$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213236.roa File: AS213236.roa (raw, json) Hash identifier: ozpKlUhrEdOJzaFvG2ILdPztJZ1UXrJ/qUVKkGd1nXE= Subject key identifier: 0D:70:53:56:44:FD:CC:37:69:88:A0:D7:97:3C:38:B6:57:C7:48:70 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3BECF777061000F09A9EA1DFABD23621371C8BD6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213236.roa Signing time: Tue 18 Mar 2025 11:45:56 +0000 ROA not before: Tue 18 Mar 2025 11:40:56 +0000 ROA not after: Tue 17 Mar 2026 11:45:56 +0000 asID: 213236 IP address blocks: 2a05:dfc1:4600::/40 maxlen: 48 2a05:dfc1:4700::/40 maxlen: 40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ec:f7:77:06:10:00:f0:9a:9e:a1:df:ab:d2:36:21:37:1c:8b:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 18 11:40:56 2025 GMT Not After : Mar 17 11:45:56 2026 GMT Subject: CN=0D70535644FDCC376988A0D7973C38B657C74870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:67:f1:29:a0:ce:44:5d:4b:3b:94:44:2e:fc: 27:f9:92:ed:86:7b:94:5c:af:c0:9e:27:d8:0c:59: bb:f5:0a:e8:0d:7a:6b:c0:f4:b4:9c:53:be:ff:76: 3d:46:f4:54:b5:88:05:06:37:67:57:aa:aa:10:87: 6c:01:e2:bc:0f:b6:3e:43:e8:cc:7d:f4:76:e5:fd: 1e:da:8d:b8:c7:c2:fd:ef:0b:bc:37:7c:d9:72:d0: 7d:8e:c7:e4:c0:64:4b:7a:0a:fd:5a:50:af:8f:fe: 95:dc:6f:65:12:90:ab:b9:e4:be:fa:b7:90:27:0a: f2:3a:f8:50:1d:ae:c7:08:61:c3:71:5e:fc:b9:38: fd:8f:99:b6:6f:7e:73:1a:b0:bb:fb:4b:73:1e:bd: 2e:0b:fd:0d:fb:25:a0:0b:d3:f5:6b:12:59:45:6e: 17:ab:7d:a5:20:ab:b0:de:16:80:87:05:df:ec:d3: 63:2a:af:a4:a3:14:38:8c:58:37:a1:70:52:f3:e2: 6f:52:6a:6b:55:22:06:07:58:96:9d:ee:f8:ea:c2: e1:72:13:29:d3:b3:a4:17:b5:76:04:30:1c:fb:22: e2:ac:75:21:c2:1e:b6:99:fe:a1:58:c5:50:46:82: 44:3e:f3:43:37:4a:56:cc:9d:b3:82:e7:47:4c:09: 40:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:70:53:56:44:FD:CC:37:69:88:A0:D7:97:3C:38:B6:57:C7:48:70 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4600::/39 Signature Algorithm: sha256WithRSAEncryption 7e:18:79:75:99:db:1e:a0:a7:26:d3:76:d8:6e:21:7b:80:48: a0:dc:ba:cc:e4:19:05:54:4d:98:37:bb:76:7e:36:11:c3:67: c5:cc:e6:ea:5f:b3:a3:07:51:c9:4e:20:fd:9e:8d:48:f3:9c: f1:d7:41:7e:71:43:fe:05:e4:83:d9:f9:85:ce:98:48:7b:14: be:de:b1:47:89:35:36:14:81:4d:b9:dd:6d:c8:d9:f2:9a:dd: 2d:73:e0:b2:d4:92:32:e1:87:be:5f:78:a3:7a:84:2e:a9:df: 39:88:98:a6:b9:29:f7:05:a8:cc:25:06:3a:ef:ca:00:69:de: 78:72:68:ce:d5:7c:94:ec:97:9b:7e:96:86:d1:62:06:3c:eb: cf:13:9d:2b:61:5b:b3:8c:da:d2:0e:ab:62:b4:86:30:22:1f: cf:f4:28:cb:ee:fe:e5:01:3b:7c:57:6f:9f:94:2a:bc:09:62: a7:c6:39:70:97:43:67:af:a9:3d:bc:51:62:74:48:9b:5f:c2: 59:eb:f8:43:c5:1b:75:7d:9f:23:5d:43:94:ea:49:94:eb:d9: a6:96:35:e8:62:77:c2:92:55:47:ff:59:e7:32:9d:c4:3e:95: 97:21:cb:d2:1e:32:fa:2e:c5:88:67:c1:29:03:0b:13:a5:eb: 96:55:ea:5c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUO+z3dwYQAPCanqHfq9I2ITcci9YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAzMTgxMTQwNTZaFw0yNjAzMTcxMTQ1NTZaMDMxMTAvBgNV BAMTKDBENzA1MzU2NDRGRENDMzc2OTg4QTBENzk3M0MzOEI2NTdDNzQ4NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpZ/EpoM5EXUs7lEQu/Cf5ku2G e5Rcr8CeJ9gMWbv1CugNemvA9LScU77/dj1G9FS1iAUGN2dXqqoQh2wB4rwPtj5D 6Mx99Hbl/R7ajbjHwv3vC7w3fNly0H2Ox+TAZEt6Cv1aUK+P/pXcb2USkKu55L76 t5AnCvI6+FAdrscIYcNxXvy5OP2PmbZvfnMasLv7S3MevS4L/Q37JaAL0/VrEllF bherfaUgq7DeFoCHBd/s02Mqr6SjFDiMWDehcFLz4m9SamtVIgYHWJad7vjqwuFy EynTs6QXtXYEMBz7IuKsdSHCHraZ/qFYxVBGgkQ+80M3SlbMnbOC50dMCUB/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUDXBTVkT9zDdpiKDXlzw4tlfHSHAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwUYwDQYJKoZIhvcNAQELBQADggEBAH4Y eXWZ2x6gpybTdthuIXuASKDcuszkGQVUTZg3u3Z+NhHDZ8XM5upfs6MHUclOIP2e jUjznPHXQX5xQ/4F5IPZ+YXOmEh7FL7esUeJNTYUgU253W3I2fKa3S1z4LLUkjLh h75feKN6hC6p3zmImKa5KfcFqMwlBjrvygBp3nhyaM7VfJTsl5t+lobRYgY8688T nSthW7OM2tIOq2K0hjAiH8/0KMvu/uUBO3xXb5+UKrwJYqfGOXCXQ2evqT28UWJ0 SJtfwlnr+EPFG3V9nyNdQ5TqSZTr2aaWNehid8KSVUf/WecyncQ+lZchy9IeMvou xYhnwSkDCxOl65ZV6lw= -----END CERTIFICATE-----Generated at Fri Apr 4 17:03:23 2025 by rpki-client