$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216157.roa File: AS216157.roa (raw, json) Hash identifier: qVYChNGox3xN+Qj3xVaVic1mJu69dGH1Yy2oAXEPw/4= Subject key identifier: F5:A1:FA:DD:A0:3B:5E:CB:6D:DF:CC:31:50:E7:4D:5A:C2:54:55:3D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 549085DADC9A30E58199019941D808DECA7E8DB5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216157.roa Signing time: Mon 09 Dec 2024 23:45:36 +0000 ROA not before: Mon 09 Dec 2024 23:40:36 +0000 ROA not after: Mon 08 Dec 2025 23:45:36 +0000 asID: 216157 IP address blocks: 2a06:9f81:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:90:85:da:dc:9a:30:e5:81:99:01:99:41:d8:08:de:ca:7e:8d:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Dec 9 23:40:36 2024 GMT Not After : Dec 8 23:45:36 2025 GMT Subject: CN=F5A1FADDA03B5ECB6DDFCC3150E74D5AC254553D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ad:3a:47:d2:b8:cb:d1:40:df:f7:7e:70:83: 92:b8:3b:5b:b4:33:24:2b:d5:0a:42:74:80:03:69: 2e:a0:3a:9c:04:8d:59:8c:56:39:35:a5:f1:c1:85: f2:10:81:f0:b2:a4:5f:71:41:a4:14:8b:6a:68:69: d7:81:d7:10:88:34:73:e7:6a:38:2f:6d:24:03:6a: cb:55:b3:bf:31:d8:e9:0e:c6:f5:04:0b:68:50:c6: 5c:ac:56:10:87:88:84:2e:16:f4:59:37:2b:41:36: cf:f7:dd:26:33:87:49:78:c2:b2:a3:60:ff:53:75: 44:4c:f2:7b:47:0b:08:03:92:9e:3b:36:18:68:32: 65:05:67:99:1c:41:3f:ae:eb:1b:94:32:21:e1:93: 7e:12:eb:dc:1e:13:b8:56:89:d0:5c:46:c2:ea:8e: 1d:49:96:18:c6:e9:a9:97:75:6b:a7:49:99:1a:6b: 9e:e6:d7:1a:26:ab:f5:ae:b4:21:e7:0d:6d:11:44: 7a:e3:e1:a6:f0:f2:01:4f:e3:0a:84:3d:ac:b3:4c: 96:4a:75:3e:67:99:a7:e1:31:a4:62:d3:11:70:e6: d6:89:5b:e9:a3:7b:1b:5b:de:09:85:8d:c2:af:7c: 29:99:9a:97:e0:73:9d:2c:48:ee:07:64:4b:17:c7: 39:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A1:FA:DD:A0:3B:5E:CB:6D:DF:CC:31:50:E7:4D:5A:C2:54:55:3D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216157.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1100::/40 Signature Algorithm: sha256WithRSAEncryption 04:be:7f:ec:bf:7b:82:ca:ee:80:00:ad:c4:32:21:b3:f7:8b: 64:2b:5f:b8:bb:bf:bd:4d:f6:df:9e:19:c3:bc:b5:3a:f5:eb: 2c:ba:4c:fe:9b:7c:e5:cb:bd:66:66:88:18:f2:90:d9:c2:d4: 50:9c:c4:c5:4a:f1:46:27:49:5a:11:ae:82:cc:99:e8:f3:54: f7:56:2c:3e:86:ca:27:c8:de:af:d9:2b:7b:c1:f7:dd:de:3d: af:12:7d:9c:34:6a:0c:b0:b0:08:f7:70:3a:5b:8d:40:a7:ca: c8:47:7a:42:a0:c4:1b:52:a0:91:fd:73:4f:b6:8f:d6:01:10: f0:e5:e4:a7:85:e3:d1:9a:c2:68:ca:0b:1b:86:fb:fd:46:da: a2:6a:5c:62:a4:d9:24:2e:f8:b9:cc:31:ba:37:d4:6b:ec:a8: 32:15:eb:0a:76:58:83:fb:5b:1e:14:9f:fa:6e:85:77:bf:f9: 2d:fb:e1:62:7c:f6:64:bf:dc:cd:be:49:5d:75:6f:cb:e9:17: 1e:e2:62:75:c3:6e:f4:fe:0f:8a:88:04:9d:9f:65:c4:04:0a: e4:1a:62:7c:1c:9e:82:d1:1c:71:f8:1f:6e:7d:f0:e4:3f:b9: 1a:9f:bc:36:a6:ca:92:15:22:b2:6a:5d:ef:1a:e7:3d:16:e3: 0b:db:68:a9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVJCF2tyaMOWBmQGZQdgI3sp+jbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEyMDkyMzQwMzZaFw0yNTEyMDgyMzQ1MzZaMDMxMTAvBgNV BAMTKEY1QTFGQUREQTAzQjVFQ0I2RERGQ0MzMTUwRTc0RDVBQzI1NDU1M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDErTpH0rjL0UDf935wg5K4O1u0 MyQr1QpCdIADaS6gOpwEjVmMVjk1pfHBhfIQgfCypF9xQaQUi2poadeB1xCINHPn ajgvbSQDastVs78x2OkOxvUEC2hQxlysVhCHiIQuFvRZNytBNs/33SYzh0l4wrKj YP9TdURM8ntHCwgDkp47NhhoMmUFZ5kcQT+u6xuUMiHhk34S69weE7hWidBcRsLq jh1JlhjG6amXdWunSZkaa57m1xomq/WutCHnDW0RRHrj4abw8gFP4wqEPayzTJZK dT5nmafhMaRi0xFw5taJW+mjextb3gmFjcKvfCmZmpfgc50sSO4HZEsXxzlDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU9aH63aA7Xstt38wxUOdNWsJUVT0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgREwDQYJKoZIhvcNAQELBQADggEBAAS+ f+y/e4LK7oAArcQyIbP3i2QrX7i7v71N9t+eGcO8tTr16yy6TP6bfOXLvWZmiBjy kNnC1FCcxMVK8UYnSVoRroLMmejzVPdWLD6GyifI3q/ZK3vB993ePa8SfZw0agyw sAj3cDpbjUCnyshHekKgxBtSoJH9c0+2j9YBEPDl5KeF49GawmjKCxuG+/1G2qJq XGKk2SQu+LnMMbo31GvsqDIV6wp2WIP7Wx4Un/puhXe/+S374WJ89mS/3M2+SV11 b8vpFx7iYnXDbvT+D4qIBJ2fZcQECuQaYnwcnoLRHHH4H2598OQ/uRqfvDamypIV IrJqXe8a5z0W4wvbaKk= -----END CERTIFICATE-----Generated at Fri Apr 4 17:04:49 2025 by rpki-client