$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212799.roa File: AS212799.roa (raw, json) Hash identifier: Sk4SK6EH6erzNhc//4XzcxMTiOQWQ4ULH4SiUKp1U54= Subject key identifier: D0:CF:E9:47:DF:EC:60:D2:F0:7C:69:FB:0F:7E:C1:CC:6D:83:C3:28 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 516FB549A3688EF68CDCAE7636C6311A9E3F6AE9 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212799.roa Signing time: Sun 05 Nov 2023 04:07:05 +0000 ROA not before: Sun 05 Nov 2023 04:02:05 +0000 ROA not after: Sun 03 Nov 2024 04:07:05 +0000 asID: 212799 IP address blocks: 2a0a:6040:700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:6f:b5:49:a3:68:8e:f6:8c:dc:ae:76:36:c6:31:1a:9e:3f:6a:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:05 2023 GMT Not After : Nov 3 04:07:05 2024 GMT Subject: CN=D0CFE947DFEC60D2F07C69FB0F7EC1CC6D83C328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:7d:ec:39:19:4d:aa:a0:3e:7f:a6:27:7b:34: 50:f9:0c:63:36:83:ed:0a:7b:27:cc:b2:a8:cd:f7: 1d:28:23:a7:51:5a:3d:10:d0:9f:54:66:cf:8b:20: 80:ed:36:c2:81:5b:b1:32:f5:aa:e8:99:9d:37:7f: 1c:18:58:2a:b5:6b:c2:17:1c:7e:24:a3:3c:39:eb: 82:e2:bd:c2:05:ae:f4:c6:ac:3e:ed:ce:a8:5e:db: 94:d7:79:fb:53:5a:5f:8d:48:cf:dc:88:73:ae:9c: e5:ea:34:87:12:bc:23:5b:0a:e0:b2:c5:0c:de:a9: 33:29:cd:1e:88:2a:a8:ba:e8:66:9c:b3:f7:4b:0b: bb:5d:33:f1:92:b7:b3:d1:3e:a9:9c:6d:cd:ab:ba: ff:20:28:ec:5f:79:21:5b:39:96:30:19:a9:f9:34: bd:69:64:43:38:21:51:e3:57:c0:b7:82:e2:47:f4: 2e:a5:10:3c:bd:d1:cb:a4:03:ae:94:d9:9f:55:41: 86:59:2d:a5:e6:8d:e9:31:65:5f:f8:61:e7:f1:89: 0d:d8:e8:01:f0:c6:44:87:ae:f7:2e:38:95:31:6a: fc:a6:f4:79:56:5d:d5:35:34:5e:8b:2e:e3:c5:a2: b5:03:85:9f:d3:cf:f5:fd:52:39:06:d3:75:62:d5: 6f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:CF:E9:47:DF:EC:60:D2:F0:7C:69:FB:0F:7E:C1:CC:6D:83:C3:28 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212799.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:700::/40 Signature Algorithm: sha256WithRSAEncryption 40:94:73:bc:68:79:fb:4e:c9:ad:51:3e:d9:f8:be:5d:50:bb: 8f:46:68:fb:1f:f9:46:83:41:e1:4d:a4:96:dc:b9:02:a9:4b: 94:24:e7:04:21:8d:bd:39:54:64:5a:19:61:de:46:f3:c7:5e: 25:ae:35:2c:b9:5f:46:de:d0:b0:2d:56:6e:53:e6:20:8a:d7: 57:4e:3e:c8:a1:93:e0:4b:62:81:5e:60:b4:4a:9d:c8:78:4b: 53:2e:b6:f8:2f:3c:1d:d5:bc:23:d3:40:34:6c:76:23:77:6b: 10:44:59:13:22:95:cd:39:0d:e9:de:3a:b0:e2:73:5f:ec:b3: 92:5e:65:3b:f3:ca:52:13:5a:e8:72:d1:6c:b4:3e:19:d7:ee: 7f:39:93:d6:fe:af:8a:bd:91:52:88:91:af:3f:a1:12:c6:af: 76:b7:a8:9a:1f:15:7e:2b:e6:cb:39:2d:98:27:22:77:ee:96: c5:b9:a1:7a:ce:e1:a7:dd:ee:92:37:fc:10:a0:0c:f0:b0:d9: ae:93:c6:86:7d:6d:30:1c:47:d2:7f:86:b3:1a:5c:ef:a7:3f: 31:da:1d:ea:72:a9:15:d8:23:34:4f:99:7a:0f:9e:95:8c:b7: 64:a9:d0:6a:56:1d:2b:db:4d:90:c2:64:45:4b:dd:3a:f5:b2: ac:a6:55:61 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUW+1SaNojvaM3K52NsYxGp4/aukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDVaFw0yNDExMDMwNDA3MDVaMDMxMTAvBgNV BAMTKEQwQ0ZFOTQ3REZFQzYwRDJGMDdDNjlGQjBGN0VDMUNDNkQ4M0MzMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsfew5GU2qoD5/pid7NFD5DGM2 g+0KeyfMsqjN9x0oI6dRWj0Q0J9UZs+LIIDtNsKBW7Ey9aromZ03fxwYWCq1a8IX HH4kozw564LivcIFrvTGrD7tzqhe25TXeftTWl+NSM/ciHOunOXqNIcSvCNbCuCy xQzeqTMpzR6IKqi66Gacs/dLC7tdM/GSt7PRPqmcbc2ruv8gKOxfeSFbOZYwGan5 NL1pZEM4IVHjV8C3guJH9C6lEDy90cukA66U2Z9VQYZZLaXmjekxZV/4YefxiQ3Y 6AHwxkSHrvcuOJUxavym9HlWXdU1NF6LLuPForUDhZ/Tz/X9UjkG03Vi1W8pAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU0M/pR9/sYNLwfGn7D37BzG2DwygwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyNzk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAcwDQYJKoZIhvcNAQELBQADggEBAECU c7xoeftOya1RPtn4vl1Qu49GaPsf+UaDQeFNpJbcuQKpS5Qk5wQhjb05VGRaGWHe RvPHXiWuNSy5X0be0LAtVm5T5iCK11dOPsihk+BLYoFeYLRKnch4S1MutvgvPB3V vCPTQDRsdiN3axBEWRMilc05DeneOrDic1/ss5JeZTvzylITWuhy0Wy0PhnX7n85 k9b+r4q9kVKIka8/oRLGr3a3qJofFX4r5ss5LZgnInfulsW5oXrO4afd7pI3/BCg DPCw2a6TxoZ9bTAcR9J/hrMaXO+nPzHaHepyqRXYIzRPmXoPnpWMt2Sp0GpWHSvb TZDCZEVL3Tr1sqymVWE= -----END CERTIFICATE-----Generated at Fri May 17 06:17:21 2024 by rpki-client on console-fra.rpki-client.org