$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: w80UtOGZtFzUfeDuPKu7qJVEwHU9cpP06X+IIhjS6nc= Subject key identifier: B5:ED:01:3A:4B:8C:A5:3F:DF:34:A7:84:F6:60:86:F9:15:F1:6A:DC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 16BF3F87CC380436A2B3281905EBFD8036240DB0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS16509.roa Signing time: Sun 01 Oct 2023 02:11:00 +0000 ROA not before: Sun 01 Oct 2023 02:06:00 +0000 ROA not after: Sun 29 Sep 2024 02:11:00 +0000 asID: 16509 IP address blocks: 2a05:dfc1:a400::/44 maxlen: 44 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 02 May 2024 19:38:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:bf:3f:87:cc:38:04:36:a2:b3:28:19:05:eb:fd:80:36:24:0d:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 1 02:06:00 2023 GMT Not After : Sep 29 02:11:00 2024 GMT Subject: CN=B5ED013A4B8CA53FDF34A784F66086F915F16ADC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:60:e5:38:b4:83:9f:1a:f3:75:71:b8:ce:a9: 6f:05:29:c0:bc:4e:d9:9c:f5:5d:7c:73:a9:1d:75: 68:ca:bf:6c:05:d6:e2:df:03:59:ef:f5:2b:43:b8: 19:ba:69:ff:f3:c6:6c:e8:67:0d:0d:b5:a9:99:41: 69:c1:07:a6:08:aa:02:21:1a:35:56:ce:cb:3c:ef: 40:14:6a:1f:b4:52:34:f5:55:c3:25:c1:29:13:8a: d5:81:40:50:8a:86:8b:dd:18:ee:be:b9:1f:62:fc: 86:dd:37:1f:4e:c3:85:40:35:91:76:4f:f1:18:6f: d8:8c:10:7c:7c:11:be:a6:3d:6d:11:bd:a2:ca:d3: 9e:8a:aa:67:aa:ce:62:c5:5a:3c:af:4d:a4:bc:ac: 6e:75:ef:5c:62:dd:2b:79:3c:b4:e3:27:16:77:56: 0c:46:13:72:c5:53:36:a4:66:43:65:13:3c:67:d9: 9f:43:cf:f1:c3:c9:4f:be:b5:a0:36:76:27:09:b9: 06:dc:40:9f:7c:4d:7b:ed:b0:cf:b9:ac:ff:b8:ac: 49:59:6b:a5:26:09:e3:91:79:c9:bb:01:f6:92:b0: 68:7a:2b:95:5f:4b:2c:b7:8e:08:47:d5:e1:e2:1c: 0e:d3:24:3a:c8:22:07:5d:ea:12:dd:69:60:58:14: 88:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:ED:01:3A:4B:8C:A5:3F:DF:34:A7:84:F6:60:86:F9:15:F1:6A:DC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a400::/44 Signature Algorithm: sha256WithRSAEncryption 3d:3a:7b:81:2c:31:18:10:9c:1d:84:17:68:7c:93:d5:a0:7d: 8d:6a:ed:52:3b:db:04:17:6a:8a:d1:7f:07:90:59:0b:91:f5: 2a:5c:e3:71:e9:7b:97:23:46:63:1a:f7:fb:8e:07:7e:fa:ab: 9a:1e:e8:10:29:88:c8:8a:81:d7:38:d3:90:8d:49:12:a3:76: 44:3d:52:37:6c:4b:35:7f:7b:7c:6f:14:29:84:02:d5:0f:32: 36:b2:b6:ba:5f:c2:cf:fe:3a:8a:90:a8:7a:ff:fa:7c:b7:2a: b4:76:05:98:8d:79:4e:ce:9e:e0:e1:c4:26:dd:d9:d5:d1:6d: 57:80:7a:58:fe:6a:2a:f9:52:f1:3c:1a:ca:a4:4e:ce:05:a8: a5:1a:99:c5:b6:6a:12:bf:d7:74:f3:48:23:d8:24:83:b8:bf: f1:a0:18:73:93:e2:1a:4c:8d:89:e2:83:c4:a8:ce:b9:ec:26: 90:38:10:98:ad:43:aa:3c:ab:4f:6e:92:0a:5d:db:4d:a2:00: 05:46:ff:b5:d9:35:c0:6b:f4:3e:db:37:dd:e3:85:3c:b0:bb: 49:be:42:f0:4c:9c:89:1b:18:45:53:5f:7f:f4:6f:26:bb:88: 8c:1d:04:c8:a4:71:98:2c:85:38:06:3b:ef:07:87:b4:d5:47: e6:3a:32:2a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFr8/h8w4BDaisygZBev9gDYkDbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMDEwMjA2MDBaFw0yNDA5MjkwMjExMDBaMDMxMTAvBgNV BAMTKEI1RUQwMTNBNEI4Q0E1M0ZERjM0QTc4NEY2NjA4NkY5MTVGMTZBREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHYOU4tIOfGvN1cbjOqW8FKcC8 Ttmc9V18c6kddWjKv2wF1uLfA1nv9StDuBm6af/zxmzoZw0NtamZQWnBB6YIqgIh GjVWzss870AUah+0UjT1VcMlwSkTitWBQFCKhovdGO6+uR9i/IbdNx9Ow4VANZF2 T/EYb9iMEHx8Eb6mPW0RvaLK056KqmeqzmLFWjyvTaS8rG5171xi3St5PLTjJxZ3 VgxGE3LFUzakZkNlEzxn2Z9Dz/HDyU++taA2dicJuQbcQJ98TXvtsM+5rP+4rElZ a6UmCeORecm7AfaSsGh6K5VfSyy3jghH1eHiHA7TJDrIIgdd6hLdaWBYFIjjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUte0BOkuMpT/fNKeE9mCG+RXxatwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTY1MDkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUH AQcBAf8EEzARMA8EAgACMAkDBwQqBd/BpAAwDQYJKoZIhvcNAQELBQADggEBAD06 e4EsMRgQnB2EF2h8k9WgfY1q7VI72wQXaorRfweQWQuR9Spc43Hpe5cjRmMa9/uO B376q5oe6BApiMiKgdc405CNSRKjdkQ9UjdsSzV/e3xvFCmEAtUPMjaytrpfws/+ OoqQqHr/+ny3KrR2BZiNeU7OnuDhxCbd2dXRbVeAelj+air5UvE8GsqkTs4FqKUa mcW2ahK/13TzSCPYJIO4v/GgGHOT4hpMjYnig8SozrnsJpA4EJitQ6o8q09ukgpd 202iAAVG/7XZNcBr9D7bN93jhTywu0m+QvBMnIkbGEVTX3/0bya7iIwdBMikcZgs hTgGO+8Hh7TVR+Y6Mio= -----END CERTIFICATE-----Generated at Thu May 2 11:32:05 2024 by rpki-client on console-fra.rpki-client.org