$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215241.roa File: AS215241.roa (raw, json) Hash identifier: tPCuKoINZgeITwGID3k1yVWars//RynWEaUscs7gK3E= Subject key identifier: 52:63:03:72:47:EC:D2:BE:A4:9E:30:59:4D:BB:6D:B6:A1:7C:0F:0D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 066E8345ED0B35B527A753D5482EC7A1B8F5CCC6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215241.roa Signing time: Tue 11 Jun 2024 11:38:19 +0000 ROA not before: Tue 11 Jun 2024 11:33:19 +0000 ROA not after: Tue 10 Jun 2025 11:38:19 +0000 asID: 215241 IP address blocks: 2a06:9f81:4900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:6e:83:45:ed:0b:35:b5:27:a7:53:d5:48:2e:c7:a1:b8:f5:cc:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 11 11:33:19 2024 GMT Not After : Jun 10 11:38:19 2025 GMT Subject: CN=5263037247ECD2BEA49E30594DBB6DB6A17C0F0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b4:2e:1c:39:8a:e5:37:c7:31:12:c1:57:ec: 26:da:9f:98:c9:eb:f8:44:44:af:76:4c:6c:2f:83: 3c:64:3c:8a:2b:bb:10:29:bb:13:b5:3b:99:76:9b: b7:35:4c:8c:f7:99:dd:09:75:fc:86:87:1b:0c:52: 13:c6:ca:8f:8c:db:3d:25:c4:37:43:f0:1f:84:40: bb:94:27:ca:0c:e5:4a:93:56:3a:ad:77:26:d9:b8: 38:b4:34:0d:20:65:e9:16:98:5c:1e:37:ea:dd:de: 16:64:08:c4:71:75:a7:09:f0:99:c2:dc:9c:fc:77: 6e:97:27:4c:a1:c8:c5:b2:55:02:99:93:d6:5e:68: 04:9b:78:bd:e4:17:03:54:11:22:ce:a4:a1:f4:67: 14:e7:82:04:eb:4f:10:5f:d6:50:26:d0:be:e2:70: e7:24:fc:c3:b3:a8:b8:e7:15:42:3c:9b:99:fd:fa: 3e:94:08:cd:cb:24:28:11:2c:78:d5:3e:f4:2e:50: 38:15:14:d1:c5:51:50:bd:5e:69:69:e1:b0:f2:c3: 45:03:44:38:47:96:84:64:2f:e3:e6:72:44:19:ba: 6f:e4:ff:c9:c7:83:ea:e0:df:10:b0:47:e0:84:1c: d0:5c:74:f3:96:ae:00:71:55:e3:e8:db:a6:c5:5a: fe:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:63:03:72:47:EC:D2:BE:A4:9E:30:59:4D:BB:6D:B6:A1:7C:0F:0D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215241.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4900::/40 Signature Algorithm: sha256WithRSAEncryption bd:d3:4c:01:50:f3:8e:3f:9b:2b:7b:e4:09:1c:a4:c8:e5:24: 4c:8a:f4:fc:ac:f5:25:13:55:59:06:66:46:2a:f3:e2:27:46: 96:6c:aa:0c:2f:52:be:71:db:0e:73:59:80:b6:7d:22:01:17: 0a:0c:41:ea:6e:26:16:e0:e1:a0:84:3c:48:f6:49:0c:c0:97: 50:0f:44:bd:c5:b7:e8:f0:44:a7:2d:3a:ac:bc:3e:1f:e3:9e: 56:41:e0:07:fe:1c:e1:e8:f3:49:2c:be:14:70:b1:ca:f2:ca: 61:54:57:1f:4a:dc:68:fe:d6:31:76:cc:6f:49:2f:18:51:92: b8:12:db:8b:60:2f:b8:19:fa:a1:2d:96:84:07:15:c0:6f:ab: 3e:4b:d2:21:7a:9a:1d:89:49:4f:3b:e0:ae:42:2a:62:b3:b4: d9:51:d1:8a:14:4c:5a:a4:9a:8a:9d:31:5f:aa:50:54:76:a4: 74:c2:8b:28:e0:37:13:1e:98:78:87:14:43:52:22:6f:3b:d5: 72:1f:2b:eb:72:c8:04:b8:8a:2d:1e:b4:13:3e:83:6a:03:0d: 98:57:80:41:a9:c9:21:31:b3:d3:f4:db:4a:ac:06:ba:20:95: 91:00:5c:aa:37:cb:59:18:06:2a:40:b6:67:01:cb:a6:23:fe: 5b:bd:ae:96 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBm6DRe0LNbUnp1PVSC7Hobj1zMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MTExMTMzMTlaFw0yNTA2MTAxMTM4MTlaMDMxMTAvBgNV BAMTKDUyNjMwMzcyNDdFQ0QyQkVBNDlFMzA1OTREQkI2REI2QTE3QzBGMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEtC4cOYrlN8cxEsFX7Cban5jJ 6/hERK92TGwvgzxkPIoruxApuxO1O5l2m7c1TIz3md0JdfyGhxsMUhPGyo+M2z0l xDdD8B+EQLuUJ8oM5UqTVjqtdybZuDi0NA0gZekWmFweN+rd3hZkCMRxdacJ8JnC 3Jz8d26XJ0yhyMWyVQKZk9ZeaASbeL3kFwNUESLOpKH0ZxTnggTrTxBf1lAm0L7i cOck/MOzqLjnFUI8m5n9+j6UCM3LJCgRLHjVPvQuUDgVFNHFUVC9Xmlp4bDyw0UD RDhHloRkL+PmckQZum/k/8nHg+rg3xCwR+CEHNBcdPOWrgBxVePo26bFWv67AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUmMDckfs0r6knjBZTbtttqF8Dw0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1MjQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUkwDQYJKoZIhvcNAQELBQADggEBAL3T TAFQ844/myt75AkcpMjlJEyK9Pys9SUTVVkGZkYq8+InRpZsqgwvUr5x2w5zWYC2 fSIBFwoMQepuJhbg4aCEPEj2SQzAl1APRL3Ft+jwRKctOqy8Ph/jnlZB4Af+HOHo 80ksvhRwscryymFUVx9K3Gj+1jF2zG9JLxhRkrgS24tgL7gZ+qEtloQHFcBvqz5L 0iF6mh2JSU874K5CKmKztNlR0YoUTFqkmoqdMV+qUFR2pHTCiyjgNxMemHiHFENS Im871XIfK+tyyAS4ii0etBM+g2oDDZhXgEGpySExs9P020qsBroglZEAXKo3y1kY BipAtmcBy6Yj/lu9rpY= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org