$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216020.roa File: AS216020.roa (raw, json) Hash identifier: dmfbBvTMbMXqAB9abrCsl3CIJ60SF21IvcKovd9A/vw= Subject key identifier: 4E:E9:0C:C6:01:B8:58:6C:DE:C0:62:AB:66:A5:36:04:76:5E:F0:97 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 600C0DC5AB20DC8ACBD881F725740E7368A387DB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216020.roa Signing time: Wed 08 Nov 2023 12:54:37 +0000 ROA not before: Wed 08 Nov 2023 12:49:37 +0000 ROA not after: Wed 06 Nov 2024 12:54:37 +0000 asID: 216020 IP address blocks: 2a05:dfc1:c900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:0c:0d:c5:ab:20:dc:8a:cb:d8:81:f7:25:74:0e:73:68:a3:87:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 8 12:49:37 2023 GMT Not After : Nov 6 12:54:37 2024 GMT Subject: CN=4EE90CC601B8586CDEC062AB66A53604765EF097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5c:92:56:31:81:71:87:c1:ee:97:87:e7:6a: 87:9a:89:e2:e9:67:26:b4:3d:63:4a:be:ce:40:74: f1:12:bc:6c:d8:b9:8a:5a:88:2f:e0:bf:90:61:6e: b4:26:e5:d8:a2:50:41:f0:49:4f:ec:96:49:8c:0a: 8f:17:95:e3:97:31:66:8a:1f:4c:5d:0c:e5:6a:2c: fa:5f:d6:2b:dc:d2:8e:08:27:ae:20:0b:74:6e:2b: 65:2c:ad:ae:c4:2d:42:84:a7:70:68:4d:e6:d3:d9: 26:49:9a:23:4a:2a:ba:ae:a0:7d:93:ff:81:78:2c: 4a:64:49:33:12:86:09:3a:1c:9a:0f:9d:e4:1f:82: 3c:04:87:57:0e:8d:6f:1e:6c:49:38:ca:34:10:40: 1f:84:28:f8:eb:1d:92:83:55:c0:9e:8c:7b:89:27: 59:59:a3:36:52:ea:bd:15:36:db:3a:b6:0f:75:1a: 29:c2:e0:76:a3:dd:63:d8:5f:ca:22:b3:63:8a:e3: f8:8c:d6:d6:38:06:d2:9f:e0:57:62:67:81:06:c9: 55:a1:b6:2b:65:7a:97:b0:a8:cd:b4:f4:35:99:31: 79:40:4d:01:b8:8b:14:6d:5b:a7:c8:3a:c6:18:e0: 2f:41:c1:a1:7b:47:0b:33:ad:b5:a2:72:4d:28:46: 05:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E9:0C:C6:01:B8:58:6C:DE:C0:62:AB:66:A5:36:04:76:5E:F0:97 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216020.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c900::/40 Signature Algorithm: sha256WithRSAEncryption 11:cc:03:13:0c:e0:57:05:34:4d:28:f5:bd:ee:20:ff:1a:dc: ad:93:9a:c8:f2:bb:64:b5:61:0e:9f:60:24:97:15:da:5a:bb: 10:43:07:3b:ed:b6:25:be:c5:fe:a8:96:a2:dc:cc:26:e2:a9: b8:44:6e:ee:6d:3b:4b:23:26:0c:61:70:07:7e:41:ea:4d:7e: 25:a3:a0:fb:d4:c5:c8:89:72:5a:c2:6a:f9:b2:40:65:6b:7c: 1b:dc:c5:03:94:e3:d6:6c:c6:c7:2e:d4:51:d0:6b:de:c7:c8: 53:76:81:c9:8a:03:db:ff:54:06:c9:b9:54:64:36:40:4e:5b: ee:16:4b:1b:a9:dc:a0:b8:53:df:b4:d3:b3:a7:41:6f:e9:b7: 35:a3:d8:53:d1:57:90:6f:43:38:3d:6a:46:15:ba:be:2a:3d: e7:b6:20:96:2b:9f:cc:3d:85:70:2b:89:24:c3:79:bd:db:ac: 54:70:8d:6c:47:d6:e1:17:9c:1e:a0:db:75:ac:0b:06:ff:fb: bc:8f:9a:a4:fe:6c:4c:66:44:ef:28:12:7c:f8:cf:61:bd:b5: b0:15:0f:cd:49:19:fd:36:bd:60:8a:ea:4d:7f:2b:e0:78:f7: c2:57:1e:cf:48:ca:25:33:f0:ec:a9:37:3b:e5:8f:95:15:57: 17:82:cf:c6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYAwNxasg3IrL2IH3JXQOc2ijh9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDgxMjQ5MzdaFw0yNDExMDYxMjU0MzdaMDMxMTAvBgNV BAMTKDRFRTkwQ0M2MDFCODU4NkNERUMwNjJBQjY2QTUzNjA0NzY1RUYwOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJXJJWMYFxh8Hul4fnaoeaieLp Zya0PWNKvs5AdPESvGzYuYpaiC/gv5BhbrQm5diiUEHwSU/slkmMCo8XleOXMWaK H0xdDOVqLPpf1ivc0o4IJ64gC3RuK2Usra7ELUKEp3BoTebT2SZJmiNKKrquoH2T /4F4LEpkSTMShgk6HJoPneQfgjwEh1cOjW8ebEk4yjQQQB+EKPjrHZKDVcCejHuJ J1lZozZS6r0VNts6tg91GinC4Haj3WPYX8ois2OK4/iM1tY4BtKf4FdiZ4EGyVWh titlepewqM209DWZMXlATQG4ixRtW6fIOsYY4C9BwaF7RwszrbWick0oRgW1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTukMxgG4WGzewGKrZqU2BHZe8JcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MDIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwckwDQYJKoZIhvcNAQELBQADggEBABHM AxMM4FcFNE0o9b3uIP8a3K2Tmsjyu2S1YQ6fYCSXFdpauxBDBzvttiW+xf6olqLc zCbiqbhEbu5tO0sjJgxhcAd+QepNfiWjoPvUxciJclrCavmyQGVrfBvcxQOU49Zs xscu1FHQa97HyFN2gcmKA9v/VAbJuVRkNkBOW+4WSxup3KC4U9+007OnQW/ptzWj 2FPRV5BvQzg9akYVur4qPee2IJYrn8w9hXAriSTDeb3brFRwjWxH1uEXnB6g23Ws Cwb/+7yPmqT+bExmRO8oEnz4z2G9tbAVD81JGf02vWCK6k1/K+B498JXHs9IyiUz 8OypNzvlj5UVVxeCz8Y= -----END CERTIFICATE-----Generated at Tue May 21 04:45:07 2024 by rpki-client on console-fra.rpki-client.org