$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215502.roa File: AS215502.roa (raw, json) Hash identifier: R+dQ8bg1B3c45rIL3DuStrlvhEtlQ7chI6NigKAU40o= Subject key identifier: CA:D5:56:06:41:CB:19:29:AD:76:2B:7F:D8:2D:B4:FE:48:35:80:E0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0A8095D811B3BEFFA075A451F6CE8401F7CEC13C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215502.roa Signing time: Thu 06 Jun 2024 23:46:24 +0000 ROA not before: Thu 06 Jun 2024 23:41:24 +0000 ROA not after: Thu 05 Jun 2025 23:46:24 +0000 asID: 215502 IP address blocks: 2a06:9f81:4600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:80:95:d8:11:b3:be:ff:a0:75:a4:51:f6:ce:84:01:f7:ce:c1:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 6 23:41:24 2024 GMT Not After : Jun 5 23:46:24 2025 GMT Subject: CN=CAD5560641CB1929AD762B7FD82DB4FE483580E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:dd:67:85:9f:25:ed:ad:0b:67:d0:ec:61:f0: e5:1c:a3:75:79:d7:cf:7b:4a:63:ad:b2:52:ea:b4: 4e:f6:4f:95:28:1b:c4:5a:db:39:5d:fa:a7:8f:e9: 6f:af:95:51:d5:cf:97:e9:d6:64:0f:9e:c0:ce:d5: 7b:19:94:e5:04:ec:0b:dc:e2:b8:9f:9f:2c:c6:d4: 9f:a9:3b:fe:c2:f1:a6:7e:0a:82:82:8d:ec:40:48: 46:b7:9b:06:79:cf:0c:f1:43:ef:f4:df:e6:d8:57: 2f:8a:e0:d5:52:ac:13:67:57:02:09:16:de:9d:31: 85:aa:36:98:18:ab:e0:44:e6:21:8d:ab:34:d4:f2: 12:a3:1d:5f:16:c5:af:71:9a:8a:47:8e:4c:2c:fa: 95:22:70:d6:38:88:a2:1f:a0:80:70:76:06:a1:dc: 9a:f6:28:14:6c:e2:38:e7:dd:e5:76:05:0d:33:ac: 36:e6:3e:36:c4:8d:32:68:43:ba:a5:91:1c:0d:9f: 29:dc:a5:60:7b:ec:b6:2d:cb:f8:af:f9:0c:90:79: be:5d:bf:10:84:96:78:18:07:31:99:de:f5:2d:95: f8:59:a8:76:e3:10:ca:38:cc:a3:89:c6:d7:3f:41: ce:d5:20:81:e4:77:69:69:2f:e6:4c:4f:30:68:4e: ec:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D5:56:06:41:CB:19:29:AD:76:2B:7F:D8:2D:B4:FE:48:35:80:E0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215502.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4600::/40 Signature Algorithm: sha256WithRSAEncryption bc:5b:88:f5:37:dd:c1:04:53:84:32:8f:a5:07:92:3e:35:05: e3:93:be:27:51:a4:1b:c1:2d:6a:0a:45:a7:60:09:8e:6d:12: d0:51:f5:f9:c4:bc:29:3d:c9:c1:b8:d3:5e:94:38:7c:4e:be: ca:a8:64:fc:8e:de:1f:88:c4:e3:57:fa:da:45:a9:b0:cd:fe: d3:e9:33:d7:21:57:60:39:8b:fe:51:ad:ec:be:71:d2:bc:b2: 80:55:11:d3:20:eb:eb:d5:d5:74:46:89:67:11:da:4a:a3:71: 12:d6:e9:96:fe:f1:1d:57:d4:07:75:6a:36:42:3f:e1:7e:fe: 24:97:8c:79:14:d1:a7:4e:4b:c1:3a:58:be:cf:aa:64:1c:50: 66:08:a1:a7:db:9b:f6:d1:62:2c:9a:66:62:cd:a5:2e:34:fc: f0:f4:4b:ca:42:ee:e6:fc:92:d8:08:db:5c:91:87:eb:88:0e: 54:2c:ae:54:3e:80:95:95:bb:29:2b:ed:cf:57:0d:59:50:58: 59:90:ae:ab:0e:9e:0b:12:c6:60:63:2b:d0:cf:27:a5:52:64: f3:cb:4f:f5:8f:b5:1f:25:93:df:7b:d8:75:5d:80:51:33:9c: f6:14:af:4e:fb:06:0e:b3:8c:d3:b2:ba:e1:b6:29:a7:c9:5e: a3:09:85:f1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCoCV2BGzvv+gdaRR9s6EAffOwTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MDYyMzQxMjRaFw0yNTA2MDUyMzQ2MjRaMDMxMTAvBgNV BAMTKENBRDU1NjA2NDFDQjE5MjlBRDc2MkI3RkQ4MkRCNEZFNDgzNTgwRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy3WeFnyXtrQtn0Oxh8OUco3V5 1897SmOtslLqtE72T5UoG8Ra2zld+qeP6W+vlVHVz5fp1mQPnsDO1XsZlOUE7Avc 4rifnyzG1J+pO/7C8aZ+CoKCjexASEa3mwZ5zwzxQ+/03+bYVy+K4NVSrBNnVwIJ Ft6dMYWqNpgYq+BE5iGNqzTU8hKjHV8Wxa9xmopHjkws+pUicNY4iKIfoIBwdgah 3Jr2KBRs4jjn3eV2BQ0zrDbmPjbEjTJoQ7qlkRwNnyncpWB77LYty/iv+QyQeb5d vxCElngYBzGZ3vUtlfhZqHbjEMo4zKOJxtc/Qc7VIIHkd2lpL+ZMTzBoTuzlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUytVWBkHLGSmtdit/2C20/kg1gOAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1NTAyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUYwDQYJKoZIhvcNAQELBQADggEBALxb iPU33cEEU4Qyj6UHkj41BeOTvidRpBvBLWoKRadgCY5tEtBR9fnEvCk9ycG4016U OHxOvsqoZPyO3h+IxONX+tpFqbDN/tPpM9chV2A5i/5Rrey+cdK8soBVEdMg6+vV 1XRGiWcR2kqjcRLW6Zb+8R1X1Ad1ajZCP+F+/iSXjHkU0adOS8E6WL7PqmQcUGYI oafbm/bRYiyaZmLNpS40/PD0S8pC7ub8ktgI21yRh+uIDlQsrlQ+gJWVuykr7c9X DVlQWFmQrqsOngsSxmBjK9DPJ6VSZPPLT/WPtR8lk9972HVdgFEznPYUr077Bg6z jNOyuuG2KafJXqMJhfE= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org