$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215241.roa File: AS215241.roa (raw, json) Hash identifier: bI5W9pcUteAMeZS8IILZaxsWNTZKhGXxFii4tnHNIvc= Subject key identifier: 7D:76:8B:82:C4:B2:67:24:A2:CE:64:56:C5:DF:1E:AF:57:7D:81:88 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 574A2B00EC51C80B93748C3DB66BD921DB23BA89 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215241.roa Signing time: Tue 13 May 2025 11:46:20 +0000 ROA not before: Tue 13 May 2025 11:41:20 +0000 ROA not after: Tue 12 May 2026 11:46:20 +0000 asID: 215241 IP address blocks: 2a06:9f81:4900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 18:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:4a:2b:00:ec:51:c8:0b:93:74:8c:3d:b6:6b:d9:21:db:23:ba:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 13 11:41:20 2025 GMT Not After : May 12 11:46:20 2026 GMT Subject: CN=7D768B82C4B26724A2CE6456C5DF1EAF577D8188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b7:bd:25:de:10:da:de:03:22:7e:13:5c:22: e8:c9:d1:4e:9d:7a:4a:7b:96:cb:c9:4f:8d:5a:46: 24:c9:72:b5:d4:38:39:81:bc:da:54:9a:dc:cf:fb: f9:81:e4:38:4a:71:ec:7b:7c:ac:de:2f:3b:26:b2: 4b:2d:4d:09:a2:bf:3a:a7:fc:ea:48:5a:1e:71:60: 44:1e:46:4d:d8:b2:4b:76:83:21:d7:43:7e:d4:c7: d8:94:a9:61:ec:f8:56:64:8d:f2:86:af:7a:0b:80: f3:18:5e:aa:c8:59:bf:66:30:24:da:42:67:f0:8b: 33:00:15:c1:a7:9c:c9:56:8a:3e:41:a5:87:ba:ff: 05:89:05:a2:07:d9:46:90:7c:51:51:0e:d0:33:c0: 63:86:62:b7:0e:3d:fd:5e:fd:c3:fa:07:67:5e:21: ce:f0:85:9c:00:58:b6:a6:08:d5:29:b4:93:39:3e: f5:11:cd:f4:f2:02:54:f0:53:79:c5:a2:b8:26:a0: 6f:11:a3:ee:a5:54:57:63:0f:f0:1d:7a:85:9f:00: ca:cd:f9:6c:4b:be:d3:32:86:1b:89:1e:49:f9:0b: e7:e7:7c:81:70:19:4e:14:7b:6e:10:30:ec:1e:ed: b3:af:55:7e:5c:1c:1b:4f:02:ec:5c:f7:0d:b6:02: a9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:76:8B:82:C4:B2:67:24:A2:CE:64:56:C5:DF:1E:AF:57:7D:81:88 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215241.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4900::/40 Signature Algorithm: sha256WithRSAEncryption 0f:c6:44:3b:33:ae:76:01:c6:7f:9f:45:19:99:b2:54:39:05: b9:1c:61:cf:fb:60:87:db:51:53:33:41:21:64:c1:5b:ef:a1: 87:ed:e9:5f:0e:3e:03:6a:cd:e8:28:b8:9b:c9:41:74:ea:f9: f6:83:ff:36:53:a9:2d:df:16:18:2c:fa:c4:9d:42:84:8f:2b: 6a:5b:de:30:5c:87:6b:a9:b1:17:b9:85:74:43:0d:5c:4d:ad: 7c:f4:d4:c5:6e:7b:4a:8f:d7:bd:52:0a:05:86:9c:3c:0b:93: 5e:67:6f:0e:06:40:1e:ce:49:5f:21:b7:86:63:71:63:fd:15: cf:f4:4d:3c:60:c3:81:20:d0:21:b7:ed:84:60:6a:5f:06:db: e3:a8:5f:10:c5:92:4e:74:db:15:53:39:ba:db:fa:ae:91:0a: c3:bd:52:22:e0:66:be:7f:fc:08:1c:ef:8b:9a:8c:80:29:34: f3:69:b7:e3:b0:f4:5c:8b:b9:a0:5e:22:c7:ed:44:20:61:25: ff:5e:63:ef:f9:34:dc:c8:60:20:b8:50:85:e6:9b:aa:fd:73: 48:43:cd:3a:df:3e:a3:d4:7b:95:47:a3:39:ac:b2:87:97:6b: 46:76:a5:b4:73:24:c4:fb:32:29:c6:a3:1b:23:b1:85:03:59: f0:e2:7b:23 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUV0orAOxRyAuTdIw9tmvZIdsjuokwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MTMxMTQxMjBaFw0yNjA1MTIxMTQ2MjBaMDMxMTAvBgNV BAMTKDdENzY4QjgyQzRCMjY3MjRBMkNFNjQ1NkM1REYxRUFGNTc3RDgxODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFt70l3hDa3gMifhNcIujJ0U6d ekp7lsvJT41aRiTJcrXUODmBvNpUmtzP+/mB5DhKcex7fKzeLzsmskstTQmivzqn /OpIWh5xYEQeRk3Yskt2gyHXQ37Ux9iUqWHs+FZkjfKGr3oLgPMYXqrIWb9mMCTa QmfwizMAFcGnnMlWij5BpYe6/wWJBaIH2UaQfFFRDtAzwGOGYrcOPf1e/cP6B2de Ic7whZwAWLamCNUptJM5PvURzfTyAlTwU3nForgmoG8Ro+6lVFdjD/AdeoWfAMrN +WxLvtMyhhuJHkn5C+fnfIFwGU4Ue24QMOwe7bOvVX5cHBtPAuxc9w22AqnPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUfXaLgsSyZySizmRWxd8er1d9gYgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1MjQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUkwDQYJKoZIhvcNAQELBQADggEBAA/G RDszrnYBxn+fRRmZslQ5BbkcYc/7YIfbUVMzQSFkwVvvoYft6V8OPgNqzegouJvJ QXTq+faD/zZTqS3fFhgs+sSdQoSPK2pb3jBch2upsRe5hXRDDVxNrXz01MVue0qP 171SCgWGnDwLk15nbw4GQB7OSV8ht4ZjcWP9Fc/0TTxgw4Eg0CG37YRgal8G2+Oo XxDFkk502xVTObrb+q6RCsO9UiLgZr5//Agc74uajIApNPNpt+Ow9FyLuaBeIsft RCBhJf9eY+/5NNzIYCC4UIXmm6r9c0hDzTrfPqPUe5VHozmssoeXa0Z2pbRzJMT7 MinGoxsjsYUDWfDieyM= -----END CERTIFICATE-----Generated at Fri Jun 6 11:53:08 2025 by rpki-client