$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212532.roa File: AS212532.roa (raw, json) Hash identifier: NTp+yixGgx8/UUzr9AD3XAW8D6AGvMLbytincEp6So0= Subject key identifier: D5:D9:7C:C2:0A:8F:E3:84:9D:17:C7:99:57:4D:9F:E1:53:AB:BA:96 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5D6BD9A01E9AECB6AB8052F42CC68837D0A6837F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212532.roa Signing time: Sun 06 Oct 2024 04:45:11 +0000 ROA not before: Sun 06 Oct 2024 04:40:11 +0000 ROA not after: Sun 05 Oct 2025 04:45:11 +0000 asID: 212532 IP address blocks: 2a0a:6040:f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:6b:d9:a0:1e:9a:ec:b6:ab:80:52:f4:2c:c6:88:37:d0:a6:83:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:11 2024 GMT Not After : Oct 5 04:45:11 2025 GMT Subject: CN=D5D97CC20A8FE3849D17C799574D9FE153ABBA96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a9:01:fa:54:a7:0e:c3:37:86:85:f9:92:d0: 59:b0:86:39:97:56:27:79:a5:d1:7c:74:2e:db:37: 72:01:4b:f6:64:5b:8d:a3:0c:87:20:46:53:23:8d: e7:f3:00:a8:c8:86:83:81:ad:f2:88:34:f2:7d:34: 48:03:14:33:1c:40:4b:b9:82:1a:23:54:a9:18:b5: fb:19:11:cf:48:72:54:b2:8e:59:06:1b:33:39:e8: 16:d1:31:f5:40:e3:e4:cc:5b:a0:9e:7a:9d:d6:8e: 8c:54:0a:4c:f6:40:b5:50:b3:f9:5d:33:b3:4a:fb: d8:8e:fa:8e:65:a4:6a:60:a3:f9:f4:36:d9:b4:a6: 99:99:c0:3f:c0:b9:37:e8:b3:5d:a7:4a:47:1c:59: d4:e7:5b:ea:44:eb:ce:72:33:37:e5:e6:c2:ed:20: bf:22:48:f6:b4:a6:37:e4:2e:f5:27:0c:11:fd:67: 28:b5:98:f5:e5:87:35:8b:e9:43:aa:60:fb:c6:92: 62:f5:50:c9:93:97:f9:4a:f3:67:7d:8f:59:1e:58: 0e:3a:68:ec:62:07:c8:2c:41:65:89:24:de:d0:fb: cc:68:1a:2c:90:e3:c0:6c:64:a0:0e:23:f5:52:17: 55:14:41:52:ca:b8:ea:b2:0c:c2:38:9b:f3:da:54: 7f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D9:7C:C2:0A:8F:E3:84:9D:17:C7:99:57:4D:9F:E1:53:AB:BA:96 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f00::/40 Signature Algorithm: sha256WithRSAEncryption 20:b4:ba:d0:be:a1:8a:de:3f:8f:db:8b:fd:bd:22:3b:9e:09: e3:9c:ec:b4:5f:93:5f:8b:d2:71:3c:58:98:ed:32:a1:db:60: 91:e6:c8:de:41:b9:3a:10:29:e2:85:1d:b2:c7:f7:d3:16:9e: 0c:ae:c1:c8:ab:fc:23:b8:c8:c1:d7:b1:bc:a4:98:68:48:6d: fa:32:e2:df:eb:1f:38:21:ab:28:54:db:7c:c5:02:cb:6e:a6: 50:89:fc:6f:b6:34:f0:9a:9f:63:7a:fe:5d:4c:f9:e6:13:ad: 47:28:26:27:5e:97:91:80:07:d5:72:76:8c:90:d9:96:22:9f: de:72:fe:95:33:74:88:71:5a:8f:3f:27:f8:5d:32:d1:f5:ec: a8:15:84:53:d3:92:cc:48:ad:ae:6c:33:7a:ef:17:90:ee:bb: 9f:b5:13:47:23:0e:e9:93:c0:b6:48:e9:36:58:ef:a1:22:37: 9e:30:f0:7f:97:55:f8:4e:d0:c6:44:31:a8:d9:01:9b:b5:4e: c1:f1:d7:d9:ff:fd:0d:3f:81:bb:03:b2:a6:a6:6e:64:04:0a: 36:33:bc:0f:10:19:50:5b:61:aa:f2:1c:24:18:6b:95:e8:b3: 14:70:15:90:0d:7f:c2:96:cb:ab:fa:ee:c4:3c:70:0d:76:70: 81:ad:f7:2e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXWvZoB6a7LargFL0LMaIN9Cmg38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTFaFw0yNTEwMDUwNDQ1MTFaMDMxMTAvBgNV BAMTKEQ1RDk3Q0MyMEE4RkUzODQ5RDE3Qzc5OTU3NEQ5RkUxNTNBQkJBOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFqQH6VKcOwzeGhfmS0FmwhjmX Vid5pdF8dC7bN3IBS/ZkW42jDIcgRlMjjefzAKjIhoOBrfKINPJ9NEgDFDMcQEu5 ghojVKkYtfsZEc9IclSyjlkGGzM56BbRMfVA4+TMW6Ceep3WjoxUCkz2QLVQs/ld M7NK+9iO+o5lpGpgo/n0Ntm0ppmZwD/AuTfos12nSkccWdTnW+pE685yMzfl5sLt IL8iSPa0pjfkLvUnDBH9Zyi1mPXlhzWL6UOqYPvGkmL1UMmTl/lK82d9j1keWA46 aOxiB8gsQWWJJN7Q+8xoGiyQ48BsZKAOI/VSF1UUQVLKuOqyDMI4m/PaVH9xAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1dl8wgqP44SdF8eZV02f4VOrupYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQA8wDQYJKoZIhvcNAQELBQADggEBACC0 utC+oYreP4/bi/29IjueCeOc7LRfk1+L0nE8WJjtMqHbYJHmyN5BuToQKeKFHbLH 99MWngyuwcir/CO4yMHXsbykmGhIbfoy4t/rHzghqyhU23zFAstuplCJ/G+2NPCa n2N6/l1M+eYTrUcoJidel5GAB9VydoyQ2ZYin95y/pUzdIhxWo8/J/hdMtH17KgV hFPTksxIra5sM3rvF5Duu5+1E0cjDumTwLZI6TZY76EiN54w8H+XVfhO0MZEMajZ AZu1TsHx19n//Q0/gbsDsqambmQECjYzvA8QGVBbYaryHCQYa5XosxRwFZANf8KW y6v67sQ8cA12cIGt9y4= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org