$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216113.roa File: AS216113.roa (raw, json) Hash identifier: M75WUFiaxyJSwngNJ3hbbMQSOouNcPMI4fRZx5nj/X8= Subject key identifier: 97:A4:F1:02:09:54:74:B3:32:A3:78:CF:52:11:AC:14:7C:89:60:84 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 02A04C70F9E2A12301CBD23B6F16E7BB2D61D747 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216113.roa Signing time: Fri 20 Sep 2024 23:44:45 +0000 ROA not before: Fri 20 Sep 2024 23:39:45 +0000 ROA not after: Fri 19 Sep 2025 23:44:45 +0000 asID: 216113 IP address blocks: 2a05:dfc1:b600::/40 maxlen: 48 2a05:dfc1:b700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a0:4c:70:f9:e2:a1:23:01:cb:d2:3b:6f:16:e7:bb:2d:61:d7:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 20 23:39:45 2024 GMT Not After : Sep 19 23:44:45 2025 GMT Subject: CN=97A4F102095474B332A378CF5211AC147C896084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:f9:4d:ee:e9:b3:e0:b8:2d:68:29:4a:3b: dd:75:ae:bd:ee:6b:c6:2d:a2:af:f1:ff:b4:8f:ec: 43:cd:92:f9:0a:75:e6:27:ad:1c:8a:b6:b2:cd:8f: 55:c1:7f:ea:9d:db:b0:1f:84:eb:cf:ab:4b:75:57: 9a:43:af:32:d4:64:e7:55:ce:ab:ef:00:95:d4:39: a5:15:2b:35:65:b3:dd:dd:53:2f:aa:c6:ff:04:76: 8e:f3:61:e6:36:0a:28:4a:bd:c6:bc:b7:a0:65:57: a1:d7:56:19:56:35:0b:02:f6:e0:e5:6c:b5:49:5f: 64:e3:76:71:7c:76:d3:0c:fc:04:c8:35:9d:78:44: 24:cb:9d:94:2e:cd:b5:f7:14:74:e6:23:e2:e0:03: d6:d9:91:b7:03:2c:50:b5:07:85:38:d1:a0:10:53: 59:05:26:ae:70:04:29:a1:6a:8e:bd:32:5e:95:48: 08:af:37:0a:0f:9a:79:2e:47:03:d8:06:cf:75:b5: c3:bf:f8:59:fd:2b:26:b4:ed:a8:f6:a6:d8:0d:94: 27:3e:a1:2e:62:7a:38:7b:79:9a:87:33:5e:37:c2: fb:54:bb:3b:a3:c5:5d:a8:ad:2a:fb:38:a3:07:c0: 8b:a7:66:90:02:0c:0b:05:74:91:b1:dc:5c:8f:4f: f0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:A4:F1:02:09:54:74:B3:32:A3:78:CF:52:11:AC:14:7C:89:60:84 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b600::/39 Signature Algorithm: sha256WithRSAEncryption c2:a5:a0:f2:c4:bb:ad:88:26:a3:45:ac:70:7e:ca:2a:64:1d: c5:db:9d:99:c8:93:09:61:5a:c1:d3:d5:f6:cd:b2:59:64:32: 2a:be:14:26:39:bb:6c:61:ff:96:96:ab:a7:15:08:11:c8:29: a3:c3:e6:49:72:ea:cf:47:e5:38:b6:f9:ef:37:f9:12:9d:76: b1:66:0d:32:c5:4f:d1:32:d3:9c:8a:0d:fe:10:a5:96:83:46: 52:2a:3d:96:2a:32:86:15:46:9c:b2:e3:d1:56:b4:20:5d:e8: e6:bf:a6:f0:ac:87:34:30:55:31:92:16:68:39:a1:33:f7:35: bb:4a:ae:e2:7e:8a:a7:21:a5:dc:9e:6f:b1:49:42:30:4c:e8: d6:23:87:6b:37:f3:0e:58:76:44:a7:37:e8:04:20:fc:aa:3d: 62:f2:37:cc:f6:ff:8a:f7:f1:66:99:88:b8:9b:9f:35:38:98: c7:95:91:39:58:80:6f:07:27:f1:5d:34:ad:fc:3d:c0:36:b9: 8c:49:50:72:15:4f:22:e8:95:5f:1a:2d:84:ad:a5:d0:25:11: ea:17:41:2e:34:63:a8:83:82:4b:2a:27:c2:71:9a:e3:ff:5b: d6:2c:0c:43:a3:b8:37:af:bb:35:c1:26:82:ab:39:18:eb:12: 2e:49:97:5d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAqBMcPnioSMBy9I7bxbnuy1h10cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MjAyMzM5NDVaFw0yNTA5MTkyMzQ0NDVaMDMxMTAvBgNV BAMTKDk3QTRGMTAyMDk1NDc0QjMzMkEzNzhDRjUyMTFBQzE0N0M4OTYwODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEE/lN7umz4LgtaClKO911rr3u a8Ytoq/x/7SP7EPNkvkKdeYnrRyKtrLNj1XBf+qd27AfhOvPq0t1V5pDrzLUZOdV zqvvAJXUOaUVKzVls93dUy+qxv8Edo7zYeY2CihKvca8t6BlV6HXVhlWNQsC9uDl bLVJX2TjdnF8dtMM/ATINZ14RCTLnZQuzbX3FHTmI+LgA9bZkbcDLFC1B4U40aAQ U1kFJq5wBCmhao69Ml6VSAivNwoPmnkuRwPYBs91tcO/+Fn9Kya07aj2ptgNlCc+ oS5iejh7eZqHM143wvtUuzujxV2orSr7OKMHwIunZpACDAsFdJGx3FyPT/AzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUl6TxAglUdLMyo3jPUhGsFHyJYIQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbYwDQYJKoZIhvcNAQELBQADggEBAMKl oPLEu62IJqNFrHB+yipkHcXbnZnIkwlhWsHT1fbNsllkMiq+FCY5u2xh/5aWq6cV CBHIKaPD5kly6s9H5Ti2+e83+RKddrFmDTLFT9Ey05yKDf4QpZaDRlIqPZYqMoYV Rpyy49FWtCBd6Oa/pvCshzQwVTGSFmg5oTP3NbtKruJ+iqchpdyeb7FJQjBM6NYj h2s38w5YdkSnN+gEIPyqPWLyN8z2/4r38WaZiLibnzU4mMeVkTlYgG8HJ/FdNK38 PcA2uYxJUHIVTyLolV8aLYStpdAlEeoXQS40Y6iDgksqJ8JxmuP/W9YsDEOjuDev uzXBJoKrORjrEi5Jl10= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org