$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216127.roa File: AS216127.roa (raw, json) Hash identifier: Z5QZVfDb1zO5202JJwlEfAx1/S16B/y5zEhWxBmUDIQ= Subject key identifier: 69:2A:EE:74:0D:8C:C4:EE:82:56:61:BD:94:2F:C9:5D:2C:BC:9D:83 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 06DCAC568A3F093BF5DD8521132410A4A456C4A4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216127.roa Signing time: Wed 18 Sep 2024 10:44:37 +0000 ROA not before: Wed 18 Sep 2024 10:39:37 +0000 ROA not after: Wed 17 Sep 2025 10:44:37 +0000 asID: 216127 IP address blocks: 2a05:dfc1:a000::/40 maxlen: 48 2a05:dfc1:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:dc:ac:56:8a:3f:09:3b:f5:dd:85:21:13:24:10:a4:a4:56:c4:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 18 10:39:37 2024 GMT Not After : Sep 17 10:44:37 2025 GMT Subject: CN=692AEE740D8CC4EE825661BD942FC95D2CBC9D83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:10:91:10:f7:3e:da:f2:b6:88:9b:5f:78:47: 99:5d:dc:9e:94:a7:be:2a:a4:b7:40:30:4b:11:b1: 2e:7b:1b:8c:6d:ea:e0:45:e0:03:ac:a5:b6:d4:97: ef:9c:92:9b:6d:07:c2:92:af:a3:ef:5c:0a:1f:d2: e8:a9:4f:ef:36:64:40:e4:c4:7c:63:18:10:8e:c1: ac:46:8b:59:bb:9a:77:46:99:f8:dd:bd:c5:5b:21: c1:bf:1b:0e:03:3c:49:10:22:b3:2b:3f:b1:2f:1c: 2e:5a:bf:0a:30:15:e1:11:f4:5a:90:75:12:e9:61: bf:0b:19:cb:27:5f:21:86:60:b1:76:ba:9d:1f:b9: f5:4f:39:0d:cb:93:64:5c:72:e2:48:99:c2:cc:14: 1a:ed:e8:4e:ed:8b:cd:a6:21:9f:9f:36:ba:2f:8d: 9e:12:1e:cf:9b:47:14:fb:6b:bf:ab:07:06:97:85: 06:fb:1f:ed:c1:89:3e:0a:5c:1a:d4:ce:8e:63:9f: 5f:ef:04:b6:81:07:5b:01:a0:cd:23:e0:15:8c:eb: 44:50:b3:01:d0:c6:38:0b:0c:88:d9:c6:32:61:9a: 4d:12:68:e8:72:9a:61:90:40:4d:b2:fd:0d:4c:e4: b9:18:47:8b:5d:06:e9:61:50:71:3f:30:3e:e6:a2: 57:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:2A:EE:74:0D:8C:C4:EE:82:56:61:BD:94:2F:C9:5D:2C:BC:9D:83 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216127.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a000::/39 Signature Algorithm: sha256WithRSAEncryption b0:e2:e1:cf:1f:e2:8a:97:08:83:14:cc:6f:b9:16:f3:ee:50: d0:28:fd:73:89:c8:4c:1b:7e:43:09:9b:5e:fe:d3:16:2e:95: d2:be:c4:78:dd:a2:90:07:6b:a3:10:96:73:4b:f3:b2:1d:df: 39:e2:c3:bd:4f:e9:d8:3c:24:ea:e6:22:4b:51:55:2c:56:85: d5:74:27:be:d7:83:11:46:4a:91:a9:3c:49:a4:fe:9c:06:8a: 65:b8:68:2c:c9:8a:b9:34:11:b8:3e:c4:71:5b:e4:95:92:4f: ba:e9:35:bf:b5:e7:07:2d:86:14:22:21:68:01:81:a3:35:08: 68:b5:9c:12:09:56:4b:2b:13:60:dc:a7:41:18:9c:a1:4c:ff: 3f:67:c0:86:e2:7b:15:71:ec:f1:d6:a2:54:58:cc:c1:4a:a8: df:22:ce:3f:09:ee:74:d5:d6:3d:13:52:4f:9c:d9:2f:6b:5b: 2d:7a:e4:61:c7:a4:a6:97:ae:cf:9b:c4:27:8d:4a:21:80:b5: 31:d0:c5:c8:c9:34:e7:26:4c:52:43:07:aa:66:13:b3:24:7f: 6c:af:46:a5:17:80:20:47:50:1c:3c:12:54:2e:6d:e7:93:7e: 55:fd:02:91:58:ac:78:3b:19:b5:1f:12:f1:30:e0:a4:9c:c6: da:40:74:73 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBtysVoo/CTv13YUhEyQQpKRWxKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MTgxMDM5MzdaFw0yNTA5MTcxMDQ0MzdaMDMxMTAvBgNV BAMTKDY5MkFFRTc0MEQ4Q0M0RUU4MjU2NjFCRDk0MkZDOTVEMkNCQzlEODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGEJEQ9z7a8raIm194R5ld3J6U p74qpLdAMEsRsS57G4xt6uBF4AOspbbUl++ckpttB8KSr6PvXAof0uipT+82ZEDk xHxjGBCOwaxGi1m7mndGmfjdvcVbIcG/Gw4DPEkQIrMrP7EvHC5avwowFeER9FqQ dRLpYb8LGcsnXyGGYLF2up0fufVPOQ3Lk2RccuJImcLMFBrt6E7ti82mIZ+fNrov jZ4SHs+bRxT7a7+rBwaXhQb7H+3BiT4KXBrUzo5jn1/vBLaBB1sBoM0j4BWM60RQ swHQxjgLDIjZxjJhmk0SaOhymmGQQE2y/Q1M5LkYR4tdBulhUHE/MD7molePAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaSrudA2MxO6CVmG9lC/JXSy8nYMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwaAwDQYJKoZIhvcNAQELBQADggEBALDi 4c8f4oqXCIMUzG+5FvPuUNAo/XOJyEwbfkMJm17+0xYuldK+xHjdopAHa6MQlnNL 87Id3zniw71P6dg8JOrmIktRVSxWhdV0J77XgxFGSpGpPEmk/pwGimW4aCzJirk0 Ebg+xHFb5JWST7rpNb+15wcthhQiIWgBgaM1CGi1nBIJVksrE2Dcp0EYnKFM/z9n wIbiexVx7PHWolRYzMFKqN8izj8J7nTV1j0TUk+c2S9rWy165GHHpKaXrs+bxCeN SiGAtTHQxcjJNOcmTFJDB6pmE7Mkf2yvRqUXgCBHUBw8ElQubeeTflX9ApFYrHg7 GbUfEvEw4KScxtpAdHM= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org