$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211754.roa File: AS211754.roa (raw, json) Hash identifier: SXlTJPplIfq+m4Byu6NurWCn1Ve1NfkML0h3Nyr9iZ0= Subject key identifier: 5F:A6:3F:2E:36:96:36:C5:E4:05:4B:FF:22:59:83:77:E0:6C:0E:BC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1DEC352E1AD81D9C4EAA568FC94C383E2DCD7954 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211754.roa Signing time: Wed 04 Oct 2023 09:13:56 +0000 ROA not before: Wed 04 Oct 2023 09:08:56 +0000 ROA not after: Wed 02 Oct 2024 09:13:56 +0000 asID: 211754 IP address blocks: 2a05:dfc1:a500::/40 maxlen: 48 2a05:dfc1:a600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ec:35:2e:1a:d8:1d:9c:4e:aa:56:8f:c9:4c:38:3e:2d:cd:79:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 4 09:08:56 2023 GMT Not After : Oct 2 09:13:56 2024 GMT Subject: CN=5FA63F2E369636C5E4054BFF22598377E06C0EBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b6:f7:66:07:4f:d9:40:d1:c2:ed:27:62:5b: 45:8c:ca:e2:06:98:35:cd:c2:8c:a5:c1:09:aa:ea: b9:21:75:e8:91:ee:34:a5:ae:c0:02:25:f7:8e:fe: 7d:3e:d5:ec:35:a6:42:c2:f3:e9:43:ca:ce:cd:86: e2:dd:81:28:6b:0e:e9:53:60:38:52:48:35:32:d8: fe:cd:77:6d:e3:43:c4:14:7d:11:33:b2:d3:f4:55: 73:e0:24:2a:ea:6c:af:f0:5a:00:03:77:e3:39:e0: 3c:a0:ea:f7:02:2c:7d:fe:45:dc:54:3d:c8:81:ac: dc:8c:84:0f:be:9a:b1:fc:de:8c:08:35:f8:1f:6e: ce:92:49:f2:5b:a2:76:17:bc:c3:6f:c0:ee:43:3f: 26:da:8b:e7:88:b7:8c:fd:2f:3e:af:2e:64:58:9f: 37:67:96:5a:82:c5:95:70:ce:3e:bb:5a:60:f7:02: c6:07:46:36:8f:d1:d5:68:2b:37:b4:a4:73:f9:81: 7f:9c:eb:69:7e:36:19:36:32:07:5a:57:51:c5:67: 9e:57:af:e7:11:e6:5c:93:9f:3f:31:03:bd:86:65: 10:d9:9b:86:d0:ed:c8:e2:8f:53:43:c5:66:c5:37: 0f:78:2e:d1:f0:4e:6a:92:c8:84:5a:5a:26:66:63: 43:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:A6:3F:2E:36:96:36:C5:E4:05:4B:FF:22:59:83:77:E0:6C:0E:BC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211754.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a500::-2a05:dfc1:a6ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 51:dd:32:76:fd:ef:17:8d:49:37:7f:4f:cf:e5:da:f9:2a:fc: 14:97:bd:3c:11:df:b3:62:cd:4e:28:39:d5:e8:f3:b7:b7:f9: ca:e8:23:00:cf:0c:b8:3a:5b:6c:f1:af:52:e0:7f:fc:74:a8: d3:09:70:73:23:c5:e5:b6:30:6d:99:05:c9:d1:18:8d:18:b8: 60:10:c2:fa:ba:f7:ff:48:3f:ce:e0:c2:46:a7:5b:ad:75:1d: 84:6e:86:9a:df:1a:ae:f6:d1:db:56:40:d4:67:67:da:40:16: 40:c2:7f:05:d4:92:eb:31:1c:48:80:4b:6f:73:3d:91:62:5e: 75:0c:b5:19:78:c6:2e:6d:99:7f:75:96:c1:a5:21:65:70:2b: 0e:be:dd:54:36:8e:fe:24:fa:ff:4f:a0:aa:a3:8c:b0:d8:3c: 62:a7:84:3a:14:c8:3f:fc:81:dd:46:8a:a6:5c:0a:ec:9e:2e: db:ef:72:64:15:3f:c1:83:56:e7:66:02:28:8b:b1:05:14:11: e5:93:fa:87:a6:35:31:db:03:ae:bc:a0:1c:18:d8:72:f8:38: f5:3c:87:23:b9:ff:18:63:8b:2f:48:8a:05:00:91:66:b7:f3: c7:da:1d:e9:89:0a:49:87:32:06:fa:f8:50:f1:9a:62:6d:3c: 6d:38:fd:17 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUHew1LhrYHZxOqlaPyUw4Pi3NeVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMDQwOTA4NTZaFw0yNDEwMDIwOTEzNTZaMDMxMTAvBgNV BAMTKDVGQTYzRjJFMzY5NjM2QzVFNDA1NEJGRjIyNTk4Mzc3RTA2QzBFQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVtvdmB0/ZQNHC7SdiW0WMyuIG mDXNwoylwQmq6rkhdeiR7jSlrsACJfeO/n0+1ew1pkLC8+lDys7NhuLdgShrDulT YDhSSDUy2P7Nd23jQ8QUfREzstP0VXPgJCrqbK/wWgADd+M54Dyg6vcCLH3+RdxU PciBrNyMhA++mrH83owINfgfbs6SSfJbonYXvMNvwO5DPybai+eIt4z9Lz6vLmRY nzdnllqCxZVwzj67WmD3AsYHRjaP0dVoKze0pHP5gX+c62l+Nhk2MgdaV1HFZ55X r+cR5lyTnz8xA72GZRDZm4bQ7cjij1NDxWbFNw94LtHwTmqSyIRaWiZmY0OFAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQUX6Y/LjaWNsXkBUv/IlmDd+BsDrwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExNzU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAAjASMBADBgAqBd/BpQMGACoF38GmMA0GCSqGSIb3DQEB CwUAA4IBAQBR3TJ2/e8XjUk3f0/P5dr5KvwUl708Ed+zYs1OKDnV6PO3t/nK6CMA zwy4Olts8a9S4H/8dKjTCXBzI8XltjBtmQXJ0RiNGLhgEML6uvf/SD/O4MJGp1ut dR2Eboaa3xqu9tHbVkDUZ2faQBZAwn8F1JLrMRxIgEtvcz2RYl51DLUZeMYubZl/ dZbBpSFlcCsOvt1UNo7+JPr/T6Cqo4yw2Dxip4Q6FMg//IHdRoqmXArsni7b73Jk FT/Bg1bnZgIoi7EFFBHlk/qHpjUx2wOuvKAcGNhy+Dj1PIcjuf8YY4svSIoFAJFm t/PH2h3piQpJhzIG+vhQ8ZpibTxtOP0X -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org