$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215502.roa File: AS215502.roa (raw, json) Hash identifier: r7LpdKsRd2+f3e290+Ng4Pgi5mVBZ1/C0/FMSufYw3I= Subject key identifier: A5:98:15:8A:4D:19:43:69:12:4E:D4:AA:F5:E6:B5:49:79:E9:12:64 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 47648E722C19F511FAE10561B98270D6154D42CD Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215502.roa Signing time: Fri 09 May 2025 00:46:20 +0000 ROA not before: Fri 09 May 2025 00:41:20 +0000 ROA not after: Fri 08 May 2026 00:46:20 +0000 asID: 215502 IP address blocks: 2a06:9f81:4600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 04:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:64:8e:72:2c:19:f5:11:fa:e1:05:61:b9:82:70:d6:15:4d:42:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 9 00:41:20 2025 GMT Not After : May 8 00:46:20 2026 GMT Subject: CN=A598158A4D194369124ED4AAF5E6B54979E91264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b6:04:3b:13:64:bf:e6:4e:28:50:ed:93:ae: 6c:60:5f:23:96:be:b5:c9:54:2d:08:2f:9a:6c:6c: c7:39:c8:c8:d9:88:b5:08:f8:00:01:32:f1:7c:57: 2e:69:dc:72:c5:44:3a:30:db:16:cb:10:4f:cf:88: 86:f7:98:11:6a:1f:44:bb:c4:cf:51:ff:12:48:6d: 05:a5:02:13:0a:81:a5:b7:42:ec:70:cc:b0:ea:36: ef:46:67:83:74:29:67:60:49:09:ec:33:80:e4:8e: 8f:49:e3:ae:d2:3f:28:73:d0:27:d4:12:6d:b7:6a: 55:e1:a7:4a:79:3c:c9:f0:c5:80:22:c1:5a:b8:e2: 55:3f:96:26:39:ed:d2:e2:26:94:8e:a6:28:6a:68: ac:a7:b7:e1:12:8d:3c:76:01:77:1a:ef:29:14:dd: b8:b5:a7:c4:7d:9c:74:20:3e:d3:e7:08:5a:18:b0: a8:96:a6:87:b2:d4:de:54:e6:9a:c7:a6:5a:3e:76: 41:38:fa:46:3c:e6:70:71:b9:0c:c9:b1:54:34:4b: e4:36:d2:40:18:8f:17:d0:b5:3a:00:3f:4b:fa:28: 96:fe:ed:0e:e7:b6:1b:48:18:8a:90:b9:ba:f9:a7: 80:7d:fd:a7:de:98:24:a5:e4:32:16:83:a1:47:d0: 4e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:98:15:8A:4D:19:43:69:12:4E:D4:AA:F5:E6:B5:49:79:E9:12:64 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215502.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4600::/40 Signature Algorithm: sha256WithRSAEncryption 32:50:ea:6e:8e:b2:99:87:0a:86:e4:ba:0c:52:41:60:32:e6: 4d:41:7f:ce:66:65:bd:5e:7f:4c:4b:c3:8a:30:70:4e:01:3a: 41:71:7a:ad:90:6d:18:d5:e9:12:27:eb:9c:fc:63:1c:89:38: ff:97:ad:c3:cd:82:14:05:d7:6c:f8:8c:a5:35:65:d9:dc:46: fe:f2:07:a1:af:bc:57:4d:34:75:68:2a:74:90:7c:2c:90:59: 82:bc:1a:37:de:a5:96:70:9b:5a:32:9d:02:07:88:bc:a3:15: 96:bd:1e:c9:5e:1e:b8:dd:b2:ef:c0:42:91:6f:94:bd:aa:36: f3:a6:82:f3:33:97:25:5d:b5:61:76:1d:be:7b:85:b4:f5:d8: 1f:79:42:80:da:18:78:de:4f:33:4f:01:6f:54:77:45:e8:16: f5:16:76:76:16:bd:b1:56:5d:d2:37:f4:cd:df:d5:79:e8:d5: 33:70:fd:73:6f:7e:95:c7:ab:5f:ee:6c:ab:1f:79:63:e9:5c: 30:28:4a:1b:db:e2:72:0c:2f:d2:f7:40:5a:22:ad:45:b0:f9: 18:4e:42:8e:1d:ea:23:fb:a7:54:43:e2:39:d1:8f:22:58:b4: dd:37:06:af:8e:d7:37:39:63:5f:94:23:61:bb:33:2d:55:0f: 41:c5:7c:9b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUR2SOciwZ9RH64QVhuYJw1hVNQs0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MDkwMDQxMjBaFw0yNjA1MDgwMDQ2MjBaMDMxMTAvBgNV BAMTKEE1OTgxNThBNEQxOTQzNjkxMjRFRDRBQUY1RTZCNTQ5NzlFOTEyNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEtgQ7E2S/5k4oUO2TrmxgXyOW vrXJVC0IL5psbMc5yMjZiLUI+AABMvF8Vy5p3HLFRDow2xbLEE/PiIb3mBFqH0S7 xM9R/xJIbQWlAhMKgaW3QuxwzLDqNu9GZ4N0KWdgSQnsM4Dkjo9J467SPyhz0CfU Em23alXhp0p5PMnwxYAiwVq44lU/liY57dLiJpSOpihqaKynt+ESjTx2AXca7ykU 3bi1p8R9nHQgPtPnCFoYsKiWpoey1N5U5prHplo+dkE4+kY85nBxuQzJsVQ0S+Q2 0kAYjxfQtToAP0v6KJb+7Q7nthtIGIqQubr5p4B9/afemCSl5DIWg6FH0E4XAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUpZgVik0ZQ2kSTtSq9ea1SXnpEmQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1NTAyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUYwDQYJKoZIhvcNAQELBQADggEBADJQ 6m6OspmHCobkugxSQWAy5k1Bf85mZb1ef0xLw4owcE4BOkFxeq2QbRjV6RIn65z8 YxyJOP+XrcPNghQF12z4jKU1ZdncRv7yB6GvvFdNNHVoKnSQfCyQWYK8GjfepZZw m1oynQIHiLyjFZa9HsleHrjdsu/AQpFvlL2qNvOmgvMzlyVdtWF2Hb57hbT12B95 QoDaGHjeTzNPAW9Ud0XoFvUWdnYWvbFWXdI39M3f1Xno1TNw/XNvfpXHq1/ubKsf eWPpXDAoShvb4nIML9L3QFoirUWw+RhOQo4d6iP7p1RD4jnRjyJYtN03Bq+O1zc5 Y1+UI2G7My1VD0HFfJs= -----END CERTIFICATE-----Generated at Sat Jun 7 21:52:20 2025 by rpki-client