$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216118.roa File: AS216118.roa (raw, json) Hash identifier: b/OwaXgx/ovxnH78umK8sgYkagZ8B7GC9dcr18oE/Jc= Subject key identifier: FC:8B:03:41:F9:58:2F:E5:CC:BA:1D:FA:BD:4C:07:9C:8C:1A:49:45 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4B26A6547EBD3CDE5F81018E8BA0575D7DF73363 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216118.roa Signing time: Fri 20 Sep 2024 08:44:44 +0000 ROA not before: Fri 20 Sep 2024 08:39:44 +0000 ROA not after: Fri 19 Sep 2025 08:44:44 +0000 asID: 216118 IP address blocks: 2a05:dfc1:b200::/40 maxlen: 48 2a05:dfc1:b300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:26:a6:54:7e:bd:3c:de:5f:81:01:8e:8b:a0:57:5d:7d:f7:33:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 20 08:39:44 2024 GMT Not After : Sep 19 08:44:44 2025 GMT Subject: CN=FC8B0341F9582FE5CCBA1DFABD4C079C8C1A4945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:75:12:fe:2b:b8:52:dd:68:ab:3f:63:0e:e8: 26:a1:94:0d:ee:66:0e:97:6c:26:e1:cb:91:cd:da: 86:c8:e8:ab:5f:9b:3b:53:ec:c3:79:a7:b2:7a:33: 1d:8f:9f:98:68:a5:6c:d9:8f:f8:61:cb:64:e8:ff: e7:38:27:e0:11:67:5b:5c:6f:c4:34:ef:d6:d1:01: bf:8e:77:bb:66:2c:4b:59:e5:25:8f:38:e6:05:ae: 30:c2:c9:ea:91:e2:68:68:11:63:03:c4:81:40:3a: f6:84:81:99:ea:77:03:59:ee:28:61:3b:30:97:79: cc:d4:a2:8a:e6:be:5b:fc:5d:4c:87:af:7c:d9:3c: 23:bd:53:21:00:ca:b7:15:b6:28:5f:d8:37:c0:37: 03:26:b0:c9:f5:75:06:2c:d9:53:5f:52:c3:9b:9b: 00:7e:17:40:ea:80:e2:5b:77:67:28:22:05:a9:e8: a7:5f:f5:56:58:fd:98:30:a3:32:e8:7e:c1:c0:9a: bc:01:fe:2e:39:d6:fd:95:ff:49:d0:d2:1c:e3:51: dd:3c:ff:9c:3e:a3:68:61:76:ef:3f:23:cb:3c:65: 0d:46:c5:de:08:98:c0:ae:3c:1d:4f:d4:9f:8b:71: 2f:e6:0f:d9:cf:f4:1f:b1:f1:be:8d:f0:13:5f:97: a9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:8B:03:41:F9:58:2F:E5:CC:BA:1D:FA:BD:4C:07:9C:8C:1A:49:45 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216118.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b200::/39 Signature Algorithm: sha256WithRSAEncryption 45:01:11:e7:c1:08:41:4f:c0:a3:78:ad:ea:bd:3c:ef:b9:87: 19:08:d7:65:11:54:24:5f:f1:be:fe:5f:b5:30:11:14:52:19: 09:91:78:7c:9d:2c:5a:7a:8e:cb:a4:49:9a:1e:14:54:98:a2: 48:74:14:3a:4f:61:ad:a1:1c:22:43:e1:0f:85:2a:6d:a0:b0: c9:9d:ce:7f:b1:e8:8a:bd:6c:8a:a9:e9:f5:6c:06:ab:da:61: f2:57:43:79:42:38:3a:1f:15:22:6d:28:35:ea:36:22:91:57: 56:f1:3a:b5:cf:60:6c:9b:c4:c8:c6:5e:bf:bd:06:45:aa:7f: c9:07:81:f0:2e:54:79:40:3c:44:c7:bd:a2:75:47:77:30:e4: d9:15:85:26:f2:29:8b:5b:a8:b4:d0:ee:64:b1:57:83:70:c2: 79:d5:72:a5:32:99:51:a6:ba:20:c2:be:6d:62:e0:4d:e3:71: 1c:8a:b5:0c:9c:6a:d0:a6:97:ed:a1:84:0c:c3:d0:82:6c:c4: 89:a3:19:86:6a:61:a4:dc:06:36:47:0a:7d:20:08:e7:3a:ab: c7:6b:41:f9:53:bd:06:9a:8e:11:e7:b1:63:b8:71:4e:64:08: 4b:7c:d8:8c:58:49:05:80:4a:23:4d:a6:37:7c:04:64:98:64: db:fb:26:b8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSyamVH69PN5fgQGOi6BXXX33M2MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MjAwODM5NDRaFw0yNTA5MTkwODQ0NDRaMDMxMTAvBgNV BAMTKEZDOEIwMzQxRjk1ODJGRTVDQ0JBMURGQUJENEMwNzlDOEMxQTQ5NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDdRL+K7hS3WirP2MO6CahlA3u Zg6XbCbhy5HN2obI6KtfmztT7MN5p7J6Mx2Pn5hopWzZj/hhy2To/+c4J+ARZ1tc b8Q079bRAb+Od7tmLEtZ5SWPOOYFrjDCyeqR4mhoEWMDxIFAOvaEgZnqdwNZ7ihh OzCXeczUoormvlv8XUyHr3zZPCO9UyEAyrcVtihf2DfANwMmsMn1dQYs2VNfUsOb mwB+F0DqgOJbd2coIgWp6Kdf9VZY/ZgwozLofsHAmrwB/i451v2V/0nQ0hzjUd08 /5w+o2hhdu8/I8s8ZQ1Gxd4ImMCuPB1P1J+LcS/mD9nP9B+x8b6N8BNfl6krAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/IsDQflYL+XMuh36vUwHnIwaSUUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbIwDQYJKoZIhvcNAQELBQADggEBAEUB EefBCEFPwKN4req9PO+5hxkI12URVCRf8b7+X7UwERRSGQmReHydLFp6jsukSZoe FFSYokh0FDpPYa2hHCJD4Q+FKm2gsMmdzn+x6Iq9bIqp6fVsBqvaYfJXQ3lCODof FSJtKDXqNiKRV1bxOrXPYGybxMjGXr+9BkWqf8kHgfAuVHlAPETHvaJ1R3cw5NkV hSbyKYtbqLTQ7mSxV4NwwnnVcqUymVGmuiDCvm1i4E3jcRyKtQycatCml+2hhAzD 0IJsxImjGYZqYaTcBjZHCn0gCOc6q8drQflTvQaajhHnsWO4cU5kCEt82IxYSQWA SiNNpjd8BGSYZNv7Jrg= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org