$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS52210.roa File: AS52210.roa (raw, json) Hash identifier: dENQOrm52pCGj80GCr+kwrX1mUFr7+AgMgQkUWcKKCo= Subject key identifier: 64:C1:D6:D2:FA:F8:56:A9:8C:B7:DE:89:F0:1D:F4:9C:87:9A:A6:C0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2A7B0CD71794258EF0645BA5B4BCB6A1C2529B29 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS52210.roa Signing time: Sun 06 Oct 2024 04:45:14 +0000 ROA not before: Sun 06 Oct 2024 04:40:14 +0000 ROA not after: Sun 05 Oct 2025 04:45:14 +0000 asID: 52210 IP address blocks: 2a0a:6040:c500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Nov 2024 15:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:7b:0c:d7:17:94:25:8e:f0:64:5b:a5:b4:bc:b6:a1:c2:52:9b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:14 2024 GMT Not After : Oct 5 04:45:14 2025 GMT Subject: CN=64C1D6D2FAF856A98CB7DE89F01DF49C879AA6C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:24:47:3a:0c:0e:c9:6e:fb:e3:8d:d0:0c:19: 24:83:20:c2:4d:8a:11:ae:66:de:f4:ab:7f:97:56: 5a:5b:78:58:cb:46:e7:2b:33:f7:5f:34:4f:e7:eb: 1a:03:7f:b1:65:be:92:97:24:15:a9:02:dd:ec:bc: f7:75:0b:c0:f2:6a:e1:45:56:65:5a:83:fa:3e:84: c4:7c:04:38:6f:0e:30:68:36:c6:40:bf:f3:d0:45: fb:a9:9e:83:57:f6:f3:44:cb:f8:40:51:5d:df:c9: fc:3b:88:65:4b:42:e0:98:75:13:50:98:46:4b:c2: 8d:02:a4:93:9b:df:64:18:a3:e6:5a:03:d6:0d:59: 48:d4:19:c9:d2:fc:20:74:7d:a2:11:7e:6a:a1:7c: 5f:50:d9:da:5a:5c:84:b1:d1:35:00:c4:10:e7:1d: 64:19:02:32:5a:34:d6:89:76:17:a3:ed:d3:ae:c6: 6d:69:7e:70:6c:67:69:ce:98:6a:3e:b2:2f:8b:b4: 31:e8:66:ac:12:0a:2b:2e:f9:6b:6a:9b:95:55:20: 57:21:91:de:4b:f6:46:f6:b0:fb:60:8f:1a:cf:dd: bc:c1:c6:3f:45:3c:f8:ff:e7:7b:fc:19:66:2a:45: 6e:0c:71:d4:83:8f:ec:56:33:19:47:b4:98:15:f8: 0b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C1:D6:D2:FA:F8:56:A9:8C:B7:DE:89:F0:1D:F4:9C:87:9A:A6:C0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS52210.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c500::/40 Signature Algorithm: sha256WithRSAEncryption 47:87:a6:ce:14:22:b6:c3:d9:71:52:e0:0e:b1:2a:54:f6:86: 73:4f:4f:d7:0e:16:87:2a:19:26:31:ae:d0:48:f8:e1:57:33: 82:72:d7:e9:de:c8:cf:31:5b:ea:10:53:d2:31:62:f4:d3:8f: 5b:34:98:de:72:67:91:fb:f0:9a:3f:e6:e3:f2:72:12:b5:3e: f0:ca:fb:02:40:84:83:5f:10:f8:4b:c3:25:8e:61:4c:01:3c: b6:6e:7a:22:46:9d:e6:12:2f:bc:77:3c:eb:42:28:31:fe:af: f8:77:20:3f:b2:90:49:23:eb:d3:02:dd:68:63:17:c1:1b:33: 3c:22:40:4b:9f:46:96:b1:af:5a:a2:ae:31:b4:d2:78:e8:de: 1d:9e:d1:cb:27:7f:ea:45:a5:86:a1:00:10:6d:23:d2:30:e4: 96:47:73:d2:b4:e4:4e:2e:a5:72:4c:3c:84:4a:b5:ec:42:8a: 10:5a:b5:b7:96:8b:48:22:ba:81:b7:21:8c:44:e9:18:1d:47: 09:05:93:d0:6d:e2:bc:ab:99:0a:96:4d:27:25:07:61:be:94: 59:24:c4:01:b2:ce:69:8c:65:4a:09:96:c8:8a:52:6a:fd:52: 1b:18:cb:04:c7:e0:5d:48:73:63:3b:25:d3:37:0f:86:10:9c: f4:ca:8e:ef -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUKnsM1xeUJY7wZFultLy2ocJSmykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTRaFw0yNTEwMDUwNDQ1MTRaMDMxMTAvBgNV BAMTKDY0QzFENkQyRkFGODU2QTk4Q0I3REU4OUYwMURGNDlDODc5QUE2QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2JEc6DA7JbvvjjdAMGSSDIMJN ihGuZt70q3+XVlpbeFjLRucrM/dfNE/n6xoDf7FlvpKXJBWpAt3svPd1C8DyauFF VmVag/o+hMR8BDhvDjBoNsZAv/PQRfupnoNX9vNEy/hAUV3fyfw7iGVLQuCYdRNQ mEZLwo0CpJOb32QYo+ZaA9YNWUjUGcnS/CB0faIRfmqhfF9Q2dpaXISx0TUAxBDn HWQZAjJaNNaJdhej7dOuxm1pfnBsZ2nOmGo+si+LtDHoZqwSCisu+Wtqm5VVIFch kd5L9kb2sPtgjxrP3bzBxj9FPPj/53v8GWYqRW4McdSDj+xWMxlHtJgV+As5AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUZMHW0vr4VqmMt96J8B30nIeapsAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTIyMTAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAxTANBgkqhkiG9w0BAQsFAAOCAQEAR4em zhQitsPZcVLgDrEqVPaGc09P1w4WhyoZJjGu0Ej44VczgnLX6d7IzzFb6hBT0jFi 9NOPWzSY3nJnkfvwmj/m4/JyErU+8Mr7AkCEg18Q+EvDJY5hTAE8tm56Ikad5hIv vHc860IoMf6v+HcgP7KQSSPr0wLdaGMXwRszPCJAS59GlrGvWqKuMbTSeOjeHZ7R yyd/6kWlhqEAEG0j0jDklkdz0rTkTi6lckw8hEq17EKKEFq1t5aLSCK6gbchjETp GB1HCQWT0G3ivKuZCpZNJyUHYb6UWSTEAbLOaYxlSgmWyIpSav1SGxjLBMfgXUhz Yzsl0zcPhhCc9MqO7w== -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:00 2024 by rpki-client on console-ams.rpki-client.org