$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212799.roa File: AS212799.roa (raw, json) Hash identifier: /ZsTxMEfsT1N3tl+uSrhwaZn0IA0BHQpdw4RyZLAfYI= Subject key identifier: 35:23:4C:4E:2E:57:A4:EF:5C:62:3A:2B:B8:E2:FC:CD:5D:6B:05:0B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 43ADEA8B0DD424524585225E290DD0AEA511BCBF Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212799.roa Signing time: Sun 06 Oct 2024 04:45:08 +0000 ROA not before: Sun 06 Oct 2024 04:40:08 +0000 ROA not after: Sun 05 Oct 2025 04:45:08 +0000 asID: 212799 IP address blocks: 2a0a:6040:700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ad:ea:8b:0d:d4:24:52:45:85:22:5e:29:0d:d0:ae:a5:11:bc:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:08 2024 GMT Not After : Oct 5 04:45:08 2025 GMT Subject: CN=35234C4E2E57A4EF5C623A2BB8E2FCCD5D6B050B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ff:88:02:f7:5f:3b:78:f8:83:c4:ec:3c:a8: c5:73:48:e1:1b:cc:1c:13:b4:b1:f2:43:2b:a9:fa: a7:f2:1e:70:fc:1c:d0:84:c1:52:a3:2a:7e:1e:aa: e1:c6:31:c6:8f:3d:59:ba:88:24:7a:a6:58:2e:d2: 28:28:30:19:bf:9c:30:4e:f3:04:c4:5f:60:e1:1e: ab:ed:91:87:f6:02:36:12:8d:d7:5e:8f:46:e5:a7: 06:04:50:db:f9:4b:96:ec:10:22:10:62:01:30:12: 11:bd:68:6b:00:26:fb:55:a0:df:94:ce:bc:05:26: 13:27:3a:a5:ad:37:d1:e6:bb:47:b9:f4:3b:f1:54: b9:f1:e4:4e:58:a7:f8:29:84:24:25:be:d7:5a:38: be:1c:95:79:28:df:3a:98:5d:e8:4a:4f:83:f5:3b: 48:1d:30:63:4c:7d:85:9d:20:75:1b:6c:13:ee:3d: eb:6b:2e:de:c9:97:53:99:ab:e3:0f:04:b3:be:0b: 04:23:17:b8:41:66:28:df:b8:c1:4a:42:10:f1:d9: dc:90:18:a1:f4:a9:ee:83:b3:18:d9:4b:c0:78:cb: 0e:74:33:bb:47:43:2f:02:45:50:78:84:05:a0:c5: 2f:60:c6:b2:1e:8c:8a:67:b7:b3:0a:7c:2f:c0:f0: a6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:23:4C:4E:2E:57:A4:EF:5C:62:3A:2B:B8:E2:FC:CD:5D:6B:05:0B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212799.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:700::/40 Signature Algorithm: sha256WithRSAEncryption 50:93:22:5c:9b:3b:b6:dd:7b:9b:fb:23:b8:3c:58:91:7c:63: d0:f1:c2:45:93:ad:b5:85:4c:b7:0a:d9:33:17:51:9a:6c:79: a0:80:ce:c8:5d:dc:72:af:9f:20:97:22:c4:f2:80:2f:35:fc: ea:6d:9d:7a:56:9e:b9:32:cb:e2:e9:f3:49:5f:dc:0d:4a:a0: 20:ce:06:f0:4b:d9:a1:ac:38:57:71:64:6b:af:ec:8d:86:ad: d8:84:d3:9d:40:25:3d:e9:c8:c2:26:97:9b:9b:82:88:e2:68: 10:50:eb:7d:4c:e2:94:33:1e:1b:3b:57:af:88:c8:6f:11:53: cd:71:a5:b6:65:02:b9:91:51:d4:ba:ee:1d:1a:c0:a0:8c:02: e0:8b:fc:6e:ae:2e:b2:d2:b8:23:59:18:35:84:11:98:b3:2d: cb:82:9e:f9:c0:a1:fc:9b:61:0b:68:a5:34:66:88:55:fd:f3: ec:35:d2:13:30:71:08:21:6e:dc:ad:05:73:2f:7f:3e:0a:a2: 33:19:4d:b3:b4:f2:81:e6:65:79:9c:aa:0e:57:5e:0f:5b:66: d0:98:84:21:1c:a9:08:95:14:1f:b1:f0:a2:46:be:57:d4:02: 1c:1a:05:80:c0:86:3d:18:f6:ce:39:b5:8f:2b:65:5e:19:00: 15:fc:f5:a0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQ63qiw3UJFJFhSJeKQ3QrqURvL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDhaFw0yNTEwMDUwNDQ1MDhaMDMxMTAvBgNV BAMTKDM1MjM0QzRFMkU1N0E0RUY1QzYyM0EyQkI4RTJGQ0NENUQ2QjA1MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL/4gC9187ePiDxOw8qMVzSOEb zBwTtLHyQyup+qfyHnD8HNCEwVKjKn4equHGMcaPPVm6iCR6plgu0igoMBm/nDBO 8wTEX2DhHqvtkYf2AjYSjddej0blpwYEUNv5S5bsECIQYgEwEhG9aGsAJvtVoN+U zrwFJhMnOqWtN9Hmu0e59DvxVLnx5E5Yp/gphCQlvtdaOL4clXko3zqYXehKT4P1 O0gdMGNMfYWdIHUbbBPuPetrLt7Jl1OZq+MPBLO+CwQjF7hBZijfuMFKQhDx2dyQ GKH0qe6DsxjZS8B4yw50M7tHQy8CRVB4hAWgxS9gxrIejIpnt7MKfC/A8KZZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUNSNMTi5XpO9cYjoruOL8zV1rBQswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyNzk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAcwDQYJKoZIhvcNAQELBQADggEBAFCT IlybO7bde5v7I7g8WJF8Y9DxwkWTrbWFTLcK2TMXUZpseaCAzshd3HKvnyCXIsTy gC81/OptnXpWnrkyy+Lp80lf3A1KoCDOBvBL2aGsOFdxZGuv7I2GrdiE051AJT3p yMIml5ubgojiaBBQ631M4pQzHhs7V6+IyG8RU81xpbZlArmRUdS67h0awKCMAuCL /G6uLrLSuCNZGDWEEZizLcuCnvnAofybYQtopTRmiFX98+w10hMwcQghbtytBXMv fz4KojMZTbO08oHmZXmcqg5XXg9bZtCYhCEcqQiVFB+x8KJGvlfUAhwaBYDAhj0Y 9s45tY8rZV4ZABX89aA= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org