$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216115.roa File: AS216115.roa (raw, json) Hash identifier: c1kc3KI527bn6fkNwUFJMTiZtGikjAOQ73daWuosZkA= Subject key identifier: E2:70:B7:2D:AB:18:A0:EC:3C:13:7C:D9:E6:0A:4F:19:DF:FB:F9:45 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 053561F1D7918510CB7FE774995D616E5EABD353 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216115.roa Signing time: Fri 20 Sep 2024 23:44:45 +0000 ROA not before: Fri 20 Sep 2024 23:39:45 +0000 ROA not after: Fri 19 Sep 2025 23:44:45 +0000 asID: 216115 IP address blocks: 2a05:dfc1:b400::/40 maxlen: 48 2a05:dfc1:b500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:35:61:f1:d7:91:85:10:cb:7f:e7:74:99:5d:61:6e:5e:ab:d3:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 20 23:39:45 2024 GMT Not After : Sep 19 23:44:45 2025 GMT Subject: CN=E270B72DAB18A0EC3C137CD9E60A4F19DFFBF945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:48:0a:ab:9f:c5:90:97:a5:45:a1:e4:41:7c: 9c:5b:6d:b3:dc:92:8f:13:48:87:1f:e5:b2:cc:10: 35:5e:74:b7:b2:16:b1:0c:d1:5e:67:ac:80:33:c7: 6b:e5:18:5f:a3:3f:16:e9:82:be:ee:44:ec:8f:cb: 7b:76:52:f7:18:09:86:10:f5:15:52:5f:fc:b6:48: da:da:0f:28:87:a0:c1:3b:c9:d3:60:90:b5:34:2d: 22:8d:a2:5e:a4:4a:53:eb:30:bd:ec:bd:6e:e0:f9: af:3f:2e:60:c3:c5:0e:37:89:94:5e:72:b5:c9:8d: ca:6b:c1:08:97:4c:fe:7f:eb:d6:fa:b7:22:be:c4: 6a:f0:a8:72:4d:1a:8c:c4:25:c8:ee:ed:77:82:88: ba:ac:78:1c:ae:2d:c6:29:c2:2b:44:bf:66:4e:65: f3:fe:eb:59:93:9e:a1:9e:5d:d4:ad:aa:30:26:8c: b5:16:d2:b3:9e:86:e3:d5:79:e7:20:14:40:7e:20: bc:e7:07:b4:5a:17:2b:75:39:29:58:d1:50:9d:6e: de:bd:63:d6:79:e1:6b:3d:f6:8a:6f:1f:49:66:a3: fa:0e:f1:f3:24:7b:91:c5:85:5e:62:af:88:63:be: 40:8e:2e:1f:54:23:fc:2e:f8:12:0b:87:2d:dd:8a: 2f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:70:B7:2D:AB:18:A0:EC:3C:13:7C:D9:E6:0A:4F:19:DF:FB:F9:45 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216115.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b400::/39 Signature Algorithm: sha256WithRSAEncryption 58:32:1a:24:3d:2c:04:de:5d:e2:c5:40:48:89:a8:75:5c:b9: b7:73:25:f3:d6:d4:86:65:57:0b:fe:2e:b9:e9:c8:13:49:cf: 7c:2f:b3:36:05:18:20:03:23:73:77:fc:a0:7d:25:0f:8b:49: 4a:d0:5b:fd:c5:51:d9:60:6c:93:e3:b7:3d:c1:8a:83:d3:11: 51:9c:59:2e:9a:46:2a:40:50:24:f7:74:2d:e9:93:47:df:3c: b9:0e:97:32:b7:8a:bb:02:01:1d:1c:15:d4:6e:04:fc:57:7e: b3:a6:e3:03:3f:d9:8e:20:13:42:9c:ef:62:28:3d:ea:e3:46: 1f:71:bd:5a:97:b0:e9:58:71:ed:61:7a:27:4c:6b:e5:26:3c: 92:f2:b6:9a:ca:46:8c:21:70:36:fb:53:3e:54:12:5c:0d:f4: 38:65:0b:e6:3f:0d:d8:8e:e9:1d:fd:2a:77:77:d9:d2:8c:c8: 58:5a:a0:68:06:eb:15:c4:e5:4b:ca:c3:82:e1:9b:5d:c6:46: 78:8a:d4:3b:3c:a7:bc:bb:27:67:2b:84:24:83:25:6a:4f:da: d3:0c:c7:45:47:8d:03:5e:5d:f5:91:e6:17:5b:01:6a:18:6d: 0f:47:59:b6:4d:4b:85:52:2a:23:eb:ff:6f:08:14:7c:e9:f3: e6:78:7b:11 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBTVh8deRhRDLf+d0mV1hbl6r01MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MjAyMzM5NDVaFw0yNTA5MTkyMzQ0NDVaMDMxMTAvBgNV BAMTKEUyNzBCNzJEQUIxOEEwRUMzQzEzN0NEOUU2MEE0RjE5REZGQkY5NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZSAqrn8WQl6VFoeRBfJxbbbPc ko8TSIcf5bLMEDVedLeyFrEM0V5nrIAzx2vlGF+jPxbpgr7uROyPy3t2UvcYCYYQ 9RVSX/y2SNraDyiHoME7ydNgkLU0LSKNol6kSlPrML3svW7g+a8/LmDDxQ43iZRe crXJjcprwQiXTP5/69b6tyK+xGrwqHJNGozEJcju7XeCiLqseByuLcYpwitEv2ZO ZfP+61mTnqGeXdStqjAmjLUW0rOehuPVeecgFEB+ILznB7RaFyt1OSlY0VCdbt69 Y9Z54Ws99opvH0lmo/oO8fMke5HFhV5ir4hjvkCOLh9UI/wu+BILhy3dii/1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4nC3LasYoOw8E3zZ5gpPGd/7+UUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTE1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbQwDQYJKoZIhvcNAQELBQADggEBAFgy GiQ9LATeXeLFQEiJqHVcubdzJfPW1IZlVwv+LrnpyBNJz3wvszYFGCADI3N3/KB9 JQ+LSUrQW/3FUdlgbJPjtz3BioPTEVGcWS6aRipAUCT3dC3pk0ffPLkOlzK3irsC AR0cFdRuBPxXfrOm4wM/2Y4gE0Kc72IoPerjRh9xvVqXsOlYce1heidMa+UmPJLy tprKRowhcDb7Uz5UElwN9DhlC+Y/DdiO6R39Knd32dKMyFhaoGgG6xXE5UvKw4Lh m13GRniK1Ds8p7y7J2crhCSDJWpP2tMMx0VHjQNeXfWR5hdbAWoYbQ9HWbZNS4VS KiPr/28IFHzp8+Z4exE= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org