$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213326.roa File: AS213326.roa (raw, json) Hash identifier: SnHpgwFl3phRo79B4pndAkebl/8SSnbYxQG1qZkL/PQ= Subject key identifier: C7:2B:D4:C4:D5:47:86:22:8C:76:AF:75:7D:40:39:3B:5E:68:A4:F7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 424EFB7CC9A8BA4FCC292AF5777949543072D518 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213326.roa Signing time: Thu 13 Jun 2024 10:36:57 +0000 ROA not before: Thu 13 Jun 2024 10:31:57 +0000 ROA not after: Thu 12 Jun 2025 10:36:57 +0000 asID: 213326 IP address blocks: 2a06:9f81:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:4e:fb:7c:c9:a8:ba:4f:cc:29:2a:f5:77:79:49:54:30:72:d5:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 13 10:31:57 2024 GMT Not After : Jun 12 10:36:57 2025 GMT Subject: CN=C72BD4C4D54786228C76AF757D40393B5E68A4F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f8:87:81:79:c8:a9:2e:00:51:66:d5:04:35: 1f:7f:ac:c3:d0:1e:cc:06:4d:cf:d9:97:41:58:1f: a3:0c:99:a1:5f:52:4f:fb:e6:95:a5:ef:72:d2:87: 87:11:29:f2:c3:68:de:8d:b9:6f:5d:86:9f:16:97: f4:c6:61:72:d8:2e:f9:d8:b1:4d:db:09:47:2c:ec: 6d:51:b9:95:b2:55:33:48:3b:99:a6:27:3c:a8:49: 5f:76:03:47:93:28:c9:96:5e:54:e6:f4:7f:e0:5c: 19:12:8f:07:bf:9e:23:a7:89:d4:d4:fa:7b:52:d9: 2b:99:37:fe:31:42:53:29:66:81:12:98:af:43:71: 19:19:4d:2e:df:52:ec:5c:28:c2:13:1a:9c:3b:1f: 74:b7:58:28:24:ce:2b:c9:b6:db:fd:e8:9d:43:26: 99:f0:9d:85:06:b4:bb:e7:5a:70:53:4f:21:6b:7a: 17:2f:5d:78:d9:5b:a4:4e:4f:34:23:b1:a5:51:a9: 4f:5c:95:36:b2:fa:cc:0b:e3:79:67:c1:9c:2b:30: df:dd:36:be:8b:a5:30:4f:d9:a0:6e:8c:fc:29:48: 9c:af:99:e4:07:b7:96:d7:52:4b:e0:c3:a9:02:ca: c6:e2:c3:3d:8b:a5:a1:3f:78:fa:79:7c:89:90:4c: ab:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:2B:D4:C4:D5:47:86:22:8C:76:AF:75:7D:40:39:3B:5E:68:A4:F7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5000::/40 Signature Algorithm: sha256WithRSAEncryption b7:b7:28:c2:da:e7:4b:94:62:f1:38:bf:67:67:ea:45:ca:13: 5d:49:89:46:b3:f6:5e:46:e3:18:d0:c2:5a:40:4e:de:0b:0f: 02:14:f0:dd:40:53:aa:30:b9:9d:e0:72:c3:c3:55:36:16:00: f7:90:83:aa:2c:66:82:84:d2:94:e9:07:1f:9a:b2:34:65:17: db:1d:7f:78:f0:6e:a3:3e:80:f7:75:9e:fd:61:43:ed:53:18: d0:38:b5:ec:14:3a:4e:39:f0:90:40:16:92:c7:c8:85:ff:8c: f1:63:19:dc:dd:92:44:b2:9d:5a:06:fa:ed:18:4c:c8:40:57: 24:34:45:f0:fc:f8:8e:e6:a8:72:10:c9:fc:ed:06:98:3b:e4: af:ef:d3:8a:9f:04:22:cd:48:0c:5c:a1:af:71:c9:f3:6a:ee: ca:73:fa:e3:38:08:96:48:34:ff:68:01:d1:c8:58:bd:cd:c9: d9:cf:91:d8:69:b8:81:de:91:51:1e:29:52:3c:ed:68:a0:5a: b5:a4:36:a3:3b:a2:c4:a2:61:09:25:4c:cd:94:4b:62:08:8b: 5f:ed:42:cf:5e:8a:28:f1:f7:bd:70:04:44:21:2b:47:6f:d8: fe:1f:73:f5:50:40:f1:ca:0b:c5:90:38:93:3d:24:6e:76:e0: bd:08:93:a1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQk77fMmouk/MKSr1d3lJVDBy1RgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MTMxMDMxNTdaFw0yNTA2MTIxMDM2NTdaMDMxMTAvBgNV BAMTKEM3MkJENEM0RDU0Nzg2MjI4Qzc2QUY3NTdENDAzOTNCNUU2OEE0RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0+IeBecipLgBRZtUENR9/rMPQ HswGTc/Zl0FYH6MMmaFfUk/75pWl73LSh4cRKfLDaN6NuW9dhp8Wl/TGYXLYLvnY sU3bCUcs7G1RuZWyVTNIO5mmJzyoSV92A0eTKMmWXlTm9H/gXBkSjwe/niOnidTU +ntS2SuZN/4xQlMpZoESmK9DcRkZTS7fUuxcKMITGpw7H3S3WCgkzivJttv96J1D JpnwnYUGtLvnWnBTTyFrehcvXXjZW6ROTzQjsaVRqU9clTay+swL43lnwZwrMN/d Nr6LpTBP2aBujPwpSJyvmeQHt5bXUkvgw6kCysbiwz2LpaE/ePp5fImQTKu1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUxyvUxNVHhiKMdq91fUA5O15opPcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEzMzI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVAwDQYJKoZIhvcNAQELBQADggEBALe3 KMLa50uUYvE4v2dn6kXKE11JiUaz9l5G4xjQwlpATt4LDwIU8N1AU6owuZ3gcsPD VTYWAPeQg6osZoKE0pTpBx+asjRlF9sdf3jwbqM+gPd1nv1hQ+1TGNA4tewUOk45 8JBAFpLHyIX/jPFjGdzdkkSynVoG+u0YTMhAVyQ0RfD8+I7mqHIQyfztBpg75K/v 04qfBCLNSAxcoa9xyfNq7spz+uM4CJZINP9oAdHIWL3NydnPkdhpuIHekVEeKVI8 7WigWrWkNqM7osSiYQklTM2US2IIi1/tQs9eiijx971wBEQhK0dv2P4fc/VQQPHK C8WQOJM9JG524L0Ik6E= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org