$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215592.roa File: AS215592.roa (raw, json) Hash identifier: m3bjFKl0JwtRrrUi2prJ5PaBk/I4Wp7RNS+Q8SDeMko= Subject key identifier: 71:3D:C3:9B:93:58:BB:02:EC:E5:49:A8:FB:5B:AD:92:B1:AC:BE:B9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 53AC4E0F1229AA5EB95AE175CAB5DF3BD0BBC0F3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215592.roa Signing time: Fri 24 May 2024 11:12:19 +0000 ROA not before: Fri 24 May 2024 11:07:19 +0000 ROA not after: Fri 23 May 2025 11:12:19 +0000 asID: 215592 IP address blocks: 2a06:9f81:3900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 29 Jun 2024 06:54:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ac:4e:0f:12:29:aa:5e:b9:5a:e1:75:ca:b5:df:3b:d0:bb:c0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 24 11:07:19 2024 GMT Not After : May 23 11:12:19 2025 GMT Subject: CN=713DC39B9358BB02ECE549A8FB5BAD92B1ACBEB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f7:14:be:4f:17:91:51:a3:56:ed:59:cd:a2: 70:92:c9:96:57:07:38:ee:88:c8:ab:bb:9d:a8:8a: 68:77:37:14:12:78:0c:1d:33:03:40:08:ad:88:4b: 68:81:f3:26:f7:cf:ea:59:f0:26:5f:fe:d5:7b:a3: bf:fa:b6:67:a4:a0:1f:97:f6:fd:29:03:12:15:af: 1a:5f:8f:dc:07:0f:bb:d1:74:c6:06:9f:e6:91:29: fa:8a:7b:5d:d3:9e:fa:0f:a9:46:64:5a:23:43:e8: b1:c3:07:01:20:0d:e1:cf:1a:93:b9:53:fa:15:47: ed:e8:a6:27:f1:44:c6:1d:e5:36:ac:eb:20:30:5a: 64:6f:a3:24:ad:15:f2:88:f7:7c:38:21:ec:54:95: 4e:3d:23:cb:d8:bd:1c:96:cd:f2:80:35:c2:f4:82: ce:aa:88:13:7f:1a:d1:b4:a5:30:88:32:c6:40:26: 31:5b:ee:72:3b:46:06:3b:25:8d:b1:c6:78:d4:10: 97:38:4c:e9:3f:04:d8:17:5b:fa:5e:20:2e:0c:82: fa:86:d7:60:b9:81:40:df:be:2b:07:b1:1d:54:05: da:b7:23:f3:31:bd:83:1c:77:b1:4a:3a:a4:d9:85: 10:8f:19:9d:5d:7e:60:8c:5f:11:57:bb:82:20:e2: 7c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3D:C3:9B:93:58:BB:02:EC:E5:49:A8:FB:5B:AD:92:B1:AC:BE:B9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215592.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3900::/40 Signature Algorithm: sha256WithRSAEncryption 87:8d:8d:12:1f:7d:dd:bb:1f:d9:81:36:f9:a3:48:9f:c7:bd: 71:bf:e4:10:94:81:5d:b9:ea:8a:a2:a4:17:30:9b:bc:b0:38: ee:f6:c4:8b:13:d9:87:52:c2:31:7e:ab:1b:0f:2c:c6:48:c3: 6e:df:6a:80:33:9b:f2:b8:05:55:ad:69:c0:bb:bf:fc:64:11: bb:6c:de:bb:6e:ec:05:ba:22:84:8b:5f:3f:82:16:4c:ba:3c: 09:65:15:d2:18:1c:80:68:53:d4:ac:f0:6f:ac:fb:e8:2f:00: 3d:c5:c5:4e:1f:63:2a:cb:70:30:b5:b2:7f:ee:e3:6b:df:f6: 35:ef:08:0f:3c:8f:5a:58:cf:38:62:61:94:f2:f2:dc:ee:70: d5:c2:28:f6:36:aa:0f:e1:85:85:1a:47:d9:3a:00:6e:ca:9a: 79:1d:eb:58:ca:02:0c:0c:be:82:1b:7c:f8:7a:27:49:2c:a6: 3d:f4:01:5b:5c:56:1d:71:f0:c0:13:30:6c:f0:af:a5:b0:fd: e5:96:d1:99:d6:a9:a6:25:33:f2:70:a4:55:78:a6:44:dd:38: ee:c0:e2:c7:48:3d:35:4a:fd:6e:77:b1:ed:24:30:39:4d:12: 84:22:56:23:dc:03:c2:72:ba:e1:af:9d:2c:6d:c7:9d:3c:8d: f6:a5:3d:41 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUU6xODxIpql65WuF1yrXfO9C7wPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MjQxMTA3MTlaFw0yNTA1MjMxMTEyMTlaMDMxMTAvBgNV BAMTKDcxM0RDMzlCOTM1OEJCMDJFQ0U1NDlBOEZCNUJBRDkyQjFBQ0JFQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt9xS+TxeRUaNW7VnNonCSyZZX BzjuiMiru52oimh3NxQSeAwdMwNACK2IS2iB8yb3z+pZ8CZf/tV7o7/6tmekoB+X 9v0pAxIVrxpfj9wHD7vRdMYGn+aRKfqKe13TnvoPqUZkWiND6LHDBwEgDeHPGpO5 U/oVR+3opifxRMYd5Tas6yAwWmRvoyStFfKI93w4IexUlU49I8vYvRyWzfKANcL0 gs6qiBN/GtG0pTCIMsZAJjFb7nI7RgY7JY2xxnjUEJc4TOk/BNgXW/peIC4MgvqG 12C5gUDfvisHsR1UBdq3I/MxvYMcd7FKOqTZhRCPGZ1dfmCMXxFXu4Ig4nyZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUcT3Dm5NYuwLs5Umo+1utkrGsvrkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1NTkyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTkwDQYJKoZIhvcNAQELBQADggEBAIeN jRIffd27H9mBNvmjSJ/HvXG/5BCUgV256oqipBcwm7ywOO72xIsT2YdSwjF+qxsP LMZIw27faoAzm/K4BVWtacC7v/xkEbts3rtu7AW6IoSLXz+CFky6PAllFdIYHIBo U9Ss8G+s++gvAD3FxU4fYyrLcDC1sn/u42vf9jXvCA88j1pYzzhiYZTy8tzucNXC KPY2qg/hhYUaR9k6AG7Kmnkd61jKAgwMvoIbfPh6J0kspj30AVtcVh1x8MATMGzw r6Ww/eWW0ZnWqaYlM/JwpFV4pkTdOO7A4sdIPTVK/W53se0kMDlNEoQiViPcA8Jy uuGvnSxtx508jfalPUE= -----END CERTIFICATE-----Generated at Fri Jun 28 09:50:20 2024 by rpki-client on console-ams.rpki-client.org