$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216113.roa File: AS216113.roa (raw, json) Hash identifier: 9VVmcj250+E5sjx1zuRTkNpOj07zyeQyEvKAfC3J0r4= Subject key identifier: C0:AE:D5:AE:F3:FA:0C:89:7A:CA:E5:11:45:46:5B:35:F1:B2:2C:91 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 56AC01951740E34235A33D2E0ACCF441E249D435 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216113.roa Signing time: Fri 20 Oct 2023 22:53:39 +0000 ROA not before: Fri 20 Oct 2023 22:48:39 +0000 ROA not after: Fri 18 Oct 2024 22:53:39 +0000 asID: 216113 IP address blocks: 2a05:dfc1:b600::/40 maxlen: 48 2a05:dfc1:b700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ac:01:95:17:40:e3:42:35:a3:3d:2e:0a:cc:f4:41:e2:49:d4:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 20 22:48:39 2023 GMT Not After : Oct 18 22:53:39 2024 GMT Subject: CN=C0AED5AEF3FA0C897ACAE51145465B35F1B22C91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:da:fd:80:a6:9e:3f:2f:cb:05:86:42:f5:de: f8:cf:96:1a:4e:40:8d:c6:3d:1d:8b:94:23:05:1e: c9:b3:ec:7f:40:58:fb:c4:d8:57:a7:c8:e5:5d:e8: ff:3c:c7:ba:7c:20:e1:bf:a8:00:64:79:eb:a4:b4: a0:5f:38:d8:06:12:56:7b:0d:67:8f:65:f4:db:3a: 76:f6:72:3a:ab:9e:d9:4a:c2:6e:1d:32:fd:8d:3b: 0f:66:d4:49:7c:37:40:64:3c:b9:df:1e:a2:52:cb: 65:a9:c2:c1:ef:7e:76:2d:77:97:25:6d:9e:7f:ce: 30:c7:11:1d:af:e2:c5:81:f2:9d:8c:54:4f:e7:66: 7b:31:83:d3:55:f8:0f:26:1e:98:a2:05:40:1b:4f: 4d:0c:46:fb:e8:90:a7:10:8d:f0:ca:3c:27:4b:ce: e4:0b:1c:47:08:64:ef:cf:55:cf:8d:ef:27:5e:cc: 40:c7:1a:c9:99:23:e1:e4:aa:db:96:3d:36:c5:06: bb:61:11:b0:f2:ae:74:9d:0c:49:e1:b9:94:82:b3: 97:0c:1a:d3:b9:3c:1f:f5:ac:2f:08:a8:39:7d:83: 30:b4:47:95:3f:24:a0:c4:5f:64:c7:79:19:1e:95: 76:47:ee:f7:11:b4:b1:c3:20:ef:94:3d:e1:ff:31: da:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:AE:D5:AE:F3:FA:0C:89:7A:CA:E5:11:45:46:5B:35:F1:B2:2C:91 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b600::/39 Signature Algorithm: sha256WithRSAEncryption 70:6b:77:cc:3d:01:2c:5f:00:3b:84:08:a0:30:7a:5f:1f:e7: 82:0c:c0:31:80:49:12:3d:4c:6b:fa:29:db:39:a4:aa:4c:a2: 03:76:94:5c:dc:5c:af:5a:73:4d:8d:74:7d:3e:3e:f7:d8:1b: 4e:1d:41:af:de:64:01:85:32:1e:60:42:32:b8:81:a9:8b:24: 64:50:34:3e:0b:24:ab:49:b7:7b:1b:d6:29:e2:e1:2d:bb:00: da:2a:09:52:64:43:9b:92:28:97:af:00:07:1c:9a:82:27:86: 32:ef:fe:16:c2:ea:02:7d:e5:40:35:3a:5d:ef:97:92:65:53: 60:ff:40:e6:db:04:5d:64:aa:7f:88:d3:3c:51:47:d8:5f:54: 86:9f:8d:b8:7a:cc:0f:82:a7:e1:cb:5e:df:ce:2d:59:96:b4: b0:11:29:7a:aa:3e:7e:4e:09:1f:0c:ab:a6:90:2c:f0:93:c2: 1e:4e:ae:a5:1c:bb:ab:b1:30:54:b4:8a:e0:5e:79:7e:8c:05: 7e:d2:cd:69:61:d2:b3:20:51:05:ba:f3:14:3c:46:b0:ec:d3: ff:6d:06:59:2b:44:6b:46:bb:4e:6b:3f:ec:2b:41:bd:1a:c7: 52:65:37:ec:4d:43:bb:d1:2e:33:fb:f6:06:18:5b:19:5f:05: 01:d8:b5:91 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVqwBlRdA40I1oz0uCsz0QeJJ1DUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMjAyMjQ4MzlaFw0yNDEwMTgyMjUzMzlaMDMxMTAvBgNV BAMTKEMwQUVENUFFRjNGQTBDODk3QUNBRTUxMTQ1NDY1QjM1RjFCMjJDOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh2v2App4/L8sFhkL13vjPlhpO QI3GPR2LlCMFHsmz7H9AWPvE2FenyOVd6P88x7p8IOG/qABkeeuktKBfONgGElZ7 DWePZfTbOnb2cjqrntlKwm4dMv2NOw9m1El8N0BkPLnfHqJSy2WpwsHvfnYtd5cl bZ5/zjDHER2v4sWB8p2MVE/nZnsxg9NV+A8mHpiiBUAbT00MRvvokKcQjfDKPCdL zuQLHEcIZO/PVc+N7ydezEDHGsmZI+HkqtuWPTbFBrthEbDyrnSdDEnhuZSCs5cM GtO5PB/1rC8IqDl9gzC0R5U/JKDEX2THeRkelXZH7vcRtLHDIO+UPeH/MdqlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUwK7VrvP6DIl6yuURRUZbNfGyLJEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbYwDQYJKoZIhvcNAQELBQADggEBAHBr d8w9ASxfADuECKAwel8f54IMwDGASRI9TGv6Kds5pKpMogN2lFzcXK9ac02NdH0+ PvfYG04dQa/eZAGFMh5gQjK4gamLJGRQND4LJKtJt3sb1ini4S27ANoqCVJkQ5uS KJevAAccmoInhjLv/hbC6gJ95UA1Ol3vl5JlU2D/QObbBF1kqn+I0zxRR9hfVIaf jbh6zA+Cp+HLXt/OLVmWtLARKXqqPn5OCR8Mq6aQLPCTwh5OrqUcu6uxMFS0iuBe eX6MBX7SzWlh0rMgUQW68xQ8RrDs0/9tBlkrRGtGu05rP+wrQb0ax1JlN+xNQ7vR LjP79gYYWxlfBQHYtZE= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org