$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS58212.roa File: AS58212.roa (raw, json) Hash identifier: rj0Uq9g20q6LkIv2JJCsDURT1GcBWQw147MFPn/eKEM= Subject key identifier: 5C:05:A7:66:8D:D0:09:F2:E2:09:2E:BD:87:48:85:2A:2D:06:AB:70 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3BC082DC31A0C7F73935AC9B4711C77248A06A07 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS58212.roa Signing time: Wed 27 Dec 2023 10:00:17 +0000 ROA not before: Wed 27 Dec 2023 09:55:17 +0000 ROA not after: Wed 25 Dec 2024 10:00:17 +0000 asID: 58212 IP address blocks: 2a05:dfc1:5800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c0:82:dc:31:a0:c7:f7:39:35:ac:9b:47:11:c7:72:48:a0:6a:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Dec 27 09:55:17 2023 GMT Not After : Dec 25 10:00:17 2024 GMT Subject: CN=5C05A7668DD009F2E2092EBD8748852A2D06AB70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ed:56:e6:ed:e8:76:30:7a:88:5e:c0:48:1f: 9f:64:e5:c2:54:fe:93:01:70:e5:d3:3f:97:58:91: 5f:25:10:15:4b:26:a7:a2:6a:59:46:1e:e7:e3:43: ae:22:ea:31:16:1f:d4:93:c8:46:ec:27:82:f8:5a: 25:29:57:88:cd:8a:a7:0e:be:a7:ca:a3:f3:97:85: aa:0f:03:ed:e7:72:65:17:9e:26:84:fb:c7:a6:30: 8d:fe:b1:58:ed:ff:d1:7f:c8:83:f0:4d:f6:28:6b: a0:7f:e7:21:13:89:5c:f7:bc:a2:20:32:8d:c4:fd: 6b:60:78:70:b1:f0:85:04:a7:5f:cf:f4:c0:75:ab: 43:45:91:fd:7c:63:be:3e:9e:c0:d7:9c:0d:3d:24: 6e:a4:c3:3e:e5:22:3e:aa:02:16:b9:7a:00:9d:20: 5e:0f:c2:69:59:c1:64:de:9b:df:f6:4e:4a:fe:57: 49:6a:91:a2:8a:73:fd:4e:14:cf:af:c8:32:0c:69: 5c:43:7e:9c:b5:1d:c3:90:b6:25:0d:39:cb:93:b4: 2b:ee:c7:42:fc:00:ce:e6:f7:1d:d7:6a:12:55:09: 4e:6f:5e:5d:e6:e0:a8:b3:90:0d:68:b1:0e:af:85: 94:a9:56:ae:c5:23:37:df:8b:27:a7:82:d3:1f:65: 16:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:05:A7:66:8D:D0:09:F2:E2:09:2E:BD:87:48:85:2A:2D:06:AB:70 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS58212.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5800::/40 Signature Algorithm: sha256WithRSAEncryption c2:4e:d8:4d:c7:f3:65:33:89:2a:66:72:30:ad:97:84:4c:4a: 0a:31:46:da:39:d0:53:4c:7c:3b:10:d2:b7:f1:12:00:7b:41: 70:49:d7:eb:56:0e:4b:b7:17:91:c4:c2:fe:c2:1c:ac:97:84: bc:33:70:b4:07:c6:9c:3f:6b:09:d1:05:7b:4f:db:5f:99:0f: f9:94:59:8d:02:c4:08:f3:4f:15:a0:00:33:68:ff:84:c9:3a: ae:c7:aa:5d:b7:c8:6c:56:a7:9e:d2:3a:0d:93:d4:2b:d7:5a: ba:d5:eb:a6:d6:ae:c7:7f:3d:e6:48:84:2e:2f:23:dc:0d:26: fb:7a:30:82:74:e4:3e:74:28:75:79:f9:81:7d:fa:ac:8c:a2: 27:0d:6c:42:ea:89:6b:f3:09:04:2a:f6:13:78:6d:07:d9:de: 12:8a:41:84:bb:ae:3c:00:52:63:df:0c:43:6c:02:88:62:16: 47:17:82:62:91:1c:79:f2:83:b9:94:21:56:a8:72:05:57:8e: 56:56:d4:d1:5f:2e:09:2d:8d:88:d1:b3:42:48:9d:8d:dd:7e: 94:b0:90:4f:18:dc:ff:93:3d:6c:44:a6:de:9d:c8:75:80:fa: a3:df:08:b0:dc:89:52:4a:af:e6:ab:74:48:9e:f4:0b:1d:71: 0f:30:0d:63 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUO8CC3DGgx/c5NaybRxHHckigagcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEyMjcwOTU1MTdaFw0yNDEyMjUxMDAwMTdaMDMxMTAvBgNV BAMTKDVDMDVBNzY2OEREMDA5RjJFMjA5MkVCRDg3NDg4NTJBMkQwNkFCNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ7Vbm7eh2MHqIXsBIH59k5cJU /pMBcOXTP5dYkV8lEBVLJqeiallGHufjQ64i6jEWH9STyEbsJ4L4WiUpV4jNiqcO vqfKo/OXhaoPA+3ncmUXniaE+8emMI3+sVjt/9F/yIPwTfYoa6B/5yETiVz3vKIg Mo3E/WtgeHCx8IUEp1/P9MB1q0NFkf18Y74+nsDXnA09JG6kwz7lIj6qAha5egCd IF4PwmlZwWTem9/2Tkr+V0lqkaKKc/1OFM+vyDIMaVxDfpy1HcOQtiUNOcuTtCvu x0L8AM7m9x3XahJVCU5vXl3m4KizkA1osQ6vhZSpVq7FIzffiyengtMfZRYvAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUXAWnZo3QCfLiCS69h0iFKi0Gq3AwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNTgyMTIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BWDANBgkqhkiG9w0BAQsFAAOCAQEAwk7Y TcfzZTOJKmZyMK2XhExKCjFG2jnQU0x8OxDSt/ESAHtBcEnX61YOS7cXkcTC/sIc rJeEvDNwtAfGnD9rCdEFe0/bX5kP+ZRZjQLECPNPFaAAM2j/hMk6rseqXbfIbFan ntI6DZPUK9dautXrptaux3895kiELi8j3A0m+3owgnTkPnQodXn5gX36rIyiJw1s QuqJa/MJBCr2E3htB9neEopBhLuuPABSY98MQ2wCiGIWRxeCYpEcefKDuZQhVqhy BVeOVlbU0V8uCS2NiNGzQkidjd1+lLCQTxjc/5M9bESm3p3IdYD6o98IsNyJUkqv 5qt0SJ70Cx1xDzANYw== -----END CERTIFICATE-----Generated at Tue May 21 04:45:07 2024 by rpki-client on console-fra.rpki-client.org