$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216382.roa File: AS216382.roa (raw, json) Hash identifier: s+REYuge7lonlHpDjXCgT4wHV9R1RdsL4tLJMyK5F60= Subject key identifier: 6A:A0:B0:01:05:1E:92:1D:70:E8:74:47:E8:E9:0C:18:FB:A5:84:FE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7AC89F0A438FA16993431080B3F6979278521BB5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216382.roa Signing time: Tue 30 Jul 2024 22:49:43 +0000 ROA not before: Tue 30 Jul 2024 22:44:43 +0000 ROA not after: Tue 29 Jul 2025 22:49:43 +0000 asID: 216382 IP address blocks: 2a05:dfc1:7f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c8:9f:0a:43:8f:a1:69:93:43:10:80:b3:f6:97:92:78:52:1b:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 30 22:44:43 2024 GMT Not After : Jul 29 22:49:43 2025 GMT Subject: CN=6AA0B001051E921D70E87447E8E90C18FBA584FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3d:23:c6:1e:39:2a:dd:9e:08:b0:66:80:19: b0:2e:12:c1:15:97:89:77:bd:8d:0d:fd:5f:b1:b5: 7b:d5:75:c8:9b:57:82:37:71:9a:04:7e:0c:51:2a: f7:a5:fb:3c:99:98:bf:86:56:dc:e7:c1:87:8f:5c: 58:10:54:c6:08:5a:04:d3:1d:e6:7a:f2:9d:e9:b1: 10:f3:f3:c8:e9:b1:04:82:37:d3:5c:d3:11:e5:e5: 8a:41:46:49:db:c7:01:d8:80:dc:14:aa:31:b4:19: 67:04:e2:00:6b:b0:bc:7a:ff:f1:25:82:10:0e:c6: 83:fa:96:b3:b2:3e:76:b3:6d:62:be:b2:e1:f6:49: eb:2b:d9:d9:f8:8a:e4:cc:15:10:67:80:85:d3:99: 77:49:42:6d:0d:c4:c9:48:60:e7:d5:5d:9a:6a:ec: 27:a6:9d:7d:28:4c:7a:1c:b3:76:49:13:89:60:01: 5d:fa:6d:43:c7:85:8a:a5:4f:04:45:5a:37:20:10: 0f:bc:b7:df:10:1c:41:aa:f0:bc:fa:1c:a7:dc:dd: 27:9d:b4:7e:25:74:98:54:6e:20:5e:9c:44:56:df: 05:f9:f1:f2:a3:da:aa:f9:c1:5c:76:50:cb:e0:8d: a1:fc:da:14:b3:f8:e7:dc:db:41:ea:a3:14:98:3b: 8b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A0:B0:01:05:1E:92:1D:70:E8:74:47:E8:E9:0C:18:FB:A5:84:FE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216382.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7f00::/40 Signature Algorithm: sha256WithRSAEncryption c4:9d:46:5c:e7:32:a6:dc:cb:fb:78:bb:ce:ed:ad:6f:26:41: ed:15:8e:d5:f2:d4:37:4a:5a:66:07:68:8a:bb:52:9d:cb:e5: fa:c0:c2:18:8a:68:92:74:46:fb:fe:dc:a2:79:75:e6:57:3b: 7d:69:c7:a2:e7:18:f9:d9:37:18:f3:06:9a:49:22:43:90:2a: 3c:9e:fa:57:72:a7:c1:66:d6:56:51:5b:5f:59:b6:f0:8c:87: 3f:72:83:f9:46:01:a8:c0:a8:a4:de:7e:f6:ed:f2:bf:5f:3b: b6:de:c6:81:c9:31:18:da:1d:dd:b9:b9:5d:91:02:87:df:13: 5d:9f:15:a3:52:32:67:d8:e4:1d:94:3f:63:41:51:bb:01:44: ae:0f:60:78:6a:dc:d4:6f:56:26:80:cf:7d:5b:5c:88:81:4b: 1a:00:47:ab:03:fa:1c:12:15:06:7d:b6:c3:80:92:81:de:1c: 4b:dd:35:8c:11:bb:d4:7f:ee:46:35:a3:31:dd:50:b7:56:bb: 4a:a8:ff:df:c3:fd:ab:1f:5f:14:2f:ff:2b:e6:63:99:d2:74: 97:01:2e:3a:d1:f8:8d:b4:19:a8:14:5a:1d:de:fb:77:07:40: 54:74:77:7e:f2:3b:0a:61:03:cd:8f:ad:c4:b3:fc:02:8c:84: d9:36:16:4d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUesifCkOPoWmTQxCAs/aXknhSG7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MzAyMjQ0NDNaFw0yNTA3MjkyMjQ5NDNaMDMxMTAvBgNV BAMTKDZBQTBCMDAxMDUxRTkyMUQ3MEU4NzQ0N0U4RTkwQzE4RkJBNTg0RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQPSPGHjkq3Z4IsGaAGbAuEsEV l4l3vY0N/V+xtXvVdcibV4I3cZoEfgxRKvel+zyZmL+GVtznwYePXFgQVMYIWgTT HeZ68p3psRDz88jpsQSCN9Nc0xHl5YpBRknbxwHYgNwUqjG0GWcE4gBrsLx6//El ghAOxoP6lrOyPnazbWK+suH2Sesr2dn4iuTMFRBngIXTmXdJQm0NxMlIYOfVXZpq 7CemnX0oTHocs3ZJE4lgAV36bUPHhYqlTwRFWjcgEA+8t98QHEGq8Lz6HKfc3Sed tH4ldJhUbiBenERW3wX58fKj2qr5wVx2UMvgjaH82hSz+Ofc20HqoxSYO4uNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaqCwAQUekh1w6HRH6OkMGPulhP4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MzgyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwX8wDQYJKoZIhvcNAQELBQADggEBAMSd RlznMqbcy/t4u87trW8mQe0VjtXy1DdKWmYHaIq7Up3L5frAwhiKaJJ0Rvv+3KJ5 deZXO31px6LnGPnZNxjzBppJIkOQKjye+ldyp8Fm1lZRW19ZtvCMhz9yg/lGAajA qKTefvbt8r9fO7bexoHJMRjaHd25uV2RAoffE12fFaNSMmfY5B2UP2NBUbsBRK4P YHhq3NRvViaAz31bXIiBSxoAR6sD+hwSFQZ9tsOAkoHeHEvdNYwRu9R/7kY1ozHd ULdWu0qo/9/D/asfXxQv/yvmY5nSdJcBLjrR+I20GagUWh3e+3cHQFR0d37yOwph A82PrcSz/AKMhNk2Fk0= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org