$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212532.roa File: AS212532.roa (raw, json) Hash identifier: SW4FUNIZqDpBkCO9IJH/yBTeWgcJP8jFbG8aqyDdlT4= Subject key identifier: 9C:85:18:CB:04:46:9E:CD:7D:77:A2:2C:4C:A3:E6:75:23:47:EC:C6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 50CC6929B8305274C8FCA920A12A726164DFCC1A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212532.roa Signing time: Sun 05 Nov 2023 04:06:58 +0000 ROA not before: Sun 05 Nov 2023 04:01:58 +0000 ROA not after: Sun 03 Nov 2024 04:06:58 +0000 asID: 212532 IP address blocks: 2a0a:6040:f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:cc:69:29:b8:30:52:74:c8:fc:a9:20:a1:2a:72:61:64:df:cc:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:58 2023 GMT Not After : Nov 3 04:06:58 2024 GMT Subject: CN=9C8518CB04469ECD7D77A22C4CA3E6752347ECC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:87:63:04:80:00:27:de:f7:77:82:09:ac:9e: 57:45:ed:65:a1:c0:c9:70:aa:c7:77:2c:ec:0d:21: dd:73:96:6f:f6:a5:bc:3c:fd:b9:59:da:94:aa:19: 37:ea:70:e9:f1:02:38:25:e2:3e:b0:fd:4e:47:3e: 2f:1e:89:05:3e:6f:b8:41:85:98:97:cf:64:8b:8d: 59:37:17:b0:4e:f5:b8:29:9a:30:fb:ae:db:d0:d6: cd:cc:d4:ae:e5:94:00:5c:38:7c:40:61:02:b9:0c: af:84:ad:65:fe:20:ca:1f:78:07:81:1c:82:14:18: de:f5:64:f3:cc:de:22:4e:b5:a0:75:b9:2d:c3:44: 87:21:b6:36:6d:e7:c6:e6:66:3b:af:7c:94:1a:52: b9:ae:a3:86:54:dc:a8:92:48:b1:c9:d8:aa:a1:a6: 96:23:75:86:a1:5d:c3:34:74:a2:db:f4:b9:b6:8c: 9f:fc:c0:3b:0b:01:5f:ab:9f:e3:a9:1f:50:4c:77: 61:2f:f2:84:28:85:8a:97:be:17:c2:d8:78:9b:85: 18:28:97:c8:ac:ea:a5:67:d2:a7:75:7d:91:13:79: c2:be:f0:1e:9b:f1:23:9d:4d:d2:db:63:5f:57:e2: 08:e2:73:7a:c8:5c:01:f4:7d:3e:14:a6:a7:f6:50: 37:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:85:18:CB:04:46:9E:CD:7D:77:A2:2C:4C:A3:E6:75:23:47:EC:C6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f00::/40 Signature Algorithm: sha256WithRSAEncryption 28:2e:cb:94:69:6a:1b:68:fc:c1:d0:25:8e:74:70:c0:3f:bf: fa:4b:36:17:31:6a:f3:82:ca:f1:e9:81:9b:67:47:10:7f:13: 4b:b3:83:86:e9:13:81:d9:fb:cc:ed:fd:10:0a:ec:97:2f:42: 75:49:af:12:4f:4c:6f:f7:29:0a:e7:1b:28:ed:9f:b7:a0:42: ff:3e:b8:21:e9:1b:e5:4c:b7:6a:79:14:9d:1b:5a:36:81:57: d1:92:ce:49:e6:f6:f2:78:2a:3d:cf:29:56:2a:6b:bc:78:f3: 8c:df:ad:01:a2:59:fd:fb:e0:ec:c8:26:4f:81:fc:a5:59:ca: 82:1f:ca:87:e3:48:62:fd:cb:38:18:37:d8:1c:44:e7:c8:25: 88:cd:97:ff:ba:cd:63:20:a8:9e:81:fd:f4:5a:b5:46:ce:85: cd:96:db:60:78:ce:06:7a:38:8e:64:de:0f:f7:8c:32:22:d6: 2e:c6:96:38:e9:08:a2:0a:07:d8:bf:a9:2d:00:a1:9c:9b:5c: e8:9b:a4:40:2f:a4:b8:88:0e:6e:62:cd:6b:9e:3e:ae:5b:23: e6:14:cd:58:c2:9a:0d:9e:9c:cd:1b:27:d5:41:9b:d6:9b:35: 4a:01:35:b9:d8:87:31:45:7b:ea:0a:be:df:0f:c6:7c:62:b1: f1:2a:ba:bb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUMxpKbgwUnTI/KkgoSpyYWTfzBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNThaFw0yNDExMDMwNDA2NThaMDMxMTAvBgNV BAMTKDlDODUxOENCMDQ0NjlFQ0Q3RDc3QTIyQzRDQTNFNjc1MjM0N0VDQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNh2MEgAAn3vd3ggmsnldF7WWh wMlwqsd3LOwNId1zlm/2pbw8/blZ2pSqGTfqcOnxAjgl4j6w/U5HPi8eiQU+b7hB hZiXz2SLjVk3F7BO9bgpmjD7rtvQ1s3M1K7llABcOHxAYQK5DK+ErWX+IMofeAeB HIIUGN71ZPPM3iJOtaB1uS3DRIchtjZt58bmZjuvfJQaUrmuo4ZU3KiSSLHJ2Kqh ppYjdYahXcM0dKLb9Lm2jJ/8wDsLAV+rn+OpH1BMd2Ev8oQohYqXvhfC2HibhRgo l8is6qVn0qd1fZETecK+8B6b8SOdTdLbY19X4gjic3rIXAH0fT4Upqf2UDdpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUnIUYywRGns19d6IsTKPmdSNH7MYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQA8wDQYJKoZIhvcNAQELBQADggEBACgu y5Rpahto/MHQJY50cMA/v/pLNhcxavOCyvHpgZtnRxB/E0uzg4bpE4HZ+8zt/RAK 7JcvQnVJrxJPTG/3KQrnGyjtn7egQv8+uCHpG+VMt2p5FJ0bWjaBV9GSzknm9vJ4 Kj3PKVYqa7x484zfrQGiWf374OzIJk+B/KVZyoIfyofjSGL9yzgYN9gcROfIJYjN l/+6zWMgqJ6B/fRatUbOhc2W22B4zgZ6OI5k3g/3jDIi1i7GljjpCKIKB9i/qS0A oZybXOibpEAvpLiIDm5izWuePq5bI+YUzVjCmg2enM0bJ9VBm9abNUoBNbnYhzFF e+oKvt8PxnxisfEqurs= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org