$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216052.roa File: AS216052.roa (raw, json) Hash identifier: 3mVp933Of+pqr75k6mro59UTFu5b0RyE+KPQ3GSLZes= Subject key identifier: 17:FD:85:E3:56:D0:A6:99:E4:5F:BB:94:E0:DE:28:49:00:90:88:A5 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6810DDBDB868FAB959DBC1D0CD20EF3344E00525 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216052.roa Signing time: Mon 28 Oct 2024 02:45:29 +0000 ROA not before: Mon 28 Oct 2024 02:40:29 +0000 ROA not after: Mon 27 Oct 2025 02:45:29 +0000 asID: 216052 IP address blocks: 2a06:9f81:2200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:10:dd:bd:b8:68:fa:b9:59:db:c1:d0:cd:20:ef:33:44:e0:05:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 28 02:40:29 2024 GMT Not After : Oct 27 02:45:29 2025 GMT Subject: CN=17FD85E356D0A699E45FBB94E0DE2849009088A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:42:e3:5e:48:85:39:79:99:cb:f1:80:34:e7: 1a:86:a7:8a:54:a8:c3:2b:c0:a3:46:ae:2c:00:a8: cc:05:6f:cb:ec:9f:70:fd:d8:4a:8a:19:99:0a:16: dc:ea:f7:e2:bf:5b:fd:44:a9:67:1e:d4:07:47:b5: 1c:62:4a:98:66:15:ed:43:60:4f:6a:98:6b:14:7c: fc:8c:55:f8:84:3d:2d:7a:03:0c:c9:ac:ff:f4:02: 15:63:42:14:47:e2:b3:aa:b0:29:b3:c7:9c:ee:6a: 1b:d0:b4:fd:4d:9a:79:59:61:7e:67:aa:85:68:c2: 0d:de:69:f2:f8:70:57:d7:85:75:74:cd:65:c1:09: 9e:0b:a0:53:4c:86:66:f1:0e:d9:29:32:85:7a:42: d3:0d:1d:b4:89:de:b3:97:4c:a8:1e:86:46:c5:98: 35:7b:e1:da:51:36:ac:5d:0e:df:f4:25:15:8f:44: 1a:0c:5a:3a:34:f8:cc:40:9c:f1:df:e5:99:9e:86: 44:c0:00:88:e9:b5:75:07:95:2d:3d:b6:40:7c:ff: d3:0c:32:2e:5c:38:a6:c0:6d:eb:24:18:e1:0c:60: b9:d3:c5:60:16:0f:d1:60:ac:5e:d4:bf:4c:63:54: 7a:1b:84:9a:2c:46:a3:46:97:11:3d:7b:e1:8d:48: cf:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FD:85:E3:56:D0:A6:99:E4:5F:BB:94:E0:DE:28:49:00:90:88:A5 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216052.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2200::/40 Signature Algorithm: sha256WithRSAEncryption b6:b7:9e:17:b1:68:7d:ea:5e:02:8e:bb:8e:9c:ae:86:28:8d: e7:95:cb:ea:ee:11:92:9a:d5:60:0d:e2:6b:7a:dd:06:d5:81: fa:ab:39:19:81:2b:97:6d:68:8d:19:e4:fd:49:0c:26:13:9f: 11:ce:9d:97:b4:a7:fd:2e:37:70:f7:b9:4b:d0:c2:e6:99:67: 66:ac:9b:e9:25:39:e5:16:c7:13:92:d5:b1:2b:69:eb:b4:ae: 27:5d:cb:f3:36:4c:c1:d8:d8:7b:c0:ca:31:1b:cf:3d:03:b9: 71:f2:1c:08:fd:3f:ee:b1:b7:ec:5c:f6:e7:3a:bb:e9:7b:7c: 9e:58:85:50:fa:b5:7d:d6:02:18:3b:2e:67:55:b9:de:1b:43: f0:d7:05:23:6a:9d:80:8b:4a:ca:2f:9c:1b:48:a0:3d:14:8e: 8a:09:1e:2b:68:d4:e4:12:15:9b:5a:d3:ab:79:5a:ce:e4:43: 7a:b9:2f:36:87:9f:65:76:82:1a:7b:bb:4e:6a:81:f3:a9:12: ab:d7:ff:0b:fa:db:6b:f9:52:03:8d:1e:db:e6:83:bb:62:fa: 42:8b:06:e8:70:51:e1:45:2e:81:eb:00:47:3f:92:ce:7a:f5: 14:c7:45:ef:b1:3b:ca:23:0b:14:77:aa:bf:3d:a7:78:91:73: bf:02:16:22 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaBDdvbho+rlZ28HQzSDvM0TgBSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMjgwMjQwMjlaFw0yNTEwMjcwMjQ1MjlaMDMxMTAvBgNV BAMTKDE3RkQ4NUUzNTZEMEE2OTlFNDVGQkI5NEUwREUyODQ5MDA5MDg4QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2QuNeSIU5eZnL8YA05xqGp4pU qMMrwKNGriwAqMwFb8vsn3D92EqKGZkKFtzq9+K/W/1EqWce1AdHtRxiSphmFe1D YE9qmGsUfPyMVfiEPS16AwzJrP/0AhVjQhRH4rOqsCmzx5zuahvQtP1NmnlZYX5n qoVowg3eafL4cFfXhXV0zWXBCZ4LoFNMhmbxDtkpMoV6QtMNHbSJ3rOXTKgehkbF mDV74dpRNqxdDt/0JRWPRBoMWjo0+MxAnPHf5ZmehkTAAIjptXUHlS09tkB8/9MM Mi5cOKbAbeskGOEMYLnTxWAWD9FgrF7Uv0xjVHobhJosRqNGlxE9e+GNSM9tAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUF/2F41bQppnkX7uU4N4oSQCQiKUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MDUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgSIwDQYJKoZIhvcNAQELBQADggEBALa3 nhexaH3qXgKOu46croYojeeVy+ruEZKa1WAN4mt63QbVgfqrORmBK5dtaI0Z5P1J DCYTnxHOnZe0p/0uN3D3uUvQwuaZZ2asm+klOeUWxxOS1bEraeu0riddy/M2TMHY 2HvAyjEbzz0DuXHyHAj9P+6xt+xc9uc6u+l7fJ5YhVD6tX3WAhg7LmdVud4bQ/DX BSNqnYCLSsovnBtIoD0UjooJHito1OQSFZta06t5Ws7kQ3q5LzaHn2V2ghp7u05q gfOpEqvX/wv622v5UgONHtvmg7ti+kKLBuhwUeFFLoHrAEc/ks569RTHRe+xO8oj CxR3qr89p3iRc78CFiI= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org