$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216227.roa File: AS216227.roa (raw, json) Hash identifier: pZSKwGA/JC5ouQLZ3xurb8qWmfRLt6HjgCnjaIXGiHA= Subject key identifier: D8:21:77:6B:9E:32:F4:8B:B3:10:EF:B9:17:48:0A:5C:38:B1:CF:EB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1DA3DA0936C2F82940C36FA422FF9C8674931071 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216227.roa Signing time: Mon 07 Oct 2024 21:45:22 +0000 ROA not before: Mon 07 Oct 2024 21:40:22 +0000 ROA not after: Mon 06 Oct 2025 21:45:22 +0000 asID: 216227 IP address blocks: 2a05:dfc1:af00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a3:da:09:36:c2:f8:29:40:c3:6f:a4:22:ff:9c:86:74:93:10:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 7 21:40:22 2024 GMT Not After : Oct 6 21:45:22 2025 GMT Subject: CN=D821776B9E32F48BB310EFB917480A5C38B1CFEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:32:58:4e:77:6f:55:33:86:b7:64:8a:fa:6b: 6c:88:ae:03:c3:cc:22:42:bc:ee:c1:97:39:ad:77: 3c:3c:0b:f6:89:f6:b7:c4:b6:fc:6b:77:86:29:76: 8b:e4:d5:36:28:59:be:00:ed:63:43:70:14:ef:c8: 38:24:28:3a:58:60:73:b0:c7:56:78:01:4a:bf:03: 42:56:13:ef:4c:d8:8d:49:0d:5d:36:5b:0a:1e:ee: 0b:90:76:df:10:2b:8e:70:70:a8:0a:6a:47:e3:59: b5:7f:fb:1c:8f:2b:5c:79:28:1c:a6:2c:8f:58:8f: 7f:7b:81:5b:9e:88:7b:c4:6d:bd:05:52:d0:14:e5: 86:23:da:2f:f7:e1:89:3f:d8:7a:6f:62:42:19:07: 98:74:dc:21:41:9b:7f:b2:d8:b1:12:19:b0:d5:9f: 7b:ce:69:5d:34:5b:98:53:b8:bb:8f:dd:13:69:20: 97:d2:79:9d:de:85:5d:fd:15:db:a8:cd:a4:02:52: 19:df:18:23:4f:3a:9d:22:40:87:92:1a:20:a4:cc: f9:cf:0c:d1:ef:aa:21:94:86:6b:b2:1c:01:5d:86: 2b:f9:5d:63:81:41:7b:e3:7a:2c:f9:d8:b0:0b:a3: eb:40:69:ac:2f:9c:ff:00:15:0c:87:e8:76:65:44: 36:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:21:77:6B:9E:32:F4:8B:B3:10:EF:B9:17:48:0A:5C:38:B1:CF:EB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216227.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:af00::/40 Signature Algorithm: sha256WithRSAEncryption 23:e8:03:cf:d9:47:28:37:81:17:f0:71:01:4d:7d:b8:83:74: c7:cc:82:22:1e:c1:30:cf:7b:3b:fe:73:3d:b6:57:f9:23:5c: 06:b3:a8:c7:71:96:db:f2:84:ce:1d:f0:a6:81:48:23:d9:c5: 9a:f2:17:4f:54:fd:49:ce:7a:58:ea:34:08:5a:53:1e:32:fc: 75:21:18:f6:ab:f7:f1:71:08:15:d8:df:e0:df:de:1d:ac:15: de:df:7e:91:e2:23:2b:ec:57:7b:44:d9:6c:9d:39:43:7e:5c: 26:48:bb:fa:c4:52:ba:b8:ea:b0:da:9f:6f:9a:c2:af:54:e7: cc:1b:2a:78:e2:e4:89:f1:cb:80:3b:f3:94:df:20:68:1b:2f: 27:73:75:79:12:94:3d:4b:4c:2c:3e:d9:94:5c:59:ec:5a:bb: 8f:03:38:a5:cd:7f:e7:23:10:b5:1c:79:bc:d7:71:59:99:07: 64:2c:53:32:13:26:0f:a3:90:ac:33:ed:4f:20:79:95:d4:60: 4a:f9:8b:23:5c:10:07:e4:4e:91:a3:cb:d9:bf:d7:e0:1e:50: 2c:80:b3:f8:e0:41:76:8b:e5:19:e4:31:86:d8:52:93:e9:fc: e6:21:35:da:27:17:2f:09:bf:be:bf:aa:54:bb:2f:5a:a6:38: c4:0a:a5:7f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHaPaCTbC+ClAw2+kIv+chnSTEHEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDcyMTQwMjJaFw0yNTEwMDYyMTQ1MjJaMDMxMTAvBgNV BAMTKEQ4MjE3NzZCOUUzMkY0OEJCMzEwRUZCOTE3NDgwQTVDMzhCMUNGRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnMlhOd29VM4a3ZIr6a2yIrgPD zCJCvO7Blzmtdzw8C/aJ9rfEtvxrd4Ypdovk1TYoWb4A7WNDcBTvyDgkKDpYYHOw x1Z4AUq/A0JWE+9M2I1JDV02Wwoe7guQdt8QK45wcKgKakfjWbV/+xyPK1x5KBym LI9Yj397gVueiHvEbb0FUtAU5YYj2i/34Yk/2HpvYkIZB5h03CFBm3+y2LESGbDV n3vOaV00W5hTuLuP3RNpIJfSeZ3ehV39FduozaQCUhnfGCNPOp0iQIeSGiCkzPnP DNHvqiGUhmuyHAFdhiv5XWOBQXvjeiz52LALo+tAaawvnP8AFQyH6HZlRDZRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU2CF3a54y9IuzEO+5F0gKXDixz+swHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MjI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwa8wDQYJKoZIhvcNAQELBQADggEBACPo A8/ZRyg3gRfwcQFNfbiDdMfMgiIewTDPezv+cz22V/kjXAazqMdxltvyhM4d8KaB SCPZxZryF09U/UnOeljqNAhaUx4y/HUhGPar9/FxCBXY3+Df3h2sFd7ffpHiIyvs V3tE2WydOUN+XCZIu/rEUrq46rDan2+awq9U58wbKnji5Inxy4A785TfIGgbLydz dXkSlD1LTCw+2ZRcWexau48DOKXNf+cjELUcebzXcVmZB2QsUzITJg+jkKwz7U8g eZXUYEr5iyNcEAfkTpGjy9m/1+AeUCyAs/jgQXaL5RnkMYbYUpPp/OYhNdonFy8J v76/qlS7L1qmOMQKpX8= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org