$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216115.roa File: AS216115.roa (raw, json) Hash identifier: TB44IGQrdUzOUg2BvNBbjZUFsdxhlIqR5D2/+dL4jNA= Subject key identifier: B0:B7:1C:B6:55:37:C1:9D:AE:D3:A7:07:65:56:8F:C8:A3:07:4E:AC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3E8D5227E11725B3591EB93A190B4AB38E18584C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216115.roa Signing time: Fri 20 Oct 2023 23:18:45 +0000 ROA not before: Fri 20 Oct 2023 23:13:45 +0000 ROA not after: Fri 18 Oct 2024 23:18:45 +0000 asID: 216115 IP address blocks: 2a05:dfc1:b400::/40 maxlen: 48 2a05:dfc1:b500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:8d:52:27:e1:17:25:b3:59:1e:b9:3a:19:0b:4a:b3:8e:18:58:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 20 23:13:45 2023 GMT Not After : Oct 18 23:18:45 2024 GMT Subject: CN=B0B71CB65537C19DAED3A70765568FC8A3074EAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b2:aa:ca:18:6d:5d:11:61:ca:de:56:3c:37: 6f:ad:cc:76:5e:ad:da:09:9b:7a:61:58:92:44:0d: 85:1d:3c:b9:23:71:0b:ee:e7:a1:16:21:ad:46:fa: cc:68:12:29:b7:b7:f8:48:ca:05:01:d8:f0:51:33: cd:9a:47:45:f2:dd:1c:ef:b0:da:e2:af:3b:4c:5b: e9:25:de:c2:00:57:81:03:60:b4:07:e2:0e:92:4b: 01:a6:ff:d3:b5:65:a3:68:d9:0c:37:2c:55:a5:46: df:99:c5:8d:82:7d:54:a9:7a:56:dd:41:0e:ff:73: 84:4c:ed:07:c7:55:71:ff:09:06:b0:31:98:9a:fd: 81:76:75:44:d2:b3:64:bc:c3:23:82:9e:36:2b:5f: 67:42:01:73:21:5f:57:2d:2d:75:84:c2:7a:84:58: 1f:bd:8d:a3:e8:f2:de:c7:32:48:0e:27:89:2b:54: 21:9b:69:72:63:cc:60:62:87:9b:59:6c:1f:ed:53: 9c:91:da:f1:0e:4b:08:52:9e:b8:66:89:46:33:11: a1:b3:7b:fa:7e:57:aa:68:c1:d1:72:a6:52:2c:d7: c4:f9:ea:18:b6:3a:6e:fa:62:03:76:63:e3:b3:ff: ea:05:64:2e:ae:23:4f:1d:c8:00:45:69:3d:18:56: b3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B7:1C:B6:55:37:C1:9D:AE:D3:A7:07:65:56:8F:C8:A3:07:4E:AC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216115.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b400::/39 Signature Algorithm: sha256WithRSAEncryption b6:98:85:2f:ec:01:8a:c2:9d:32:bc:ef:87:bb:93:3c:bf:a8: 18:19:08:83:81:8e:0e:d2:b6:9c:8d:d3:c6:e6:f5:b8:ab:c6: 5b:37:c2:b4:3f:a0:df:c4:7c:b6:f9:5b:59:d3:81:5c:2a:56: ff:ab:da:88:0d:c0:a8:d4:bf:7d:b0:32:f1:c9:8d:66:17:0b: f2:2b:cf:88:3b:41:67:e2:ff:ee:8a:c6:1f:e2:c7:60:c0:fc: a6:fa:6b:f3:c4:3c:9e:8a:1d:cd:47:b1:7f:1b:27:4d:c8:0b: d9:16:25:e1:16:a6:93:33:76:4a:34:d5:64:31:d1:e0:a8:41: 4f:d7:8b:92:e6:54:81:04:bc:ca:f2:70:c3:4a:b5:42:49:6d: ee:be:24:e1:7a:4e:46:cf:6d:1e:95:41:e8:23:00:17:26:80: b3:aa:bd:61:75:9a:97:f2:1e:f4:fa:51:3e:bb:e6:19:90:b1: 5c:61:29:cd:95:6f:ee:09:e5:82:5e:f4:b9:93:b4:2b:c3:c4: 23:27:2e:e5:ab:87:20:83:16:19:c1:98:2f:27:8c:e1:70:fc: 33:ac:ca:a9:77:78:fe:d0:d2:ec:1b:fc:99:35:cd:6f:b1:3f: 8a:31:7f:dd:91:ea:77:80:4c:b2:d4:af:13:76:c1:99:51:04: ba:ff:ed:47 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPo1SJ+EXJbNZHrk6GQtKs44YWEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMjAyMzEzNDVaFw0yNDEwMTgyMzE4NDVaMDMxMTAvBgNV BAMTKEIwQjcxQ0I2NTUzN0MxOURBRUQzQTcwNzY1NTY4RkM4QTMwNzRFQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWsqrKGG1dEWHK3lY8N2+tzHZe rdoJm3phWJJEDYUdPLkjcQvu56EWIa1G+sxoEim3t/hIygUB2PBRM82aR0Xy3Rzv sNrirztMW+kl3sIAV4EDYLQH4g6SSwGm/9O1ZaNo2Qw3LFWlRt+ZxY2CfVSpelbd QQ7/c4RM7QfHVXH/CQawMZia/YF2dUTSs2S8wyOCnjYrX2dCAXMhX1ctLXWEwnqE WB+9jaPo8t7HMkgOJ4krVCGbaXJjzGBih5tZbB/tU5yR2vEOSwhSnrhmiUYzEaGz e/p+V6powdFyplIs18T56hi2Om76YgN2Y+Oz/+oFZC6uI08dyABFaT0YVrNBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUsLcctlU3wZ2u06cHZVaPyKMHTqwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTE1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbQwDQYJKoZIhvcNAQELBQADggEBALaY hS/sAYrCnTK874e7kzy/qBgZCIOBjg7StpyN08bm9birxls3wrQ/oN/EfLb5W1nT gVwqVv+r2ogNwKjUv32wMvHJjWYXC/Irz4g7QWfi/+6Kxh/ix2DA/Kb6a/PEPJ6K Hc1HsX8bJ03IC9kWJeEWppMzdko01WQx0eCoQU/Xi5LmVIEEvMrycMNKtUJJbe6+ JOF6TkbPbR6VQegjABcmgLOqvWF1mpfyHvT6UT675hmQsVxhKc2Vb+4J5YJe9LmT tCvDxCMnLuWrhyCDFhnBmC8njOFw/DOsyql3eP7Q0uwb/Jk1zW+xP4oxf92R6neA TLLUrxN2wZlRBLr/7Uc= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org