$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212238.roa File: AS212238.roa (raw, json) Hash identifier: KTVt13n9d+P2kvnYJK5qEmZgES3XlKCOdFLgkmqGGv0= Subject key identifier: DF:18:1C:29:22:A2:62:58:2A:9B:50:5E:DC:2E:CF:5C:A0:59:0A:D6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 14E4AC67F72D560F6366CA3ED91B7D3C4C7CBC48 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212238.roa Signing time: Sun 05 Nov 2023 04:07:22 +0000 ROA not before: Sun 05 Nov 2023 04:02:22 +0000 ROA not after: Sun 03 Nov 2024 04:07:22 +0000 asID: 212238 IP address blocks: 2a0a:6040:8700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Apr 2024 04:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e4:ac:67:f7:2d:56:0f:63:66:ca:3e:d9:1b:7d:3c:4c:7c:bc:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:22 2023 GMT Not After : Nov 3 04:07:22 2024 GMT Subject: CN=DF181C2922A262582A9B505EDC2ECF5CA0590AD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a7:bd:a1:36:97:be:3f:17:09:3d:b6:38:6c: aa:79:78:b9:4a:26:0d:34:81:14:64:80:15:3a:4d: e7:59:af:f2:97:ba:09:1e:23:09:29:4a:6a:ef:fd: 6a:8f:20:d4:d1:f9:f4:d8:88:e4:45:94:d5:07:28: 2a:7e:c4:6f:2b:ca:95:b7:9d:bc:1f:7f:0b:6b:f7: 77:0d:66:1e:d6:cb:82:51:db:9d:2f:dd:8d:a3:52: 81:e5:20:70:f4:7f:db:fe:49:db:40:72:93:db:34: 34:a8:2b:f2:68:12:37:a7:91:51:87:d7:85:ab:3a: e3:fb:74:a9:86:97:3a:cb:d1:7a:49:7c:82:5f:75: 3d:8d:1f:78:ce:52:79:ed:b5:80:f3:31:f5:05:e0: 8d:f1:4a:3e:43:b7:20:0e:09:3a:80:18:8c:ae:e6: 65:79:82:97:43:3e:d7:7f:75:7a:34:ee:f5:d9:1a: a4:6a:80:d2:d9:c8:3a:13:e9:a3:ec:ec:36:81:d9: 68:b9:2a:27:7b:21:5d:63:ba:a8:79:8c:a9:62:70: e6:97:62:80:09:a1:92:c9:65:75:71:aa:98:23:20: 88:e2:6a:47:a3:08:38:9f:a3:7b:86:df:d6:a6:fc: 0c:79:72:cd:ef:49:dc:38:d8:30:6b:fd:5d:a3:9b: 47:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:18:1C:29:22:A2:62:58:2A:9B:50:5E:DC:2E:CF:5C:A0:59:0A:D6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8700::/40 Signature Algorithm: sha256WithRSAEncryption 40:3b:31:5d:1a:70:c0:70:c0:f8:cd:1e:f8:d7:ed:bd:ad:06: a7:99:d9:02:39:70:67:5f:ec:7e:4c:d2:fe:98:f5:e0:5b:19: a7:8c:3a:78:bb:2d:0e:9b:3e:b4:65:20:f5:0c:21:db:43:c0: 9b:ad:2d:08:7a:c3:4c:26:e1:ae:7a:dc:90:f4:58:da:cb:29: 40:5a:a7:1c:5d:0a:9a:24:f4:5b:02:a1:74:7e:45:5e:1d:44: 16:60:ec:86:3e:29:37:92:96:04:b4:ec:38:29:a3:3a:9d:39: cc:00:fe:ee:bd:dc:52:9d:29:2d:bf:1d:9a:1e:f1:09:d3:81: ac:17:f6:ff:a5:c6:55:f3:0c:fb:52:a2:9c:4b:97:c0:36:0c: e9:5c:e2:95:15:7a:d3:72:c9:d0:0a:93:93:ba:20:1c:0a:b7: 7b:06:c7:41:d1:4b:5d:2f:0f:2a:57:97:26:bd:3f:f0:12:ef: 28:f5:a3:bd:f3:99:00:e7:77:90:e3:f4:15:e0:9b:5f:b5:36: af:62:ab:33:79:7e:9a:af:54:40:04:1b:e2:af:98:6f:73:54: 03:e0:88:0e:98:c2:2f:0c:55:bd:42:d4:2a:e0:f0:5e:cc:11: 0b:b6:77:30:e6:e1:d1:8d:11:07:2e:0e:1f:41:43:d7:6b:30: f2:eb:95:09 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFOSsZ/ctVg9jZso+2Rt9PEx8vEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjJaFw0yNDExMDMwNDA3MjJaMDMxMTAvBgNV BAMTKERGMTgxQzI5MjJBMjYyNTgyQTlCNTA1RURDMkVDRjVDQTA1OTBBRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnp72hNpe+PxcJPbY4bKp5eLlK Jg00gRRkgBU6TedZr/KXugkeIwkpSmrv/WqPINTR+fTYiORFlNUHKCp+xG8rypW3 nbwffwtr93cNZh7Wy4JR250v3Y2jUoHlIHD0f9v+SdtAcpPbNDSoK/JoEjenkVGH 14WrOuP7dKmGlzrL0XpJfIJfdT2NH3jOUnnttYDzMfUF4I3xSj5DtyAOCTqAGIyu 5mV5gpdDPtd/dXo07vXZGqRqgNLZyDoT6aPs7DaB2Wi5Kid7IV1juqh5jKlicOaX YoAJoZLJZXVxqpgjIIjiakejCDifo3uG39am/Ax5cs3vSdw42DBr/V2jm0eJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU3xgcKSKiYlgqm1Be3C7PXKBZCtYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIcwDQYJKoZIhvcNAQELBQADggEBAEA7 MV0acMBwwPjNHvjX7b2tBqeZ2QI5cGdf7H5M0v6Y9eBbGaeMOni7LQ6bPrRlIPUM IdtDwJutLQh6w0wm4a563JD0WNrLKUBapxxdCpok9FsCoXR+RV4dRBZg7IY+KTeS lgS07DgpozqdOcwA/u693FKdKS2/HZoe8QnTgawX9v+lxlXzDPtSopxLl8A2DOlc 4pUVetNyydAKk5O6IBwKt3sGx0HRS10vDypXlya9P/AS7yj1o73zmQDnd5Dj9BXg m1+1Nq9iqzN5fpqvVEAEG+KvmG9zVAPgiA6Ywi8MVb1C1Crg8F7MEQu2dzDm4dGN EQcuDh9BQ9drMPLrlQk= -----END CERTIFICATE-----Generated at Thu Apr 25 10:22:57 2024 by rpki-client on console-fra.rpki-client.org