$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216020.roa File: AS216020.roa (raw, json) Hash identifier: yurc7FAYhjCF1CUAJk6OnFpqIMUeA6yjQKURoRTUNyM= Subject key identifier: C4:4F:84:0D:6A:69:52:85:C5:4D:FC:F1:6E:2C:03:9C:4A:E6:80:CD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 62EC5AB1948301507F65E53332123F92E5A5E024 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216020.roa Signing time: Wed 09 Oct 2024 13:45:22 +0000 ROA not before: Wed 09 Oct 2024 13:40:22 +0000 ROA not after: Wed 08 Oct 2025 13:45:22 +0000 asID: 216020 IP address blocks: 2a05:dfc1:c900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ec:5a:b1:94:83:01:50:7f:65:e5:33:32:12:3f:92:e5:a5:e0:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 9 13:40:22 2024 GMT Not After : Oct 8 13:45:22 2025 GMT Subject: CN=C44F840D6A695285C54DFCF16E2C039C4AE680CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5c:d3:0c:44:1f:74:f2:1d:da:30:f8:57:c7: 36:7d:fe:38:ab:30:1d:23:bf:d2:c7:b6:ef:1b:1a: 08:c7:85:09:d4:6d:94:be:d5:ed:e3:00:f4:96:4b: 52:0b:28:ed:0f:0e:fd:69:2f:e8:ab:c9:98:2e:5c: 55:bd:8e:c0:fc:c7:0d:4a:6f:76:11:14:c4:21:1c: 8a:f6:ce:1c:69:7a:2c:31:32:b4:5f:e6:b8:3e:9b: 4a:27:49:c4:56:a1:de:49:ae:9c:b0:93:e2:83:ce: 6c:cd:7e:7b:86:42:05:b5:69:dc:b1:6c:3d:de:ff: db:7c:ce:e3:57:a2:61:81:14:41:32:38:9f:24:29: 48:d0:0c:ce:30:75:50:85:37:94:62:43:08:ac:ca: 49:8f:b1:13:b5:44:1d:0c:be:da:a5:11:42:0e:d0: f7:b1:78:c9:24:ec:18:7e:82:18:33:28:2f:25:1c: e0:5f:8d:5d:14:75:b2:4f:d0:d2:d6:ca:be:ac:2a: 7d:6d:fd:01:5e:72:60:dd:0c:cb:a7:4e:89:7d:6a: e8:33:e5:87:20:e8:f6:57:76:d4:7b:3f:3e:2d:0b: 99:a0:62:c8:a3:98:d0:cc:61:c9:16:9b:a1:f5:47: 32:72:ba:31:82:22:17:04:45:7f:14:d2:77:0a:b2: 9a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:4F:84:0D:6A:69:52:85:C5:4D:FC:F1:6E:2C:03:9C:4A:E6:80:CD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216020.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c900::/40 Signature Algorithm: sha256WithRSAEncryption bd:c4:99:38:bc:89:0b:7e:19:80:90:e8:41:5e:c7:12:2a:e0: 1b:6b:6b:b5:88:56:57:d2:12:71:7b:ad:df:4b:f5:ea:20:e4: 5c:1d:db:10:b6:9e:61:56:d2:00:63:ce:36:9a:31:4f:32:d2: 59:40:f3:32:24:34:b9:60:1a:c1:a4:74:00:8b:af:80:4b:18: 2e:b0:1d:70:de:88:a9:6d:98:5c:ae:47:ac:22:15:7d:82:a6: c3:fb:25:bc:1c:d8:42:22:94:9c:a7:58:4f:15:fd:25:41:39: 8e:08:eb:a3:5a:7e:ee:5d:80:3b:d5:af:6d:e8:91:5a:f7:e9: 4a:9e:9c:cd:e5:b4:2a:33:c8:92:b2:84:11:f6:9b:97:5f:40: be:a4:a4:e1:b3:ca:13:63:51:a1:79:19:d5:64:d4:f9:03:cc: a2:ed:f4:ba:d0:cb:1e:05:48:26:ef:0a:e5:ce:83:6d:d8:40: 39:e7:73:d4:72:0b:29:d6:a0:9f:4d:7b:de:29:7f:a2:24:96: 6e:ba:12:04:6c:30:11:d0:8b:05:3f:15:0e:1e:96:21:de:33: c1:db:71:72:8b:00:9b:1a:ec:13:a3:a6:55:93:08:34:45:aa: 90:d3:65:5e:9c:40:fe:77:1e:df:45:ea:d8:ff:f2:75:0f:39: 6d:79:54:85 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYuxasZSDAVB/ZeUzMhI/kuWl4CQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDkxMzQwMjJaFw0yNTEwMDgxMzQ1MjJaMDMxMTAvBgNV BAMTKEM0NEY4NDBENkE2OTUyODVDNTRERkNGMTZFMkMwMzlDNEFFNjgwQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXNMMRB908h3aMPhXxzZ9/jir MB0jv9LHtu8bGgjHhQnUbZS+1e3jAPSWS1ILKO0PDv1pL+iryZguXFW9jsD8xw1K b3YRFMQhHIr2zhxpeiwxMrRf5rg+m0onScRWod5Jrpywk+KDzmzNfnuGQgW1adyx bD3e/9t8zuNXomGBFEEyOJ8kKUjQDM4wdVCFN5RiQwisykmPsRO1RB0MvtqlEUIO 0PexeMkk7Bh+ghgzKC8lHOBfjV0UdbJP0NLWyr6sKn1t/QFecmDdDMunTol9augz 5Ycg6PZXdtR7Pz4tC5mgYsijmNDMYckWm6H1RzJyujGCIhcERX8U0ncKspqrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUxE+EDWppUoXFTfzxbiwDnErmgM0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MDIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwckwDQYJKoZIhvcNAQELBQADggEBAL3E mTi8iQt+GYCQ6EFexxIq4Btra7WIVlfSEnF7rd9L9eog5Fwd2xC2nmFW0gBjzjaa MU8y0llA8zIkNLlgGsGkdACLr4BLGC6wHXDeiKltmFyuR6wiFX2CpsP7Jbwc2EIi lJynWE8V/SVBOY4I66Nafu5dgDvVr23okVr36UqenM3ltCozyJKyhBH2m5dfQL6k pOGzyhNjUaF5GdVk1PkDzKLt9LrQyx4FSCbvCuXOg23YQDnnc9RyCynWoJ9Ne94p f6Iklm66EgRsMBHQiwU/FQ4eliHeM8HbcXKLAJsa7BOjplWTCDRFqpDTZV6cQP53 Ht9F6tj/8nUPOW15VIU= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org