$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212332.roa File: AS212332.roa (raw, json) Hash identifier: 1u+tswdjwBZ0hM4YytVQNs4fej9vc8jV80d1gTXCC84= Subject key identifier: C1:78:A5:42:31:37:11:36:61:B4:3A:AA:07:A9:4C:6C:10:E8:9E:48 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6F6B994292B8305DFC51F28013A696A51BE210E9 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212332.roa Signing time: Tue 22 Oct 2024 11:45:25 +0000 ROA not before: Tue 22 Oct 2024 11:40:25 +0000 ROA not after: Tue 21 Oct 2025 11:45:25 +0000 asID: 212332 IP address blocks: 2a05:dfc1:8a00::/40 maxlen: 48 2a06:9f81:1500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:6b:99:42:92:b8:30:5d:fc:51:f2:80:13:a6:96:a5:1b:e2:10:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 22 11:40:25 2024 GMT Not After : Oct 21 11:45:25 2025 GMT Subject: CN=C178A5423137113661B43AAA07A94C6C10E89E48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fd:e4:42:32:e5:1d:35:d1:62:f2:6b:41:d5: c8:ae:61:9c:99:bc:5a:f1:08:40:06:9c:4e:f2:62: d6:7e:a2:6b:16:aa:34:c0:9e:dd:aa:c8:51:e6:34: 83:a1:60:48:bc:ca:be:3f:08:a3:20:b5:46:df:57: f0:b2:41:0c:7a:2e:f7:21:0d:af:58:38:10:50:57: 1d:f0:5c:59:b9:ef:37:ab:56:80:10:68:ac:ea:83: fb:12:5e:f8:bd:c5:4c:70:7c:e6:c7:3b:90:4b:e4: bf:19:4b:58:ad:c5:3d:dd:df:09:13:a5:f7:92:e4: 80:14:af:72:00:a6:04:0c:b6:44:39:e9:1d:1c:69: ef:40:90:d7:aa:51:e9:a8:28:df:a9:c5:e4:b7:32: be:87:a3:ed:1f:41:a8:3b:b4:7c:ba:6e:0d:84:a5: 0b:78:36:78:c0:17:0f:78:cb:6c:ba:fc:a6:ec:8d: ce:91:f8:ff:6e:ae:2f:82:8c:2b:3b:c6:5a:29:4b: a5:47:7c:d4:e0:6d:98:f1:93:2b:91:ee:c5:dd:39: 84:96:31:10:20:42:ae:23:80:00:f2:ba:a4:8d:1b: 81:3a:3a:09:67:0a:bc:1b:75:da:4d:c5:6c:dd:6f: d8:a4:1b:30:55:99:9f:d0:a0:f9:0c:98:c0:fa:99: 5c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:78:A5:42:31:37:11:36:61:B4:3A:AA:07:A9:4C:6C:10:E8:9E:48 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8a00::/40 2a06:9f81:1500::/40 Signature Algorithm: sha256WithRSAEncryption 73:3f:3a:23:4d:b6:90:fd:77:70:dc:3f:69:e5:bb:d9:55:a7: 33:03:df:b2:22:ca:bb:9d:45:53:5a:e0:f8:1f:cc:a8:1d:76: f9:24:db:e5:a6:ff:0e:6d:73:27:32:34:b5:ba:f7:37:ad:e8: b8:3f:43:30:67:1d:57:26:7e:4b:fc:b7:78:5a:db:f5:39:37: d1:9f:00:70:5b:a5:56:3e:ff:1b:6c:61:8f:73:3d:af:43:88: e7:3f:70:b4:7a:e9:29:76:4f:b5:71:c9:22:32:2b:71:e1:33: 0d:04:c8:51:58:06:ab:0a:4b:56:f6:2a:e9:be:5b:e9:a0:c1: a4:0f:17:2e:63:e3:7d:fa:2c:08:af:30:02:ef:3e:24:2c:00: 58:dd:13:45:b0:71:db:42:a4:5c:5d:e8:78:37:4c:a3:0b:b5: 6e:ad:89:7f:19:b7:c0:07:ab:77:4e:ad:fa:b1:60:60:57:78: e8:29:47:51:4c:3d:f6:70:17:9b:a8:f3:84:d5:ff:1a:8f:e6: 71:38:27:f9:c0:01:1a:e1:05:9d:92:eb:6b:9e:87:4c:d6:8e: 21:a2:7f:5c:fd:10:60:26:e3:49:e7:7f:9f:c9:0a:8c:0d:17: 8e:25:f4:68:8a:9c:95:f7:66:e9:48:cf:fd:89:e9:1b:3e:2e: e8:50:0b:4a -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUb2uZQpK4MF38UfKAE6aWpRviEOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMjIxMTQwMjVaFw0yNTEwMjExMTQ1MjVaMDMxMTAvBgNV BAMTKEMxNzhBNTQyMzEzNzExMzY2MUI0M0FBQTA3QTk0QzZDMTBFODlFNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG/eRCMuUdNdFi8mtB1ciuYZyZ vFrxCEAGnE7yYtZ+omsWqjTAnt2qyFHmNIOhYEi8yr4/CKMgtUbfV/CyQQx6Lvch Da9YOBBQVx3wXFm57zerVoAQaKzqg/sSXvi9xUxwfObHO5BL5L8ZS1itxT3d3wkT pfeS5IAUr3IApgQMtkQ56R0cae9AkNeqUemoKN+pxeS3Mr6Ho+0fQag7tHy6bg2E pQt4NnjAFw94y2y6/Kbsjc6R+P9uri+CjCs7xlopS6VHfNTgbZjxkyuR7sXdOYSW MRAgQq4jgADyuqSNG4E6OglnCrwbddpNxWzdb9ikGzBVmZ/QoPkMmMD6mVybAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUwXilQjE3ETZhtDqqB6lMbBDonkgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgXfwYoDBgAqBp+BFTANBgkqhkiG9w0BAQsF AAOCAQEAcz86I022kP13cNw/aeW72VWnMwPfsiLKu51FU1rg+B/MqB12+STb5ab/ Dm1zJzI0tbr3N63ouD9DMGcdVyZ+S/y3eFrb9Tk30Z8AcFulVj7/G2xhj3M9r0OI 5z9wtHrpKXZPtXHJIjIrceEzDQTIUVgGqwpLVvYq6b5b6aDBpA8XLmPjffosCK8w Au8+JCwAWN0TRbBx20KkXF3oeDdMowu1bq2Jfxm3wAerd06t+rFgYFd46ClHUUw9 9nAXm6jzhNX/Go/mcTgn+cABGuEFnZLra56HTNaOIaJ/XP0QYCbjSed/n8kKjA0X jiX0aIqclfdm6UjP/YnpGz4u6FALSg== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org