$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216454.roa File: AS216454.roa (raw, json) Hash identifier: 0zNC5spFnwvZD1rMrabMD/oxQY49hTyrrU6n8yhopFk= Subject key identifier: 7F:05:E7:4B:7C:6B:DF:74:B3:61:8A:67:A9:81:34:ED:23:F7:29:DA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4DF91F34E62D895B401CBA48654D89F5C8C2DF69 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216454.roa Signing time: Wed 17 Jul 2024 23:00:54 +0000 ROA not before: Wed 17 Jul 2024 22:55:54 +0000 ROA not after: Wed 16 Jul 2025 23:00:54 +0000 asID: 216454 IP address blocks: 2a05:dfc1:8300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:f9:1f:34:e6:2d:89:5b:40:1c:ba:48:65:4d:89:f5:c8:c2:df:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 17 22:55:54 2024 GMT Not After : Jul 16 23:00:54 2025 GMT Subject: CN=7F05E74B7C6BDF74B3618A67A98134ED23F729DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:65:ba:78:db:d1:57:10:8c:80:d0:bd:9e:5b: 60:c5:ea:48:c6:16:f4:32:d0:20:60:6e:d2:e3:e1: 3e:7d:57:28:e6:a3:d3:7b:f4:68:46:80:8d:b5:6c: e7:ea:53:cc:9a:89:d0:01:23:26:47:9a:7e:9b:bd: 1d:6d:b7:e5:6a:ca:7e:c5:63:a2:af:6e:75:14:4f: d2:ba:38:7a:7a:9e:a4:21:d4:95:51:a3:78:4a:bb: 15:2f:2e:ed:bd:3f:11:bf:05:82:b9:56:af:81:0d: 0c:da:d2:6f:d3:b9:97:e2:c9:48:b1:51:dc:de:c2: fa:b8:ee:10:3a:99:dc:66:b8:7f:db:65:33:db:5f: b8:60:04:0d:cb:97:fa:b2:86:26:d0:b1:a6:dc:ee: 38:df:ed:98:fb:10:67:f0:2d:73:c6:6f:c5:94:0a: 30:22:78:28:43:5b:1c:bf:bd:92:8a:74:c1:6c:e0: ed:0e:fa:db:34:8f:6d:47:3c:ac:9d:cf:75:13:70: 48:3d:0b:8e:07:81:06:73:e8:30:13:fe:64:6e:80: a9:d7:e0:49:dd:4b:cb:0e:bc:80:ff:19:f9:28:bf: 0f:78:67:27:42:a0:b2:a2:63:d2:c3:ed:3f:9a:8b: f5:58:6e:68:29:84:48:2e:49:8d:16:ab:66:63:c7: cd:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:05:E7:4B:7C:6B:DF:74:B3:61:8A:67:A9:81:34:ED:23:F7:29:DA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8300::/40 Signature Algorithm: sha256WithRSAEncryption 17:99:47:b1:6d:74:93:97:23:2c:65:3f:12:6e:9f:e8:c5:04: bb:1a:50:50:d7:db:e6:b7:bb:62:8d:b1:c7:9d:af:8f:91:a4: 2f:bf:94:e1:30:61:f7:73:b1:bd:50:e0:4f:b8:f9:fe:b4:69: 93:62:f4:03:2d:03:df:ba:4c:71:33:f4:a6:70:e1:8e:03:27: 91:6c:93:60:15:39:f6:bd:83:fd:b9:59:a1:e7:3e:85:7b:fd: 16:20:9e:d5:36:d2:f8:d6:15:ac:10:21:10:bc:f5:d2:f2:00: 3c:7f:e2:84:2a:3a:12:76:69:26:ef:4c:60:c9:5b:02:04:9a: 5d:78:33:cf:3b:91:0d:7d:6b:98:0c:37:40:8c:c5:79:5b:40: 44:d5:ce:84:26:4c:c6:38:02:8a:e6:91:67:8f:e6:22:c4:55: 40:b4:86:32:4e:d8:f6:b0:9e:53:e2:da:d9:02:20:b6:c3:af: 6d:4d:3d:7b:79:a3:b9:37:46:bd:98:9b:0d:b1:d7:99:f0:3c: d3:8f:bf:40:86:de:eb:4e:e5:38:76:73:65:58:2d:0d:6b:7a: 71:3b:d8:7e:1c:ba:6e:b9:16:f4:35:bd:e1:c8:6d:a4:5f:ca: 72:e3:10:74:de:93:9f:90:39:4a:64:4e:8b:d1:08:1a:fd:27: b3:00:0e:14 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTfkfNOYtiVtAHLpIZU2J9cjC32kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MTcyMjU1NTRaFw0yNTA3MTYyMzAwNTRaMDMxMTAvBgNV BAMTKDdGMDVFNzRCN0M2QkRGNzRCMzYxOEE2N0E5ODEzNEVEMjNGNzI5REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuZbp429FXEIyA0L2eW2DF6kjG FvQy0CBgbtLj4T59Vyjmo9N79GhGgI21bOfqU8yaidABIyZHmn6bvR1tt+Vqyn7F Y6KvbnUUT9K6OHp6nqQh1JVRo3hKuxUvLu29PxG/BYK5Vq+BDQza0m/TuZfiyUix Udzewvq47hA6mdxmuH/bZTPbX7hgBA3Ll/qyhibQsabc7jjf7Zj7EGfwLXPGb8WU CjAieChDWxy/vZKKdMFs4O0O+ts0j21HPKydz3UTcEg9C44HgQZz6DAT/mRugKnX 4EndS8sOvID/Gfkovw94ZydCoLKiY9LD7T+ai/VYbmgphEguSY0Wq2Zjx81pAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUfwXnS3xr33SzYYpnqYE07SP3KdowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYMwDQYJKoZIhvcNAQELBQADggEBABeZ R7FtdJOXIyxlPxJun+jFBLsaUFDX2+a3u2KNscedr4+RpC+/lOEwYfdzsb1Q4E+4 +f60aZNi9AMtA9+6THEz9KZw4Y4DJ5Fsk2AVOfa9g/25WaHnPoV7/RYgntU20vjW FawQIRC89dLyADx/4oQqOhJ2aSbvTGDJWwIEml14M887kQ19a5gMN0CMxXlbQETV zoQmTMY4AormkWeP5iLEVUC0hjJO2PawnlPi2tkCILbDr21NPXt5o7k3Rr2Ymw2x 15nwPNOPv0CG3utO5Th2c2VYLQ1renE72H4cum65FvQ1veHIbaRfynLjEHTek5+Q OUpkTovRCBr9J7MADhQ= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org