$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216052.roa File: AS216052.roa (raw, json) Hash identifier: AcDj8febHfyuD+HP1SPYY2DtH3vgmrvHI945QDimqOg= Subject key identifier: 60:B3:6C:B3:E4:0F:C0:67:5D:42:18:F9:F8:19:A8:87:84:40:5D:CF Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 014B292965EB24B8BC9FF1367F425D6CF40CFB9D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216052.roa Signing time: Mon 27 Nov 2023 02:06:41 +0000 ROA not before: Mon 27 Nov 2023 02:01:41 +0000 ROA not after: Mon 25 Nov 2024 02:06:41 +0000 asID: 216052 IP address blocks: 2a06:9f81:2200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:4b:29:29:65:eb:24:b8:bc:9f:f1:36:7f:42:5d:6c:f4:0c:fb:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 27 02:01:41 2023 GMT Not After : Nov 25 02:06:41 2024 GMT Subject: CN=60B36CB3E40FC0675D4218F9F819A88784405DCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e1:8d:7b:1d:c5:88:91:af:05:a0:33:56:24: a9:c0:cf:9a:4f:fa:3b:cb:7a:2d:c9:1e:57:db:9f: 38:15:6e:2c:47:e4:7c:da:d1:75:d9:83:c5:95:46: 91:1d:77:66:ca:4e:b1:6d:4a:e7:4e:41:3e:8d:31: 6a:31:26:5c:b0:41:db:1c:e9:96:29:4e:47:19:be: 8b:8c:8c:ac:41:e5:49:b5:78:00:02:94:24:8a:cc: 77:e4:3d:94:7f:2b:7a:ff:4c:1c:6b:53:72:52:32: 67:38:ad:59:bb:e0:bc:8d:32:36:71:b6:cc:13:4a: 89:78:dd:79:fc:7c:93:d7:02:64:fb:9b:0e:bd:1d: 4f:3d:b8:d6:a8:4d:67:55:03:70:b6:0b:79:d9:fe: ef:79:26:9d:5f:e9:bb:26:06:a4:d9:a0:1d:c6:bd: 33:e1:04:00:4d:39:dc:55:4f:b6:c6:ba:38:3f:14: 65:0a:5d:8e:10:f2:ff:ec:b5:0c:c6:48:3b:b1:f2: 14:63:a2:1d:09:89:8a:76:02:61:7d:43:90:af:ef: ba:17:42:60:9d:68:65:de:ad:23:06:d8:e5:47:cc: 2c:f4:2d:d3:4e:34:59:46:72:30:73:18:93:9f:c3: 68:76:7c:10:e5:54:75:e6:72:fa:a7:b8:c5:3c:88: 22:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B3:6C:B3:E4:0F:C0:67:5D:42:18:F9:F8:19:A8:87:84:40:5D:CF X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216052.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2200::/40 Signature Algorithm: sha256WithRSAEncryption 4f:7b:57:4a:d2:65:74:62:06:f2:97:a0:6c:28:1c:f6:47:64: d7:33:65:e7:0d:c0:cf:a8:37:4d:43:06:16:9f:3b:8d:e1:47: ba:bd:3e:55:81:89:b5:bb:d7:9d:a6:fa:0d:24:95:2d:46:fc: ae:bc:9a:96:25:a6:4a:05:ad:75:25:d8:e2:fb:53:bc:6f:e2: 25:83:73:f8:27:01:9d:c8:d3:95:7a:a7:50:6a:84:fa:e2:97: 56:92:37:ed:70:c8:92:e3:ae:66:ed:67:96:4e:1b:ab:8a:11: 00:e5:4b:5a:18:80:7d:21:4a:5a:e8:51:cc:e8:8a:6d:e7:33: 42:06:f6:68:c9:f6:99:f2:73:fd:c5:93:77:88:f1:ea:05:cd: 90:d6:2e:04:ae:89:85:94:2c:22:d3:6d:c9:a2:c7:07:9c:13: 86:d1:9a:80:5f:33:8b:39:8d:75:08:39:74:5c:c0:68:97:c1: b6:fa:4f:bb:54:72:6d:ca:b0:76:35:7d:15:e1:95:4c:92:41: 67:1a:32:d9:3e:1f:fa:92:b7:96:95:20:e6:68:5f:d4:1b:d1: 07:ee:63:87:2a:1a:d2:ca:ea:1e:ef:b7:d0:dc:67:27:16:aa: a8:e3:26:f8:b8:5b:ea:a9:2e:48:56:3e:e5:fc:71:93:d6:9b: 5a:e2:cc:25 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAUspKWXrJLi8n/E2f0JdbPQM+50wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMjcwMjAxNDFaFw0yNDExMjUwMjA2NDFaMDMxMTAvBgNV BAMTKDYwQjM2Q0IzRTQwRkMwNjc1RDQyMThGOUY4MTlBODg3ODQ0MDVEQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+4Y17HcWIka8FoDNWJKnAz5pP +jvLei3JHlfbnzgVbixH5Hza0XXZg8WVRpEdd2bKTrFtSudOQT6NMWoxJlywQdsc 6ZYpTkcZvouMjKxB5Um1eAAClCSKzHfkPZR/K3r/TBxrU3JSMmc4rVm74LyNMjZx tswTSol43Xn8fJPXAmT7mw69HU89uNaoTWdVA3C2C3nZ/u95Jp1f6bsmBqTZoB3G vTPhBABNOdxVT7bGujg/FGUKXY4Q8v/stQzGSDux8hRjoh0JiYp2AmF9Q5Cv77oX QmCdaGXerSMG2OVHzCz0LdNONFlGcjBzGJOfw2h2fBDlVHXmcvqnuMU8iCJbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUYLNss+QPwGddQhj5+Bmoh4RAXc8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MDUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgSIwDQYJKoZIhvcNAQELBQADggEBAE97 V0rSZXRiBvKXoGwoHPZHZNczZecNwM+oN01DBhafO43hR7q9PlWBibW7152m+g0k lS1G/K68mpYlpkoFrXUl2OL7U7xv4iWDc/gnAZ3I05V6p1BqhPril1aSN+1wyJLj rmbtZ5ZOG6uKEQDlS1oYgH0hSlroUczoim3nM0IG9mjJ9pnyc/3Fk3eI8eoFzZDW LgSuiYWULCLTbcmixwecE4bRmoBfM4s5jXUIOXRcwGiXwbb6T7tUcm3KsHY1fRXh lUySQWcaMtk+H/qSt5aVIOZoX9Qb0QfuY4cqGtLK6h7vt9DcZycWqqjjJvi4W+qp LkhWPuX8cZPWm1rizCU= -----END CERTIFICATE-----Generated at Tue May 21 04:45:07 2024 by rpki-client on console-fra.rpki-client.org