$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211754.roa File: AS211754.roa (raw, json) Hash identifier: dtU1WO4uFUAK4QMAvp4Udmi2z3qYsqjLiKHrxG4wO1M= Subject key identifier: 25:DD:6F:7A:97:82:4D:C1:96:88:1F:16:5C:98:38:9E:71:EB:E5:11 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2409945F53CE9A341923096B9E91FF6CBA4FC083 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211754.roa Signing time: Wed 04 Sep 2024 09:49:54 +0000 ROA not before: Wed 04 Sep 2024 09:44:54 +0000 ROA not after: Wed 03 Sep 2025 09:49:54 +0000 asID: 211754 IP address blocks: 2a05:dfc1:a500::/40 maxlen: 48 2a05:dfc1:a600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:09:94:5f:53:ce:9a:34:19:23:09:6b:9e:91:ff:6c:ba:4f:c0:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 4 09:44:54 2024 GMT Not After : Sep 3 09:49:54 2025 GMT Subject: CN=25DD6F7A97824DC196881F165C98389E71EBE511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:36:e3:98:a5:c5:eb:89:d4:8b:72:af:d7:f0: 0b:c6:03:57:e4:e2:be:ee:74:46:fe:b2:8e:39:d7: 09:23:85:69:42:55:fb:7f:5c:9f:17:06:f0:c6:a4: 22:59:ae:38:52:bc:fc:80:ae:57:42:86:96:a6:81: 65:2f:50:60:d1:d9:a5:b4:87:62:04:24:95:f6:3d: 54:d9:1f:fe:6c:37:58:b7:ca:ea:79:2f:89:f3:3b: a2:71:b7:4c:66:87:66:18:c6:29:a5:00:c4:38:8f: c0:fc:b3:ad:13:3a:a5:e7:b6:2b:fe:7a:f0:10:3f: fe:a2:81:a7:43:fc:72:3e:95:42:7f:aa:d7:e3:bc: 51:3c:19:18:90:60:99:dd:47:84:eb:ca:7b:18:7f: 69:9e:97:1d:a1:e7:e4:a0:c9:04:b3:f0:dc:e2:76: cc:92:36:33:ab:6b:60:de:63:27:ae:c1:6e:4b:5f: 18:25:fd:98:fc:2d:b8:59:00:36:bb:5e:f3:51:bd: da:7c:39:a4:0b:5a:4f:0f:dd:0d:fa:1e:a5:fb:e2: de:e4:4b:1e:99:0a:90:d0:34:83:49:b9:e9:36:de: fe:9b:ae:68:04:0d:fd:11:30:0e:fd:58:28:10:3d: fa:d1:5b:34:80:55:99:17:7f:1e:ef:4f:88:31:84: 4f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:DD:6F:7A:97:82:4D:C1:96:88:1F:16:5C:98:38:9E:71:EB:E5:11 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211754.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a500::-2a05:dfc1:a6ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 31:44:86:61:cf:02:05:5a:2b:4a:ae:f2:97:7b:e9:98:b9:9e: 89:58:d8:68:7f:f4:29:cb:7a:82:78:b2:da:82:84:0e:ae:9d: e1:ee:91:fe:79:a3:f9:99:f2:42:91:a2:2e:46:cf:33:25:bb: 1c:e0:80:01:c3:66:37:f0:f2:ea:bc:d1:42:43:3b:b2:53:b2: e1:69:eb:7e:19:06:9d:86:f2:13:53:ca:bf:e1:ef:3e:e1:2f: c4:35:61:94:43:8b:c1:c0:73:d6:15:51:f8:18:e8:62:86:d3: 71:89:ab:55:9c:a2:cc:81:63:f9:fa:5b:44:e9:40:05:84:1c: a5:43:66:53:a8:a5:75:98:3e:5e:45:a5:67:b8:39:f8:db:bb: f8:9c:83:92:72:c8:2c:58:9d:bc:be:0a:0f:76:7b:8b:6f:66: 36:bd:d8:64:06:6c:3b:49:d7:a6:1c:60:e8:3a:fe:e9:51:ec: 0b:e3:93:d5:27:b4:55:7e:ef:34:a7:d6:a7:b9:1e:d0:57:55: 86:ca:76:e5:8c:b2:1b:57:6a:c1:9f:61:18:d9:f4:5e:7d:9b: 08:a2:e4:db:c0:8e:07:0f:4d:35:e3:2c:d9:6d:c5:96:77:87: d8:fd:09:f2:61:d3:a1:1d:6b:0a:f2:c6:2c:3f:b8:47:0f:02: 3d:16:a8:d5 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUJAmUX1POmjQZIwlrnpH/bLpPwIMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MDQwOTQ0NTRaFw0yNTA5MDMwOTQ5NTRaMDMxMTAvBgNV BAMTKDI1REQ2RjdBOTc4MjREQzE5Njg4MUYxNjVDOTgzODlFNzFFQkU1MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPNuOYpcXridSLcq/X8AvGA1fk 4r7udEb+so451wkjhWlCVft/XJ8XBvDGpCJZrjhSvPyArldChpamgWUvUGDR2aW0 h2IEJJX2PVTZH/5sN1i3yup5L4nzO6Jxt0xmh2YYximlAMQ4j8D8s60TOqXntiv+ evAQP/6igadD/HI+lUJ/qtfjvFE8GRiQYJndR4TrynsYf2melx2h5+SgyQSz8Nzi dsySNjOra2DeYyeuwW5LXxgl/Zj8LbhZADa7XvNRvdp8OaQLWk8P3Q36HqX74t7k Sx6ZCpDQNINJuek23v6brmgEDf0RMA79WCgQPfrRWzSAVZkXfx7vT4gxhE+vAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQUJd1vepeCTcGWiB8WXJg4nnHr5REwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNzU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAAjASMBADBgAqBd/BpQMGACoF38GmMA0GCSqGSIb3DQEB CwUAA4IBAQAxRIZhzwIFWitKrvKXe+mYuZ6JWNhof/Qpy3qCeLLagoQOrp3h7pH+ eaP5mfJCkaIuRs8zJbsc4IABw2Y38PLqvNFCQzuyU7Lhaet+GQadhvITU8q/4e8+ 4S/ENWGUQ4vBwHPWFVH4GOhihtNxiatVnKLMgWP5+ltE6UAFhBylQ2ZTqKV1mD5e RaVnuDn427v4nIOScsgsWJ28vgoPdnuLb2Y2vdhkBmw7SdemHGDoOv7pUewL45PV J7RVfu80p9anuR7QV1WGynbljLIbV2rBn2EY2fRefZsIouTbwI4HD0014yzZbcWW d4fY/QnyYdOhHWsK8sYsP7hHDwI9FqjV -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org