$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216118.roa File: AS216118.roa (raw, json) Hash identifier: qRTiMf6wGYtLEBREZHojSB98qtf5bDQj72T2aNo8Rd4= Subject key identifier: 69:78:9E:89:C5:3B:C5:EB:E9:11:B1:76:50:EC:41:F0:0A:D6:0C:5F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 79BCCB23E93CFDE11ED841857989A0664A08CC41 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216118.roa Signing time: Fri 20 Oct 2023 07:59:08 +0000 ROA not before: Fri 20 Oct 2023 07:54:08 +0000 ROA not after: Fri 18 Oct 2024 07:59:08 +0000 asID: 216118 IP address blocks: 2a05:dfc1:b200::/40 maxlen: 48 2a05:dfc1:b300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:bc:cb:23:e9:3c:fd:e1:1e:d8:41:85:79:89:a0:66:4a:08:cc:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 20 07:54:08 2023 GMT Not After : Oct 18 07:59:08 2024 GMT Subject: CN=69789E89C53BC5EBE911B17650EC41F00AD60C5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ed:eb:c4:51:bd:e2:d5:f5:5c:b6:c5:7c:49: 21:13:46:49:16:76:a6:8f:b5:63:64:9e:6a:d7:52: 6d:c3:b2:ae:1c:22:a6:83:81:89:d1:61:a7:89:bd: 96:9c:0e:ea:75:ea:95:fe:61:e0:27:17:70:21:12: 90:f9:13:b1:a0:75:85:39:9d:5d:c2:64:02:47:77: 9c:11:4a:c0:fa:25:93:67:0b:56:40:80:c0:47:1b: 86:73:8e:d0:07:7c:c2:d3:8f:2d:8d:bc:9a:eb:37: c6:24:e8:4d:bd:41:28:d5:d9:fe:10:ec:cd:81:6c: 5c:5c:64:72:28:dc:df:a0:9f:69:51:51:39:1e:ac: 29:2c:f4:ca:58:e9:49:8b:72:87:0b:a1:46:93:bb: e4:82:6b:fd:59:c3:2d:8c:f4:ac:fb:10:28:f5:bb: 39:30:ab:9c:94:18:9c:82:1e:2f:19:13:05:a4:1e: a3:62:5a:d2:cc:39:1f:81:86:5c:88:ac:65:7e:f0: f8:86:ab:9e:9e:0b:21:6b:20:82:85:de:01:07:6b: 8d:1d:da:24:f2:cc:b5:b7:ff:21:9e:c7:8a:ee:7b: b1:b2:47:22:66:11:55:69:ad:ce:a3:ae:11:5a:fd: 23:d4:2f:8f:d2:df:e0:f5:e5:d3:4d:b9:37:c1:96: 6b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:78:9E:89:C5:3B:C5:EB:E9:11:B1:76:50:EC:41:F0:0A:D6:0C:5F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216118.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b200::/39 Signature Algorithm: sha256WithRSAEncryption 4c:09:9a:4a:c4:3e:38:cd:0b:04:45:0a:cf:2e:d8:a5:55:f2: 82:ff:4a:96:37:82:12:a5:10:ef:5f:d4:5b:b8:39:ca:de:3a: 0a:64:83:26:b5:19:d0:b6:4f:4b:8e:7b:3c:eb:34:b9:68:1e: 51:87:a3:fb:96:ca:d9:cd:2d:67:32:d5:75:a2:19:54:b2:74: e4:83:95:2d:e4:ee:77:34:a6:95:9d:05:93:4c:03:f0:2f:1e: 49:0a:3b:a9:84:13:d7:54:c8:c7:cb:7a:c6:28:17:d1:57:19: 5d:ff:c5:9c:49:9b:5c:3c:8c:b9:30:e2:52:05:9c:19:b4:d3: 54:17:19:08:9d:90:22:9c:98:fb:d1:f0:12:5c:bf:d9:c3:74: 71:e8:e4:c5:66:08:17:27:51:b0:d7:32:e7:be:18:a5:55:1d: 42:95:29:28:f2:9f:a5:47:e1:02:af:2d:fd:d6:75:e6:ac:62: c1:54:da:0a:8c:79:5d:af:ed:dc:28:54:98:8e:ee:5b:df:fe: 68:31:eb:7c:d8:1f:f8:24:9e:7e:58:f8:12:89:ed:24:a2:a4: 3b:1c:75:fe:53:c6:6a:65:a7:c5:41:d4:58:7b:50:03:dc:5e: 25:89:f9:b0:a0:2c:b6:af:29:53:4a:ef:aa:11:b8:57:86:ab: ed:2a:17:69 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUebzLI+k8/eEe2EGFeYmgZkoIzEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMjAwNzU0MDhaFw0yNDEwMTgwNzU5MDhaMDMxMTAvBgNV BAMTKDY5Nzg5RTg5QzUzQkM1RUJFOTExQjE3NjUwRUM0MUYwMEFENjBDNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC67evEUb3i1fVctsV8SSETRkkW dqaPtWNknmrXUm3Dsq4cIqaDgYnRYaeJvZacDup16pX+YeAnF3AhEpD5E7GgdYU5 nV3CZAJHd5wRSsD6JZNnC1ZAgMBHG4ZzjtAHfMLTjy2NvJrrN8Yk6E29QSjV2f4Q 7M2BbFxcZHIo3N+gn2lRUTkerCks9MpY6UmLcocLoUaTu+SCa/1Zwy2M9Kz7ECj1 uzkwq5yUGJyCHi8ZEwWkHqNiWtLMOR+BhlyIrGV+8PiGq56eCyFrIIKF3gEHa40d 2iTyzLW3/yGex4rue7GyRyJmEVVprc6jrhFa/SPUL4/S3+D15dNNuTfBlmuZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaXieicU7xevpEbF2UOxB8ArWDF8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbIwDQYJKoZIhvcNAQELBQADggEBAEwJ mkrEPjjNCwRFCs8u2KVV8oL/SpY3ghKlEO9f1Fu4OcreOgpkgya1GdC2T0uOezzr NLloHlGHo/uWytnNLWcy1XWiGVSydOSDlS3k7nc0ppWdBZNMA/AvHkkKO6mEE9dU yMfLesYoF9FXGV3/xZxJm1w8jLkw4lIFnBm001QXGQidkCKcmPvR8BJcv9nDdHHo 5MVmCBcnUbDXMue+GKVVHUKVKSjyn6VH4QKvLf3WdeasYsFU2gqMeV2v7dwoVJiO 7lvf/mgx63zYH/gknn5Y+BKJ7SSipDscdf5Txmplp8VB1Fh7UAPcXiWJ+bCgLLav KVNK76oRuFeGq+0qF2k= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org