$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48215.roa File: AS48215.roa (raw, json) Hash identifier: 7j73F2nf/GbnZZYW+NCE3GhZHMSVnpIh8A1G4lEXQdg= Subject key identifier: 3F:C9:C4:0C:AD:6A:B5:7A:25:F6:0A:40:AD:A1:96:B2:D2:2E:6E:E0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7DD9CBD2349AF0EB56A6F23FB77EC230A9BACEBF Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48215.roa Signing time: Thu 05 Oct 2023 00:01:35 +0000 ROA not before: Wed 04 Oct 2023 23:56:35 +0000 ROA not after: Thu 03 Oct 2024 00:01:35 +0000 asID: 48215 IP address blocks: 2a05:dfc1:700::/40 maxlen: 40 2a05:dfc1:700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d9:cb:d2:34:9a:f0:eb:56:a6:f2:3f:b7:7e:c2:30:a9:ba:ce:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 4 23:56:35 2023 GMT Not After : Oct 3 00:01:35 2024 GMT Subject: CN=3FC9C40CAD6AB57A25F60A40ADA196B2D22E6EE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:41:14:d4:f3:ae:3b:ad:96:72:c1:c9:93:fa: 9e:2c:4d:51:a8:89:a8:2d:21:6f:49:66:df:31:78: d7:b1:18:27:14:f2:65:66:56:f1:91:21:5f:e1:52: cb:64:d1:5e:76:5e:6a:7f:6a:f7:ff:1b:d8:c8:99: e0:b5:5a:f6:d0:22:22:75:3f:d7:20:7f:60:e7:af: 01:26:2e:12:d3:5a:9e:88:de:1e:26:0f:68:0f:a2: 84:5c:3b:b0:78:d2:32:bf:0f:ef:33:9a:de:fb:6c: 85:e6:a3:82:b7:f2:eb:64:ae:40:8e:ae:f4:93:2d: aa:80:69:6f:cb:81:85:64:56:4f:02:1c:8e:5c:e6: c3:e2:fc:9e:7c:01:ca:bc:9c:e3:42:78:6c:55:03: 5d:5e:cb:25:54:e6:21:bd:d6:ce:b2:34:8f:39:7e: 4a:9e:c2:1e:20:1f:fe:73:41:b6:39:67:b7:9f:f8: a9:fd:51:41:6f:32:c2:7c:3b:51:e1:c1:95:fa:3f: 8d:50:4c:97:31:83:c4:ad:02:8d:fd:2c:4c:2c:8f: eb:82:f9:97:f6:d1:f2:bc:77:65:45:98:22:d0:04: 53:5a:e3:e9:92:55:77:79:46:94:c5:a2:a9:42:87: b3:6a:72:d7:07:4e:05:72:50:79:a3:da:b6:53:89: c5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C9:C4:0C:AD:6A:B5:7A:25:F6:0A:40:AD:A1:96:B2:D2:2E:6E:E0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48215.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:700::/40 Signature Algorithm: sha256WithRSAEncryption 36:9c:97:6e:9f:cb:53:b6:d9:43:35:53:0b:0f:29:bd:2a:d5: 85:cf:e2:98:60:6d:c1:93:80:4d:c7:03:43:0f:eb:1b:66:44: df:3d:c0:d7:41:62:8f:e7:0d:91:44:0b:e8:3a:13:a0:d6:77: 06:72:43:45:dc:76:6e:09:56:29:ed:9b:68:06:e0:7f:10:4f: c9:20:8b:23:41:ec:1c:e6:ac:d5:70:b0:0a:4b:30:da:5b:a1: 3b:10:a2:94:7b:5f:d6:b4:e5:be:f4:39:3e:0f:ce:9f:d0:6f: e0:d8:0e:f8:9e:ca:24:10:cd:30:c0:48:f5:41:38:08:c5:b6: 74:f0:7f:aa:9b:5a:a1:aa:f0:8d:2b:c2:d9:84:d3:62:02:a2: 06:82:f8:23:14:52:c2:9d:ee:d1:b4:66:cb:a2:1b:0d:66:40: 70:ba:1f:c3:6d:82:fe:0f:f5:d9:6c:5b:23:76:78:56:14:9b: b6:d3:07:1a:c4:39:fa:32:75:1e:d9:78:cd:da:12:98:08:53: 43:47:e0:30:ab:c9:86:5c:3a:99:27:59:16:00:21:20:c1:0b: 26:33:f7:c6:26:a2:d6:c4:c2:01:3e:a4:76:a1:11:7a:11:ea: 9e:9b:1a:09:5e:d1:20:fb:a8:bb:d0:74:d4:fe:6e:ea:b4:6a: 73:1e:bc:71 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUfdnL0jSa8OtWpvI/t37CMKm6zr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMDQyMzU2MzVaFw0yNDEwMDMwMDAxMzVaMDMxMTAvBgNV BAMTKDNGQzlDNDBDQUQ2QUI1N0EyNUY2MEE0MEFEQTE5NkIyRDIyRTZFRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2QRTU8647rZZywcmT+p4sTVGo iagtIW9JZt8xeNexGCcU8mVmVvGRIV/hUstk0V52Xmp/avf/G9jImeC1WvbQIiJ1 P9cgf2DnrwEmLhLTWp6I3h4mD2gPooRcO7B40jK/D+8zmt77bIXmo4K38utkrkCO rvSTLaqAaW/LgYVkVk8CHI5c5sPi/J58Acq8nONCeGxVA11eyyVU5iG91s6yNI85 fkqewh4gH/5zQbY5Z7ef+Kn9UUFvMsJ8O1HhwZX6P41QTJcxg8StAo39LEwsj+uC +Zf20fK8d2VFmCLQBFNa4+mSVXd5RpTFoqlCh7NqctcHTgVyUHmj2rZTicV/AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUP8nEDK1qtXol9gpAraGWstIubuAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDgyMTUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BBzANBgkqhkiG9w0BAQsFAAOCAQEANpyX bp/LU7bZQzVTCw8pvSrVhc/imGBtwZOATccDQw/rG2ZE3z3A10Fij+cNkUQL6DoT oNZ3BnJDRdx2bglWKe2baAbgfxBPySCLI0HsHOas1XCwCksw2luhOxCilHtf1rTl vvQ5Pg/On9Bv4NgO+J7KJBDNMMBI9UE4CMW2dPB/qptaoarwjSvC2YTTYgKiBoL4 IxRSwp3u0bRmy6IbDWZAcLofw22C/g/12WxbI3Z4VhSbttMHGsQ5+jJ1Htl4zdoS mAhTQ0fgMKvJhlw6mSdZFgAhIMELJjP3xiai1sTCAT6kdqERehHqnpsaCV7RIPuo u9B01P5u6rRqcx68cQ== -----END CERTIFICATE-----Generated at Tue May 21 04:45:07 2024 by rpki-client on console-fra.rpki-client.org