$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215648.roa File: AS215648.roa (raw, json) Hash identifier: 7ZVleTkKmb+i1ZDbc3iE++d5WOCAFs8EaSRUXeAV/Os= Subject key identifier: 4A:C7:C9:2B:35:B5:4F:B0:0B:CE:F4:EE:E7:54:41:51:18:C4:40:D6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3EF6F8FE56340CCF497ACF3D7C12A07468FBAC39 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215648.roa Signing time: Fri 17 Jan 2025 23:45:40 +0000 ROA not before: Fri 17 Jan 2025 23:40:40 +0000 ROA not after: Fri 16 Jan 2026 23:45:40 +0000 asID: 215648 IP address blocks: 2a06:9f81:3700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f6:f8:fe:56:34:0c:cf:49:7a:cf:3d:7c:12:a0:74:68:fb:ac:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jan 17 23:40:40 2025 GMT Not After : Jan 16 23:45:40 2026 GMT Subject: CN=4AC7C92B35B54FB00BCEF4EEE754415118C440D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f2:aa:00:02:90:fe:a7:fc:6e:58:a3:ce:ec: e8:75:82:ec:7a:c6:be:55:c0:a1:06:42:d7:6f:f6: 39:e9:cf:e0:80:42:a3:0c:f5:b2:14:c0:94:ba:70: d1:10:c9:f7:05:50:22:a5:8d:dd:c3:6e:09:03:4d: e7:b8:be:97:66:5e:b1:4b:49:42:43:38:88:dc:c2: b4:6b:16:c3:8a:d6:0f:36:40:b9:2e:68:50:fc:4e: dd:f6:06:95:e9:db:14:c8:ca:81:c3:c5:d5:a7:a5: 67:74:05:a5:aa:a5:a8:31:e8:be:b4:a1:e9:64:6b: c5:48:f7:e4:02:02:bd:58:a4:b5:5a:30:8b:7c:62: 6a:e7:7b:7b:9b:25:68:53:d8:c0:ce:f9:27:e0:2f: d5:f3:85:96:a7:09:2f:29:a0:26:d8:81:2e:3d:65: 26:d9:2f:dd:2a:37:a5:cb:a1:13:8a:7b:c1:96:34: 90:ce:a2:69:b5:c3:2d:9d:c7:f8:20:8a:79:2d:a3: ec:d0:ff:2e:16:d0:c7:39:4f:57:e6:3a:3e:42:9b: ad:0f:7a:b7:fc:17:71:af:a6:97:34:de:17:bc:f0: c9:4e:03:d3:88:ba:9e:b4:27:05:29:9b:b7:1a:46: a3:ce:4c:ba:a5:3a:e9:0b:0f:01:7c:1b:b4:da:a6: 2d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C7:C9:2B:35:B5:4F:B0:0B:CE:F4:EE:E7:54:41:51:18:C4:40:D6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215648.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3700::/40 Signature Algorithm: sha256WithRSAEncryption 05:1b:68:97:0c:29:7f:bf:5e:3d:1f:8e:b8:b1:c2:68:93:48: 8a:ce:b4:6d:f6:75:2d:35:9c:44:e3:81:3e:1a:94:c6:5a:2e: 85:1e:a6:b5:c8:42:5a:07:a3:35:78:a3:64:b6:52:26:84:04: 50:b7:bc:12:2b:c0:82:72:cf:71:84:80:ca:eb:52:d2:f4:20: 37:0f:d4:7a:69:2d:50:ba:8c:e1:6a:52:c5:c3:5f:d4:b9:4b: 13:95:f7:af:9d:74:c0:7f:63:98:29:a5:f6:5a:5e:f4:16:29: 11:00:bc:f4:93:76:3c:9d:df:5f:77:ac:8b:26:8d:1c:36:ec: 15:07:7e:0f:48:dc:91:9a:93:26:bc:75:7f:3d:74:91:e1:c3: 96:16:62:69:91:7e:cd:5d:5e:a4:5c:d6:67:91:78:69:52:8f: fa:00:9a:cf:0d:48:44:9f:c2:20:5a:e6:8b:82:81:f9:ef:e9: 4a:57:ce:4f:c1:f8:a3:4d:15:1c:1e:ab:18:28:5a:d7:e1:16: b2:de:73:54:53:a6:a4:1d:30:4a:0b:0b:21:e6:7d:19:39:e2: e8:ae:6d:ab:d7:a8:a2:ad:29:17:7d:ea:ad:bb:b9:c5:3b:1f: 19:d0:f3:7b:59:e6:fc:5f:ac:7f:2e:66:d0:c8:f9:b4:f7:06: 73:1b:51:89 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPvb4/lY0DM9Jes89fBKgdGj7rDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAxMTcyMzQwNDBaFw0yNjAxMTYyMzQ1NDBaMDMxMTAvBgNV BAMTKDRBQzdDOTJCMzVCNTRGQjAwQkNFRjRFRUU3NTQ0MTUxMThDNDQwRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB8qoAApD+p/xuWKPO7Oh1gux6 xr5VwKEGQtdv9jnpz+CAQqMM9bIUwJS6cNEQyfcFUCKljd3DbgkDTee4vpdmXrFL SUJDOIjcwrRrFsOK1g82QLkuaFD8Tt32BpXp2xTIyoHDxdWnpWd0BaWqpagx6L60 oelka8VI9+QCAr1YpLVaMIt8Ymrne3ubJWhT2MDO+SfgL9XzhZanCS8poCbYgS49 ZSbZL90qN6XLoROKe8GWNJDOomm1wy2dx/gginkto+zQ/y4W0Mc5T1fmOj5Cm60P erf8F3Gvppc03he88MlOA9OIup60JwUpm7caRqPOTLqlOukLDwF8G7Tapi2bAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUSsfJKzW1T7ALzvTu51RBURjEQNYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1NjQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTcwDQYJKoZIhvcNAQELBQADggEBAAUb aJcMKX+/Xj0fjrixwmiTSIrOtG32dS01nETjgT4alMZaLoUeprXIQloHozV4o2S2 UiaEBFC3vBIrwIJyz3GEgMrrUtL0IDcP1HppLVC6jOFqUsXDX9S5SxOV96+ddMB/ Y5gppfZaXvQWKREAvPSTdjyd3193rIsmjRw27BUHfg9I3JGakya8dX89dJHhw5YW YmmRfs1dXqRc1meReGlSj/oAms8NSESfwiBa5ouCgfnv6UpXzk/B+KNNFRweqxgo WtfhFrLec1RTpqQdMEoLCyHmfRk54uiubavXqKKtKRd96q27ucU7HxnQ83tZ5vxf rH8uZtDI+bT3BnMbUYk= -----END CERTIFICATE-----Generated at Fri Apr 4 17:02:10 2025 by rpki-client