$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216123.roa File: AS216123.roa (raw, json) Hash identifier: f0dmJTN1u7Gub8TKXuUavIW3DWe89YMWpgDmpXJSPgE= Subject key identifier: CC:3C:06:9B:A9:15:02:74:1E:F9:58:F4:B9:2E:8D:37:74:1D:1D:20 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0DE985264B17863C4C66FFADB7CC812C12B17586 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216123.roa Signing time: Thu 19 Sep 2024 12:44:44 +0000 ROA not before: Thu 19 Sep 2024 12:39:44 +0000 ROA not after: Thu 18 Sep 2025 12:44:44 +0000 asID: 216123 IP address blocks: 2a05:dfc1:a900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:e9:85:26:4b:17:86:3c:4c:66:ff:ad:b7:cc:81:2c:12:b1:75:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 19 12:39:44 2024 GMT Not After : Sep 18 12:44:44 2025 GMT Subject: CN=CC3C069BA91502741EF958F4B92E8D37741D1D20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:7c:c5:43:14:fd:a3:4b:c3:9f:2b:fe:c6: f0:6a:93:2f:31:b4:be:6b:c0:13:6d:a2:2e:bc:46: be:a6:fd:2c:c5:49:f4:87:db:ae:47:fd:15:93:b6: 86:40:46:e0:02:bd:d9:5f:48:52:fc:93:af:5b:04: 09:0a:22:c5:eb:c5:ec:51:1d:32:d6:fd:b4:72:5d: 17:b0:cd:05:ca:9d:76:47:6e:62:f4:5a:da:af:e7: 4f:10:2f:3d:eb:91:e1:ab:6a:45:64:33:e4:ed:38: 14:1c:7b:45:68:4e:8f:e0:ea:91:86:94:60:fd:31: d8:33:48:ce:92:df:c5:6e:e6:bc:fc:c3:27:26:c0: 4a:5a:be:d0:57:d3:04:ed:50:ce:f3:c2:29:fd:47: 38:62:15:6f:3e:f0:5d:d3:78:d5:04:de:c1:9f:3c: 69:f7:d0:0a:9b:30:f0:45:4c:4a:44:92:15:03:ec: 58:75:50:1b:a5:d7:88:5c:e7:b9:36:bc:8d:3f:92: f4:d6:6d:d3:7e:8a:b0:09:50:00:d9:2f:c4:70:35: 73:d4:01:49:a5:20:05:2a:f1:3e:09:44:9e:e3:fa: 53:18:98:05:25:db:22:fc:b4:be:98:ee:63:ae:bd: 0b:8d:98:d9:75:bb:2d:b9:a5:6e:c7:85:17:90:e2: 18:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:3C:06:9B:A9:15:02:74:1E:F9:58:F4:B9:2E:8D:37:74:1D:1D:20 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216123.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a900::/40 Signature Algorithm: sha256WithRSAEncryption 5e:35:14:c6:23:0e:5a:e1:3f:23:23:0b:7a:1d:36:26:b0:94: 49:89:92:2f:3f:9c:65:7b:4d:04:e0:e4:dc:9e:8e:4c:d7:2a: 20:b7:91:3e:bd:b5:1b:77:7f:9f:8d:d2:66:d0:c3:f7:3d:70: 13:fa:59:9b:77:2d:c6:2c:a7:4f:9e:ce:af:be:60:c0:b4:3d: 7e:2a:57:5c:ce:b8:b3:6a:41:5c:74:de:9b:df:cc:6d:ae:dd: 0c:b8:16:37:82:32:01:2d:20:5f:09:e8:3a:66:b0:f1:c7:9b: e3:2d:ed:16:ed:3e:10:04:32:be:21:91:5a:5e:19:d3:cb:1f: 83:24:56:c0:af:d6:b5:6c:73:a1:74:77:5b:0f:d6:8c:98:44: 2a:23:f0:4b:20:14:e0:58:a1:85:61:f2:4c:22:f3:78:26:fb: e5:0a:b3:b1:91:69:10:ec:4b:72:62:a7:34:60:6b:d4:3c:bc: 90:1a:cb:b5:ad:68:61:59:a0:16:ce:81:93:6a:43:a2:14:4e: 8c:7b:a1:ef:2f:61:41:e8:77:37:b6:11:d3:9b:b8:bf:f3:54: 21:0a:f3:99:ce:1c:c1:48:8d:c2:ab:7f:03:a9:c9:b3:de:66: ec:39:d0:ae:4f:f3:d1:f4:89:09:9b:30:75:04:3d:8f:7c:87: de:35:cf:e4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDemFJksXhjxMZv+tt8yBLBKxdYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MTkxMjM5NDRaFw0yNTA5MTgxMjQ0NDRaMDMxMTAvBgNV BAMTKENDM0MwNjlCQTkxNTAyNzQxRUY5NThGNEI5MkU4RDM3NzQxRDFEMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6KXzFQxT9o0vDnyv+xvBqky8x tL5rwBNtoi68Rr6m/SzFSfSH265H/RWTtoZARuACvdlfSFL8k69bBAkKIsXrxexR HTLW/bRyXRewzQXKnXZHbmL0Wtqv508QLz3rkeGrakVkM+TtOBQce0VoTo/g6pGG lGD9MdgzSM6S38Vu5rz8wycmwEpavtBX0wTtUM7zwin9RzhiFW8+8F3TeNUE3sGf PGn30AqbMPBFTEpEkhUD7Fh1UBul14hc57k2vI0/kvTWbdN+irAJUADZL8RwNXPU AUmlIAUq8T4JRJ7j+lMYmAUl2yL8tL6Y7mOuvQuNmNl1uy25pW7HhReQ4hjLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUzDwGm6kVAnQe+Vj0uS6NN3QdHSAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwakwDQYJKoZIhvcNAQELBQADggEBAF41 FMYjDlrhPyMjC3odNiawlEmJki8/nGV7TQTg5NyejkzXKiC3kT69tRt3f5+N0mbQ w/c9cBP6WZt3LcYsp0+ezq++YMC0PX4qV1zOuLNqQVx03pvfzG2u3Qy4FjeCMgEt IF8J6DpmsPHHm+Mt7RbtPhAEMr4hkVpeGdPLH4MkVsCv1rVsc6F0d1sP1oyYRCoj 8EsgFOBYoYVh8kwi83gm++UKs7GRaRDsS3JipzRga9Q8vJAay7WtaGFZoBbOgZNq Q6IUTox7oe8vYUHodze2EdObuL/zVCEK85nOHMFIjcKrfwOpybPeZuw50K5P89H0 iQmbMHUEPY98h941z+Q= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org