$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215917.roa File: AS215917.roa (raw, json) Hash identifier: Ib1FRRHmrRjlU1gbT664xKZZuIL7stG3AV4jdlFMl0I= Subject key identifier: 4E:3E:07:9B:54:05:D1:AC:99:47:A3:4A:A2:D2:15:E9:C7:A7:BF:72 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1D61E169B55864D31EF95C7BABF512B51EC3BF4F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215917.roa Signing time: Thu 31 Oct 2024 23:45:30 +0000 ROA not before: Thu 31 Oct 2024 23:40:30 +0000 ROA not after: Thu 30 Oct 2025 23:45:30 +0000 asID: 215917 IP address blocks: 2a06:9f81:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:61:e1:69:b5:58:64:d3:1e:f9:5c:7b:ab:f5:12:b5:1e:c3:bf:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 31 23:40:30 2024 GMT Not After : Oct 30 23:45:30 2025 GMT Subject: CN=4E3E079B5405D1AC9947A34AA2D215E9C7A7BF72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2f:98:0a:75:8c:b6:b1:19:04:c7:a4:40:94: bb:c4:11:13:49:78:35:2f:ce:8a:a1:72:65:d0:21: 4b:4f:05:86:09:7c:26:38:77:b4:6b:ee:75:01:d3: c1:a7:e7:e6:ae:c0:40:21:d8:bf:0f:e3:19:b7:44: 16:68:53:2f:55:98:9b:54:b2:95:00:84:42:bf:47: 39:a3:0b:b2:b1:cb:f0:28:f6:c9:ca:ce:f7:5a:65: b3:ae:25:81:6c:f2:41:1c:ba:23:e0:5d:58:86:90: b1:f4:da:99:db:0f:94:0c:f3:7e:2f:36:ca:1f:04: e2:1d:0d:3d:9b:6c:45:71:2a:a6:ce:e6:d0:b4:1d: 4a:fe:e4:11:1a:d9:ab:db:a7:de:e7:bc:a5:f9:07: 6d:0f:7d:96:ac:3c:9e:b4:78:a1:7c:8c:bf:83:c1: 31:54:17:32:6b:5d:39:10:ad:be:dc:ae:d3:78:7c: 9f:c1:2c:ce:e3:12:7d:0c:b1:85:b0:cc:6e:11:90: a8:fc:16:59:d2:9f:6d:1e:5e:9c:86:aa:43:3e:98: 64:28:89:d0:11:4f:99:f5:fc:90:1b:8a:4c:66:6e: 5e:0d:7e:15:1d:d6:b1:31:52:1a:9d:85:c0:65:74: 18:c2:e6:36:7c:bd:3e:18:2f:5a:4e:95:a3:46:50: 2a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:3E:07:9B:54:05:D1:AC:99:47:A3:4A:A2:D2:15:E9:C7:A7:BF:72 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215917.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2800::/40 Signature Algorithm: sha256WithRSAEncryption 74:02:4b:5d:80:41:bd:95:9d:ab:06:26:38:1b:96:30:61:5b: c2:3a:e3:1f:ff:29:7c:64:1f:be:9a:c8:b4:d8:74:a4:75:f8: 03:1d:d7:32:ff:5b:48:aa:4f:e9:33:dc:3c:57:b8:89:17:57: b9:32:6b:07:dd:74:55:29:ce:e9:bc:35:9f:cf:26:39:99:c7: dd:fe:ce:57:8e:6e:f5:7f:0a:52:d6:d4:e6:e4:3c:23:42:4c: d3:03:58:56:ad:48:1b:e0:4a:f9:a2:0e:11:46:e1:ae:c6:2c: e8:ca:f1:8d:8c:a9:66:b3:54:2d:d3:91:a5:5b:b8:07:22:be: 73:d4:ee:58:8b:b9:cd:7a:9c:61:86:40:a4:c1:05:c1:96:60: 44:b7:ca:73:51:4d:31:96:39:95:37:4d:b6:85:e8:12:e2:94: ba:c7:ec:a6:eb:56:a8:38:7b:60:40:49:02:88:a4:d5:0f:be: 56:28:9c:01:08:5f:70:91:70:c2:f2:5f:9e:fb:4b:db:63:ff: 5b:93:44:ce:00:17:8a:3f:77:f6:25:7e:24:de:e1:1d:11:06: 52:e0:35:a6:63:51:3c:2e:6b:2e:c1:2a:54:16:44:90:ef:7f: 1f:15:21:94:ad:d9:cc:a4:a5:62:56:c1:75:e1:a4:ef:3b:98: 54:82:f3:7c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHWHhabVYZNMe+Vx7q/UStR7Dv08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMzEyMzQwMzBaFw0yNTEwMzAyMzQ1MzBaMDMxMTAvBgNV BAMTKDRFM0UwNzlCNTQwNUQxQUM5OTQ3QTM0QUEyRDIxNUU5QzdBN0JGNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjL5gKdYy2sRkEx6RAlLvEERNJ eDUvzoqhcmXQIUtPBYYJfCY4d7Rr7nUB08Gn5+auwEAh2L8P4xm3RBZoUy9VmJtU spUAhEK/RzmjC7Kxy/Ao9snKzvdaZbOuJYFs8kEcuiPgXViGkLH02pnbD5QM834v NsofBOIdDT2bbEVxKqbO5tC0HUr+5BEa2avbp97nvKX5B20PfZasPJ60eKF8jL+D wTFUFzJrXTkQrb7crtN4fJ/BLM7jEn0MsYWwzG4RkKj8FlnSn20eXpyGqkM+mGQo idART5n1/JAbikxmbl4NfhUd1rExUhqdhcBldBjC5jZ8vT4YL1pOlaNGUCpHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTj4Hm1QF0ayZR6NKotIV6cenv3IwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1OTE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgSgwDQYJKoZIhvcNAQELBQADggEBAHQC S12AQb2VnasGJjgbljBhW8I64x//KXxkH76ayLTYdKR1+AMd1zL/W0iqT+kz3DxX uIkXV7kyawfddFUpzum8NZ/PJjmZx93+zleObvV/ClLW1ObkPCNCTNMDWFatSBvg SvmiDhFG4a7GLOjK8Y2MqWazVC3TkaVbuAcivnPU7liLuc16nGGGQKTBBcGWYES3 ynNRTTGWOZU3TbaF6BLilLrH7KbrVqg4e2BASQKIpNUPvlYonAEIX3CRcMLyX577 S9tj/1uTRM4AF4o/d/YlfiTe4R0RBlLgNaZjUTwuay7BKlQWRJDvfx8VIZSt2cyk pWJWwXXhpO87mFSC83w= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org