$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48215.roa File: AS48215.roa (raw, json) Hash identifier: 2lIMJnGeAwJOlFCj4eXVig5gIIWGkubNzt3XRcGu0KU= Subject key identifier: D0:17:9C:8E:C9:F4:23:C1:1D:8A:32:58:98:34:FD:64:FC:E8:E0:0B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1D6B37C3F1E5CB54EC2A172CD8F7EEBFC7EF5CD1 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48215.roa Signing time: Thu 05 Sep 2024 00:49:55 +0000 ROA not before: Thu 05 Sep 2024 00:44:55 +0000 ROA not after: Thu 04 Sep 2025 00:49:55 +0000 asID: 48215 IP address blocks: 2a05:dfc1:700::/40 maxlen: 40 2a05:dfc1:700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:6b:37:c3:f1:e5:cb:54:ec:2a:17:2c:d8:f7:ee:bf:c7:ef:5c:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 5 00:44:55 2024 GMT Not After : Sep 4 00:49:55 2025 GMT Subject: CN=D0179C8EC9F423C11D8A32589834FD64FCE8E00B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c7:de:8f:8e:ef:ac:36:83:2d:33:6b:00:79: 11:3b:37:49:56:c0:6b:8e:86:b6:b8:6d:b9:23:93: 88:d5:c0:35:ee:c0:1b:ac:44:cf:0b:2e:c1:64:f6: 35:5c:f5:d7:9d:05:4b:7a:ea:e0:c6:69:39:39:6c: 6a:a8:d8:90:76:9d:4d:c8:f2:3d:6c:5b:a4:09:44: 07:9d:ae:2d:38:3b:be:af:52:22:38:95:04:f6:a3: e7:59:cf:5c:8e:2a:87:6f:a4:2b:e0:6e:b3:0e:d2: 5d:3d:29:58:83:73:ac:8c:65:53:d3:67:c6:38:b9: a2:84:aa:c7:60:b1:b6:1c:0b:a6:2f:32:28:6d:6f: 29:9f:bf:6b:e8:59:a7:cf:e2:96:fb:8c:cf:e6:1d: 68:04:b9:1d:32:07:49:d0:db:66:96:78:12:6a:86: c0:ca:13:57:a9:6e:06:9f:a6:8a:46:47:f3:38:13: 20:14:58:b3:ac:c9:60:9e:cc:be:52:5a:39:ff:c4: 5d:23:1c:7b:92:6d:44:0f:6e:25:6c:64:2b:ae:b9: 9d:34:ce:4f:d8:05:ba:57:da:cd:c1:1f:5f:66:85: 28:fb:7a:2a:e5:17:bd:51:78:03:5e:3e:29:b6:af: db:6f:69:59:14:22:e6:e9:e1:75:8a:52:e0:4d:d0: 31:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:17:9C:8E:C9:F4:23:C1:1D:8A:32:58:98:34:FD:64:FC:E8:E0:0B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48215.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:700::/40 Signature Algorithm: sha256WithRSAEncryption 84:bb:50:2a:59:1d:fb:38:9a:04:7f:f9:da:71:06:b2:c5:fe: 55:3e:c3:2d:4e:3f:4b:c2:76:d2:80:93:a6:73:ef:a2:d4:ac: ba:11:4b:9a:3e:20:da:39:6f:df:51:af:ff:37:c2:62:47:a4: f4:30:8a:82:ef:e7:c7:e2:64:89:c4:0f:40:a6:70:29:a9:9d: bb:e6:5d:43:05:52:52:35:f3:b0:36:6e:b2:5a:dc:1e:3e:b2: da:24:68:cb:e7:b2:29:05:3f:dc:e2:87:69:d2:44:6b:84:3a: 4f:b9:64:af:72:c5:db:25:42:7f:d3:f5:46:95:b5:d0:e7:2b: 41:a2:4f:c3:d8:7d:f2:cc:76:f3:d9:8e:d7:6a:c6:5f:85:e9: 16:6c:3f:96:cd:83:ae:59:d5:b4:b2:9c:aa:0b:89:66:b9:3b: bf:0f:eb:15:6b:79:ca:3b:cb:2e:18:91:7e:71:45:b2:3c:e8: 31:a0:7b:35:e6:d8:56:ec:9d:44:6e:53:a0:42:dc:03:21:10: fb:b3:5f:48:d0:1f:6d:b0:5f:37:c1:b9:9c:d8:46:f3:72:84: 2f:68:7c:13:57:7e:fa:65:db:a4:b2:7c:b5:e9:98:b3:38:81: 07:1c:fa:2b:76:90:04:ef:18:e4:3c:f1:a1:c8:6b:4d:de:35: f8:db:8b:7f -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUHWs3w/Hly1TsKhcs2Pfuv8fvXNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA5MDUwMDQ0NTVaFw0yNTA5MDQwMDQ5NTVaMDMxMTAvBgNV BAMTKEQwMTc5QzhFQzlGNDIzQzExRDhBMzI1ODk4MzRGRDY0RkNFOEUwMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOx96Pju+sNoMtM2sAeRE7N0lW wGuOhra4bbkjk4jVwDXuwBusRM8LLsFk9jVc9dedBUt66uDGaTk5bGqo2JB2nU3I 8j1sW6QJRAedri04O76vUiI4lQT2o+dZz1yOKodvpCvgbrMO0l09KViDc6yMZVPT Z8Y4uaKEqsdgsbYcC6YvMihtbymfv2voWafP4pb7jM/mHWgEuR0yB0nQ22aWeBJq hsDKE1epbgafpopGR/M4EyAUWLOsyWCezL5SWjn/xF0jHHuSbUQPbiVsZCuuuZ00 zk/YBbpX2s3BH19mhSj7eirlF71ReANePim2r9tvaVkUIubp4XWKUuBN0DH7AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU0Becjsn0I8EdijJYmDT9ZPzo4AswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDgyMTUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BBzANBgkqhkiG9w0BAQsFAAOCAQEAhLtQ Klkd+ziaBH/52nEGssX+VT7DLU4/S8J20oCTpnPvotSsuhFLmj4g2jlv31Gv/zfC Ykek9DCKgu/nx+JkicQPQKZwKamdu+ZdQwVSUjXzsDZuslrcHj6y2iRoy+eyKQU/ 3OKHadJEa4Q6T7lkr3LF2yVCf9P1RpW10OcrQaJPw9h98sx289mO12rGX4XpFmw/ ls2DrlnVtLKcqguJZrk7vw/rFWt5yjvLLhiRfnFFsjzoMaB7NebYVuydRG5ToELc AyEQ+7NfSNAfbbBfN8G5nNhG83KEL2h8E1d++mXbpLJ8temYsziBBxz6K3aQBO8Y 5DzxochrTd41+NuLfw== -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org