$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216157.roa File: AS216157.roa (raw, json) Hash identifier: JaqjR4f03kW8v5lYLDlpTwU5gn7arpIsl6o2OwSM34o= Subject key identifier: DF:E0:F1:61:D2:A9:47:8B:DA:81:2C:FD:D0:03:1B:82:D9:59:2B:28 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 057449640958D4187D95C8A8C345E6067E2D1C10 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216157.roa Signing time: Mon 08 Jan 2024 23:20:10 +0000 ROA not before: Mon 08 Jan 2024 23:15:10 +0000 ROA not after: Mon 06 Jan 2025 23:20:10 +0000 asID: 216157 IP address blocks: 2a06:9f81:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:74:49:64:09:58:d4:18:7d:95:c8:a8:c3:45:e6:06:7e:2d:1c:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jan 8 23:15:10 2024 GMT Not After : Jan 6 23:20:10 2025 GMT Subject: CN=DFE0F161D2A9478BDA812CFDD0031B82D9592B28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:d7:4c:db:c0:bd:de:a1:ce:fd:48:8e:a6: 07:e0:dc:04:05:e0:57:d7:98:29:7f:10:e4:cc:a7: 58:76:e5:b8:90:42:bd:39:c1:4f:2f:0c:35:a7:ec: 48:e8:95:56:44:0c:3c:fa:91:79:0a:6d:59:4a:bc: 6b:b5:5b:6f:1b:a3:c4:08:45:08:0a:28:80:db:ea: 9c:09:c1:a9:c8:e0:57:39:1d:d5:01:e3:3b:ee:58: c8:ee:bf:ec:76:1f:52:3b:21:79:33:32:cc:5f:52: 7a:59:3d:49:c9:a9:52:b3:f0:4f:86:ea:d1:c0:13: 5a:9b:a9:d8:17:c9:40:e5:83:cd:da:81:4a:ee:19: 3a:e0:14:8c:7d:2f:bb:d3:42:4b:f7:53:f7:9b:34: 1c:20:70:46:9d:ad:94:e1:0e:47:af:67:44:d5:f5: 7b:6d:16:2b:41:7d:61:b1:ba:57:78:08:e9:a0:eb: e0:8d:7f:bc:81:4f:91:1f:90:f4:ba:80:a2:f4:e4: c1:af:39:dc:8c:f5:6d:f9:00:cb:38:4a:21:92:b9: 60:60:17:01:25:4d:e3:85:91:98:b9:39:2c:71:db: a0:ff:13:97:9d:cd:24:9d:44:64:11:ce:f5:9e:d3: 1c:8c:21:7b:40:ec:d0:2e:a4:9a:f0:aa:7c:e3:41: a6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E0:F1:61:D2:A9:47:8B:DA:81:2C:FD:D0:03:1B:82:D9:59:2B:28 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216157.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1100::/40 Signature Algorithm: sha256WithRSAEncryption 0a:0b:12:11:3f:33:bd:ef:e6:ad:74:6e:01:96:ad:fe:51:f3: f8:bc:4d:80:09:04:73:22:5b:67:6e:ae:4a:ab:4a:b6:61:ff: cf:ff:d7:08:4a:53:db:0f:d4:50:2d:6a:c1:84:8f:58:c8:c1: 3c:ce:9f:ed:e5:9e:c2:46:62:27:ee:2b:3c:06:dd:2a:b2:b3: bb:0d:25:64:ad:c2:3c:05:ce:f6:13:8e:09:23:c6:dc:32:cb: 0d:14:ee:0f:44:e4:70:64:c5:24:2b:cf:b3:89:9d:64:0c:43: de:37:3a:66:98:b2:ca:4d:06:f4:04:1a:44:f2:71:d9:0b:d6: 62:da:f9:d4:e7:09:c5:fb:84:01:88:ca:ad:9f:7a:f8:d7:d3: 26:28:d3:cb:14:2e:f6:ea:ea:3e:65:0e:00:a8:9b:00:b2:8a: 97:d3:5a:47:28:06:e4:22:19:e3:bb:82:f7:2a:57:ae:66:ac: de:a2:db:a8:4d:6e:f7:36:17:a1:df:b3:36:2f:77:51:cf:84: ef:b9:6c:32:37:96:85:cc:a5:8d:6d:57:5f:53:cf:a6:72:36: b8:d1:bb:91:f5:2a:7c:d0:5e:ba:5a:56:8e:ab:33:6d:0a:24: 96:83:da:ba:d3:d0:fc:94:e8:56:15:f4:1e:ec:c6:20:65:bf: 44:4a:92:97 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBXRJZAlY1Bh9lciow0XmBn4tHBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAxMDgyMzE1MTBaFw0yNTAxMDYyMzIwMTBaMDMxMTAvBgNV BAMTKERGRTBGMTYxRDJBOTQ3OEJEQTgxMkNGREQwMDMxQjgyRDk1OTJCMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKC9dM28C93qHO/UiOpgfg3AQF 4FfXmCl/EOTMp1h25biQQr05wU8vDDWn7EjolVZEDDz6kXkKbVlKvGu1W28bo8QI RQgKKIDb6pwJwanI4Fc5HdUB4zvuWMjuv+x2H1I7IXkzMsxfUnpZPUnJqVKz8E+G 6tHAE1qbqdgXyUDlg83agUruGTrgFIx9L7vTQkv3U/ebNBwgcEadrZThDkevZ0TV 9XttFitBfWGxuld4COmg6+CNf7yBT5EfkPS6gKL05MGvOdyM9W35AMs4SiGSuWBg FwElTeOFkZi5OSxx26D/E5edzSSdRGQRzvWe0xyMIXtA7NAupJrwqnzjQaYLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU3+DxYdKpR4vagSz90AMbgtlZKygwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgREwDQYJKoZIhvcNAQELBQADggEBAAoL EhE/M73v5q10bgGWrf5R8/i8TYAJBHMiW2durkqrSrZh/8//1whKU9sP1FAtasGE j1jIwTzOn+3lnsJGYifuKzwG3Sqys7sNJWStwjwFzvYTjgkjxtwyyw0U7g9E5HBk xSQrz7OJnWQMQ943OmaYsspNBvQEGkTycdkL1mLa+dTnCcX7hAGIyq2fevjX0yYo 08sULvbq6j5lDgComwCyipfTWkcoBuQiGeO7gvcqV65mrN6i26hNbvc2F6HfszYv d1HPhO+5bDI3loXMpY1tV19Tz6ZyNrjRu5H1KnzQXrpaVo6rM20KJJaD2rrT0PyU 6FYV9B7sxiBlv0RKkpc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org