$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216198.roa File: AS216198.roa (raw, json) Hash identifier: e/MkiBc1tZgveucZBRf4ipJQoW7B/MfU9XXdE9TY1MI= Subject key identifier: 22:3E:1E:BA:24:08:4F:6B:D1:39:B5:62:14:33:66:17:82:86:EB:53 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5BD4E90E0BA6EBD148CE954A3AF349BD482792E3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216198.roa Signing time: Wed 11 Sep 2024 08:44:34 +0000 ROA not before: Wed 11 Sep 2024 08:39:34 +0000 ROA not after: Wed 10 Sep 2025 08:44:34 +0000 asID: 216198 IP address blocks: 2a05:dfc1:a700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d4:e9:0e:0b:a6:eb:d1:48:ce:95:4a:3a:f3:49:bd:48:27:92:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 11 08:39:34 2024 GMT Not After : Sep 10 08:44:34 2025 GMT Subject: CN=223E1EBA24084F6BD139B562143366178286EB53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7f:37:22:92:56:24:6a:6b:63:a4:60:f7:cf: 6f:74:e6:54:9f:1b:56:8b:f2:c5:1b:c1:d3:bb:bb: bd:d9:9f:f1:27:07:0b:aa:b0:c4:e4:9b:15:31:a9: b7:53:10:53:38:a4:5c:4a:d5:f4:eb:dd:ae:0e:b8: 39:27:61:5f:41:d6:de:2e:43:0a:1d:36:6c:57:b6: ec:91:35:4c:19:c3:d4:81:dd:2c:51:32:7c:bd:b3: d2:10:37:bc:bd:fd:b8:f6:20:ae:49:6c:01:74:a1: 29:93:f8:25:8c:a1:3d:d0:95:ae:bd:27:7b:00:2d: 7a:51:2b:5f:d7:6c:b5:1c:80:5c:e2:2a:74:27:1e: 69:9d:a3:cc:d8:2b:70:d7:ad:1e:26:aa:bf:ee:aa: 52:c7:8d:2f:68:05:77:18:fe:de:1f:7f:67:14:3a: fa:83:67:2a:72:83:35:24:0e:e8:fa:63:00:1f:49: 67:d6:ac:7e:f7:c4:6b:1f:91:37:84:7f:88:b7:0e: 87:a9:04:a7:46:32:c4:30:7b:45:c6:38:d6:16:4e: 1b:a3:3e:51:0d:a5:f1:8e:8f:67:66:48:72:51:7b: db:ee:ce:e7:dd:f6:19:f1:8d:38:e8:c2:dd:19:6b: 4c:8b:cb:e8:91:8e:f0:ed:77:cb:16:ac:92:67:5b: de:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3E:1E:BA:24:08:4F:6B:D1:39:B5:62:14:33:66:17:82:86:EB:53 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216198.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a700::/40 Signature Algorithm: sha256WithRSAEncryption 9f:27:65:c0:a3:f4:53:0d:b7:81:87:a0:c8:11:ab:95:09:c2: 06:03:5e:08:5a:02:f5:0e:ab:6b:71:47:65:b4:10:bb:c1:75: 8b:25:e5:13:4b:32:c1:47:b8:b2:56:af:5a:60:62:c3:b7:9a: d1:01:1f:63:b3:b3:c7:04:86:78:90:b1:2d:fd:e8:29:fb:67: dd:82:c3:d0:d9:be:bc:1d:ae:4a:bc:4d:49:41:f7:74:6d:b1: 68:35:18:af:ac:4e:3d:32:93:e6:1e:50:ff:c7:2b:9b:6b:5b: a9:fa:2e:bb:17:4a:df:9d:9b:58:e6:6f:54:b9:93:83:9c:56: 80:5a:56:bd:29:e6:97:34:ca:53:8e:06:a5:09:67:87:22:2d: 48:f1:3c:b8:e4:da:2e:36:b5:da:79:17:78:d7:70:11:97:c2: f4:05:b0:f1:0f:93:49:6c:75:ef:c4:c8:7b:b8:03:80:bb:e1: c4:bf:96:81:78:11:c3:f5:35:99:07:26:19:83:84:64:b7:b0: d2:da:62:ca:7e:4e:45:33:5a:6e:f3:c8:a9:cc:2c:e0:c7:f0: 48:84:b5:a0:a4:9a:6e:22:fe:d1:06:12:a6:91:3b:77:96:9c: 95:2d:bb:39:ce:2e:48:6e:13:13:3c:95:20:52:2e:59:d3:ef: fd:76:0b:d3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUW9TpDgum69FIzpVKOvNJvUgnkuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MTEwODM5MzRaFw0yNTA5MTAwODQ0MzRaMDMxMTAvBgNV BAMTKDIyM0UxRUJBMjQwODRGNkJEMTM5QjU2MjE0MzM2NjE3ODI4NkVCNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3fzciklYkamtjpGD3z2905lSf G1aL8sUbwdO7u73Zn/EnBwuqsMTkmxUxqbdTEFM4pFxK1fTr3a4OuDknYV9B1t4u QwodNmxXtuyRNUwZw9SB3SxRMny9s9IQN7y9/bj2IK5JbAF0oSmT+CWMoT3Qla69 J3sALXpRK1/XbLUcgFziKnQnHmmdo8zYK3DXrR4mqr/uqlLHjS9oBXcY/t4ff2cU OvqDZypygzUkDuj6YwAfSWfWrH73xGsfkTeEf4i3DoepBKdGMsQwe0XGONYWThuj PlENpfGOj2dmSHJRe9vuzufd9hnxjTjowt0Za0yLy+iRjvDtd8sWrJJnW96PAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIj4euiQIT2vRObViFDNmF4KG61MwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTk4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwacwDQYJKoZIhvcNAQELBQADggEBAJ8n ZcCj9FMNt4GHoMgRq5UJwgYDXghaAvUOq2txR2W0ELvBdYsl5RNLMsFHuLJWr1pg YsO3mtEBH2Ozs8cEhniQsS396Cn7Z92Cw9DZvrwdrkq8TUlB93RtsWg1GK+sTj0y k+YeUP/HK5trW6n6LrsXSt+dm1jmb1S5k4OcVoBaVr0p5pc0ylOOBqUJZ4ciLUjx PLjk2i42tdp5F3jXcBGXwvQFsPEPk0lsde/EyHu4A4C74cS/loF4EcP1NZkHJhmD hGS3sNLaYsp+TkUzWm7zyKnMLODH8EiEtaCkmm4i/tEGEqaRO3eWnJUtuznOLkhu ExM8lSBSLlnT7/12C9M= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org