$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212468.roa File: AS212468.roa (raw, json) Hash identifier: 3O1G2YRLJrLLBQ0j0/z2JRWzNPo7Ipfq7E4r4r2X2mw= Subject key identifier: A2:19:2E:FF:B7:1A:40:1F:AB:33:F1:F1:20:E9:70:B2:50:F5:A2:CF Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2448FC42A74DA4D885D5400F2D318D56061BAD32 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212468.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 212468 IP address blocks: 2a0a:6040:bd00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:48:fc:42:a7:4d:a4:d8:85:d5:40:0f:2d:31:8d:56:06:1b:ad:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=A2192EFFB71A401FAB33F1F120E970B250F5A2CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b0:a3:b4:21:4a:88:ad:92:e3:72:73:4d:cd: bf:82:6e:93:91:b6:42:c5:ae:7f:fa:ec:46:f6:3f: d2:5e:30:72:5d:95:67:07:ba:b7:71:31:af:a3:cc: 1a:6e:b4:c3:82:6d:e1:04:80:a5:75:f6:32:4c:06: 9e:e1:ac:34:93:4b:11:e2:43:cf:f2:ed:d0:34:ce: 05:6d:df:c6:89:8d:b3:e4:71:de:8a:c7:84:43:2b: cd:21:c1:32:d0:20:29:bb:8c:9b:8d:95:31:42:e0: 67:e0:27:d8:d5:1d:8b:df:83:5f:81:ba:dc:d8:cc: 67:5f:44:c1:8c:c1:9c:b2:82:92:da:81:5e:db:fe: 8b:0c:e6:2d:0b:85:74:9c:33:86:91:61:68:a7:22: c6:88:82:ef:8e:81:c7:34:7c:81:eb:2b:60:19:2f: 57:31:3c:27:85:20:16:11:f8:18:d6:a7:3e:2b:fd: c0:41:2a:2b:a7:f6:f2:c3:72:bc:96:80:40:0d:72: 83:07:8f:78:03:9d:22:43:e6:d7:63:1d:96:8c:04: f0:e4:3d:1a:d1:2d:b2:80:a5:31:9a:00:66:f6:10: 0d:e1:1d:71:3c:f9:88:26:cb:fb:75:bd:16:68:5f: 58:4c:70:fb:f7:2c:be:b3:85:26:c5:15:66:c0:8b: fd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:19:2E:FF:B7:1A:40:1F:AB:33:F1:F1:20:E9:70:B2:50:F5:A2:CF X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212468.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bd00::/40 Signature Algorithm: sha256WithRSAEncryption 64:9c:6f:e7:6b:b4:0e:f1:a1:cd:8a:67:8b:f1:a7:7d:34:bb: 4a:b3:22:c4:f2:16:d8:56:fa:7b:0a:a5:89:69:b3:12:62:72: 91:76:63:61:e9:fe:ff:4a:c2:95:66:76:e5:11:23:6c:e7:41: 05:73:26:3a:77:0d:7e:08:29:e5:f8:e0:77:9b:ac:5f:22:e8: a7:7b:f4:29:90:dc:19:d2:13:4e:fb:4a:29:f2:a7:ac:9c:c3: 74:4a:ca:91:4e:63:49:bb:91:bb:96:9d:8a:44:b6:eb:31:42: e2:a3:80:05:b7:2e:6c:7e:06:4e:1c:fe:2e:ab:d1:f0:c2:d1: 98:dc:c6:39:92:08:cb:f9:6e:52:9d:c9:4d:cd:2f:8a:89:5a: a7:da:a5:77:63:49:be:7c:c7:89:16:66:ff:0d:b2:c0:96:73: 30:91:1a:cf:02:33:be:7f:78:93:28:a1:7a:e5:36:33:61:59: 80:96:bc:fd:50:e2:97:d1:4e:a5:62:a2:36:94:87:df:5e:57: a5:cc:70:c7:74:69:3e:02:5d:0b:9b:a0:ba:a7:3f:a1:a5:8b: 20:26:3b:cd:82:18:d7:56:ef:e9:b2:d8:5d:6c:01:06:19:74: e8:8d:cd:87:f2:cc:a6:a5:cf:40:c3:dc:a1:66:e3:10:7d:d9: 19:22:f3:8e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJEj8QqdNpNiF1UAPLTGNVgYbrTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKEEyMTkyRUZGQjcxQTQwMUZBQjMzRjFGMTIwRTk3MEIyNTBGNUEyQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCasKO0IUqIrZLjcnNNzb+CbpOR tkLFrn/67Eb2P9JeMHJdlWcHurdxMa+jzBputMOCbeEEgKV19jJMBp7hrDSTSxHi Q8/y7dA0zgVt38aJjbPkcd6Kx4RDK80hwTLQICm7jJuNlTFC4GfgJ9jVHYvfg1+B utzYzGdfRMGMwZyygpLagV7b/osM5i0LhXScM4aRYWinIsaIgu+Ogcc0fIHrK2AZ L1cxPCeFIBYR+BjWpz4r/cBBKiun9vLDcryWgEANcoMHj3gDnSJD5tdjHZaMBPDk PRrRLbKApTGaAGb2EA3hHXE8+Ygmy/t1vRZoX1hMcPv3LL6zhSbFFWbAi/3vAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUohku/7caQB+rM/HxIOlwslD1os8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyNDY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQL0wDQYJKoZIhvcNAQELBQADggEBAGSc b+drtA7xoc2KZ4vxp300u0qzIsTyFthW+nsKpYlpsxJicpF2Y2Hp/v9KwpVmduUR I2znQQVzJjp3DX4IKeX44HebrF8i6Kd79CmQ3BnSE077Sinyp6ycw3RKypFOY0m7 kbuWnYpEtusxQuKjgAW3Lmx+Bk4c/i6r0fDC0ZjcxjmSCMv5blKdyU3NL4qJWqfa pXdjSb58x4kWZv8NssCWczCRGs8CM75/eJMooXrlNjNhWYCWvP1Q4pfRTqViojaU h99eV6XMcMd0aT4CXQuboLqnP6GliyAmO82CGNdW7+my2F1sAQYZdOiNzYfyzKal z0DD3KFm4xB92Rki844= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org