$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215971.roa File: AS215971.roa (raw, json) Hash identifier: eiUDG8dSr5Qz3NORfwcDP1/oGtpJV+kab+yWmdI2Mkc= Subject key identifier: 8A:A0:5B:F3:53:A8:F0:F3:1E:8D:D3:75:21:2D:9D:52:50:F7:23:39 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 481B813C159D2AB772D105CF5AD6D995BE41E23E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215971.roa Signing time: Mon 21 Oct 2024 21:45:23 +0000 ROA not before: Mon 21 Oct 2024 21:40:23 +0000 ROA not after: Mon 20 Oct 2025 21:45:23 +0000 asID: 215971 IP address blocks: 2a06:9f81:1400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1b:81:3c:15:9d:2a:b7:72:d1:05:cf:5a:d6:d9:95:be:41:e2:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 21 21:40:23 2024 GMT Not After : Oct 20 21:45:23 2025 GMT Subject: CN=8AA05BF353A8F0F31E8DD375212D9D5250F72339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:41:9c:9f:f1:f6:13:fc:db:8a:20:0c:5b:20: 40:48:a8:23:8b:88:f6:6f:19:cd:11:a5:4e:4c:36: 4a:71:98:b7:11:4b:dc:cb:9c:06:88:f7:eb:3d:68: 1c:86:da:3f:40:1e:64:c2:fc:b0:95:6c:0d:62:68: 86:38:d3:34:d9:1c:bb:9b:f1:86:0b:09:08:60:d4: a7:63:14:39:84:f4:a3:4e:f7:f1:c3:0c:41:da:e5: 5c:cf:9c:3d:ae:50:1f:0b:40:72:0b:7e:e9:94:82: 0a:f6:ac:7e:a9:ee:02:e1:c4:48:96:3c:49:94:99: a9:4b:6a:68:87:df:a0:39:5f:28:a7:03:9f:8c:44: 1c:a8:f8:07:05:60:1f:8e:71:02:b7:66:34:16:94: d3:3b:38:90:1e:52:de:78:5e:ce:9c:4b:6c:a4:83: 45:a4:35:b9:ea:bd:73:2d:cf:fc:f3:a4:93:7f:3e: 9f:c7:8f:7c:c9:43:5a:f1:8d:37:a0:61:89:b3:70: 38:03:48:01:28:15:19:6d:32:e2:53:db:39:18:5b: 8e:a3:9d:20:90:f9:f9:37:f1:a8:30:46:a1:f6:c2: e6:51:f3:bb:8e:b3:45:c4:5e:d9:1e:03:72:5b:f9: 30:2e:85:2c:b6:23:ce:4f:fc:e9:b4:3a:75:d9:60: c7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A0:5B:F3:53:A8:F0:F3:1E:8D:D3:75:21:2D:9D:52:50:F7:23:39 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215971.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1400::/40 Signature Algorithm: sha256WithRSAEncryption 3c:1b:1b:26:58:8e:3d:f5:b4:af:48:60:a5:43:8d:9c:d4:ac: cb:6d:43:0e:66:9d:b6:9f:23:08:ca:fe:d6:55:14:03:21:bf: 3a:81:60:ed:db:52:94:65:43:09:5c:e6:9a:96:d5:fa:cd:b0: 25:70:82:85:75:07:27:43:ff:03:8b:cf:07:17:5a:0f:e7:c8: b7:83:05:4e:4e:54:26:34:13:0e:a1:50:48:4f:6e:ae:f9:0a: f8:9c:dd:4e:00:0a:3c:1f:83:b1:27:bd:75:52:b7:96:48:b6: 63:7a:3b:d6:94:97:9e:c1:de:9e:c2:1b:9a:ac:8b:b6:fd:ed: 53:43:ac:8d:ed:98:99:55:e7:72:73:e7:ce:b7:b9:1f:38:97: e5:0b:61:79:84:c9:54:a1:88:9e:34:80:77:f5:4c:5d:62:6d: dd:4d:91:56:f5:94:a8:d2:23:50:3d:33:f1:a8:61:38:41:c8: 1a:55:93:79:5d:0b:7c:09:8e:cc:2d:01:56:7b:7a:8f:4e:60: 22:71:b0:f6:0a:22:33:ba:55:48:b5:ac:56:eb:8a:02:38:76: 88:35:77:3f:8d:c5:1e:d5:54:aa:f5:a0:06:85:3d:c8:24:09: f2:13:98:e6:36:22:2d:2f:dd:c6:d3:5c:56:d6:56:6f:9c:d8: 83:60:12:8c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSBuBPBWdKrdy0QXPWtbZlb5B4j4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMjEyMTQwMjNaFw0yNTEwMjAyMTQ1MjNaMDMxMTAvBgNV BAMTKDhBQTA1QkYzNTNBOEYwRjMxRThERDM3NTIxMkQ5RDUyNTBGNzIzMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQZyf8fYT/NuKIAxbIEBIqCOL iPZvGc0RpU5MNkpxmLcRS9zLnAaI9+s9aByG2j9AHmTC/LCVbA1iaIY40zTZHLub 8YYLCQhg1KdjFDmE9KNO9/HDDEHa5VzPnD2uUB8LQHILfumUggr2rH6p7gLhxEiW PEmUmalLamiH36A5XyinA5+MRByo+AcFYB+OcQK3ZjQWlNM7OJAeUt54Xs6cS2yk g0WkNbnqvXMtz/zzpJN/Pp/Hj3zJQ1rxjTegYYmzcDgDSAEoFRltMuJT2zkYW46j nSCQ+fk38agwRqH2wuZR87uOs0XEXtkeA3Jb+TAuhSy2I85P/Om0OnXZYMe3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiqBb81Oo8PMejdN1IS2dUlD3IzkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1OTcxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgRQwDQYJKoZIhvcNAQELBQADggEBADwb GyZYjj31tK9IYKVDjZzUrMttQw5mnbafIwjK/tZVFAMhvzqBYO3bUpRlQwlc5pqW 1frNsCVwgoV1BydD/wOLzwcXWg/nyLeDBU5OVCY0Ew6hUEhPbq75Cvic3U4ACjwf g7EnvXVSt5ZItmN6O9aUl57B3p7CG5qsi7b97VNDrI3tmJlV53Jz5863uR84l+UL YXmEyVShiJ40gHf1TF1ibd1NkVb1lKjSI1A9M/GoYThByBpVk3ldC3wJjswtAVZ7 eo9OYCJxsPYKIjO6VUi1rFbrigI4dog1dz+NxR7VVKr1oAaFPcgkCfITmOY2Ii0v 3cbTXFbWVm+c2INgEow= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org