$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216124.roa File: AS216124.roa (raw, json) Hash identifier: aku+8Ri3apQFmUGI9qzBlmaLlRQSCg+FdBGXoH5vcyk= Subject key identifier: CA:B5:D7:B6:5C:EE:6C:E1:0C:46:16:5B:9A:BF:4C:CE:13:C3:79:0E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 14E1AC6C72E2F730ECB8128647139DC69F701766 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216124.roa Signing time: Thu 19 Sep 2024 08:44:44 +0000 ROA not before: Thu 19 Sep 2024 08:39:44 +0000 ROA not after: Thu 18 Sep 2025 08:44:44 +0000 asID: 216124 IP address blocks: 2a05:dfc1:aa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e1:ac:6c:72:e2:f7:30:ec:b8:12:86:47:13:9d:c6:9f:70:17:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 19 08:39:44 2024 GMT Not After : Sep 18 08:44:44 2025 GMT Subject: CN=CAB5D7B65CEE6CE10C46165B9ABF4CCE13C3790E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d0:87:04:dd:ec:2f:06:56:57:f8:d4:b6:b7: 9a:41:e5:c1:6b:67:df:f8:99:16:7d:d8:1f:25:b5: de:df:ef:00:b5:e9:2c:fd:a6:cf:52:3f:37:6f:0f: 81:78:b2:bd:54:83:d1:59:db:dd:f7:5f:b5:b4:82: 27:dd:9d:24:ce:c2:77:75:29:6e:91:f7:bf:5d:03: cf:d0:4d:62:b5:02:7a:18:cb:75:4e:b4:1c:5a:8d: d1:2c:cf:87:17:b5:02:e9:2f:da:33:e5:cc:ef:b1: 0f:c6:32:da:f7:f7:47:85:5b:f2:ab:f6:98:5e:68: 8c:e0:06:c2:38:bd:03:80:f0:95:54:b5:50:4f:8e: 9f:26:df:f7:98:5c:c8:4a:e6:95:e4:44:84:c9:e3: 67:64:e1:bc:79:aa:c9:49:41:fc:70:31:67:eb:ea: 34:73:fd:ac:3c:fc:dc:7a:28:ef:5c:2f:04:27:f2: bd:11:57:82:45:c8:95:b4:77:9c:d0:5a:38:54:f0: 87:73:73:d9:c6:b2:86:c5:e2:a1:3e:b1:d0:c8:40: ba:b1:ec:e0:36:b6:7b:49:94:ab:c1:e9:3f:ec:1e: 9a:5d:05:41:9c:f1:fe:d6:4e:e4:e3:39:56:42:6d: 6d:1a:58:a6:eb:fa:be:48:a2:e3:ba:a6:10:30:15: 4b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B5:D7:B6:5C:EE:6C:E1:0C:46:16:5B:9A:BF:4C:CE:13:C3:79:0E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:aa00::/40 Signature Algorithm: sha256WithRSAEncryption 28:78:8d:49:5a:99:df:ed:f7:53:e6:d0:16:94:a8:f9:d5:cf: 29:98:19:7b:81:9a:08:94:eb:d9:15:18:39:dd:1b:8c:30:4b: ae:a2:1a:e8:7f:94:61:c1:4d:4c:05:8d:d3:81:ed:99:ea:d5: 30:a8:f3:90:c3:a5:26:4a:e8:c6:b9:c2:bc:e8:07:4f:28:8f: 05:a1:4c:ed:5f:42:a8:60:66:d0:51:61:56:c7:eb:03:b5:02: 97:6b:15:59:d7:c0:69:09:68:30:9e:82:7d:48:67:83:03:4d: 41:fa:b2:af:49:dd:74:6e:7c:7e:04:29:40:6a:98:ce:2a:5e: bc:72:6e:17:2a:c1:17:01:8c:d1:9c:e4:04:3d:65:7f:a9:c6: 7a:6f:e6:85:a3:35:ab:27:ae:f3:96:f5:19:fb:43:54:de:d6: 27:5a:4d:39:9b:e6:24:7a:a0:60:ff:43:e3:d3:b9:c5:7b:3d: bf:24:4e:cf:c7:d0:69:a6:9b:27:0f:f1:ca:90:48:65:f6:80: 96:ed:3e:7b:f2:2e:13:ce:64:9b:f9:cc:f4:66:e8:58:5e:51: 66:1c:5a:23:7a:59:45:88:d8:8b:0b:78:60:9d:96:9f:5f:2c: 0a:3f:f0:15:d0:60:0c:47:7a:75:79:fb:20:b1:0c:42:26:bc: 49:83:1f:3b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFOGsbHLi9zDsuBKGRxOdxp9wF2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MTkwODM5NDRaFw0yNTA5MTgwODQ0NDRaMDMxMTAvBgNV BAMTKENBQjVEN0I2NUNFRTZDRTEwQzQ2MTY1QjlBQkY0Q0NFMTNDMzc5MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR0IcE3ewvBlZX+NS2t5pB5cFr Z9/4mRZ92B8ltd7f7wC16Sz9ps9SPzdvD4F4sr1Ug9FZ2933X7W0gifdnSTOwnd1 KW6R979dA8/QTWK1AnoYy3VOtBxajdEsz4cXtQLpL9oz5czvsQ/GMtr390eFW/Kr 9pheaIzgBsI4vQOA8JVUtVBPjp8m3/eYXMhK5pXkRITJ42dk4bx5qslJQfxwMWfr 6jRz/aw8/Nx6KO9cLwQn8r0RV4JFyJW0d5zQWjhU8Idzc9nGsobF4qE+sdDIQLqx 7OA2tntJlKvB6T/sHppdBUGc8f7WTuTjOVZCbW0aWKbr+r5IouO6phAwFUtRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUyrXXtlzubOEMRhZbmr9MzhPDeQ4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwaowDQYJKoZIhvcNAQELBQADggEBACh4 jUlamd/t91Pm0BaUqPnVzymYGXuBmgiU69kVGDndG4wwS66iGuh/lGHBTUwFjdOB 7Znq1TCo85DDpSZK6Ma5wrzoB08ojwWhTO1fQqhgZtBRYVbH6wO1ApdrFVnXwGkJ aDCegn1IZ4MDTUH6sq9J3XRufH4EKUBqmM4qXrxybhcqwRcBjNGc5AQ9ZX+pxnpv 5oWjNasnrvOW9Rn7Q1Te1idaTTmb5iR6oGD/Q+PTucV7Pb8kTs/H0GmmmycP8cqQ SGX2gJbtPnvyLhPOZJv5zPRm6FheUWYcWiN6WUWI2IsLeGCdlp9fLAo/8BXQYAxH enV5+yCxDEImvEmDHzs= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org