$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216121.roa File: AS216121.roa (raw, json) Hash identifier: 5v+ALpoZhK1Fa8AAXuRzeyF34xa13ziSO4st1j/IH5M= Subject key identifier: 42:B0:4B:9D:C0:AB:27:15:A1:F3:5F:F9:F1:69:CD:EB:0B:9D:52:94 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 243C4D855343F917AE4A4113FBD80D8F3EFFFDAC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216121.roa Signing time: Thu 19 Sep 2024 21:44:44 +0000 ROA not before: Thu 19 Sep 2024 21:39:44 +0000 ROA not after: Thu 18 Sep 2025 21:44:44 +0000 asID: 216121 IP address blocks: 2a05:dfc1:b00::/40 maxlen: 48 2a05:dfc1:b100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:3c:4d:85:53:43:f9:17:ae:4a:41:13:fb:d8:0d:8f:3e:ff:fd:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 19 21:39:44 2024 GMT Not After : Sep 18 21:44:44 2025 GMT Subject: CN=42B04B9DC0AB2715A1F35FF9F169CDEB0B9D5294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:11:59:ce:14:f5:81:5d:ab:8f:7a:be:4a:31: f9:ea:b2:83:dd:6a:8e:ef:53:36:cc:d2:e8:6f:c9: c4:84:6a:54:f4:f2:fc:03:ee:69:04:d6:4c:25:68: 9f:41:c4:e0:4b:88:f1:0e:f0:97:21:fd:53:f0:e5: da:1b:ff:b7:ee:9c:e0:a7:c2:84:40:66:ca:1f:0c: 2b:df:8e:2b:62:8a:82:4e:52:28:eb:84:89:a7:94: 4c:2c:4b:43:3d:a5:71:87:fa:82:79:5a:3e:72:d2: 63:ca:98:8a:a0:60:56:35:18:aa:40:26:33:1c:67: 64:97:f0:f4:88:90:82:74:72:f6:ec:a8:af:c1:3b: c4:2c:86:4f:c8:1f:e1:19:b2:a6:3a:91:23:b5:0b: 89:5a:ef:9d:3e:69:0b:5f:f3:fa:77:eb:ea:2a:a6: 9a:22:ad:db:9d:59:9c:fa:10:87:1b:e8:b7:16:31: a9:87:b3:b7:4f:fb:29:9f:8b:dd:fa:f1:ff:b4:aa: b8:e7:ef:42:97:82:f3:f2:e9:2a:2a:cb:20:7f:9b: 0f:02:da:f4:e0:22:e8:28:7c:c8:93:b1:5e:23:f1: c8:0e:b4:95:18:39:09:4b:a1:60:11:15:0b:57:b0: 7d:b0:69:90:6c:7d:10:04:c1:b6:03:2c:06:64:ca: 36:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B0:4B:9D:C0:AB:27:15:A1:F3:5F:F9:F1:69:CD:EB:0B:9D:52:94 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216121.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b00::/40 2a05:dfc1:b100::/40 Signature Algorithm: sha256WithRSAEncryption 21:cd:2d:59:71:e5:e9:16:9d:9e:91:96:c2:58:33:9d:fd:da: 1e:84:d0:f3:d1:be:cf:dc:77:b6:f2:63:4b:bc:99:17:f2:fd: 9a:9e:74:53:fd:ab:87:c3:02:aa:80:2f:cb:62:d9:eb:56:0d: 73:9a:f9:cb:de:8a:b7:8d:ec:ef:ef:4b:70:34:0a:8d:58:95: 0c:c5:09:1e:fa:21:10:c8:2e:12:22:49:90:f1:d9:b3:04:7f: a6:a8:88:b6:48:c4:6e:be:d8:7c:92:01:90:c9:3d:55:23:19: 15:e5:8c:a0:05:7b:3c:79:fa:1b:5e:ef:50:6e:24:85:17:00: f0:e0:fe:d6:7b:a0:2c:b6:23:bf:c5:b8:e2:e3:a7:77:b1:e8: 48:dc:d5:70:40:da:dd:f9:03:10:dd:e1:e2:0c:d0:65:b1:8f: 21:35:8c:d2:c6:98:bb:dd:10:d6:ba:ab:cc:fa:de:46:df:0f: 04:13:aa:60:cb:de:d4:94:ae:fe:49:71:54:c1:99:c6:21:1d: 7e:0f:6d:61:5d:70:02:ab:45:f3:53:07:fc:80:e7:a3:da:d5: 95:b2:c6:97:40:a1:dd:76:79:44:d9:93:6f:a0:e1:ce:56:8c: 5f:19:d8:df:d9:b3:65:45:3d:e6:30:07:5f:bd:21:e3:0d:1f: 29:f0:94:d2 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUJDxNhVND+ReuSkET+9gNjz7//awwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MTkyMTM5NDRaFw0yNTA5MTgyMTQ0NDRaMDMxMTAvBgNV BAMTKDQyQjA0QjlEQzBBQjI3MTVBMUYzNUZGOUYxNjlDREVCMEI5RDUyOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAEVnOFPWBXauPer5KMfnqsoPd ao7vUzbM0uhvycSEalT08vwD7mkE1kwlaJ9BxOBLiPEO8Jch/VPw5dob/7funOCn woRAZsofDCvfjitiioJOUijrhImnlEwsS0M9pXGH+oJ5Wj5y0mPKmIqgYFY1GKpA JjMcZ2SX8PSIkIJ0cvbsqK/BO8Qshk/IH+EZsqY6kSO1C4la750+aQtf8/p36+oq ppoirdudWZz6EIcb6LcWMamHs7dP+ymfi9368f+0qrjn70KXgvPy6SoqyyB/mw8C 2vTgIugofMiTsV4j8cgOtJUYOQlLoWARFQtXsH2waZBsfRAEwbYDLAZkyjbhAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUQrBLncCrJxWh81/58WnN6wudUpQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTIxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgXfwQsDBgAqBd/BsTANBgkqhkiG9w0BAQsF AAOCAQEAIc0tWXHl6RadnpGWwlgznf3aHoTQ89G+z9x3tvJjS7yZF/L9mp50U/2r h8MCqoAvy2LZ61YNc5r5y96Kt43s7+9LcDQKjViVDMUJHvohEMguEiJJkPHZswR/ pqiItkjEbr7YfJIBkMk9VSMZFeWMoAV7PHn6G17vUG4khRcA8OD+1nugLLYjv8W4 4uOnd7HoSNzVcEDa3fkDEN3h4gzQZbGPITWM0saYu90Q1rqrzPreRt8PBBOqYMve 1JSu/klxVMGZxiEdfg9tYV1wAqtF81MH/IDno9rVlbLGl0Ch3XZ5RNmTb6DhzlaM XxnY39mzZUU95jAHX70h4w0fKfCU0g== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org