$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212164.roa File: AS212164.roa (raw, json) Hash identifier: 7TtgBhac0V/QhCU7gvvb+8k+SE5w6kQVuhV0gQQ75vQ= Subject key identifier: CE:7E:CC:E9:CC:E6:83:97:5A:C9:1B:F8:3B:B5:C5:5D:E5:E7:D5:A2 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0D1671FD151440DC04E4CC0DE3782DFA913F37BB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212164.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 212164 IP address blocks: 2a0a:6040:c700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:16:71:fd:15:14:40:dc:04:e4:cc:0d:e3:78:2d:fa:91:3f:37:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=CE7ECCE9CCE683975AC91BF83BB5C55DE5E7D5A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:09:cc:94:b5:55:c5:b3:46:f5:2d:51:99:17: d7:bd:42:3d:cb:2e:fe:6f:e1:c5:0c:03:c8:b4:42: ff:95:d2:64:09:01:d1:9d:78:0b:c3:c2:74:88:a4: 76:af:f0:36:1f:2e:00:7f:da:67:5f:7e:82:fa:ae: 2c:25:a5:d5:3b:27:ff:4c:b9:06:09:b1:f1:55:72: c2:31:a5:95:ab:51:4f:dd:92:67:35:20:db:55:30: 17:ac:14:55:32:9b:c7:f0:a0:22:85:8e:32:a3:00: ae:ac:12:93:cd:3c:f5:3c:30:e1:d9:fc:c9:b0:80: 6f:b6:dc:e3:2d:43:c6:4f:7b:17:2a:1d:6c:0c:d5: 41:14:8a:a9:3e:05:a0:90:83:a7:b7:74:fa:76:95: a3:c6:d8:4a:26:7a:68:94:3d:27:3a:52:dd:ad:29: c0:7c:3f:64:6a:61:39:58:84:30:2b:fa:25:6b:c1: 8a:6d:75:de:58:51:e2:e6:d8:0b:67:16:60:93:78: b3:bf:a7:7f:3c:24:f5:4f:8e:d5:ab:54:0c:9a:85: c8:a5:dc:d5:d2:f2:0c:f8:03:a9:44:1c:21:a1:d4: 56:1e:e8:b3:73:6f:36:d4:d7:6a:78:11:70:be:1b: 39:a2:60:0d:42:c3:0d:13:ed:30:31:7e:81:f7:a6: a0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7E:CC:E9:CC:E6:83:97:5A:C9:1B:F8:3B:B5:C5:5D:E5:E7:D5:A2 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212164.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c700::/40 Signature Algorithm: sha256WithRSAEncryption 3f:d4:4a:08:3d:57:50:55:81:6d:71:7a:a4:96:ce:8a:34:7c: 44:15:5d:d3:24:a9:67:07:98:e3:aa:81:51:a6:11:4a:fd:70: ed:9b:08:eb:e0:a8:3b:da:5b:4a:2b:7f:5f:8c:c0:59:21:1b: 30:0a:fb:39:f1:6a:69:0b:ec:23:ca:b0:a4:ea:9d:dd:67:cc: da:69:c3:cb:64:66:04:ca:d4:c0:49:8d:26:20:b2:7c:59:5b: c6:f7:d0:77:aa:9b:d8:c0:0a:c2:bd:28:6f:25:52:1d:d8:93: 43:82:b5:51:76:69:53:d0:69:7f:49:f4:4d:94:0d:33:21:38: 80:c4:2d:34:63:9c:32:f3:52:14:56:a9:47:0b:ea:73:51:4a: 24:8b:3c:a7:4d:9f:90:88:40:eb:22:fb:ef:6c:3d:d2:ab:ed: a8:23:9c:14:93:b1:b3:fd:de:12:9f:f9:4b:f5:33:22:d9:8f: e5:d5:99:77:74:24:21:25:6b:6f:ff:b5:83:dc:7a:d0:d2:32: 14:a8:1c:b0:40:a9:70:64:62:7e:39:a1:e5:24:a8:14:38:04: 6e:96:cb:c1:48:76:eb:fd:c3:56:af:2f:a5:74:a3:6e:99:6f: 7a:8c:b8:24:b5:1e:48:2a:94:ce:b4:07:30:3f:a4:2f:f3:2e: f8:fc:9d:17 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDRZx/RUUQNwE5MwN43gt+pE/N7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKENFN0VDQ0U5Q0NFNjgzOTc1QUM5MUJGODNCQjVDNTVERTVFN0Q1QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbCcyUtVXFs0b1LVGZF9e9Qj3L Lv5v4cUMA8i0Qv+V0mQJAdGdeAvDwnSIpHav8DYfLgB/2mdffoL6riwlpdU7J/9M uQYJsfFVcsIxpZWrUU/dkmc1INtVMBesFFUym8fwoCKFjjKjAK6sEpPNPPU8MOHZ /MmwgG+23OMtQ8ZPexcqHWwM1UEUiqk+BaCQg6e3dPp2laPG2EomemiUPSc6Ut2t KcB8P2RqYTlYhDAr+iVrwYptdd5YUeLm2AtnFmCTeLO/p388JPVPjtWrVAyahcil 3NXS8gz4A6lEHCGh1FYe6LNzbzbU12p4EXC+GzmiYA1Cww0T7TAxfoH3pqCVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUzn7M6czmg5dayRv4O7XFXeXn1aIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyMTY0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMcwDQYJKoZIhvcNAQELBQADggEBAD/U Sgg9V1BVgW1xeqSWzoo0fEQVXdMkqWcHmOOqgVGmEUr9cO2bCOvgqDvaW0orf1+M wFkhGzAK+znxamkL7CPKsKTqnd1nzNppw8tkZgTK1MBJjSYgsnxZW8b30Heqm9jA CsK9KG8lUh3Yk0OCtVF2aVPQaX9J9E2UDTMhOIDELTRjnDLzUhRWqUcL6nNRSiSL PKdNn5CIQOsi++9sPdKr7agjnBSTsbP93hKf+Uv1MyLZj+XVmXd0JCEla2//tYPc etDSMhSoHLBAqXBkYn45oeUkqBQ4BG6Wy8FIduv9w1avL6V0o26Zb3qMuCS1Hkgq lM60BzA/pC/zLvj8nRc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org