$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211679.roa File: AS211679.roa (raw, json) Hash identifier: B/qrjiFocEJjSpzEWaBU+J1KkH2+j0YSvkMcg4EseiQ= Subject key identifier: B7:40:F7:AB:6F:9A:A5:4D:AC:BD:F7:BE:82:61:BF:DA:C5:48:A0:0B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3684B0B9E4F77EFAE79723D8AAABC0AA9137C569 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211679.roa Signing time: Sun 05 Nov 2023 04:07:13 +0000 ROA not before: Sun 05 Nov 2023 04:02:13 +0000 ROA not after: Sun 03 Nov 2024 04:07:13 +0000 asID: 211679 IP address blocks: 2a0a:6040:e800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:84:b0:b9:e4:f7:7e:fa:e7:97:23:d8:aa:ab:c0:aa:91:37:c5:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:13 2023 GMT Not After : Nov 3 04:07:13 2024 GMT Subject: CN=B740F7AB6F9AA54DACBDF7BE8261BFDAC548A00B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:18:d7:d7:49:95:de:05:0b:ec:57:48:2f:db: 65:a5:ea:37:54:7f:ce:ac:4e:0f:e5:6a:0b:85:3a: f3:7d:6a:e6:17:57:ed:1a:ed:41:c0:7b:91:55:27: cc:8d:21:a4:ab:b9:3e:8c:59:a1:42:d6:72:36:91: e7:58:33:3c:f5:f4:7c:27:cb:7b:8f:b5:34:a8:bd: b5:c5:b5:5b:51:ef:39:d9:d6:23:c4:45:4c:d6:b3: 06:68:35:08:f0:b6:0b:2a:dc:b1:61:ba:db:6f:30: ae:17:ed:13:4a:44:40:23:2c:22:a1:a8:8e:44:28: 14:5a:82:7c:a3:44:2d:9d:29:8f:41:11:cd:13:eb: c0:a3:64:34:d9:c1:cd:d2:52:ae:3b:6b:f6:95:28: b4:58:43:d4:47:8f:f0:8a:eb:cf:36:ba:0a:94:f3: b5:45:97:8a:de:18:e5:b5:ba:83:73:12:f4:d4:84: 00:5e:44:d8:2e:be:98:f3:1e:a7:d1:26:cb:ff:1e: c9:fa:bc:31:fe:76:fd:3c:ec:24:18:86:e5:0e:98: 9a:88:51:e9:13:fa:f3:75:6e:b7:0e:ab:81:3c:65: 99:63:b2:4b:1d:95:75:cb:76:f8:07:92:1b:bf:f2: c6:19:03:31:b8:49:9f:40:fe:3d:3e:53:f6:d0:82: f9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:40:F7:AB:6F:9A:A5:4D:AC:BD:F7:BE:82:61:BF:DA:C5:48:A0:0B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211679.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e800::/40 Signature Algorithm: sha256WithRSAEncryption bf:8e:32:22:42:f6:26:9a:c7:2a:f4:1f:ab:7a:3e:9e:86:2e: b5:a0:7c:24:50:be:2e:b5:03:64:8b:a1:0a:f0:1e:a4:ae:7d: 1b:2b:2c:c8:ba:33:c2:4a:80:e3:a3:61:d0:fa:56:10:97:21: e0:ec:39:c8:bf:d8:bf:5a:96:f4:38:1d:da:98:1c:cc:82:ce: aa:dd:a3:a1:91:02:05:27:39:61:cd:26:d9:2c:de:2b:6d:97: 52:99:c5:8a:b5:97:3b:b9:dc:0a:d4:77:74:8b:26:c9:0e:cc: d2:21:85:69:df:4a:c5:b0:34:0b:98:16:24:31:b2:8a:ef:6d: d8:4f:f9:c3:21:05:9f:d6:11:af:4a:a0:81:d9:68:84:21:d7: df:8e:cc:27:72:00:dc:56:7d:cb:43:28:2e:d0:e6:48:55:51: 48:4b:35:6b:8b:d4:61:79:d4:73:84:49:4d:ce:f7:55:72:ef: cd:4a:54:40:2a:0e:1d:f3:60:b9:d4:ab:9c:2f:71:6c:54:b2: 5b:ba:41:1c:d6:64:dd:1d:7a:5f:e4:1d:ba:aa:eb:f9:01:5b: 39:69:4c:ff:3d:d8:b1:f4:5f:60:18:e8:eb:0c:c3:c6:ab:a3: 65:a4:8c:04:f5:4a:f3:20:ff:d2:a7:ca:d6:26:cc:90:6a:aa: 43:88:ae:7d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNoSwueT3fvrnlyPYqqvAqpE3xWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTNaFw0yNDExMDMwNDA3MTNaMDMxMTAvBgNV BAMTKEI3NDBGN0FCNkY5QUE1NERBQ0JERjdCRTgyNjFCRkRBQzU0OEEwMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRGNfXSZXeBQvsV0gv22Wl6jdU f86sTg/laguFOvN9auYXV+0a7UHAe5FVJ8yNIaSruT6MWaFC1nI2kedYMzz19Hwn y3uPtTSovbXFtVtR7znZ1iPERUzWswZoNQjwtgsq3LFhuttvMK4X7RNKREAjLCKh qI5EKBRagnyjRC2dKY9BEc0T68CjZDTZwc3SUq47a/aVKLRYQ9RHj/CK6882ugqU 87VFl4reGOW1uoNzEvTUhABeRNguvpjzHqfRJsv/Hsn6vDH+dv087CQYhuUOmJqI UekT+vN1brcOq4E8ZZljsksdlXXLdvgHkhu/8sYZAzG4SZ9A/j0+U/bQgvnhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUt0D3q2+apU2svfe+gmG/2sVIoAswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNjc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOgwDQYJKoZIhvcNAQELBQADggEBAL+O MiJC9iaaxyr0H6t6Pp6GLrWgfCRQvi61A2SLoQrwHqSufRsrLMi6M8JKgOOjYdD6 VhCXIeDsOci/2L9alvQ4HdqYHMyCzqrdo6GRAgUnOWHNJtks3ittl1KZxYq1lzu5 3ArUd3SLJskOzNIhhWnfSsWwNAuYFiQxsorvbdhP+cMhBZ/WEa9KoIHZaIQh19+O zCdyANxWfctDKC7Q5khVUUhLNWuL1GF51HOESU3O91Vy781KVEAqDh3zYLnUq5wv cWxUslu6QRzWZN0del/kHbqq6/kBWzlpTP892LH0X2AY6OsMw8aro2WkjAT1SvMg /9KnytYmzJBqqkOIrn0= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org