$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213293.roa File: AS213293.roa (raw, json) Hash identifier: E/qyXcz0+PFhokwWKKQwgvvJtEi+fo5XZcgz1o6IUCw= Subject key identifier: E8:44:A0:45:92:80:9D:B0:93:5A:D2:DB:AE:23:18:32:BA:7A:9D:BA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 24622F10F61FE93A02C07F63D66D043A7AB06547 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213293.roa Signing time: Sun 06 Oct 2024 04:45:20 +0000 ROA not before: Sun 06 Oct 2024 04:40:20 +0000 ROA not after: Sun 05 Oct 2025 04:45:20 +0000 asID: 213293 IP address blocks: 2a0a:6040:9a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:62:2f:10:f6:1f:e9:3a:02:c0:7f:63:d6:6d:04:3a:7a:b0:65:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:20 2024 GMT Not After : Oct 5 04:45:20 2025 GMT Subject: CN=E844A04592809DB0935AD2DBAE231832BA7A9DBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b5:d7:56:d9:7a:35:8e:4a:bf:8a:07:58:f7: 17:e8:97:8e:d9:39:d5:85:93:20:3d:4e:06:05:d1: 8d:c3:f2:9e:b1:a8:42:f7:a5:c5:37:fc:62:ae:2a: c0:d6:9c:e4:23:f9:46:73:19:8b:e4:97:7c:b9:c6: 21:e5:8f:14:c2:9d:66:b8:ae:5f:c5:42:08:a5:fc: 89:f7:e2:b8:00:b4:2a:c3:25:5e:94:f7:e2:42:ab: 35:8a:8c:b1:ed:0f:44:57:fa:a2:38:e5:1b:7c:f0: c7:51:16:7b:be:b1:21:c9:31:b4:f6:68:36:dd:1e: f7:da:49:0b:7d:34:0b:05:9d:4c:01:08:1e:09:8d: 2d:5b:40:c4:36:af:36:bb:ab:5b:da:86:55:a6:ac: b5:b0:94:02:53:46:ae:22:c2:67:27:88:be:32:57: cb:f0:cc:12:58:fb:32:2b:fd:db:fa:0e:ac:dd:d5: a6:32:4e:d3:3d:00:71:32:14:44:c3:a6:b9:22:0a: 76:ca:9b:12:53:e8:9c:19:b4:6e:6b:c8:f5:fc:58: 1c:da:80:76:c6:4d:c0:6d:70:92:88:76:26:ef:10: e2:0d:c8:ee:00:b9:a7:f1:14:0d:1d:7b:92:59:7a: c4:fa:7e:bd:3a:e1:c1:f8:13:88:cf:10:f9:91:1a: 10:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:44:A0:45:92:80:9D:B0:93:5A:D2:DB:AE:23:18:32:BA:7A:9D:BA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213293.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9a00::/40 Signature Algorithm: sha256WithRSAEncryption 5c:7d:75:bc:2f:22:e2:c1:13:bb:ef:39:c0:6f:29:c6:44:1a: 07:75:72:aa:82:10:0f:b9:c0:9b:74:9b:0c:2f:20:99:20:83: 26:f0:2d:c8:fd:13:79:61:de:1e:41:b9:59:dc:27:7a:e3:38: 77:53:e9:05:82:39:4f:96:08:86:31:02:08:94:3a:a7:4b:e4: ad:a0:a0:ef:6d:67:63:1c:72:1b:a0:5b:a0:b6:33:a4:a1:8e: 96:32:f6:16:d9:03:ce:58:f9:01:b7:58:42:bf:9f:3a:65:93: 60:75:a7:98:18:04:ff:05:68:78:b4:6a:58:18:4b:73:92:46: dd:a8:3d:d4:cc:a4:8f:fe:ff:23:83:47:f3:55:bb:cc:74:48: 7c:04:5c:cb:86:6e:8d:2f:68:55:b4:f9:a1:a7:e7:e4:47:7b: 0a:71:e0:8e:0a:69:93:01:bb:b5:0d:b7:1b:eb:90:7d:61:94: 5c:44:4d:04:e4:e2:be:05:97:83:e0:56:4a:f0:db:47:78:da: a5:e7:eb:05:91:9e:9a:be:f8:60:c3:e5:1d:f1:74:4a:49:cc: 8d:93:54:cd:f6:70:07:90:6c:33:0c:42:9e:12:96:3e:50:fe: f0:d2:91:87:05:54:2e:5d:73:19:2b:05:96:4d:68:6f:69:40: bc:d7:2e:33 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJGIvEPYf6ToCwH9j1m0EOnqwZUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMjBaFw0yNTEwMDUwNDQ1MjBaMDMxMTAvBgNV BAMTKEU4NDRBMDQ1OTI4MDlEQjA5MzVBRDJEQkFFMjMxODMyQkE3QTlEQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/tddW2Xo1jkq/igdY9xfol47Z OdWFkyA9TgYF0Y3D8p6xqEL3pcU3/GKuKsDWnOQj+UZzGYvkl3y5xiHljxTCnWa4 rl/FQgil/In34rgAtCrDJV6U9+JCqzWKjLHtD0RX+qI45Rt88MdRFnu+sSHJMbT2 aDbdHvfaSQt9NAsFnUwBCB4JjS1bQMQ2rza7q1vahlWmrLWwlAJTRq4iwmcniL4y V8vwzBJY+zIr/dv6Dqzd1aYyTtM9AHEyFETDprkiCnbKmxJT6JwZtG5ryPX8WBza gHbGTcBtcJKIdibvEOINyO4AuafxFA0de5JZesT6fr064cH4E4jPEPmRGhAfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU6ESgRZKAnbCTWtLbriMYMrp6nbowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEzMjkzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQJowDQYJKoZIhvcNAQELBQADggEBAFx9 dbwvIuLBE7vvOcBvKcZEGgd1cqqCEA+5wJt0mwwvIJkggybwLcj9E3lh3h5BuVnc J3rjOHdT6QWCOU+WCIYxAgiUOqdL5K2goO9tZ2McchugW6C2M6ShjpYy9hbZA85Y +QG3WEK/nzplk2B1p5gYBP8FaHi0algYS3OSRt2oPdTMpI/+/yODR/NVu8x0SHwE XMuGbo0vaFW0+aGn5+RHewpx4I4KaZMBu7UNtxvrkH1hlFxETQTk4r4Fl4PgVkrw 20d42qXn6wWRnpq++GDD5R3xdEpJzI2TVM32cAeQbDMMQp4Slj5Q/vDSkYcFVC5d cxkrBZZNaG9pQLzXLjM= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org