 5C:AB:3D:87:E2:71:9E:D9:13:A0:D7:9A:86:D8:A2:A7:1D:B0:04:B5 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 53F5C0B1057329671A2A740F732DAA97AFD62DBC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211679.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 211679 IP address blocks: 2a0a:6040:e800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f5:c0:b1:05:73:29:67:1a:2a:74:0f:73:2d:aa:97:af:d6:2d:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=5CAB3D87E2719ED913A0D79A86D8A2A71DB004B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b5:96:d1:60:fc:43:98:7a:05:ed:32:b6:ff: 01:c2:27:ed:18:13:25:46:7d:9f:8b:41:68:5d:b9: b7:bc:33:5c:06:72:97:59:d8:3f:48:e4:e2:68:be: 6b:52:21:eb:ea:bd:53:ff:81:30:11:16:29:4c:f5: 4e:49:2e:5b:e7:80:35:ab:b1:30:f4:ec:7a:0b:05: 23:a9:30:07:84:03:04:7b:75:df:e6:b9:21:1e:e7: ba:6b:f5:d4:7b:9c:10:8b:0a:87:fc:c0:e2:42:8d: 72:d0:0c:e8:4a:06:ed:ed:a3:c3:fe:d4:fc:f4:e1: 52:86:cd:b4:83:8e:14:cf:1c:70:94:aa:c6:fe:15: 76:11:da:9a:23:1b:e4:2c:28:95:74:54:fa:6e:03: 7a:01:32:6d:3d:40:cf:73:f0:35:44:ef:7e:64:1a: fa:5b:c0:6c:21:2f:54:b9:d6:88:5f:df:e6:fc:de: cc:67:ca:b6:7f:08:a6:b7:0c:3e:7f:83:13:c5:1c: 59:ad:b9:69:8b:91:ef:37:f0:ac:74:eb:52:87:17: ec:d3:92:78:84:b3:a7:93:3b:a2:57:0f:d3:e9:ac: c5:28:cc:8d:bd:27:87:ef:b9:9f:15:24:77:50:59: 89:57:1c:61:4c:1d:8c:3e:6c:53:c4:78:e6:52:55: 25:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:AB:3D:87:E2:71:9E:D9:13:A0:D7:9A:86:D8:A2:A7:1D:B0:04:B5 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211679.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e800::/40 Signature Algorithm: sha256WithRSAEncryption 05:8d:67:72:6a:1f:7e:84:1c:e6:e1:ef:4b:a1:b7:21:ed:d4: ca:47:ff:82:de:fa:3e:17:69:ef:80:0d:18:0e:e7:b4:6b:17: 3c:36:05:7c:b2:9c:e8:06:e0:ab:a9:98:4d:56:a7:f3:66:87: 06:ea:07:d6:7e:26:7c:44:e6:5b:26:69:5f:59:f7:19:58:8f: e2:10:89:7b:8a:0f:69:ea:4e:e2:4d:4c:59:e0:94:63:38:f9: 58:8e:11:d8:57:93:fb:3e:02:30:d1:85:f3:63:9f:26:ed:ca: e5:52:07:60:ee:a1:6d:80:2d:14:dc:22:0a:ba:92:4a:9c:4a: 3a:6a:36:6d:e2:b6:cd:e4:21:89:de:08:aa:2f:d1:6d:81:72: b9:d6:df:ff:01:fe:eb:5b:4e:59:07:40:c6:b8:7b:12:ea:23: 59:98:3c:9f:08:8b:44:67:f3:5e:aa:11:1b:43:d9:73:08:44: af:da:d3:2c:63:8b:f1:b4:61:2e:8d:af:3d:38:20:eb:35:28: 94:af:48:45:ee:02:a8:b4:37:c9:48:57:64:26:7d:e4:06:9f: bc:eb:53:00:23:80:b0:8f:1a:50:1e:0c:77:0c:aa:0d:eb:91: df:ad:8a:16:f5:3f:fa:7f:98:63:a4:f1:19:7d:0b:70:df:fe: fe:e6:c0:98 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUU/XAsQVzKWcaKnQPcy2ql6/WLbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKDVDQUIzRDg3RTI3MTlFRDkxM0EwRDc5QTg2RDhBMkE3MURCMDA0QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0tZbRYPxDmHoF7TK2/wHCJ+0Y EyVGfZ+LQWhdube8M1wGcpdZ2D9I5OJovmtSIevqvVP/gTARFilM9U5JLlvngDWr sTD07HoLBSOpMAeEAwR7dd/muSEe57pr9dR7nBCLCof8wOJCjXLQDOhKBu3to8P+ 1Pz04VKGzbSDjhTPHHCUqsb+FXYR2pojG+QsKJV0VPpuA3oBMm09QM9z8DVE735k GvpbwGwhL1S51ohf3+b83sxnyrZ/CKa3DD5/gxPFHFmtuWmLke838Kx061KHF+zT kniEs6eTO6JXD9PprMUozI29J4fvuZ8VJHdQWYlXHGFMHYw+bFPEeOZSVSXJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXKs9h+JxntkToNeahtiipx2wBLUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNjc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOgwDQYJKoZIhvcNAQELBQADggEBAAWN Z3JqH36EHObh70uhtyHt1MpH/4Le+j4Xae+ADRgO57RrFzw2BXyynOgG4KupmE1W p/NmhwbqB9Z+JnxE5lsmaV9Z9xlYj+IQiXuKD2nqTuJNTFnglGM4+ViOEdhXk/s+ AjDRhfNjnybtyuVSB2DuoW2ALRTcIgq6kkqcSjpqNm3its3kIYneCKov0W2BcrnW 3/8B/utbTlkHQMa4exLqI1mYPJ8Ii0Rn816qERtD2XMIRK/a0yxji/G0YS6Nrz04 IOs1KJSvSEXuAqi0N8lIV2QmfeQGn7zrUwAjgLCPGlAeDHcMqg3rkd+tihb1P/p/ mGOk8Rl9C3Df/v7mwJg= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org