$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212238.roa File: AS212238.roa (raw, json) Hash identifier: StXFJOlwhkGSDW5VRktylO1aQJXLl0w2R25bjFqoTig= Subject key identifier: 3D:50:7B:51:6B:0F:29:62:8F:B6:71:18:6F:B8:E6:86:22:C9:00:FD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5AF1D79D6391A453185FBE2951E9D7211818AE23 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212238.roa Signing time: Sun 06 Oct 2024 04:44:55 +0000 ROA not before: Sun 06 Oct 2024 04:39:55 +0000 ROA not after: Sun 05 Oct 2025 04:44:55 +0000 asID: 212238 IP address blocks: 2a0a:6040:8700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f1:d7:9d:63:91:a4:53:18:5f:be:29:51:e9:d7:21:18:18:ae:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:55 2024 GMT Not After : Oct 5 04:44:55 2025 GMT Subject: CN=3D507B516B0F29628FB671186FB8E68622C900FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c7:e3:cc:6d:a5:6d:6e:59:58:04:bd:c3:07: 09:07:80:32:43:9e:d0:a6:38:0f:41:be:fb:47:ad: 81:1b:fe:29:0d:6d:ed:fc:87:6d:c3:56:d0:4b:fe: 71:b6:aa:c3:5e:6d:bb:2b:e0:4d:cc:df:89:44:c4: 3b:56:3c:6a:d3:24:21:30:27:69:83:74:25:d4:80: d1:51:0d:b4:16:e9:e7:fd:4a:de:2e:57:23:7d:5c: 2b:45:57:c1:7e:8f:9f:4c:ed:b3:d9:08:b0:86:a5: 1e:4a:59:2f:81:7b:fb:0a:59:9c:da:58:af:76:11: 31:eb:dd:83:83:b9:1f:26:44:94:74:e7:6a:73:76: 5e:35:e2:81:7c:02:f9:a5:76:bc:92:80:de:62:c8: 08:4b:7e:ce:c5:63:a1:0b:10:7a:db:83:42:14:ea: 51:b0:9c:87:e4:27:28:36:3c:de:ff:54:0f:9d:32: b7:3a:ab:ab:3f:f6:09:88:ec:05:58:d7:d0:85:5d: 8d:6c:b7:34:27:60:68:33:30:03:ca:ed:b7:59:91: 7c:02:d6:08:eb:cc:bc:bb:d5:23:a2:fb:6b:57:74: 0a:99:32:a5:4a:02:d9:b7:9e:52:6a:a1:40:61:40: 27:88:f3:a5:32:33:47:19:ca:2a:38:4e:9c:23:e2: 67:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:50:7B:51:6B:0F:29:62:8F:B6:71:18:6F:B8:E6:86:22:C9:00:FD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8700::/40 Signature Algorithm: sha256WithRSAEncryption 90:eb:cf:10:28:8b:40:88:bf:cd:1a:bb:b2:dd:7a:bf:e3:90: 34:b5:81:17:f7:03:6f:ff:44:25:9e:41:c7:1e:5d:8b:7e:76: 60:b9:f9:6b:32:a7:b6:9d:9b:84:ea:8b:ce:2a:88:4c:07:e7: 12:36:9f:98:56:b7:61:c9:7a:ce:90:a4:1e:12:a3:5f:7a:da: 72:1b:0f:c0:ba:8a:ee:73:34:95:31:ff:bd:84:a4:c4:f9:20: 12:77:b0:ab:30:ce:ef:dd:08:5f:a4:81:40:eb:c2:02:c1:3c: 36:80:bd:5b:ea:33:3a:b1:b9:0d:0f:d6:d5:ea:cd:ff:b1:27: 0a:62:d1:5d:df:a8:f2:41:77:85:00:85:80:e0:ef:6e:47:48: be:fa:f7:88:30:37:0b:94:7b:6b:b5:24:71:97:f6:f2:eb:b8: f4:8f:0f:6a:8b:d9:e3:9b:07:ed:f3:4e:1f:9b:60:5f:ff:95: b2:1f:27:fb:7b:17:79:f4:2e:21:73:24:3c:b3:ae:19:5c:c0: b2:21:a2:6a:f8:40:76:44:82:e4:20:19:ed:14:9c:b2:57:01: 85:9e:15:1d:5a:6d:bf:2d:b3:53:25:ec:b5:f3:77:b9:12:a5: 64:8c:c5:ee:1a:16:8e:72:de:14:fc:50:f7:b8:00:ee:11:50: 62:c4:b2:4e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWvHXnWORpFMYX74pUenXIRgYriMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTVaFw0yNTEwMDUwNDQ0NTVaMDMxMTAvBgNV BAMTKDNENTA3QjUxNkIwRjI5NjI4RkI2NzExODZGQjhFNjg2MjJDOTAwRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIx+PMbaVtbllYBL3DBwkHgDJD ntCmOA9BvvtHrYEb/ikNbe38h23DVtBL/nG2qsNebbsr4E3M34lExDtWPGrTJCEw J2mDdCXUgNFRDbQW6ef9St4uVyN9XCtFV8F+j59M7bPZCLCGpR5KWS+Be/sKWZza WK92ETHr3YODuR8mRJR052pzdl414oF8AvmldrySgN5iyAhLfs7FY6ELEHrbg0IU 6lGwnIfkJyg2PN7/VA+dMrc6q6s/9gmI7AVY19CFXY1stzQnYGgzMAPK7bdZkXwC 1gjrzLy71SOi+2tXdAqZMqVKAtm3nlJqoUBhQCeI86UyM0cZyio4Tpwj4mcZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUPVB7UWsPKWKPtnEYb7jmhiLJAP0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIcwDQYJKoZIhvcNAQELBQADggEBAJDr zxAoi0CIv80au7Lder/jkDS1gRf3A2//RCWeQcceXYt+dmC5+Wsyp7adm4Tqi84q iEwH5xI2n5hWt2HJes6QpB4So1962nIbD8C6iu5zNJUx/72EpMT5IBJ3sKswzu/d CF+kgUDrwgLBPDaAvVvqMzqxuQ0P1tXqzf+xJwpi0V3fqPJBd4UAhYDg725HSL76 94gwNwuUe2u1JHGX9vLruPSPD2qL2eObB+3zTh+bYF//lbIfJ/t7F3n0LiFzJDyz rhlcwLIhomr4QHZEguQgGe0UnLJXAYWeFR1abb8ts1Ml7LXzd7kSpWSMxe4aFo5y 3hT8UPe4AO4RUGLEsk4= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org