$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216242.roa File: AS216242.roa (raw, json) Hash identifier: zKqaO++ykKJy6nGEc73EidWVcxptad43DiCTh2X1tQg= Subject key identifier: 2B:06:0E:F8:8E:BA:3C:DB:56:6C:CD:9F:71:60:B0:9A:EC:A4:67:D9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2B286189629593F90BAE2E130ACB2737C103CF9F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216242.roa Signing time: Wed 28 Aug 2024 08:49:52 +0000 ROA not before: Wed 28 Aug 2024 08:44:52 +0000 ROA not after: Wed 27 Aug 2025 08:49:52 +0000 asID: 216242 IP address blocks: 2a05:dfc1:9800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:28:61:89:62:95:93:f9:0b:ae:2e:13:0a:cb:27:37:c1:03:cf:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 28 08:44:52 2024 GMT Not After : Aug 27 08:49:52 2025 GMT Subject: CN=2B060EF88EBA3CDB566CCD9F7160B09AECA467D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:16:61:b0:70:ce:ec:94:b9:27:f2:52:f9:bd: 5b:b4:da:f0:a2:09:b1:11:6f:84:7d:57:e7:79:01: 5a:a3:88:2e:01:a7:f9:5b:9b:27:dc:c3:5c:d8:a3: 3f:08:c2:9d:3c:90:24:38:da:c3:8f:d7:05:f8:4c: ae:a1:19:f3:0b:cf:03:d2:7c:51:51:4d:d6:30:6e: cc:08:48:0a:9a:6d:48:48:2c:47:e4:f8:19:c2:8c: 36:d6:8b:2b:ba:38:ad:e5:02:46:c9:29:b8:02:d0: 95:22:c1:e1:68:ba:c6:1b:e8:b6:0f:6c:43:dd:cc: 3f:79:e9:9e:8b:e1:38:c8:51:ba:c9:73:0e:48:76: 1d:a3:8d:c9:54:ba:79:72:17:8e:69:e0:3e:58:76: de:43:1b:a9:da:ec:32:19:eb:59:81:eb:f4:5a:6c: 74:a6:3e:78:22:db:75:ae:15:a2:e1:62:63:0b:ba: 9e:b0:ee:73:e9:80:ff:fe:c9:b7:3d:e4:89:d8:b5: f7:d8:02:01:f6:8a:ec:65:22:ca:c3:b0:4a:4b:82: 0c:f0:fe:37:0a:88:0e:eb:98:d7:b3:02:05:e6:35: 64:a3:95:9f:a6:11:58:2f:dd:7e:f8:79:4d:83:af: 24:8c:94:91:b4:1f:b6:be:b4:30:16:28:f4:64:7a: da:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:06:0E:F8:8E:BA:3C:DB:56:6C:CD:9F:71:60:B0:9A:EC:A4:67:D9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9800::/40 Signature Algorithm: sha256WithRSAEncryption 09:ea:33:d3:df:31:be:1c:a6:fa:b6:b5:2f:50:7e:70:7f:67: 48:0e:1e:2f:3a:5f:a3:0f:ae:f9:05:a7:46:37:3b:b3:c1:f8: 3f:69:c4:31:39:3c:7e:0e:a6:f5:98:09:23:ef:39:9f:7f:52: 9d:29:f4:10:cb:6e:8f:48:96:98:8d:a7:dc:20:fe:e5:a1:63: 21:c3:7c:3b:08:86:2b:33:bc:57:8f:43:7b:71:53:f4:fd:b7: c4:cc:09:57:77:ee:eb:ff:61:7d:20:9d:43:bc:75:82:af:a1: a8:cd:e3:d8:a2:16:15:d2:4d:28:3e:90:02:74:1e:27:7d:14: ae:39:5d:47:d5:ee:de:b9:75:b0:86:44:44:15:5a:ea:67:3b: d9:d1:77:76:3f:22:e4:97:df:b1:73:d6:03:79:33:f5:86:ea: 27:61:24:9a:cd:86:59:2c:65:d8:f9:d1:e8:04:7c:c5:b3:44: f4:59:72:87:88:a3:3d:a8:c7:98:44:75:86:ae:df:10:b0:9c: 3d:7c:dd:de:cf:70:c2:2e:0b:1c:59:3d:a0:59:0a:e3:e7:b5: df:2c:5d:88:d4:72:04:fa:cc:ee:fd:94:7d:b4:2a:da:bb:e2: 1e:48:b5:73:7f:0e:b1:66:13:d7:77:a5:33:5e:b4:b5:cb:64: 28:05:d9:55 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKyhhiWKVk/kLri4TCssnN8EDz58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MjgwODQ0NTJaFw0yNTA4MjcwODQ5NTJaMDMxMTAvBgNV BAMTKDJCMDYwRUY4OEVCQTNDREI1NjZDQ0Q5RjcxNjBCMDlBRUNBNDY3RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkFmGwcM7slLkn8lL5vVu02vCi CbERb4R9V+d5AVqjiC4Bp/lbmyfcw1zYoz8Iwp08kCQ42sOP1wX4TK6hGfMLzwPS fFFRTdYwbswISAqabUhILEfk+BnCjDbWiyu6OK3lAkbJKbgC0JUiweFousYb6LYP bEPdzD956Z6L4TjIUbrJcw5Idh2jjclUunlyF45p4D5Ydt5DG6na7DIZ61mB6/Ra bHSmPngi23WuFaLhYmMLup6w7nPpgP/+ybc95InYtffYAgH2iuxlIsrDsEpLggzw /jcKiA7rmNezAgXmNWSjlZ+mEVgv3X74eU2DrySMlJG0H7a+tDAWKPRketoBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUKwYO+I66PNtWbM2fcWCwmuykZ9kwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MjQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwZgwDQYJKoZIhvcNAQELBQADggEBAAnq M9PfMb4cpvq2tS9QfnB/Z0gOHi86X6MPrvkFp0Y3O7PB+D9pxDE5PH4OpvWYCSPv OZ9/Up0p9BDLbo9IlpiNp9wg/uWhYyHDfDsIhiszvFePQ3txU/T9t8TMCVd37uv/ YX0gnUO8dYKvoajN49iiFhXSTSg+kAJ0Hid9FK45XUfV7t65dbCGREQVWupnO9nR d3Y/IuSX37Fz1gN5M/WG6idhJJrNhlksZdj50egEfMWzRPRZcoeIoz2ox5hEdYau 3xCwnD183d7PcMIuCxxZPaBZCuPntd8sXYjUcgT6zO79lH20Ktq74h5ItXN/DrFm E9d3pTNetLXLZCgF2VU= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org