$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212271.roa File: AS212271.roa (raw, json) Hash identifier: gpr0s/BxKBk0yJltim/BF2FM11DrsJwFcCLSSSzjeYE= Subject key identifier: BB:6B:84:92:B9:82:83:A8:5C:FF:21:CE:EF:09:D6:D4:C2:DD:47:94 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5B7CF293959BBAF04B72E1A5E869D4F45A42C340 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212271.roa Signing time: Mon 08 Jan 2024 23:45:23 +0000 ROA not before: Mon 08 Jan 2024 23:40:23 +0000 ROA not after: Mon 06 Jan 2025 23:45:23 +0000 asID: 212271 IP address blocks: 2a05:dfc1:3c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:7c:f2:93:95:9b:ba:f0:4b:72:e1:a5:e8:69:d4:f4:5a:42:c3:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jan 8 23:40:23 2024 GMT Not After : Jan 6 23:45:23 2025 GMT Subject: CN=BB6B8492B98283A85CFF21CEEF09D6D4C2DD4794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a4:97:28:0a:f7:92:6c:95:d3:58:c9:18:b5: b8:84:6c:4d:8a:c8:c4:7f:c1:2d:1c:68:90:13:f5: ce:ba:09:26:42:36:92:1c:77:d6:df:57:0c:dd:7d: f6:58:d6:cd:51:e6:14:ef:88:02:8d:33:43:d6:c4: 4a:c8:72:67:b4:8a:93:56:8a:3b:41:7e:1f:17:c7: 4c:9a:74:bb:ca:b2:ee:97:36:f6:c8:2c:4c:68:23: cf:c1:1b:21:1e:6f:63:f5:d0:82:56:24:84:e7:0f: ba:d3:76:29:bc:44:29:25:cc:55:1f:5f:fc:c9:0c: cc:e5:5f:07:16:61:73:c3:16:8e:32:47:b8:c8:25: 23:bb:59:a9:0a:0e:02:02:28:2b:29:dc:e5:09:e5: 3d:86:17:d6:0f:7d:40:6f:f7:fc:27:6e:c0:a0:c5: 32:a9:10:52:48:af:9f:33:c6:58:57:e4:84:dd:81: 4a:fb:66:6e:92:52:58:4a:8f:25:d0:7e:16:8f:37: 9c:00:e3:9c:ff:f8:a7:f1:c4:ce:fd:4f:cc:ab:b7: d0:9a:16:48:d2:62:9e:8d:4f:31:44:0e:59:7a:53: a0:cf:1a:0c:2a:20:3a:a2:1e:89:b2:ff:e3:93:85: 5c:d9:90:1d:fb:55:c0:7c:98:56:d8:02:29:f1:31: 4a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6B:84:92:B9:82:83:A8:5C:FF:21:CE:EF:09:D6:D4:C2:DD:47:94 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212271.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3c00::/40 Signature Algorithm: sha256WithRSAEncryption 4f:3f:6c:52:0f:2a:4c:9c:23:94:84:53:16:b8:ea:f2:75:6a: d2:ca:39:88:d7:9f:51:c0:1b:04:7f:78:53:f5:31:6c:f6:55: f7:90:ba:14:5c:54:31:44:89:bf:59:02:c2:13:02:d4:f9:84: 1a:a7:5e:0f:8e:a9:79:98:47:04:de:c9:99:cd:07:48:d7:57: 8b:37:70:5d:e1:62:82:a0:58:d7:9c:b4:92:0b:f5:4c:a7:66: 53:51:fe:7c:fe:5c:b4:83:53:da:fb:6f:89:b5:09:5a:0d:8f: 41:12:e5:ef:8e:a5:64:40:b5:ff:98:f4:a8:e5:82:c2:d0:be: c7:36:60:11:ec:0e:70:a0:8b:1e:6b:7a:3c:ae:7f:37:70:cb: d2:16:09:82:51:b5:13:ea:e4:e8:f7:f4:c8:29:a6:5a:45:42: 57:25:d0:91:bb:67:8f:ed:e9:de:86:fa:81:8f:63:8b:48:27: 1c:c7:41:b5:3a:25:0f:55:c6:47:8f:a6:b3:15:e2:d9:69:29: 48:ae:11:4a:e7:1c:db:0a:50:14:dc:62:46:05:74:f4:c3:8f: b1:7e:6f:c0:d8:cb:5d:4c:2b:78:a0:b8:ee:fa:25:8e:d4:20: 36:85:4c:81:c0:42:1b:d1:8b:c1:da:0e:3d:8c:cc:12:5b:bf: a9:86:0d:70 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUW3zyk5WbuvBLcuGl6GnU9FpCw0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAxMDgyMzQwMjNaFw0yNTAxMDYyMzQ1MjNaMDMxMTAvBgNV BAMTKEJCNkI4NDkyQjk4MjgzQTg1Q0ZGMjFDRUVGMDlENkQ0QzJERDQ3OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNpJcoCveSbJXTWMkYtbiEbE2K yMR/wS0caJAT9c66CSZCNpIcd9bfVwzdffZY1s1R5hTviAKNM0PWxErIcme0ipNW ijtBfh8Xx0yadLvKsu6XNvbILExoI8/BGyEeb2P10IJWJITnD7rTdim8RCklzFUf X/zJDMzlXwcWYXPDFo4yR7jIJSO7WakKDgICKCsp3OUJ5T2GF9YPfUBv9/wnbsCg xTKpEFJIr58zxlhX5ITdgUr7Zm6SUlhKjyXQfhaPN5wA45z/+KfxxM79T8yrt9Ca FkjSYp6NTzFEDll6U6DPGgwqIDqiHomy/+OThVzZkB37VcB8mFbYAinxMUrxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUu2uEkrmCg6hc/yHO7wnW1MLdR5QwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyMjcxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTwwDQYJKoZIhvcNAQELBQADggEBAE8/ bFIPKkycI5SEUxa46vJ1atLKOYjXn1HAGwR/eFP1MWz2VfeQuhRcVDFEib9ZAsIT AtT5hBqnXg+OqXmYRwTeyZnNB0jXV4s3cF3hYoKgWNectJIL9UynZlNR/nz+XLSD U9r7b4m1CVoNj0ES5e+OpWRAtf+Y9KjlgsLQvsc2YBHsDnCgix5rejyufzdwy9IW CYJRtRPq5Oj39MgpplpFQlcl0JG7Z4/t6d6G+oGPY4tIJxzHQbU6JQ9VxkePprMV 4tlpKUiuEUrnHNsKUBTcYkYFdPTDj7F+b8DYy11MK3iguO76JY7UIDaFTIHAQhvR i8HaDj2MzBJbv6mGDXA= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org