$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215917.roa File: AS215917.roa (raw, json) Hash identifier: tieHt+MAqhLTN2jOi346HMA+8c3a4i9fRKOgN6gR3lY= Subject key identifier: 3B:07:C6:C4:8A:93:52:D0:B3:94:35:82:B3:9E:CF:A5:23:0D:D1:C8 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4B1796D5C29B5E7FFF8655563AF57724A35D5257 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215917.roa Signing time: Thu 30 Nov 2023 23:00:27 +0000 ROA not before: Thu 30 Nov 2023 22:55:27 +0000 ROA not after: Thu 28 Nov 2024 23:00:27 +0000 asID: 215917 IP address blocks: 2a06:9f81:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:17:96:d5:c2:9b:5e:7f:ff:86:55:56:3a:f5:77:24:a3:5d:52:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 30 22:55:27 2023 GMT Not After : Nov 28 23:00:27 2024 GMT Subject: CN=3B07C6C48A9352D0B3943582B39ECFA5230DD1C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5d:07:fc:dd:94:1b:1f:a3:e5:35:fb:d2:10: d6:b6:c4:36:6f:90:98:e7:00:90:7c:8f:a6:9d:60: ea:bb:3c:1b:bd:d0:2e:b6:75:63:97:2a:3d:2c:c7: e2:84:87:72:32:08:78:8a:76:c7:d8:3f:95:b0:eb: c5:64:e6:ee:45:2a:54:7c:bc:94:68:f0:78:33:04: 7a:fd:fb:4e:58:b2:c3:91:09:10:8d:44:37:85:cc: 93:b0:2a:0d:cc:b5:ee:0b:5d:7f:5a:52:d5:15:4c: 1b:21:13:3a:77:90:a0:36:2a:b4:ee:fb:42:24:1d: 48:72:30:07:04:e4:65:b3:5f:46:3d:32:b1:f8:da: 8c:b1:7e:9f:a1:c1:8c:e3:f1:6e:9e:05:85:9f:3a: 25:86:6f:f2:85:2a:2c:8e:07:d0:65:b2:e8:e0:1c: 85:1c:d5:e6:92:12:67:99:f1:7f:da:5c:e3:a4:87: 44:5a:e8:da:6b:f4:8b:78:ef:4b:ce:1e:1f:97:0b: 5b:20:e9:89:a4:9a:ac:7a:d6:b5:7b:a5:6d:72:9c: ed:77:93:a4:ec:65:72:7e:2c:3a:d1:8d:75:03:ef: 93:fc:a1:df:74:c2:28:80:bd:77:e8:34:19:4e:c4: ea:f5:7e:6e:82:ce:98:dc:5d:b6:50:b8:b0:1a:d8: aa:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:07:C6:C4:8A:93:52:D0:B3:94:35:82:B3:9E:CF:A5:23:0D:D1:C8 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215917.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2800::/40 Signature Algorithm: sha256WithRSAEncryption 7d:2f:f2:39:3e:7f:01:e5:5a:74:72:6e:ce:6e:9a:60:8d:76: a9:fb:8d:06:31:46:50:40:9b:1b:20:4c:12:84:49:c3:99:5c: c7:b7:32:4d:52:db:57:0d:c1:00:47:bb:8a:01:a6:9c:fe:12: 91:d0:8c:4e:d6:25:c0:6b:ab:a0:d6:30:60:0d:fe:67:41:79: 98:14:8e:4f:59:31:df:11:ee:1d:1c:0e:a3:f6:68:bf:40:31: 5e:9e:86:9c:a1:9d:65:cb:75:b2:cc:80:56:10:68:00:ea:c4: 5a:3f:23:2e:93:7b:27:93:c1:ce:2d:27:ed:7f:f4:16:69:c6: f2:e1:18:d7:6a:6f:cc:2e:cd:ae:3d:24:77:e0:a9:38:c0:e1: 35:e0:ad:6a:5b:71:d3:aa:6e:5d:a6:35:59:7f:f1:bc:32:db: f5:ae:39:18:62:af:8c:cf:97:4c:a4:c1:e2:80:52:4d:35:dc: f3:ed:ad:72:f1:d4:42:7b:51:30:40:e7:1a:f5:a5:7f:3c:ac: 69:67:33:c1:5c:7f:74:29:54:eb:3a:f0:2c:89:4f:c3:a2:87: 8e:4b:6d:58:52:4e:dc:51:8e:f1:b7:82:a6:3f:26:0b:97:7b: a8:1a:13:15:d2:1d:b5:f5:be:0b:96:d7:ec:8a:ba:c0:cd:ab: c6:30:c3:74 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSxeW1cKbXn//hlVWOvV3JKNdUlcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMzAyMjU1MjdaFw0yNDExMjgyMzAwMjdaMDMxMTAvBgNV BAMTKDNCMDdDNkM0OEE5MzUyRDBCMzk0MzU4MkIzOUVDRkE1MjMwREQxQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4XQf83ZQbH6PlNfvSENa2xDZv kJjnAJB8j6adYOq7PBu90C62dWOXKj0sx+KEh3IyCHiKdsfYP5Ww68Vk5u5FKlR8 vJRo8HgzBHr9+05YssORCRCNRDeFzJOwKg3Mte4LXX9aUtUVTBshEzp3kKA2KrTu +0IkHUhyMAcE5GWzX0Y9MrH42oyxfp+hwYzj8W6eBYWfOiWGb/KFKiyOB9Blsujg HIUc1eaSEmeZ8X/aXOOkh0Ra6Npr9It470vOHh+XC1sg6Ymkmqx61rV7pW1ynO13 k6TsZXJ+LDrRjXUD75P8od90wiiAvXfoNBlOxOr1fm6CzpjcXbZQuLAa2KqbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUOwfGxIqTUtCzlDWCs57PpSMN0cgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1OTE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgSgwDQYJKoZIhvcNAQELBQADggEBAH0v 8jk+fwHlWnRybs5ummCNdqn7jQYxRlBAmxsgTBKEScOZXMe3Mk1S21cNwQBHu4oB ppz+EpHQjE7WJcBrq6DWMGAN/mdBeZgUjk9ZMd8R7h0cDqP2aL9AMV6ehpyhnWXL dbLMgFYQaADqxFo/Iy6TeyeTwc4tJ+1/9BZpxvLhGNdqb8wuza49JHfgqTjA4TXg rWpbcdOqbl2mNVl/8bwy2/WuORhir4zPl0ykweKAUk013PPtrXLx1EJ7UTBA5xr1 pX88rGlnM8Fcf3QpVOs68CyJT8Oih45LbVhSTtxRjvG3gqY/JguXe6gaExXSHbX1 vguW1+yKusDNq8Yww3Q= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org