$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211810.roa File: AS211810.roa (raw, json) Hash identifier: N1WLFV+qLxA91luJ1iFvTPA2C1mn4Il2hm1BjEIY8uU= Subject key identifier: 68:B9:1C:10:46:24:91:D1:5A:F4:92:E1:7A:D1:C2:D2:68:FD:B8:1B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3B188FE4781EDBE286C30F2E13C287E6A0AA4033 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211810.roa Signing time: Sun 05 Nov 2023 04:07:16 +0000 ROA not before: Sun 05 Nov 2023 04:02:16 +0000 ROA not after: Sun 03 Nov 2024 04:07:16 +0000 asID: 211810 IP address blocks: 2a0a:6040:6900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:18:8f:e4:78:1e:db:e2:86:c3:0f:2e:13:c2:87:e6:a0:aa:40:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:16 2023 GMT Not After : Nov 3 04:07:16 2024 GMT Subject: CN=68B91C10462491D15AF492E17AD1C2D268FDB81B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:62:86:5b:bb:eb:24:80:11:16:2e:ba:0b:30: 96:5b:1e:04:00:b3:29:9b:38:53:18:55:a8:35:1c: 79:49:25:e1:0c:c2:74:06:3d:d7:c4:71:6d:b8:4f: 3b:9e:b6:83:96:72:d6:64:e4:b5:67:4c:16:4d:9b: cd:ea:b6:75:58:e5:c8:44:20:b6:33:58:1f:70:e4: 21:3d:b5:4e:61:28:0f:45:21:6e:d1:f7:cc:18:fa: 40:21:de:e1:08:3b:a8:eb:61:cc:2e:68:ea:bb:2a: b5:f6:b6:c5:ce:4a:1c:cf:09:b3:38:3c:94:26:71: 04:06:d9:56:80:a2:4a:de:2d:a4:20:af:fc:91:7a: 1d:ac:3c:ed:0b:f5:03:3f:f3:a9:60:fb:c4:71:01: 7d:1b:36:e8:ee:11:9b:69:c5:79:f3:de:10:a8:75: 5b:77:aa:b9:b3:bc:45:c6:d6:44:92:5e:4d:27:c7: d4:80:0a:84:60:13:9f:8a:0e:fe:f6:8a:20:11:f0: 80:b7:f3:6d:fa:5d:6d:12:ef:b0:65:d5:fd:6d:72: 98:38:05:fe:63:29:d3:6c:ec:70:e7:74:21:ca:a7: 93:5f:1f:b1:ca:04:ef:6b:3a:c4:87:ca:c2:05:eb: 5b:03:10:71:d4:e2:41:0f:25:ab:e8:a6:81:7a:ad: 02:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B9:1C:10:46:24:91:D1:5A:F4:92:E1:7A:D1:C2:D2:68:FD:B8:1B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211810.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6900::/40 Signature Algorithm: sha256WithRSAEncryption a5:c0:5b:0e:32:fb:bc:29:b5:c6:d7:a2:47:61:bd:40:95:5b: 95:b3:80:12:e1:62:bb:16:45:e4:30:a1:57:ef:5c:f4:61:cc: 91:83:22:3d:dc:00:09:fe:0e:10:9a:c4:ba:1d:b4:33:83:35: 7a:a5:78:a0:97:e4:bf:66:1e:b0:11:44:b7:d0:a7:37:02:75: fe:52:41:86:8c:7c:db:c7:51:4d:8f:ea:11:80:c6:10:9d:1f: e4:77:36:76:af:63:49:fd:39:e9:f0:e2:40:79:a1:cf:6c:19: ba:59:57:7c:04:82:e4:5a:1e:38:92:51:44:8e:35:a1:45:d0: 5b:47:3d:cd:b7:0f:bf:ef:a2:f7:3c:4d:bb:0e:0f:5a:5f:41: c3:a0:7d:c1:b6:c4:0c:d7:e4:82:82:8b:2c:ec:85:07:f8:10: 9e:49:cc:6d:36:20:99:2b:61:ff:49:ea:3c:4e:34:c1:ee:4d: a0:ea:ba:0f:60:4e:a8:e4:16:f9:28:5f:d0:48:fe:4f:ba:02: c6:8c:7c:ec:fb:3f:cc:dd:d8:74:91:f5:5e:78:17:48:77:70: 9b:b5:40:7a:46:28:66:55:b2:2c:fd:40:aa:14:6c:7c:23:c1: cf:fe:2e:a2:4e:ab:52:d6:28:ce:fb:16:cf:26:62:cc:9b:aa: c9:61:c3:36 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOxiP5Hge2+KGww8uE8KH5qCqQDMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTZaFw0yNDExMDMwNDA3MTZaMDMxMTAvBgNV BAMTKDY4QjkxQzEwNDYyNDkxRDE1QUY0OTJFMTdBRDFDMkQyNjhGREI4MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLYoZbu+skgBEWLroLMJZbHgQA symbOFMYVag1HHlJJeEMwnQGPdfEcW24TzuetoOWctZk5LVnTBZNm83qtnVY5chE ILYzWB9w5CE9tU5hKA9FIW7R98wY+kAh3uEIO6jrYcwuaOq7KrX2tsXOShzPCbM4 PJQmcQQG2VaAokreLaQgr/yReh2sPO0L9QM/86lg+8RxAX0bNujuEZtpxXnz3hCo dVt3qrmzvEXG1kSSXk0nx9SACoRgE5+KDv72iiAR8IC38236XW0S77Bl1f1tcpg4 Bf5jKdNs7HDndCHKp5NfH7HKBO9rOsSHysIF61sDEHHU4kEPJavopoF6rQItAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaLkcEEYkkdFa9JLhetHC0mj9uBswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExODEwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGkwDQYJKoZIhvcNAQELBQADggEBAKXA Ww4y+7wptcbXokdhvUCVW5WzgBLhYrsWReQwoVfvXPRhzJGDIj3cAAn+DhCaxLod tDODNXqleKCX5L9mHrARRLfQpzcCdf5SQYaMfNvHUU2P6hGAxhCdH+R3NnavY0n9 Oenw4kB5oc9sGbpZV3wEguRaHjiSUUSONaFF0FtHPc23D7/vovc8TbsOD1pfQcOg fcG2xAzX5IKCiyzshQf4EJ5JzG02IJkrYf9J6jxONMHuTaDqug9gTqjkFvkoX9BI /k+6AsaMfOz7P8zd2HSR9V54F0h3cJu1QHpGKGZVsiz9QKoUbHwjwc/+LqJOq1LW KM77Fs8mYsybqslhwzY= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org