$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS214752.roa File: AS214752.roa (raw, json) Hash identifier: 2hI8RhxgzjD9Zzvs7lgfeqImBSn6UwttSnI2MARPp0M= Subject key identifier: AA:6E:85:D7:A5:A4:B6:2F:8C:9A:5F:B9:5A:F4:EF:82:2D:20:03:0C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7A06C7EF91551CC0889F9CE3BF5D22D20277E646 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS214752.roa Signing time: Thu 06 Jun 2024 23:44:46 +0000 ROA not before: Thu 06 Jun 2024 23:39:46 +0000 ROA not after: Thu 05 Jun 2025 23:44:46 +0000 asID: 214752 IP address blocks: 2a06:9f81:4500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:06:c7:ef:91:55:1c:c0:88:9f:9c:e3:bf:5d:22:d2:02:77:e6:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 6 23:39:46 2024 GMT Not After : Jun 5 23:44:46 2025 GMT Subject: CN=AA6E85D7A5A4B62F8C9A5FB95AF4EF822D20030C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:71:f9:03:04:4f:0e:31:58:96:57:40:de:4e: 5a:27:0a:26:99:88:eb:a2:9c:32:4c:b8:3f:a3:e2: b0:24:fb:7d:f4:0d:13:3b:c8:d9:6f:52:89:c7:68: 78:45:42:68:1e:ab:90:b6:45:c2:a8:7d:cf:0b:18: 47:60:41:1b:20:cb:e4:cb:2b:c8:0e:30:f7:a5:0e: 5a:03:6b:28:d6:26:30:13:49:91:71:0c:b7:50:a4: e7:e2:35:e7:7c:3f:fd:75:40:0c:1d:07:8b:67:2b: 94:78:b9:89:dc:f4:b9:50:49:91:05:76:b0:47:54: 3f:42:af:65:7b:57:17:91:62:7e:9c:d9:f0:89:cf: 34:6d:65:12:cc:61:21:c8:f5:55:3b:a1:0b:0b:db: 5e:ef:c9:0a:1c:1b:98:a8:11:53:b6:69:63:84:03: 05:85:f6:cb:d5:c2:0b:0a:86:78:99:27:46:41:17: 76:e2:e9:6e:13:52:1b:1d:60:44:87:a3:14:c6:79: 99:3e:16:0d:64:30:d0:6f:6e:ef:65:ce:c9:17:03: 19:4e:05:40:6e:4e:6a:c3:e3:e0:2c:e1:08:66:cf: 23:9b:2d:80:28:8b:33:2f:60:13:cd:f8:4e:84:1e: 42:9a:7d:ff:35:b0:99:0c:65:ec:75:a7:f3:fd:95: e8:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:6E:85:D7:A5:A4:B6:2F:8C:9A:5F:B9:5A:F4:EF:82:2D:20:03:0C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS214752.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4500::/40 Signature Algorithm: sha256WithRSAEncryption 3c:f1:7a:3e:43:91:6a:ce:cf:57:f5:2a:a7:65:5c:82:a2:33: ab:49:94:55:b3:ec:87:90:17:98:dc:89:79:bd:dc:21:ad:ca: 2c:6e:54:25:60:78:41:a1:6c:ae:5b:e4:e2:bf:f4:4d:9f:52: 11:1b:af:1f:57:9c:cc:44:d8:a5:39:da:5e:84:28:24:d7:d6: 61:8e:b7:96:8d:85:f5:eb:cf:48:76:05:4a:52:37:bb:61:6c: c9:3a:4a:e4:32:7f:5c:38:34:54:30:96:7f:06:68:2b:e0:f2: 19:f7:4f:f6:50:fe:16:2c:62:e7:89:69:f0:24:6b:02:b5:f3: 93:93:ca:25:6e:da:92:0e:05:8b:41:3d:74:12:61:8f:21:d1: 4b:de:8d:e9:97:34:de:3a:47:97:6b:43:a5:d9:3c:f8:95:b7: 27:5b:8d:85:f6:89:d6:75:f0:7d:7a:3e:9c:90:54:f7:75:6c: b5:a0:e2:c5:ba:be:d4:b0:ed:e3:55:25:3b:be:42:33:86:b4: 84:5a:a1:40:e8:10:ee:85:64:1c:36:09:f3:9e:28:df:70:e4: e8:27:6f:5f:b5:6b:e9:23:a1:8f:b0:9d:79:79:b1:25:1d:e1: 20:07:cb:74:1b:a1:90:b1:8f:08:42:0a:3b:aa:40:26:c2:83: ee:52:06:98 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUegbH75FVHMCIn5zjv10i0gJ35kYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MDYyMzM5NDZaFw0yNTA2MDUyMzQ0NDZaMDMxMTAvBgNV BAMTKEFBNkU4NUQ3QTVBNEI2MkY4QzlBNUZCOTVBRjRFRjgyMkQyMDAzMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHcfkDBE8OMViWV0DeTlonCiaZ iOuinDJMuD+j4rAk+330DRM7yNlvUonHaHhFQmgeq5C2RcKofc8LGEdgQRsgy+TL K8gOMPelDloDayjWJjATSZFxDLdQpOfiNed8P/11QAwdB4tnK5R4uYnc9LlQSZEF drBHVD9Cr2V7VxeRYn6c2fCJzzRtZRLMYSHI9VU7oQsL217vyQocG5ioEVO2aWOE AwWF9svVwgsKhniZJ0ZBF3bi6W4TUhsdYESHoxTGeZk+Fg1kMNBvbu9lzskXAxlO BUBuTmrD4+As4QhmzyObLYAoizMvYBPN+E6EHkKaff81sJkMZex1p/P9legNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUqm6F16Wkti+Mml+5WvTvgi0gAwwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE0NzUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUUwDQYJKoZIhvcNAQELBQADggEBADzx ej5DkWrOz1f1KqdlXIKiM6tJlFWz7IeQF5jciXm93CGtyixuVCVgeEGhbK5b5OK/ 9E2fUhEbrx9XnMxE2KU52l6EKCTX1mGOt5aNhfXrz0h2BUpSN7thbMk6SuQyf1w4 NFQwln8GaCvg8hn3T/ZQ/hYsYueJafAkawK185OTyiVu2pIOBYtBPXQSYY8h0Uve jemXNN46R5drQ6XZPPiVtydbjYX2idZ18H16PpyQVPd1bLWg4sW6vtSw7eNVJTu+ QjOGtIRaoUDoEO6FZBw2CfOeKN9w5Ognb1+1a+kjoY+wnXl5sSUd4SAHy3QboZCx jwhCCjuqQCbCg+5SBpg= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org