$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211962.roa File: AS211962.roa (raw, json) Hash identifier: HMZKNL0gSg6AL/lGZZwv16iECFzbsdb5U9BALJFQvmo= Subject key identifier: 15:42:4C:24:7A:15:B2:6F:75:EC:CA:E7:0E:5A:CD:15:4F:AB:17:02 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 554C09F7C0A2F8EFC3A4AA21E876AB4E422C5CF7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211962.roa Signing time: Mon 27 May 2024 22:36:49 +0000 ROA not before: Mon 27 May 2024 22:31:49 +0000 ROA not after: Mon 26 May 2025 22:36:49 +0000 asID: 211962 IP address blocks: 2a06:9f81:4400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:4c:09:f7:c0:a2:f8:ef:c3:a4:aa:21:e8:76:ab:4e:42:2c:5c:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 27 22:31:49 2024 GMT Not After : May 26 22:36:49 2025 GMT Subject: CN=15424C247A15B26F75ECCAE70E5ACD154FAB1702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:19:ad:a1:44:f1:d2:0d:bc:7e:16:9c:be:69: 7a:97:75:83:5a:98:00:30:a7:0d:37:84:f0:a7:cc: d7:8d:87:a6:fb:d3:9c:d0:6b:cb:58:ff:ca:df:7e: 0e:ef:31:71:07:ea:af:bc:61:66:0a:fd:91:f5:9a: 29:eb:1f:f4:a1:fd:05:fe:75:ad:b2:26:0f:a5:9a: 57:ff:91:13:02:4d:90:81:3a:2d:65:ec:3e:71:96: b1:07:cb:5a:ae:96:dd:f9:13:79:37:8f:7a:a2:19: 0c:fd:e2:7a:4b:8a:01:cb:0f:34:f9:51:98:2b:23: df:fc:6e:fe:5a:45:8e:ea:6b:75:99:0a:34:6c:d6: 4c:60:77:07:fc:f1:f7:9b:ee:9b:60:89:7e:9e:56: f5:dc:11:52:56:3d:42:b0:09:1b:4d:26:ec:61:99: 1f:59:02:5a:da:36:9b:0d:fc:ea:f9:5e:da:38:1e: 5b:e2:86:89:80:05:3b:03:2f:59:9d:19:0c:33:45: 1a:b1:d5:00:f1:f0:99:85:3a:50:44:51:53:9a:34: 11:b5:d8:33:9b:86:bb:54:f4:3c:c8:44:ce:49:ed: 09:e3:2a:20:2f:8a:61:22:33:36:db:51:4f:aa:48: 7c:60:b4:26:ed:d5:cb:d6:eb:70:21:4c:5c:ac:3b: 30:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:42:4C:24:7A:15:B2:6F:75:EC:CA:E7:0E:5A:CD:15:4F:AB:17:02 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211962.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4400::/40 Signature Algorithm: sha256WithRSAEncryption 35:5c:a6:19:8e:9a:a0:3a:02:98:67:03:98:eb:f3:f9:9c:7d: 40:23:e0:04:a4:72:46:a2:fc:ff:5e:64:4b:f7:8e:f2:0c:99: 8c:44:c4:81:5a:28:d2:27:a9:64:14:d6:e3:9f:1d:b6:b7:db: 32:43:42:82:1a:17:3f:85:6a:7e:f2:56:74:d7:ad:6d:72:dc: 83:09:e6:b4:64:e4:6a:5f:f5:43:63:ac:63:98:6d:80:c2:4d: 43:d9:de:8a:03:44:d3:12:08:af:c1:18:d0:d6:15:48:fc:d6: 64:da:33:b0:d2:b0:da:b7:71:e2:c3:b1:e1:36:b5:c5:ce:fc: c2:d1:9b:d8:df:f9:6e:7b:9d:a1:84:23:72:a8:76:ce:df:aa: 2b:6c:6c:31:7c:a3:2c:48:46:6c:aa:82:6f:8d:a0:13:50:e9: 74:af:ef:3b:21:9c:d3:f6:c5:28:6c:dd:55:c1:97:e4:b4:8d: fe:79:30:b4:71:23:c8:1e:a7:bc:11:ab:f9:77:6c:bc:c3:ae: 04:6f:c7:e6:3e:4c:59:48:81:34:fa:e8:c8:51:cb:ab:ce:26: c0:66:b4:92:6f:85:a7:ae:d5:aa:26:ff:1c:cc:83:7c:27:78: 2c:de:fc:b3:2e:b9:12:0d:bf:13:eb:52:01:55:3a:44:94:ab: 91:0f:2e:ba -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVUwJ98Ci+O/DpKoh6HarTkIsXPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MjcyMjMxNDlaFw0yNTA1MjYyMjM2NDlaMDMxMTAvBgNV BAMTKDE1NDI0QzI0N0ExNUIyNkY3NUVDQ0FFNzBFNUFDRDE1NEZBQjE3MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxGa2hRPHSDbx+Fpy+aXqXdYNa mAAwpw03hPCnzNeNh6b705zQa8tY/8rffg7vMXEH6q+8YWYK/ZH1minrH/Sh/QX+ da2yJg+lmlf/kRMCTZCBOi1l7D5xlrEHy1qult35E3k3j3qiGQz94npLigHLDzT5 UZgrI9/8bv5aRY7qa3WZCjRs1kxgdwf88feb7ptgiX6eVvXcEVJWPUKwCRtNJuxh mR9ZAlraNpsN/Or5Xto4HlvihomABTsDL1mdGQwzRRqx1QDx8JmFOlBEUVOaNBG1 2DObhrtU9DzIRM5J7QnjKiAvimEiMzbbUU+qSHxgtCbt1cvW63AhTFysOzDNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFUJMJHoVsm917MrnDlrNFU+rFwIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjExOTYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUQwDQYJKoZIhvcNAQELBQADggEBADVc phmOmqA6AphnA5jr8/mcfUAj4ASkckai/P9eZEv3jvIMmYxExIFaKNInqWQU1uOf Hba32zJDQoIaFz+Fan7yVnTXrW1y3IMJ5rRk5Gpf9UNjrGOYbYDCTUPZ3ooDRNMS CK/BGNDWFUj81mTaM7DSsNq3ceLDseE2tcXO/MLRm9jf+W57naGEI3Kods7fqits bDF8oyxIRmyqgm+NoBNQ6XSv7zshnNP2xShs3VXBl+S0jf55MLRxI8gep7wRq/l3 bLzDrgRvx+Y+TFlIgTT66MhRy6vOJsBmtJJvhaeu1aom/xzMg3wneCze/LMuuRIN vxPrUgFVOkSUq5EPLro= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org