$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215748.roa File: AS215748.roa (raw, json) Hash identifier: Ovkp5q59wMLFRpMn+phTn9JoL1frg4M7GuxpLxZVzIE= Subject key identifier: 00:EE:05:10:A9:12:06:16:EB:71:24:EE:FC:EF:FA:22:91:0F:B4:B0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 435CB445DB59B41878A2862629C3720AEC7200AB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215748.roa Signing time: Fri 13 Dec 2024 10:45:36 +0000 ROA not before: Fri 13 Dec 2024 10:40:36 +0000 ROA not after: Fri 12 Dec 2025 10:45:36 +0000 asID: 215748 IP address blocks: 2a06:9f81:3100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5c:b4:45:db:59:b4:18:78:a2:86:26:29:c3:72:0a:ec:72:00:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Dec 13 10:40:36 2024 GMT Not After : Dec 12 10:45:36 2025 GMT Subject: CN=00EE0510A9120616EB7124EEFCEFFA22910FB4B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e1:44:84:c5:f1:92:e3:55:b1:84:40:29:78: 85:9d:63:65:98:36:27:96:c2:fa:f3:e5:40:51:49: 3d:f0:26:77:d0:4c:8d:64:0a:69:e1:e3:ef:86:7b: b0:9d:84:a5:22:08:2c:e0:b6:5a:38:b9:ec:f3:0f: 63:f0:1c:50:a7:15:c7:f3:a9:28:c5:e7:22:41:f3: 1d:47:9a:47:e2:e3:d3:d9:5b:a9:c4:ca:cc:67:6d: 67:b1:ad:5b:c6:ce:e9:57:ab:e9:48:f3:e8:b2:a8: 86:ad:b9:28:c8:92:2b:48:dd:4d:28:31:2f:63:6c: 91:91:09:fe:78:89:28:f1:84:91:46:65:2b:3a:78: 5b:18:0e:34:fe:e5:7e:48:77:b7:de:5c:69:75:bb: 31:11:2a:7b:47:72:05:6c:85:5a:cc:55:9c:39:a8: 90:85:52:4e:6b:fd:bd:cf:46:2b:5d:d3:79:4d:45: 00:00:5a:1d:25:66:d9:c1:86:c5:ba:53:02:4d:50: 29:8a:26:13:ea:76:9c:bb:d1:2d:48:df:b9:4d:33: 43:84:8a:34:ef:9d:d7:b2:22:49:8f:61:32:c0:07: f3:58:a8:8e:a9:57:06:58:c6:ff:05:d5:ed:79:9c: 2c:7f:09:a8:cc:9a:bf:b8:5c:f1:f9:33:1e:7c:e9: d1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:EE:05:10:A9:12:06:16:EB:71:24:EE:FC:EF:FA:22:91:0F:B4:B0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215748.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3100::/40 Signature Algorithm: sha256WithRSAEncryption 45:9d:37:2a:d8:b8:95:fe:2c:35:25:02:80:c3:f0:de:9e:f6: 95:32:22:8b:cc:b4:33:1e:7d:62:d7:51:4b:06:ca:75:2c:ef: f4:dd:59:39:16:9f:a9:61:39:4a:2b:58:9b:08:04:b1:2d:64: 3d:14:0b:45:cd:3f:33:a1:62:8f:a1:e3:43:ae:d5:7d:ee:42: d8:54:1e:90:a6:8b:6d:ef:a8:8b:6c:1f:af:a0:05:cd:de:47: 68:70:2c:05:32:84:18:54:a5:63:3c:04:8b:3d:8c:fb:2e:1d: 51:d2:51:d2:29:ed:03:28:44:00:b0:01:8f:20:72:63:05:53: a4:86:db:41:f9:a8:45:fb:94:fa:8a:c2:07:88:26:36:5d:b1: b6:f7:02:0b:eb:b6:a9:ed:38:51:28:a9:0d:e7:b2:aa:30:d7: 0a:9a:01:9d:7f:fb:61:39:61:e9:7a:8c:28:2c:52:63:47:9d: bb:0a:38:d4:e4:e1:ae:91:74:2f:b3:bc:a1:c7:ca:d7:f2:82: 3a:e7:c5:fb:71:6b:e8:39:f6:07:4b:3e:de:3c:f7:fb:ce:bc: 42:6b:99:31:e9:2b:f7:a2:c0:c5:0d:4f:f6:b9:e8:05:fb:a7: 93:9b:57:85:95:6b:08:5f:29:df:1c:f2:bf:21:54:12:a2:c7: 9f:38:82:b5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQ1y0RdtZtBh4ooYmKcNyCuxyAKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEyMTMxMDQwMzZaFw0yNTEyMTIxMDQ1MzZaMDMxMTAvBgNV BAMTKDAwRUUwNTEwQTkxMjA2MTZFQjcxMjRFRUZDRUZGQTIyOTEwRkI0QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC24USExfGS41WxhEApeIWdY2WY NieWwvrz5UBRST3wJnfQTI1kCmnh4++Ge7CdhKUiCCzgtlo4uezzD2PwHFCnFcfz qSjF5yJB8x1Hmkfi49PZW6nEysxnbWexrVvGzulXq+lI8+iyqIatuSjIkitI3U0o MS9jbJGRCf54iSjxhJFGZSs6eFsYDjT+5X5Id7feXGl1uzERKntHcgVshVrMVZw5 qJCFUk5r/b3PRitd03lNRQAAWh0lZtnBhsW6UwJNUCmKJhPqdpy70S1I37lNM0OE ijTvndeyIkmPYTLAB/NYqI6pVwZYxv8F1e15nCx/CajMmr+4XPH5Mx586dHHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUAO4FEKkSBhbrcSTu/O/6IpEPtLAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1NzQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTEwDQYJKoZIhvcNAQELBQADggEBAEWd NyrYuJX+LDUlAoDD8N6e9pUyIovMtDMefWLXUUsGynUs7/TdWTkWn6lhOUorWJsI BLEtZD0UC0XNPzOhYo+h40Ou1X3uQthUHpCmi23vqItsH6+gBc3eR2hwLAUyhBhU pWM8BIs9jPsuHVHSUdIp7QMoRACwAY8gcmMFU6SG20H5qEX7lPqKwgeIJjZdsbb3 AgvrtqntOFEoqQ3nsqow1wqaAZ1/+2E5Yel6jCgsUmNHnbsKONTk4a6RdC+zvKHH ytfygjrnxftxa+g59gdLPt489/vOvEJrmTHpK/eiwMUNT/a56AX7p5ObV4WVawhf Kd8c8r8hVBKix584grU= -----END CERTIFICATE-----Generated at Fri Apr 4 17:03:27 2025 by rpki-client