$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216215.roa File: AS216215.roa (raw, json) Hash identifier: k3q2uQFeQEwtdkhvj7QaYbhAyaOBxGCNh/QiY7SKp9I= Subject key identifier: C1:65:8A:3E:71:1B:B8:EA:7A:26:E2:4B:68:82:2A:20:1D:AD:25:BC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6C4F208FF035CA6A10A1E42D7D7E0D7F66B99B99 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216215.roa Signing time: Tue 03 Sep 2024 21:49:53 +0000 ROA not before: Tue 03 Sep 2024 21:44:53 +0000 ROA not after: Tue 02 Sep 2025 21:49:53 +0000 asID: 216215 IP address blocks: 2a05:dfc1:a200::/40 maxlen: 48 2a05:dfc1:a300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:4f:20:8f:f0:35:ca:6a:10:a1:e4:2d:7d:7e:0d:7f:66:b9:9b:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 3 21:44:53 2024 GMT Not After : Sep 2 21:49:53 2025 GMT Subject: CN=C1658A3E711BB8EA7A26E24B68822A201DAD25BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a8:20:23:82:b0:f2:df:fc:00:61:33:ee:06: 7c:25:44:b7:a7:e2:cf:df:c8:48:2f:3f:21:77:88: e1:88:8a:90:dd:52:5c:d1:46:5c:9b:38:4d:9e:98: 94:7f:d7:8a:fb:4d:8e:62:31:7f:f4:97:45:15:41: 91:fb:4b:b0:33:64:51:9a:a9:d5:2b:4e:22:8b:ab: 09:d8:03:6a:a9:87:cb:11:14:05:4d:52:bc:a8:0e: 5a:a3:90:10:ce:02:d5:ad:3a:a1:4f:a3:bf:20:d9: 2d:d2:e2:a1:cd:27:7a:d9:2f:6a:fd:a3:95:9c:27: fb:b2:af:e3:70:37:bd:a5:ed:96:e3:d4:6b:40:38: 79:ab:ad:03:63:54:47:32:48:48:a5:6c:7c:68:1c: 37:a4:bb:ef:51:ae:a2:27:2c:a1:ab:dc:80:58:09: 26:af:0a:da:96:76:0a:d8:41:49:84:84:5c:50:d2: e2:a7:d8:ef:fc:9e:ba:75:0c:99:da:5e:c8:d3:94: 61:06:4a:15:bf:77:4b:42:a6:02:01:71:16:a5:79: 78:65:32:e6:3a:7b:f6:64:c4:3b:ba:a7:d9:94:22: 9b:b0:9b:f7:5f:3d:55:36:c4:89:8f:a1:ff:d9:ca: a1:91:b5:0c:c5:92:92:75:c1:f4:24:b2:19:b0:7e: cd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:65:8A:3E:71:1B:B8:EA:7A:26:E2:4B:68:82:2A:20:1D:AD:25:BC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216215.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a200::/39 Signature Algorithm: sha256WithRSAEncryption 23:0a:cd:a9:c7:f3:f2:37:9c:cc:a5:95:50:7a:38:b6:bd:b1: 62:42:92:15:5f:74:5a:26:2b:21:e9:fb:b5:90:54:fd:14:d1: 03:af:7c:69:75:84:c2:47:f1:6a:6a:07:c0:1b:5c:dc:e8:81: ee:c2:35:24:07:22:6e:cc:3f:b6:ed:14:17:3c:63:9c:e8:b5: 73:3d:24:27:1f:1c:ba:e6:1c:c5:62:2e:30:5b:fc:5e:2a:78: b5:1e:a1:e9:d1:f4:c2:63:0c:f6:36:d7:6f:13:c1:7c:da:59: 8a:2c:5d:08:5b:bc:0e:29:39:32:82:3c:32:37:9e:c1:02:58: 08:71:9f:ac:57:ee:ce:35:39:2f:4f:d3:21:61:aa:4d:ee:76: 37:f2:a2:5e:ab:01:cf:aa:9b:7d:cf:5c:e2:87:7c:f8:0f:86: 74:5b:9e:e5:58:34:d4:76:ea:9c:6b:37:92:5a:b8:0b:5f:1b: b4:83:7d:32:ed:ea:0f:d2:57:c0:ec:89:e1:de:59:a6:53:af: b7:46:df:64:36:fc:59:bf:b5:40:5f:79:cf:9f:b1:f0:20:88: 89:5b:c6:bd:3d:3d:ac:52:b4:f5:b5:4e:0c:70:45:58:01:36: 72:c8:23:98:b2:ad:47:ff:d7:79:11:5f:f6:70:26:ca:ea:b6: e5:e7:c1:bf -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbE8gj/A1ymoQoeQtfX4Nf2a5m5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MDMyMTQ0NTNaFw0yNTA5MDIyMTQ5NTNaMDMxMTAvBgNV BAMTKEMxNjU4QTNFNzExQkI4RUE3QTI2RTI0QjY4ODIyQTIwMURBRDI1QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUqCAjgrDy3/wAYTPuBnwlRLen 4s/fyEgvPyF3iOGIipDdUlzRRlybOE2emJR/14r7TY5iMX/0l0UVQZH7S7AzZFGa qdUrTiKLqwnYA2qph8sRFAVNUryoDlqjkBDOAtWtOqFPo78g2S3S4qHNJ3rZL2r9 o5WcJ/uyr+NwN72l7Zbj1GtAOHmrrQNjVEcySEilbHxoHDeku+9RrqInLKGr3IBY CSavCtqWdgrYQUmEhFxQ0uKn2O/8nrp1DJnaXsjTlGEGShW/d0tCpgIBcRaleXhl MuY6e/ZkxDu6p9mUIpuwm/dfPVU2xImPof/ZyqGRtQzFkpJ1wfQkshmwfs0dAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUwWWKPnEbuOp6JuJLaIIqIB2tJbwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MjE1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwaIwDQYJKoZIhvcNAQELBQADggEBACMK zanH8/I3nMyllVB6OLa9sWJCkhVfdFomKyHp+7WQVP0U0QOvfGl1hMJH8WpqB8Ab XNzoge7CNSQHIm7MP7btFBc8Y5zotXM9JCcfHLrmHMViLjBb/F4qeLUeoenR9MJj DPY2128TwXzaWYosXQhbvA4pOTKCPDI3nsECWAhxn6xX7s41OS9P0yFhqk3udjfy ol6rAc+qm33PXOKHfPgPhnRbnuVYNNR26pxrN5JauAtfG7SDfTLt6g/SV8DsieHe WaZTr7dG32Q2/Fm/tUBfec+fsfAgiIlbxr09PaxStPW1TgxwRVgBNnLII5iyrUf/ 13kRX/ZwJsrqtuXnwb8= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org