$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213236.roa File: AS213236.roa (raw, json) Hash identifier: 2XVox8mN3g74rjNdsoJ9yYaSCjPjkVLl0+n4EoZr/tg= Subject key identifier: D2:42:0F:3B:93:ED:0F:EB:D6:02:D2:1D:DA:BD:5F:CA:54:7C:9F:A6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 77E843ED21FE17ECCD61FC26D5C86DFF11082D0D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213236.roa Signing time: Tue 16 Apr 2024 10:59:05 +0000 ROA not before: Tue 16 Apr 2024 10:54:05 +0000 ROA not after: Tue 15 Apr 2025 10:59:05 +0000 asID: 213236 IP address blocks: 2a05:dfc1:4600::/40 maxlen: 48 2a05:dfc1:4700::/40 maxlen: 40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e8:43:ed:21:fe:17:ec:cd:61:fc:26:d5:c8:6d:ff:11:08:2d:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 16 10:54:05 2024 GMT Not After : Apr 15 10:59:05 2025 GMT Subject: CN=D2420F3B93ED0FEBD602D21DDABD5FCA547C9FA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f1:8b:be:8b:fe:30:1b:0c:37:da:6d:9d:a1: 14:61:63:b2:0d:ac:f5:f5:fc:12:c9:ae:95:7f:4b: b4:91:6c:b1:4d:4e:29:7b:6d:3c:e7:8b:fc:42:3d: 79:c7:b2:7a:76:5e:4b:60:db:66:2f:eb:ed:d3:92: c0:b2:23:b6:18:55:7c:39:fc:f6:8b:5b:72:fa:49: 5b:bb:fe:9a:0c:db:f9:81:e2:7c:ed:24:db:79:a1: 3e:3f:1f:40:03:e3:d6:f3:b3:cc:b0:d0:84:f2:ab: 35:d7:f2:3a:b9:03:77:8f:b4:e1:06:8b:ac:61:76: 18:9e:12:54:dc:81:ac:d1:8d:9f:73:8b:06:6e:8b: 4c:b1:8a:20:da:aa:d1:9d:c5:75:94:d1:93:38:ee: 62:69:e9:36:ed:52:cd:f5:6e:83:40:32:f8:d5:f4: c3:57:8f:45:cc:d4:82:9b:e5:91:3c:9b:aa:4a:c9: 85:82:61:c8:3b:6e:07:cf:b1:21:4d:e1:4e:ba:d5: b2:26:11:b1:59:a4:2e:3e:f0:82:53:76:6e:f7:a9: 15:9a:d8:ab:c0:55:3e:ac:6c:93:d0:9a:54:bc:fd: 78:47:b5:58:d4:28:7b:cd:2f:f9:44:0d:ab:bc:01: d6:8c:0c:d5:11:2b:e9:35:64:4d:af:f9:1d:30:db: 25:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:42:0F:3B:93:ED:0F:EB:D6:02:D2:1D:DA:BD:5F:CA:54:7C:9F:A6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4600::/39 Signature Algorithm: sha256WithRSAEncryption 00:93:57:64:78:63:2e:fa:b5:19:e3:8b:b4:00:2d:41:86:e7: e3:c1:e2:b6:3c:67:92:ab:ce:1f:1b:18:1e:39:1a:6a:74:7a: 2d:3b:56:b3:93:65:c0:37:e9:91:6c:b5:c1:55:85:d8:70:ab: e3:04:a9:62:83:05:d5:0e:4c:f9:b7:30:f4:5b:d9:0f:61:8c: 6f:2e:bc:96:a3:71:0e:0e:cd:33:7f:0f:8f:d1:dc:ed:07:bd: 54:20:a8:8c:26:1a:d3:27:77:8c:11:0e:91:f2:4f:d8:cf:4b: 88:78:c3:89:b0:62:47:3b:1b:1d:bc:f8:ff:67:c9:55:d8:b5: e4:fe:6f:0c:85:cb:7a:ad:11:d8:0f:5e:ea:bf:5c:a1:7f:3a: c4:c9:c5:e0:ef:a2:1f:45:e8:eb:43:25:0c:d0:a7:4b:54:67: 4a:5a:db:21:a7:84:98:62:6f:e4:a2:0e:d9:e5:b0:da:95:1c: d0:79:b1:4a:61:22:b6:25:0a:5f:33:83:0f:43:1f:40:9f:8e: 3e:04:29:47:b4:8d:23:2d:74:4a:9a:6f:1c:bb:5e:24:1b:5a: 60:81:55:91:59:44:17:cd:fa:97:7f:fa:fa:40:df:5a:ae:cc: 0c:32:42:d3:6f:74:6e:95:82:71:bf:41:97:f7:6f:99:ea:76: cd:c2:0a:fa -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd+hD7SH+F+zNYfwm1cht/xEILQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA0MTYxMDU0MDVaFw0yNTA0MTUxMDU5MDVaMDMxMTAvBgNV BAMTKEQyNDIwRjNCOTNFRDBGRUJENjAyRDIxRERBQkQ1RkNBNTQ3QzlGQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq8Yu+i/4wGww32m2doRRhY7IN rPX1/BLJrpV/S7SRbLFNTil7bTzni/xCPXnHsnp2Xktg22Yv6+3TksCyI7YYVXw5 /PaLW3L6SVu7/poM2/mB4nztJNt5oT4/H0AD49bzs8yw0ITyqzXX8jq5A3ePtOEG i6xhdhieElTcgazRjZ9ziwZui0yxiiDaqtGdxXWU0ZM47mJp6TbtUs31boNAMvjV 9MNXj0XM1IKb5ZE8m6pKyYWCYcg7bgfPsSFN4U661bImEbFZpC4+8IJTdm73qRWa 2KvAVT6sbJPQmlS8/XhHtVjUKHvNL/lEDau8AdaMDNURK+k1ZE2v+R0w2yWHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU0kIPO5PtD+vWAtId2r1fylR8n6YwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwUYwDQYJKoZIhvcNAQELBQADggEBAACT V2R4Yy76tRnji7QALUGG5+PB4rY8Z5Krzh8bGB45Gmp0ei07VrOTZcA36ZFstcFV hdhwq+MEqWKDBdUOTPm3MPRb2Q9hjG8uvJajcQ4OzTN/D4/R3O0HvVQgqIwmGtMn d4wRDpHyT9jPS4h4w4mwYkc7Gx28+P9nyVXYteT+bwyFy3qtEdgPXuq/XKF/OsTJ xeDvoh9F6OtDJQzQp0tUZ0pa2yGnhJhib+SiDtnlsNqVHNB5sUphIrYlCl8zgw9D H0Cfjj4EKUe0jSMtdEqabxy7XiQbWmCBVZFZRBfN+pd/+vpA31quzAwyQtNvdG6V gnG/QZf3b5nqds3CCvo= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org