$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216452.roa File: AS216452.roa (raw, json) Hash identifier: VRjwPo8mTZcbD5a5ibcp7/SiwxwD+NTg77aq5jCW0mY= Subject key identifier: 64:5A:6E:6E:00:92:6D:07:C3:DF:44:64:D4:E9:4C:FC:C1:F7:8D:78 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6021E9185F254E61882983EDBEB0049088BCEF23 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216452.roa Signing time: Wed 17 Jul 2024 23:00:54 +0000 ROA not before: Wed 17 Jul 2024 22:55:54 +0000 ROA not after: Wed 16 Jul 2025 23:00:54 +0000 asID: 216452 IP address blocks: 2a05:dfc1:8200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:21:e9:18:5f:25:4e:61:88:29:83:ed:be:b0:04:90:88:bc:ef:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 17 22:55:54 2024 GMT Not After : Jul 16 23:00:54 2025 GMT Subject: CN=645A6E6E00926D07C3DF4464D4E94CFCC1F78D78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0c:b0:03:87:6d:eb:21:0f:97:f0:c7:b7:08: a5:4a:96:a3:be:4a:09:ad:1c:3d:f9:3f:56:7e:26: 22:97:1e:38:58:3d:af:02:0a:3b:e2:16:cd:c5:c5: b9:44:c4:75:f6:65:cd:a9:62:8e:e9:e3:a7:42:d0: 6c:30:d2:c6:71:a7:bd:0a:08:ef:82:32:d5:f5:f2: 50:70:7b:b1:a4:51:d6:13:26:3f:61:c1:78:22:cb: c5:94:10:3c:61:04:97:cf:d4:b3:fc:62:9d:f7:9e: 3a:7a:8f:08:e6:87:8e:87:8b:31:5d:0f:71:60:ab: cf:e7:1e:03:9c:6a:41:de:ad:39:52:28:82:74:4d: eb:cd:2b:88:f3:f9:11:64:28:48:af:5c:e4:20:79: 65:ed:66:12:e9:22:ff:0e:77:83:ff:13:8a:e7:9e: 78:05:c8:6c:9f:47:c1:b8:2c:15:80:0e:ff:9d:6c: b2:fe:64:9f:ce:3f:b3:ac:cc:b0:e3:1e:63:47:42: 05:b6:c2:cc:4c:9c:bc:9d:7a:60:e8:35:96:0d:a8: 91:47:f5:f1:b1:41:29:1d:f4:d7:b1:1b:67:7e:82: 85:2b:9d:7b:75:c1:31:ae:ba:fb:75:1b:22:79:38: 0d:3b:ba:43:11:22:9f:3d:92:d3:38:1c:23:d3:05: 9b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:5A:6E:6E:00:92:6D:07:C3:DF:44:64:D4:E9:4C:FC:C1:F7:8D:78 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216452.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8200::/40 Signature Algorithm: sha256WithRSAEncryption b8:fe:de:04:8e:44:ec:65:95:2b:ed:2d:99:83:0a:73:e2:87: 14:58:55:b2:20:1e:fb:99:99:78:20:0c:04:29:7a:c4:6b:18: cf:ee:27:e4:1c:bc:36:25:eb:8e:a9:47:10:2a:b3:ee:61:5b: 34:71:15:fb:d4:c5:3e:24:ba:ad:f0:7d:6e:bd:a8:f3:7a:2b: 4c:42:3d:82:d0:67:ec:51:bc:24:f3:48:35:18:83:2c:36:92: 82:66:56:ac:fd:5c:90:fe:38:4b:06:46:01:ba:87:94:45:4e: f8:f5:43:9f:2a:c5:a6:22:dc:f0:d1:1d:94:19:dd:6b:0a:dd: 27:99:f0:7c:22:3b:a0:2b:a8:21:8e:5c:c9:fb:17:9c:65:53: 4a:2d:91:cd:0b:e7:42:e5:6e:20:e8:8e:fb:49:f7:0b:4d:98: 70:fb:ff:60:b7:cf:aa:92:c4:e3:b8:52:ed:18:2a:8b:64:a4: 42:d0:fe:df:bc:13:2e:e1:29:a5:1c:c7:83:49:0f:0c:2b:da: 6b:8f:cb:2b:9b:0b:79:dc:0d:00:90:6d:3e:9b:b2:00:26:18: 88:93:4d:e1:cc:f8:42:a2:7f:fc:14:d5:99:01:c5:0a:26:3c: 9b:11:7f:61:29:39:05:41:24:69:3a:0e:7c:28:4f:0f:08:4d: 87:1e:00:3f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYCHpGF8lTmGIKYPtvrAEkIi87yMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MTcyMjU1NTRaFw0yNTA3MTYyMzAwNTRaMDMxMTAvBgNV BAMTKDY0NUE2RTZFMDA5MjZEMDdDM0RGNDQ2NEQ0RTk0Q0ZDQzFGNzhENzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYDLADh23rIQ+X8Me3CKVKlqO+ SgmtHD35P1Z+JiKXHjhYPa8CCjviFs3FxblExHX2Zc2pYo7p46dC0Gww0sZxp70K CO+CMtX18lBwe7GkUdYTJj9hwXgiy8WUEDxhBJfP1LP8Yp33njp6jwjmh46HizFd D3Fgq8/nHgOcakHerTlSKIJ0TevNK4jz+RFkKEivXOQgeWXtZhLpIv8Od4P/E4rn nngFyGyfR8G4LBWADv+dbLL+ZJ/OP7OszLDjHmNHQgW2wsxMnLydemDoNZYNqJFH 9fGxQSkd9NexG2d+goUrnXt1wTGuuvt1GyJ5OA07ukMRIp89ktM4HCPTBZvxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZFpubgCSbQfD30Rk1OlM/MH3jXgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYIwDQYJKoZIhvcNAQELBQADggEBALj+ 3gSOROxllSvtLZmDCnPihxRYVbIgHvuZmXggDAQpesRrGM/uJ+QcvDYl646pRxAq s+5hWzRxFfvUxT4kuq3wfW69qPN6K0xCPYLQZ+xRvCTzSDUYgyw2koJmVqz9XJD+ OEsGRgG6h5RFTvj1Q58qxaYi3PDRHZQZ3WsK3SeZ8HwiO6ArqCGOXMn7F5xlU0ot kc0L50LlbiDojvtJ9wtNmHD7/2C3z6qSxOO4Uu0YKotkpELQ/t+8Ey7hKaUcx4NJ Dwwr2muPyyubC3ncDQCQbT6bsgAmGIiTTeHM+EKif/wU1ZkBxQomPJsRf2EpOQVB JGk6DnwoTw8ITYceAD8= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org