$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216305.roa File: AS216305.roa (raw, json) Hash identifier: ftMlCv9w9Ot2cV7gZOqeaFSjaV/3I8u2kRCHMPLuO4U= Subject key identifier: 00:1A:D5:1D:60:1A:5E:F1:E9:20:ED:36:BB:B7:2E:92:1E:F4:C7:E4 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6FED5E4E63E3ACF2073800F1EF790D5B1419594B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216305.roa Signing time: Thu 25 Jul 2024 23:50:31 +0000 ROA not before: Thu 25 Jul 2024 23:45:31 +0000 ROA not after: Thu 24 Jul 2025 23:50:31 +0000 asID: 216305 IP address blocks: 2a06:9f81:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ed:5e:4e:63:e3:ac:f2:07:38:00:f1:ef:79:0d:5b:14:19:59:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 25 23:45:31 2024 GMT Not After : Jul 24 23:50:31 2025 GMT Subject: CN=001AD51D601A5EF1E920ED36BBB72E921EF4C7E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:cb:08:71:fd:7e:54:7c:09:1d:e9:16:35: bb:42:a3:77:53:49:f9:3c:46:3c:ae:d7:e2:a6:ac: bf:67:d1:7b:19:a0:25:bf:cc:84:f9:00:4a:46:d1: cc:66:97:de:c5:2b:6c:bd:d6:9e:2c:69:b1:b1:5d: 55:ef:b7:c6:ae:d6:09:83:7b:ac:97:f7:d8:d4:d0: 64:40:2a:37:95:e8:df:49:ed:e6:9c:83:25:d0:ef: db:aa:08:67:71:91:67:bd:fc:b4:10:f7:9b:a1:4f: 08:39:f1:2e:71:bf:77:57:1d:23:68:54:fa:cb:c9: 6c:d7:21:86:2e:08:41:9f:2a:c9:7d:09:fe:3e:02: 29:fc:2c:6c:b2:7b:ec:6a:32:c6:6d:f2:96:13:fa: c8:da:6e:c5:01:31:ed:82:d2:4d:e6:70:12:ee:e1: 7f:94:e7:61:b9:a3:fd:e0:0e:9e:84:6b:31:66:f6: 06:7e:6c:4d:9d:33:c0:15:9a:c8:7f:4a:0f:e1:04: e5:8c:6c:15:40:82:bc:63:cf:7c:aa:4d:32:db:8d: bb:d7:68:e1:a5:fa:ab:a4:3e:81:ac:33:9e:bb:22: e7:56:49:ae:28:10:fd:90:8d:21:14:e9:7f:ad:84: c1:9c:1a:bb:34:11:fb:25:cf:14:03:a7:b9:fb:68: 0c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:1A:D5:1D:60:1A:5E:F1:E9:20:ED:36:BB:B7:2E:92:1E:F4:C7:E4 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216305.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5900::/40 Signature Algorithm: sha256WithRSAEncryption a7:99:ec:6b:6e:54:b5:24:53:9e:7b:dc:6e:4c:0e:50:dd:5d: 18:20:49:e2:88:22:bf:2d:02:21:c8:6b:7a:39:68:7d:f8:7a: a6:8c:20:33:79:25:51:97:da:70:31:6d:5c:76:db:27:e3:e1: 53:85:f9:00:45:9e:98:41:71:2e:f5:09:e9:0d:fb:d7:0d:ad: 57:78:00:d7:be:61:8b:52:b6:5e:0c:0c:0b:32:d3:ad:22:c4: 0a:e0:02:ae:df:9b:f9:e4:a9:f5:4c:e6:eb:3a:32:83:de:64: a8:bd:f0:5a:c1:80:e0:de:10:06:df:01:21:e8:e5:c1:61:71: 96:1b:2c:d1:ce:00:de:a3:98:b5:80:e1:bf:c8:50:03:25:34: 2a:68:63:62:2f:cc:fd:25:06:7b:8b:5d:0a:e7:2e:2f:f2:d8: 37:14:df:c2:f1:7c:b9:46:25:82:8b:b9:ce:1b:35:90:f9:22: 8c:0d:8a:92:a4:5d:f9:60:32:28:2d:a2:41:0c:50:72:b6:b8: a2:09:be:fa:20:97:bc:aa:4b:7c:1f:7d:1e:87:ed:4b:92:14: 7e:1a:2c:9f:ac:b2:0d:b4:2a:ff:20:24:f1:df:c4:82:3b:f8: b4:98:13:cb:e5:b5:96:20:77:4e:46:0c:91:bc:39:6f:ec:23: 66:d0:5b:cf -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUb+1eTmPjrPIHOADx73kNWxQZWUswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MjUyMzQ1MzFaFw0yNTA3MjQyMzUwMzFaMDMxMTAvBgNV BAMTKDAwMUFENTFENjAxQTVFRjFFOTIwRUQzNkJCQjcyRTkyMUVGNEM3RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8FMsIcf1+VHwJHekWNbtCo3dT Sfk8Rjyu1+KmrL9n0XsZoCW/zIT5AEpG0cxml97FK2y91p4sabGxXVXvt8au1gmD e6yX99jU0GRAKjeV6N9J7eacgyXQ79uqCGdxkWe9/LQQ95uhTwg58S5xv3dXHSNo VPrLyWzXIYYuCEGfKsl9Cf4+Ain8LGyye+xqMsZt8pYT+sjabsUBMe2C0k3mcBLu 4X+U52G5o/3gDp6EazFm9gZ+bE2dM8AVmsh/Sg/hBOWMbBVAgrxjz3yqTTLbjbvX aOGl+qukPoGsM567IudWSa4oEP2QjSEU6X+thMGcGrs0EfslzxQDp7n7aAz/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUABrVHWAaXvHpIO02u7cukh70x+QwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MzA1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVkwDQYJKoZIhvcNAQELBQADggEBAKeZ 7GtuVLUkU5573G5MDlDdXRggSeKIIr8tAiHIa3o5aH34eqaMIDN5JVGX2nAxbVx2 2yfj4VOF+QBFnphBcS71CekN+9cNrVd4ANe+YYtStl4MDAsy060ixArgAq7fm/nk qfVM5us6MoPeZKi98FrBgODeEAbfASHo5cFhcZYbLNHOAN6jmLWA4b/IUAMlNCpo Y2IvzP0lBnuLXQrnLi/y2DcU38LxfLlGJYKLuc4bNZD5IowNipKkXflgMigtokEM UHK2uKIJvvogl7yqS3wffR6H7UuSFH4aLJ+ssg20Kv8gJPHfxII7+LSYE8vltZYg d05GDJG8OW/sI2bQW88= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org