$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215648.roa File: AS215648.roa (raw, json) Hash identifier: cYXDCSOM/l+zbbCd39pO3CBCtjfcdPrp8XT6Mr2xldE= Subject key identifier: 22:77:33:6C:BD:36:6D:5D:86:DB:D0:4F:32:F9:F8:EA:39:E0:8D:09 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5385C79B4DBA3BFBB7DAC1FFD46EF7E187BA62FF Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215648.roa Signing time: Fri 16 Feb 2024 22:51:56 +0000 ROA not before: Fri 16 Feb 2024 22:46:56 +0000 ROA not after: Fri 14 Feb 2025 22:51:56 +0000 asID: 215648 IP address blocks: 2a06:9f81:3700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:85:c7:9b:4d:ba:3b:fb:b7:da:c1:ff:d4:6e:f7:e1:87:ba:62:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 16 22:46:56 2024 GMT Not After : Feb 14 22:51:56 2025 GMT Subject: CN=2277336CBD366D5D86DBD04F32F9F8EA39E08D09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ec:05:23:07:6d:e6:cf:46:2e:97:b9:e8:0d: 66:5f:54:a1:a1:d8:54:5b:17:9d:a5:85:ce:d3:44: c4:29:ce:7e:48:af:51:78:fd:27:f9:a1:9a:5b:bb: 0a:c6:d8:4b:ed:81:ac:5c:32:3f:6c:0f:2b:4d:82: 52:f5:17:3e:85:10:17:16:0a:73:12:68:c3:99:4a: de:73:d3:f0:85:02:db:84:ea:93:28:53:97:63:53: 49:86:ae:e2:a4:a9:f2:48:f9:67:84:e6:26:8d:5a: 1f:3b:ca:8d:78:6f:94:31:3a:9d:b8:d1:7b:f1:09: 87:66:1a:52:4c:d2:98:a5:cb:f4:18:bf:18:78:de: b3:63:59:27:3b:e1:42:96:e6:f8:b0:92:50:00:04: 7f:fb:58:18:69:cc:b7:bd:17:97:46:49:16:81:32: 4a:7b:bf:a7:61:9c:66:8f:29:94:1d:fc:af:9e:6f: 8f:eb:bb:62:76:21:a1:ef:6c:16:6a:cb:ae:90:2c: 27:03:8e:a1:c7:37:04:78:48:fa:c9:12:a4:36:8c: 48:38:87:b1:d5:b5:74:b5:33:42:7b:ba:c2:24:b4: 81:fc:66:a7:80:6b:d7:59:ac:7c:10:29:45:a9:b8: 88:3b:53:e0:a2:33:38:ca:6b:b5:57:4a:c1:b1:4e: f5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:77:33:6C:BD:36:6D:5D:86:DB:D0:4F:32:F9:F8:EA:39:E0:8D:09 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215648.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3700::/40 Signature Algorithm: sha256WithRSAEncryption 57:91:76:14:fd:5d:f9:aa:8e:c1:4c:f7:98:be:09:5c:0e:d7: a6:04:61:83:8f:90:91:26:a9:59:90:22:eb:a7:1b:7f:50:f3: d0:77:a0:ec:4c:9d:6d:77:f6:7b:5f:e0:7d:25:34:b7:3c:dd: c6:23:a3:5f:b8:6c:d2:00:dc:f7:b1:64:f3:42:68:7a:ee:ce: 54:14:05:2f:ce:db:9e:89:5d:6f:67:92:51:7a:88:b0:bc:36: 62:9d:6e:9c:a9:8f:e0:61:86:98:a9:b5:89:76:b8:15:41:ea: 00:4d:72:7b:76:a8:0e:c2:bc:d9:6f:c0:c7:ea:3d:0e:cc:ce: d8:d4:99:54:42:a8:9f:d8:61:4c:ef:a1:27:69:e8:50:3e:47: d3:7c:83:fc:17:5a:6a:2e:95:7f:10:7d:da:78:82:43:1e:2f: 20:fe:9b:d9:19:de:d5:19:d7:80:95:cd:f5:64:2e:3e:45:ec: 1d:6e:f4:7e:db:10:f9:21:4b:ed:3e:4b:00:53:aa:2b:4f:a2: 15:08:a6:47:34:6d:21:16:af:b0:1c:5e:12:81:bd:b3:49:bc: 55:02:f9:f7:19:60:62:94:9d:40:5c:a6:2f:f6:03:06:a9:8d: e8:55:2e:15:e8:31:6b:24:7e:ac:79:b4:6e:65:df:fa:d4:12: cb:64:d3:dc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUU4XHm026O/u32sH/1G734Ye6Yv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMTYyMjQ2NTZaFw0yNTAyMTQyMjUxNTZaMDMxMTAvBgNV BAMTKDIyNzczMzZDQkQzNjZENUQ4NkRCRDA0RjMyRjlGOEVBMzlFMDhEMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN7AUjB23mz0Yul7noDWZfVKGh 2FRbF52lhc7TRMQpzn5Ir1F4/Sf5oZpbuwrG2EvtgaxcMj9sDytNglL1Fz6FEBcW CnMSaMOZSt5z0/CFAtuE6pMoU5djU0mGruKkqfJI+WeE5iaNWh87yo14b5QxOp24 0XvxCYdmGlJM0pily/QYvxh43rNjWSc74UKW5viwklAABH/7WBhpzLe9F5dGSRaB Mkp7v6dhnGaPKZQd/K+eb4/ru2J2IaHvbBZqy66QLCcDjqHHNwR4SPrJEqQ2jEg4 h7HVtXS1M0J7usIktIH8ZqeAa9dZrHwQKUWpuIg7U+CiMzjKa7VXSsGxTvWtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUInczbL02bV2G29BPMvn46jngjQkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1NjQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTcwDQYJKoZIhvcNAQELBQADggEBAFeR dhT9XfmqjsFM95i+CVwO16YEYYOPkJEmqVmQIuunG39Q89B3oOxMnW139ntf4H0l NLc83cYjo1+4bNIA3PexZPNCaHruzlQUBS/O256JXW9nklF6iLC8NmKdbpypj+Bh hpiptYl2uBVB6gBNcnt2qA7CvNlvwMfqPQ7MztjUmVRCqJ/YYUzvoSdp6FA+R9N8 g/wXWmoulX8Qfdp4gkMeLyD+m9kZ3tUZ14CVzfVkLj5F7B1u9H7bEPkhS+0+SwBT qitPohUIpkc0bSEWr7AcXhKBvbNJvFUC+fcZYGKUnUBcpi/2AwapjehVLhXoMWsk fqx5tG5l3/rUEstk09w= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org