$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211810.roa File: AS211810.roa (raw, json) Hash identifier: zL6871PYtyVsECFNwv/U7OmRz0LRg3E+qZORSjSE1bQ= Subject key identifier: 25:DE:F4:BD:CD:73:9A:5D:F3:47:BE:DD:97:00:10:87:FD:E2:4A:9E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0D692A5BC38E4BF6FD5C4C0F3EFE8208C3C844F3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211810.roa Signing time: Sun 06 Oct 2024 04:45:19 +0000 ROA not before: Sun 06 Oct 2024 04:40:19 +0000 ROA not after: Sun 05 Oct 2025 04:45:19 +0000 asID: 211810 IP address blocks: 2a0a:6040:6900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:69:2a:5b:c3:8e:4b:f6:fd:5c:4c:0f:3e:fe:82:08:c3:c8:44:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:19 2024 GMT Not After : Oct 5 04:45:19 2025 GMT Subject: CN=25DEF4BDCD739A5DF347BEDD97001087FDE24A9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:9d:ca:58:93:92:f1:f4:80:91:50:38:36: 2e:37:01:db:ac:95:b0:02:9b:19:cc:98:c9:27:57: 23:6f:cf:dd:3b:3e:5e:6a:8c:c2:17:a6:a1:4c:5b: 59:6d:f6:c9:41:34:09:d2:27:bc:da:1c:4b:00:97: 27:e3:04:83:71:50:0c:59:23:e5:f2:d6:68:34:5a: bd:ee:e6:f8:6e:32:ec:77:cb:99:23:7a:8d:c9:06: b9:7a:9b:0c:b9:a6:61:eb:ef:80:a6:14:11:55:61: a4:ae:ba:90:49:94:9a:05:c4:20:17:48:0c:16:79: 43:d4:1e:91:e5:9b:f0:5f:93:bd:80:f7:f8:35:c4: 0d:18:90:d3:a3:30:7b:22:9b:92:ea:7d:74:ad:9e: 13:f7:2c:20:66:9a:de:07:53:e0:aa:32:40:95:9e: 76:ee:f4:a5:01:6c:74:c6:03:0a:e2:18:33:ab:3f: b6:1c:92:08:f3:8a:fa:8d:b2:09:7f:93:2a:c5:a7: f0:63:57:1b:70:5e:3b:42:1d:da:e3:ed:01:e1:38: 04:ba:26:1e:97:49:97:10:2e:4d:b3:1e:84:83:b8: a9:54:72:dc:89:47:dd:41:8f:36:bb:18:83:5c:c8: be:dd:86:f6:32:a1:df:7e:6b:64:57:fe:44:6f:db: 35:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:DE:F4:BD:CD:73:9A:5D:F3:47:BE:DD:97:00:10:87:FD:E2:4A:9E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211810.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6900::/40 Signature Algorithm: sha256WithRSAEncryption 03:cb:0c:71:f2:95:f1:8c:77:86:74:ef:75:5a:f4:00:b0:62: df:6d:84:7a:af:83:07:81:f6:6b:39:d9:41:c5:e0:8a:ab:dd: 4a:cf:01:3f:4b:06:50:93:42:fe:2c:8e:dc:68:ca:ed:7d:8b: a1:3f:6b:c2:1f:9c:9b:d4:7d:89:9d:f2:11:68:c6:fe:21:1a: 54:2f:29:f2:4c:ee:50:0e:e6:bf:21:36:c0:fa:f1:16:fc:cf: 21:c1:f8:cd:5d:49:55:3b:a7:8d:7a:2e:3c:f9:0a:ab:9c:a4: 0f:0c:7c:82:c2:1f:b6:8c:a3:9a:51:f8:13:44:ab:8a:72:a0: b2:37:01:6b:59:fb:6f:dc:c3:29:cb:26:64:7d:c8:6c:7a:48: 3f:bb:11:30:70:b0:fe:c1:6a:fd:07:4f:4b:14:8e:a8:dc:9d: 2e:2d:90:2a:7d:c5:51:05:92:c9:16:2b:af:38:22:2d:ff:d9: 41:7a:85:e5:d4:4e:ad:a3:d7:63:0f:72:21:32:b8:11:20:0e: a2:5e:74:eb:c0:b5:de:dc:a4:bf:f5:6d:2c:8c:d6:89:9c:90: ea:21:75:61:fa:07:e9:df:6b:22:ed:8d:a2:a0:d6:4d:84:f1: 56:d0:ac:95:56:cc:e2:04:77:c2:cf:35:70:37:f2:07:82:d1: b5:52:ab:d2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDWkqW8OOS/b9XEwPPv6CCMPIRPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTlaFw0yNTEwMDUwNDQ1MTlaMDMxMTAvBgNV BAMTKDI1REVGNEJEQ0Q3MzlBNURGMzQ3QkVERDk3MDAxMDg3RkRFMjRBOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq753KWJOS8fSAkVA4Ni43Adus lbACmxnMmMknVyNvz907Pl5qjMIXpqFMW1lt9slBNAnSJ7zaHEsAlyfjBINxUAxZ I+Xy1mg0Wr3u5vhuMux3y5kjeo3JBrl6mwy5pmHr74CmFBFVYaSuupBJlJoFxCAX SAwWeUPUHpHlm/Bfk72A9/g1xA0YkNOjMHsim5LqfXStnhP3LCBmmt4HU+CqMkCV nnbu9KUBbHTGAwriGDOrP7YckgjzivqNsgl/kyrFp/BjVxtwXjtCHdrj7QHhOAS6 Jh6XSZcQLk2zHoSDuKlUctyJR91Bjza7GINcyL7dhvYyod9+a2RX/kRv2zX3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJd70vc1zml3zR77dlwAQh/3iSp4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExODEwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGkwDQYJKoZIhvcNAQELBQADggEBAAPL DHHylfGMd4Z073Va9ACwYt9thHqvgweB9ms52UHF4Iqr3UrPAT9LBlCTQv4sjtxo yu19i6E/a8IfnJvUfYmd8hFoxv4hGlQvKfJM7lAO5r8hNsD68Rb8zyHB+M1dSVU7 p416Ljz5CqucpA8MfILCH7aMo5pR+BNEq4pyoLI3AWtZ+2/cwynLJmR9yGx6SD+7 ETBwsP7Bav0HT0sUjqjcnS4tkCp9xVEFkskWK684Ii3/2UF6heXUTq2j12MPciEy uBEgDqJedOvAtd7cpL/1bSyM1omckOohdWH6B+nfayLtjaKg1k2E8VbQrJVWzOIE d8LPNXA38geC0bVSq9I= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org