$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215971.roa File: AS215971.roa (raw, json) Hash identifier: wq8ZwuIoE8qLsmfT9OqFXKETBgKYtNyvXRF/Ebn5sU8= Subject key identifier: 88:8E:20:BA:9C:95:AF:00:2B:72:E1:6A:E3:4F:F9:FE:D0:30:A8:A7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7FE9297591F989187C860230887882BA577BF639 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215971.roa Signing time: Mon 20 Nov 2023 21:22:43 +0000 ROA not before: Mon 20 Nov 2023 21:17:43 +0000 ROA not after: Mon 18 Nov 2024 21:22:43 +0000 asID: 215971 IP address blocks: 2a06:9f81:1400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:e9:29:75:91:f9:89:18:7c:86:02:30:88:78:82:ba:57:7b:f6:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 20 21:17:43 2023 GMT Not After : Nov 18 21:22:43 2024 GMT Subject: CN=888E20BA9C95AF002B72E16AE34FF9FED030A8A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:68:65:08:26:b5:67:40:3b:c1:db:5f:c2:96: a4:95:81:23:57:55:32:e9:1e:c1:43:a8:6b:c3:5a: a0:58:ad:97:4d:e7:92:d5:bf:52:f0:1a:a8:85:d5: 14:2a:14:8d:81:2b:a7:77:65:f1:2b:c5:e3:4b:66: 08:59:55:8f:60:a6:37:7f:34:84:df:a2:a9:c4:97: 67:a1:e1:86:e6:03:28:8a:23:82:e1:c6:06:43:d7: 46:51:3b:dc:99:8a:49:32:3b:6a:9c:93:ab:61:ac: ab:e5:4e:76:25:0c:b8:7f:41:bb:76:ac:bc:84:2f: 6c:e3:6e:10:dc:1a:ea:fc:e4:ef:58:88:ec:77:8d: af:25:64:42:93:00:76:a9:fe:e6:84:26:84:a9:96: 4c:64:2d:2e:94:11:2c:3a:75:41:f3:db:76:c1:0b: 56:62:a5:5d:a5:c4:1e:23:23:ba:90:8f:4d:7a:a2: 5a:15:f9:a4:f3:dc:a5:27:27:ba:9e:dd:ef:d4:35: 00:5e:96:8b:6b:81:6a:48:b0:57:8d:93:fb:a5:35: 1c:32:86:54:a5:7e:5c:b4:be:ff:cd:03:53:b4:35: 66:9d:b4:d7:f6:50:ad:58:d6:b6:73:27:3d:e7:76: ed:e7:a8:4f:7a:c2:ed:21:da:55:c2:0d:ab:d5:ba: 49:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:8E:20:BA:9C:95:AF:00:2B:72:E1:6A:E3:4F:F9:FE:D0:30:A8:A7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215971.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1400::/40 Signature Algorithm: sha256WithRSAEncryption 60:9f:b2:85:37:3c:3b:fc:59:ca:ec:70:28:86:46:49:b3:a6: 0b:24:c4:39:3f:65:50:59:89:7c:71:71:34:19:a8:f5:93:13: a2:da:1f:26:0c:50:14:71:84:a1:93:63:0a:82:f1:ed:29:51: 8f:6f:11:81:7c:a5:34:4d:cd:e8:a1:5a:48:01:d0:51:39:4e: 89:82:a7:6f:fa:ac:91:19:90:0b:5e:6e:0d:a4:2f:50:fc:b2: ba:93:50:ca:f0:73:af:84:8d:89:1f:71:a8:cf:f3:ea:ab:6e: 51:1b:8a:c0:bd:0c:95:cd:09:14:fb:ae:72:3f:c7:ba:88:59: 1f:0a:b2:46:f2:62:8e:ad:80:8a:ee:ac:9a:c3:33:7b:cc:d4: 9a:d9:89:78:59:80:f8:9e:09:d8:75:59:d0:e6:3d:26:53:d8: 5a:f6:0c:ed:5a:8b:36:d3:1a:59:ef:e2:35:f5:14:aa:e8:59: ba:99:59:01:27:84:65:3f:4b:8a:c0:21:71:91:02:d1:86:94: f1:02:0a:bf:d5:c8:9a:ca:54:dc:0c:77:54:d7:56:80:59:ab: 25:bd:ee:0c:40:17:bf:89:64:fc:4d:4e:c3:8f:fa:c9:db:a6: 4f:15:03:2a:db:ff:bf:c0:1b:52:70:c3:b8:e6:2a:de:6a:c8: 93:5d:b5:cd -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUf+kpdZH5iRh8hgIwiHiCuld79jkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMjAyMTE3NDNaFw0yNDExMTgyMTIyNDNaMDMxMTAvBgNV BAMTKDg4OEUyMEJBOUM5NUFGMDAyQjcyRTE2QUUzNEZGOUZFRDAzMEE4QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnaGUIJrVnQDvB21/ClqSVgSNX VTLpHsFDqGvDWqBYrZdN55LVv1LwGqiF1RQqFI2BK6d3ZfErxeNLZghZVY9gpjd/ NITfoqnEl2eh4YbmAyiKI4LhxgZD10ZRO9yZikkyO2qck6thrKvlTnYlDLh/Qbt2 rLyEL2zjbhDcGur85O9YiOx3ja8lZEKTAHap/uaEJoSplkxkLS6UESw6dUHz23bB C1ZipV2lxB4jI7qQj016oloV+aTz3KUnJ7qe3e/UNQBelotrgWpIsFeNk/ulNRwy hlSlfly0vv/NA1O0NWadtNf2UK1Y1rZzJz3ndu3nqE96wu0h2lXCDavVukn3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiI4gupyVrwArcuFq40/5/tAwqKcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1OTcxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgRQwDQYJKoZIhvcNAQELBQADggEBAGCf soU3PDv8WcrscCiGRkmzpgskxDk/ZVBZiXxxcTQZqPWTE6LaHyYMUBRxhKGTYwqC 8e0pUY9vEYF8pTRNzeihWkgB0FE5TomCp2/6rJEZkAtebg2kL1D8srqTUMrwc6+E jYkfcajP8+qrblEbisC9DJXNCRT7rnI/x7qIWR8KskbyYo6tgIrurJrDM3vM1JrZ iXhZgPieCdh1WdDmPSZT2Fr2DO1aizbTGlnv4jX1FKroWbqZWQEnhGU/S4rAIXGR AtGGlPECCr/VyJrKVNwMd1TXVoBZqyW97gxAF7+JZPxNTsOP+snbpk8VAyrb/7/A G1Jww7jmKt5qyJNdtc0= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org