$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212854.roa File: AS212854.roa (raw, json) Hash identifier: +k7oq8Z+U1WF6HAFT9QoQ29J9AUvnASaRcAa/WP/QUQ= Subject key identifier: F7:DB:45:86:7C:0A:95:9E:37:B0:2C:B0:9D:08:77:5C:1B:3E:CE:EE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2627D9C8E95B8AC0CEF021934DD1FADA9AF6B92B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212854.roa Signing time: Tue 02 Apr 2024 10:58:29 +0000 ROA not before: Tue 02 Apr 2024 10:53:29 +0000 ROA not after: Tue 01 Apr 2025 10:58:29 +0000 asID: 212854 IP address blocks: 2a05:dfc1:3e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:27:d9:c8:e9:5b:8a:c0:ce:f0:21:93:4d:d1:fa:da:9a:f6:b9:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 2 10:53:29 2024 GMT Not After : Apr 1 10:58:29 2025 GMT Subject: CN=F7DB45867C0A959E37B02CB09D08775C1B3ECEEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2c:ca:34:0b:1f:bd:f7:28:ec:21:98:de:52: 53:bb:ac:1d:6f:96:fa:6b:5d:c6:e5:76:de:a2:b9: 65:07:a6:65:79:9e:37:4b:a2:fe:ae:8e:a1:c7:73: 00:f5:52:a3:48:13:3a:05:ac:90:a2:de:e2:00:47: f4:01:4f:9f:d8:b0:75:9c:74:7b:d9:ee:ee:33:9a: b6:73:c8:e7:9a:d0:ab:2d:66:82:ce:ff:c1:a7:a9: e7:7f:25:a8:3b:80:48:02:2e:29:d0:06:49:81:ba: dd:21:7f:c4:bf:d5:d2:ae:af:96:86:fc:fc:01:b8: 43:f5:7b:3a:a2:7f:84:49:ad:43:1d:b2:d6:15:da: b8:f5:e7:ee:14:69:e5:62:2d:b3:8f:ca:b5:8f:7c: 37:47:99:bc:13:c0:ed:33:75:91:e6:62:35:3d:1d: a8:f9:26:fe:3d:7b:4b:10:a1:c4:7f:d1:9e:15:8a: 56:a0:aa:d9:20:6f:d5:6d:f0:d8:80:3a:1f:52:89: c6:4c:5e:75:ed:db:0f:68:c2:2f:d4:34:0c:49:da: 64:c7:ed:ab:6e:dd:80:56:4d:5d:8c:f9:45:7d:98: 20:13:9c:59:c6:e1:c3:f7:bd:a8:51:6b:6d:4f:b2: c3:b4:d8:fc:ea:bc:f6:b4:66:0e:e7:49:c7:27:da: f5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DB:45:86:7C:0A:95:9E:37:B0:2C:B0:9D:08:77:5C:1B:3E:CE:EE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS212854.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3e00::/40 Signature Algorithm: sha256WithRSAEncryption 8d:76:1c:9b:ac:13:19:25:76:95:39:ab:e7:3b:49:17:39:6e: f9:89:ae:36:40:14:a2:f7:97:2d:c3:9d:77:da:b0:01:81:ca: cd:99:87:68:21:2b:09:ac:42:80:8e:31:85:50:3d:b1:14:c5: ac:03:fc:a3:82:b6:1f:76:45:50:d2:95:0c:87:95:27:1a:01: 3f:fe:71:93:09:05:c0:a9:44:86:19:2d:15:d0:1d:bb:83:d2: b2:35:b5:c8:94:fc:7d:4c:98:27:ba:88:e4:67:1e:7b:b9:8c: 7d:6c:ff:31:31:87:e2:c5:a9:5c:d2:fc:22:c8:44:a4:7f:46: 04:d4:df:e7:4d:9c:de:72:b0:e0:84:70:88:86:2a:a8:78:c8: f9:88:a4:ac:1d:7f:e0:8d:2c:e5:82:91:ba:38:c3:08:39:d5: 58:59:26:c3:a6:09:97:fe:14:25:a3:26:e4:f8:49:be:29:5c: 61:f7:58:e7:df:e1:a1:7c:d6:46:5d:db:fe:6c:7d:ea:57:2e: fd:db:9e:83:9b:23:bf:36:ef:0a:a8:fc:07:9b:87:c5:e2:bf: 20:82:30:d8:d5:f5:3a:16:7b:c5:e7:81:fb:ee:b1:69:46:ad: 20:c0:94:0f:e4:34:98:80:4c:d7:e1:05:d7:f6:7f:cb:7a:89: 78:17:a9:85 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJifZyOlbisDO8CGTTdH62pr2uSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA0MDIxMDUzMjlaFw0yNTA0MDExMDU4MjlaMDMxMTAvBgNV BAMTKEY3REI0NTg2N0MwQTk1OUUzN0IwMkNCMDlEMDg3NzVDMUIzRUNFRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBLMo0Cx+99yjsIZjeUlO7rB1v lvprXcbldt6iuWUHpmV5njdLov6ujqHHcwD1UqNIEzoFrJCi3uIAR/QBT5/YsHWc dHvZ7u4zmrZzyOea0KstZoLO/8Gnqed/Jag7gEgCLinQBkmBut0hf8S/1dKur5aG /PwBuEP1ezqif4RJrUMdstYV2rj15+4UaeViLbOPyrWPfDdHmbwTwO0zdZHmYjU9 Haj5Jv49e0sQocR/0Z4Vilagqtkgb9Vt8NiAOh9SicZMXnXt2w9owi/UNAxJ2mTH 7atu3YBWTV2M+UV9mCATnFnG4cP3vahRa21PssO02PzqvPa0Zg7nSccn2vUbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU99tFhnwKlZ43sCywnQh3XBs+zu4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEyODU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwT4wDQYJKoZIhvcNAQELBQADggEBAI12 HJusExkldpU5q+c7SRc5bvmJrjZAFKL3ly3DnXfasAGBys2Zh2ghKwmsQoCOMYVQ PbEUxawD/KOCth92RVDSlQyHlScaAT/+cZMJBcCpRIYZLRXQHbuD0rI1tciU/H1M mCe6iORnHnu5jH1s/zExh+LFqVzS/CLIRKR/RgTU3+dNnN5ysOCEcIiGKqh4yPmI pKwdf+CNLOWCkbo4wwg51VhZJsOmCZf+FCWjJuT4Sb4pXGH3WOff4aF81kZd2/5s fepXLv3bnoObI7827wqo/Aebh8XivyCCMNjV9ToWe8XngfvusWlGrSDAlA/kNJiA TNfhBdf2f8t6iXgXqYU= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org