$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS214752.roa File: AS214752.roa (raw, json) Hash identifier: WitGdyPygIsUwnZQVBMYy7SyVnP8riegD5nUPCEgWdI= Subject key identifier: D4:B5:2C:BC:C8:F3:26:DB:57:50:56:AE:F3:37:11:74:13:1B:4B:1D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 168BD9A8E13BAD7E9FF94515E2C62F5F4BF55EB6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS214752.roa Signing time: Thu 08 May 2025 23:46:20 +0000 ROA not before: Thu 08 May 2025 23:41:20 +0000 ROA not after: Thu 07 May 2026 23:46:20 +0000 asID: 214752 IP address blocks: 2a06:9f81:4500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 06:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:8b:d9:a8:e1:3b:ad:7e:9f:f9:45:15:e2:c6:2f:5f:4b:f5:5e:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 8 23:41:20 2025 GMT Not After : May 7 23:46:20 2026 GMT Subject: CN=D4B52CBCC8F326DB575056AEF3371174131B4B1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2b:b1:a5:68:f3:68:18:a2:68:2f:1b:cd:10: e6:67:74:ce:8c:9e:46:77:56:89:d3:fe:f4:4c:a9: 21:00:59:67:f2:dc:ab:6a:3a:2a:c5:ae:b3:ab:d1: 2b:93:e5:f9:07:8b:e1:89:37:d9:6e:7f:2d:2b:2f: 8e:b0:94:1a:d6:27:27:f6:b2:50:e3:1b:c9:71:68: cd:9a:eb:73:9b:4f:75:c5:91:88:9a:7e:32:2f:df: 39:12:31:26:78:91:5e:9d:4e:a8:86:4b:4a:d1:4b: af:b4:a5:b4:09:70:4f:0a:e7:d6:26:fe:c7:52:13: d6:b8:f3:47:be:b3:30:4c:45:83:36:f8:25:fd:c8: f9:0b:04:90:d3:7b:0a:5d:41:79:b8:fd:85:ef:f4: 5d:52:cd:aa:b6:d5:1c:d8:dc:0f:e1:45:8a:2d:43: 26:a3:71:60:50:3d:9d:89:3d:e4:f5:73:a5:a5:8c: 11:16:f4:a5:20:24:ed:f2:4c:31:03:e4:2f:9a:bf: fb:3a:f3:78:90:d5:c9:2b:ec:0d:e6:74:7f:e6:d5: 64:8f:84:71:73:51:61:fa:d8:33:6b:34:c9:8e:f9: c7:ea:7a:a0:de:41:b8:af:cd:3f:c7:67:4a:1e:b6: 49:76:1b:e6:c4:7c:7c:e3:b3:bb:6a:59:dd:f1:58: 59:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B5:2C:BC:C8:F3:26:DB:57:50:56:AE:F3:37:11:74:13:1B:4B:1D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS214752.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4500::/40 Signature Algorithm: sha256WithRSAEncryption 38:55:ac:ea:74:4b:70:0a:b4:cf:61:f5:bf:fe:d6:66:c6:a1: 0e:a6:33:8a:1a:39:fe:19:2f:31:be:24:14:ed:1c:e0:25:cc: 8e:66:98:7f:0a:ae:ac:5b:b0:a9:0f:7d:9c:cb:43:a0:c9:7a: 7d:23:23:cb:b1:51:83:ba:64:85:f2:57:d5:1e:81:ca:de:d6: 49:71:87:0c:18:49:d8:29:00:48:26:c8:aa:58:fd:89:23:0d: 51:bd:32:d1:ed:08:c5:ea:32:90:28:1d:9f:30:fb:04:61:a9: 20:94:5c:54:f5:e0:ef:e3:f6:19:78:53:63:83:9c:48:15:1a: f9:a9:18:62:ef:c0:13:e7:2a:35:54:33:76:15:fa:31:1d:1d: 7b:de:f1:68:66:81:ee:f1:66:71:10:1b:10:e2:af:5b:92:b2: c9:13:75:be:21:b9:b0:9d:28:99:6f:67:2a:68:54:37:c5:5c: 11:d1:3b:82:1c:0c:c4:83:17:9b:a7:98:af:3e:74:e7:a2:fa: 98:19:af:55:f3:7c:0b:d6:7c:56:16:65:31:e9:de:e2:74:49: cb:29:c8:ac:64:fc:0c:69:ea:be:93:72:db:16:91:be:19:1c: c0:0d:62:f0:37:0e:9c:ff:da:86:a7:ca:a7:51:a5:ad:b6:e6: bd:c7:76:30 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFovZqOE7rX6f+UUV4sYvX0v1XrYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MDgyMzQxMjBaFw0yNjA1MDcyMzQ2MjBaMDMxMTAvBgNV BAMTKEQ0QjUyQ0JDQzhGMzI2REI1NzUwNTZBRUYzMzcxMTc0MTMxQjRCMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvK7GlaPNoGKJoLxvNEOZndM6M nkZ3VonT/vRMqSEAWWfy3KtqOirFrrOr0SuT5fkHi+GJN9lufy0rL46wlBrWJyf2 slDjG8lxaM2a63ObT3XFkYiafjIv3zkSMSZ4kV6dTqiGS0rRS6+0pbQJcE8K59Ym /sdSE9a480e+szBMRYM2+CX9yPkLBJDTewpdQXm4/YXv9F1Szaq21RzY3A/hRYot QyajcWBQPZ2JPeT1c6WljBEW9KUgJO3yTDED5C+av/s683iQ1ckr7A3mdH/m1WSP hHFzUWH62DNrNMmO+cfqeqDeQbivzT/HZ0oetkl2G+bEfHzjs7tqWd3xWFkrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1LUsvMjzJttXUFau8zcRdBMbSx0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE0NzUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUUwDQYJKoZIhvcNAQELBQADggEBADhV rOp0S3AKtM9h9b/+1mbGoQ6mM4oaOf4ZLzG+JBTtHOAlzI5mmH8KrqxbsKkPfZzL Q6DJen0jI8uxUYO6ZIXyV9Uegcre1klxhwwYSdgpAEgmyKpY/YkjDVG9MtHtCMXq MpAoHZ8w+wRhqSCUXFT14O/j9hl4U2ODnEgVGvmpGGLvwBPnKjVUM3YV+jEdHXve 8Whmge7xZnEQGxDir1uSsskTdb4hubCdKJlvZypoVDfFXBHRO4IcDMSDF5unmK8+ dOei+pgZr1XzfAvWfFYWZTHp3uJ0ScspyKxk/Axp6r6TctsWkb4ZHMANYvA3Dpz/ 2oanyqdRpa225r3HdjA= -----END CERTIFICATE-----Generated at Fri Jun 6 11:53:09 2025 by rpki-client