$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212468.roa File: AS212468.roa (raw, json) Hash identifier: /ku4hF4xF559eKK48SIPMhkqWBm3GwMpMU3AfW9oaOc= Subject key identifier: 1D:BE:E5:FA:5A:B0:8E:30:9C:E1:9B:A2:58:AC:9F:AB:E2:90:94:69 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 126CFDBF532D2D55297082B244386ED0581C4C6C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212468.roa Signing time: Sun 05 Nov 2023 04:07:19 +0000 ROA not before: Sun 05 Nov 2023 04:02:19 +0000 ROA not after: Sun 03 Nov 2024 04:07:19 +0000 asID: 212468 IP address blocks: 2a0a:6040:bd00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:6c:fd:bf:53:2d:2d:55:29:70:82:b2:44:38:6e:d0:58:1c:4c:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:19 2023 GMT Not After : Nov 3 04:07:19 2024 GMT Subject: CN=1DBEE5FA5AB08E309CE19BA258AC9FABE2909469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:aa:1e:f5:d9:23:31:24:0e:89:8c:fd:28:21: 7f:d9:1e:bd:46:2c:31:2e:cf:fd:f6:40:71:87:a2: 03:a5:e9:0d:71:d7:7d:9d:c9:aa:fd:d5:a2:ff:ca: 46:32:1b:b8:45:73:18:9e:ec:8a:30:2d:53:1f:2f: 31:65:51:92:27:24:cc:07:8e:c5:0b:bc:86:38:d7: 1e:01:df:8c:95:16:77:98:bf:1f:a7:d6:9d:4c:75: 54:b4:e5:a1:5e:f2:0c:b7:79:78:81:90:ea:32:df: dd:1a:90:c1:eb:c3:bf:27:0e:79:49:84:3d:eb:b9: 9f:df:1a:72:44:26:86:cf:2a:24:01:71:0d:ac:48: ba:13:92:6f:0f:e7:8f:bc:df:68:46:91:5f:5b:35: 0f:55:ef:29:f3:33:39:e6:f0:a8:57:cc:bb:0e:78: ba:d3:f1:0d:b4:b5:b0:67:56:bf:9f:b3:e0:3a:61: 2a:1a:bd:72:53:5c:b0:24:03:21:82:eb:70:63:55: 04:c3:e4:e0:a3:0b:2a:20:2f:a5:86:b9:dc:30:33: 4f:28:a9:dc:03:bf:33:2a:ed:e1:be:a0:9d:18:de: 2a:34:47:e1:d2:40:c2:bb:a7:67:1a:7d:c3:84:10: be:b4:b8:f3:8e:73:86:49:16:bf:5e:e2:c7:8d:f4: 6f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:BE:E5:FA:5A:B0:8E:30:9C:E1:9B:A2:58:AC:9F:AB:E2:90:94:69 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212468.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bd00::/40 Signature Algorithm: sha256WithRSAEncryption 18:4b:fe:32:ff:31:1f:cf:13:f0:f5:b2:77:c0:95:84:2a:03: 2f:4c:78:1a:07:36:6a:47:be:33:37:36:2e:f7:f1:29:de:a1: 1b:72:bf:36:cb:62:7f:b3:29:b9:d0:5c:0b:3f:ec:50:64:ec: 44:fa:e3:5f:44:22:9b:16:f3:d5:56:14:ee:c6:2f:d0:7d:96: 39:3e:ce:97:e7:0b:5a:35:17:0d:57:8c:21:76:13:5d:80:56: ec:07:69:9a:e9:87:4e:12:e4:1e:c7:89:e9:cc:9a:a1:02:4b: fe:14:8e:18:63:fa:d4:a2:aa:47:db:e1:e5:c7:b6:01:9b:24: bf:0e:de:0e:d6:bf:5e:ff:9e:f8:02:ee:91:b7:02:8b:4e:ee: ac:65:10:d8:c7:48:02:97:cf:0f:4b:9b:ba:7b:9c:76:0e:72: f9:e5:b4:f0:3a:60:c7:5f:ba:aa:47:49:25:84:c9:ec:61:1a: 0b:18:6b:07:fb:0f:31:9b:80:17:32:8f:60:61:43:90:19:51: 07:f6:98:4e:92:50:4f:95:32:2c:e3:df:68:87:3b:41:1f:54: 1b:1b:1c:03:d8:fc:a6:f5:42:b4:3c:e5:8d:70:cc:81:33:80: d5:57:3d:60:75:cf:c5:38:ed:c7:f0:4a:76:ea:1d:36:5b:2c: 84:60:fa:d1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEmz9v1MtLVUpcIKyRDhu0FgcTGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTlaFw0yNDExMDMwNDA3MTlaMDMxMTAvBgNV BAMTKDFEQkVFNUZBNUFCMDhFMzA5Q0UxOUJBMjU4QUM5RkFCRTI5MDk0NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJqh712SMxJA6JjP0oIX/ZHr1G LDEuz/32QHGHogOl6Q1x132dyar91aL/ykYyG7hFcxie7IowLVMfLzFlUZInJMwH jsULvIY41x4B34yVFneYvx+n1p1MdVS05aFe8gy3eXiBkOoy390akMHrw78nDnlJ hD3ruZ/fGnJEJobPKiQBcQ2sSLoTkm8P54+832hGkV9bNQ9V7ynzMznm8KhXzLsO eLrT8Q20tbBnVr+fs+A6YSoavXJTXLAkAyGC63BjVQTD5OCjCyogL6WGudwwM08o qdwDvzMq7eG+oJ0Y3io0R+HSQMK7p2cafcOEEL60uPOOc4ZJFr9e4seN9G9LAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUHb7l+lqwjjCc4ZuiWKyfq+KQlGkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyNDY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQL0wDQYJKoZIhvcNAQELBQADggEBABhL /jL/MR/PE/D1snfAlYQqAy9MeBoHNmpHvjM3Ni738SneoRtyvzbLYn+zKbnQXAs/ 7FBk7ET6419EIpsW89VWFO7GL9B9ljk+zpfnC1o1Fw1XjCF2E12AVuwHaZrph04S 5B7HienMmqECS/4Ujhhj+tSiqkfb4eXHtgGbJL8O3g7Wv17/nvgC7pG3AotO7qxl ENjHSAKXzw9Lm7p7nHYOcvnltPA6YMdfuqpHSSWEyexhGgsYawf7DzGbgBcyj2Bh Q5AZUQf2mE6SUE+VMizj32iHO0EfVBsbHAPY/Kb1QrQ85Y1wzIEzgNVXPWB1z8U4 7cfwSnbqHTZbLIRg+tE= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org