$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215748.roa File: AS215748.roa (raw, json) Hash identifier: GFQ426GxqlGmC8LDZQFJ2VNMEPEyH3lNruitOGPkyZQ= Subject key identifier: EC:B8:FA:8A:F5:FD:60:5A:5C:AB:B5:1E:8E:E5:47:0A:50:A1:D7:F9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 197D3666DFEAE585D5E9D6DB9B99DB17CB655BF2 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215748.roa Signing time: Fri 12 Jan 2024 10:24:33 +0000 ROA not before: Fri 12 Jan 2024 10:19:33 +0000 ROA not after: Fri 10 Jan 2025 10:24:33 +0000 asID: 215748 IP address blocks: 2a06:9f81:3100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:7d:36:66:df:ea:e5:85:d5:e9:d6:db:9b:99:db:17:cb:65:5b:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jan 12 10:19:33 2024 GMT Not After : Jan 10 10:24:33 2025 GMT Subject: CN=ECB8FA8AF5FD605A5CABB51E8EE5470A50A1D7F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:b3:b7:be:86:a7:e5:e3:23:a7:de:e6:19:ef: dc:73:38:e5:da:1e:86:73:a6:15:87:e2:b2:ad:50: 8c:4e:47:64:33:2c:03:03:ee:23:5a:64:42:01:c9: c1:43:96:cc:c5:0d:0c:2a:c9:6b:05:33:03:97:d7: be:2b:87:a3:9d:67:27:45:14:71:fd:fe:de:57:79: 9d:c1:f8:1a:87:c4:f0:51:13:fe:64:ed:29:77:3a: 7d:f0:a9:c8:d7:b7:f6:b7:b2:8f:ba:86:29:ee:b0: 76:a5:73:9f:ab:a7:34:98:24:6c:76:c6:41:1c:e1: 66:d8:e9:be:d6:de:35:bb:e7:9f:96:40:b0:20:1c: 83:09:a8:80:11:ca:8b:b7:8f:a0:75:35:d8:61:82: 92:cb:79:df:f4:4c:38:c0:75:0f:7c:24:f1:b7:6f: 28:73:49:24:77:23:6c:f9:1c:cb:2d:1d:f9:05:7a: 69:7a:4b:6b:2f:7c:7c:f6:78:23:5d:c2:0e:82:d6: c1:49:04:73:f8:61:63:e3:55:7e:67:9a:62:fa:a8: 04:11:10:68:c8:32:72:8f:19:d9:c5:89:80:87:1d: 09:93:e3:69:11:aa:cb:ba:93:6d:03:95:ce:40:3d: f5:6a:38:b8:2e:e9:c3:fd:27:a0:f1:60:a1:1d:b8: 4e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:B8:FA:8A:F5:FD:60:5A:5C:AB:B5:1E:8E:E5:47:0A:50:A1:D7:F9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215748.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3100::/40 Signature Algorithm: sha256WithRSAEncryption 79:80:fd:ec:f5:9d:cb:4f:0e:ec:7e:f9:7a:ef:71:bc:6a:96: e8:05:c6:d5:66:8e:ef:e7:81:81:1b:5d:f6:91:e0:a6:a8:36: 7e:01:ed:3c:39:a1:9b:fc:83:4f:c3:99:7e:83:03:8b:c0:9a: 1e:df:73:69:14:ea:6f:24:89:2e:fe:43:01:aa:aa:19:ea:ff: c7:9a:76:54:dd:9a:01:01:fb:4b:fc:21:fb:df:17:4b:f9:b4: e7:01:87:ea:13:75:ce:bd:52:96:7f:e3:bb:68:96:17:88:c0: 30:d7:8a:7f:2e:48:ed:b1:cb:16:c7:17:f2:c6:3a:c8:a8:fa: c9:b4:fb:7c:ed:2d:5d:9c:22:5a:e6:da:74:22:9c:70:af:4c: 76:67:95:f2:22:1d:ad:40:b3:4e:d8:4f:d4:13:56:c9:37:b1: e6:2a:f6:a8:7f:22:9a:70:e9:5b:4c:f7:47:48:26:77:61:5c: a5:8c:b5:04:0c:a0:3c:1e:27:bf:66:96:6d:38:f7:ad:74:bb: 5a:1a:f3:5e:cf:c6:1d:35:1d:5f:a8:77:18:f1:c3:63:7a:00: 75:0c:e5:e4:21:ff:18:20:86:75:fc:33:50:8f:11:6c:03:e7: ea:fa:20:24:95:98:7d:60:dd:54:28:29:48:25:b4:99:81:96: 65:71:12:ff -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGX02Zt/q5YXV6dbbm5nbF8tlW/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAxMTIxMDE5MzNaFw0yNTAxMTAxMDI0MzNaMDMxMTAvBgNV BAMTKEVDQjhGQThBRjVGRDYwNUE1Q0FCQjUxRThFRTU0NzBBNTBBMUQ3RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDts7e+hqfl4yOn3uYZ79xzOOXa HoZzphWH4rKtUIxOR2QzLAMD7iNaZEIBycFDlszFDQwqyWsFMwOX174rh6OdZydF FHH9/t5XeZ3B+BqHxPBRE/5k7Sl3On3wqcjXt/a3so+6hinusHalc5+rpzSYJGx2 xkEc4WbY6b7W3jW755+WQLAgHIMJqIARyou3j6B1NdhhgpLLed/0TDjAdQ98JPG3 byhzSSR3I2z5HMstHfkFeml6S2svfHz2eCNdwg6C1sFJBHP4YWPjVX5nmmL6qAQR EGjIMnKPGdnFiYCHHQmT42kRqsu6k20Dlc5APfVqOLgu6cP9J6DxYKEduE6/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7Lj6ivX9YFpcq7UejuVHClCh1/kwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1NzQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTEwDQYJKoZIhvcNAQELBQADggEBAHmA /ez1nctPDux++XrvcbxqlugFxtVmju/ngYEbXfaR4KaoNn4B7Tw5oZv8g0/DmX6D A4vAmh7fc2kU6m8kiS7+QwGqqhnq/8eadlTdmgEB+0v8IfvfF0v5tOcBh+oTdc69 UpZ/47tolheIwDDXin8uSO2xyxbHF/LGOsio+sm0+3ztLV2cIlrm2nQinHCvTHZn lfIiHa1As07YT9QTVsk3seYq9qh/Ippw6VtM90dIJndhXKWMtQQMoDweJ79mlm04 9610u1oa817Pxh01HV+odxjxw2N6AHUM5eQh/xgghnX8M1CPEWwD5+r6ICSVmH1g 3VQoKUgltJmBlmVxEv8= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org