$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213293.roa File: AS213293.roa (raw, json) Hash identifier: tTTHoSW4dsZ+5+luJJ9zg7TR9krPM6/c8PKfLUBR8BE= Subject key identifier: CF:72:1F:36:CE:72:77:CA:4D:57:C1:47:0D:CE:42:F1:A9:3D:23:F2 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 66576E0DD732FBECEBF8A66625030197D268E825 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213293.roa Signing time: Sun 05 Nov 2023 04:07:09 +0000 ROA not before: Sun 05 Nov 2023 04:02:09 +0000 ROA not after: Sun 03 Nov 2024 04:07:09 +0000 asID: 213293 IP address blocks: 2a0a:6040:9a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:57:6e:0d:d7:32:fb:ec:eb:f8:a6:66:25:03:01:97:d2:68:e8:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:09 2023 GMT Not After : Nov 3 04:07:09 2024 GMT Subject: CN=CF721F36CE7277CA4D57C1470DCE42F1A93D23F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fb:88:19:51:a0:2f:97:3c:4a:ef:cd:e2:59: a7:2e:bf:4e:9b:5b:82:8f:39:fc:7f:8c:1c:ee:52: d0:2e:c6:b4:0b:dc:67:8d:1f:ef:b0:b0:c8:9d:8a: 14:ec:52:7b:b1:8b:8b:41:4f:36:c4:c0:fa:45:8f: bb:18:3f:14:3f:8b:24:15:12:bd:80:0e:3e:6e:66: ce:c8:d8:2e:c7:29:7f:2d:ab:20:76:9a:f9:b2:1d: f4:aa:32:75:15:33:1c:2a:50:ae:ce:df:c2:55:71: f4:f0:40:c3:5a:3f:cb:e2:52:78:2a:45:4e:a6:57: c9:5a:46:14:cc:8c:d8:a4:19:e3:79:27:2f:aa:d2: ee:8b:82:6d:34:e3:0b:6b:44:08:71:65:a6:55:d2: 60:8a:d1:29:d0:49:94:9f:d8:72:0d:56:c5:57:f0: 1b:14:9b:fa:70:7d:b2:ba:71:a8:e2:c9:25:c1:ee: 0f:bc:09:49:d9:9f:b5:ad:3b:ef:0e:6c:2f:48:8a: 71:bf:61:1a:da:aa:33:5a:75:34:70:e8:41:e8:43: a4:39:3d:33:41:5f:55:85:ec:e6:3c:ad:00:db:5f: 16:0c:57:b6:c0:90:0a:1f:1e:78:c3:fc:9d:38:d7: 93:83:50:c0:e7:9a:18:ad:78:d0:76:b6:1c:91:d9: 68:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:72:1F:36:CE:72:77:CA:4D:57:C1:47:0D:CE:42:F1:A9:3D:23:F2 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213293.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9a00::/40 Signature Algorithm: sha256WithRSAEncryption 80:bb:a4:8b:d8:5a:25:ee:8e:f4:15:65:b9:9b:c0:57:fa:e2: 46:a6:83:2c:ff:86:0f:7e:ad:d9:9d:44:a7:7b:46:1a:7a:a8: fc:56:a3:87:d9:12:33:f5:8f:09:45:30:0f:9a:6a:01:b1:fb: af:77:9f:99:ee:87:a2:70:de:bb:5a:c1:a1:d9:4a:e9:14:5c: 8f:ed:ed:fa:36:a1:c8:57:70:39:77:91:9f:86:48:02:a0:f7: 50:ca:a3:1e:6d:7a:13:94:8d:ee:8d:6f:a6:f1:31:9a:35:0e: f0:5b:33:47:49:98:da:f8:16:c6:0f:b2:10:c9:43:61:40:b0: ec:7b:1c:b9:7a:9e:67:48:ee:bb:db:f3:5f:f2:39:32:58:87: 2e:9c:c9:c5:e7:12:c4:1e:2b:a2:ef:b1:67:e0:4a:a3:7a:6c: 22:38:d7:1f:5d:0f:95:ef:07:4f:be:a7:fc:79:c2:16:1b:46: ea:d8:c8:2d:95:f1:e7:8c:47:a5:3a:1f:21:24:a3:fd:5d:f5: aa:aa:13:48:04:e1:16:aa:eb:a3:df:f5:df:b1:9c:41:94:bb: 6c:84:8d:b7:67:5d:c7:39:9c:40:e1:95:89:f2:c0:6b:6c:48: f4:d0:01:e8:e7:48:67:92:f7:04:7d:9d:2d:9e:a2:35:7d:77: 2c:b5:ed:0f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZlduDdcy++zr+KZmJQMBl9Jo6CUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDlaFw0yNDExMDMwNDA3MDlaMDMxMTAvBgNV BAMTKENGNzIxRjM2Q0U3Mjc3Q0E0RDU3QzE0NzBEQ0U0MkYxQTkzRDIzRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1+4gZUaAvlzxK783iWacuv06b W4KPOfx/jBzuUtAuxrQL3GeNH++wsMidihTsUnuxi4tBTzbEwPpFj7sYPxQ/iyQV Er2ADj5uZs7I2C7HKX8tqyB2mvmyHfSqMnUVMxwqUK7O38JVcfTwQMNaP8viUngq RU6mV8laRhTMjNikGeN5Jy+q0u6Lgm004wtrRAhxZaZV0mCK0SnQSZSf2HINVsVX 8BsUm/pwfbK6cajiySXB7g+8CUnZn7WtO+8ObC9IinG/YRraqjNadTRw6EHoQ6Q5 PTNBX1WF7OY8rQDbXxYMV7bAkAofHnjD/J0415ODUMDnmhiteNB2thyR2WjPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUz3IfNs5yd8pNV8FHDc5C8ak9I/IwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEzMjkzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQJowDQYJKoZIhvcNAQELBQADggEBAIC7 pIvYWiXujvQVZbmbwFf64kamgyz/hg9+rdmdRKd7Rhp6qPxWo4fZEjP1jwlFMA+a agGx+693n5nuh6Jw3rtawaHZSukUXI/t7fo2ochXcDl3kZ+GSAKg91DKox5tehOU je6Nb6bxMZo1DvBbM0dJmNr4FsYPshDJQ2FAsOx7HLl6nmdI7rvb81/yOTJYhy6c ycXnEsQeK6LvsWfgSqN6bCI41x9dD5XvB0++p/x5whYbRurYyC2V8eeMR6U6HyEk o/1d9aqqE0gE4Raq66Pf9d+xnEGUu2yEjbdnXcc5nEDhlYnywGtsSPTQAejnSGeS 9wR9nS2eojV9dyy17Q8= -----END CERTIFICATE-----Generated at Thu May 16 13:03:38 2024 by rpki-client on console-ams.rpki-client.org