$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216121.roa File: AS216121.roa (raw, json) Hash identifier: N8kKB+luLdXnhwsI5D7qVsg5tszlV2wV1WJI/YWchcM= Subject key identifier: D1:32:86:76:E8:F1:0D:8C:A1:2C:55:B9:7F:54:8D:CF:3D:19:21:79 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 78F747FF0189B63C3F1FDFF552AC352B9371AAD7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216121.roa Signing time: Thu 19 Oct 2023 21:12:57 +0000 ROA not before: Thu 19 Oct 2023 21:07:57 +0000 ROA not after: Thu 17 Oct 2024 21:12:57 +0000 asID: 216121 IP address blocks: 2a05:dfc1:b00::/40 maxlen: 48 2a05:dfc1:b100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:f7:47:ff:01:89:b6:3c:3f:1f:df:f5:52:ac:35:2b:93:71:aa:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 19 21:07:57 2023 GMT Not After : Oct 17 21:12:57 2024 GMT Subject: CN=D1328676E8F10D8CA12C55B97F548DCF3D192179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d5:07:19:b5:bd:ca:5a:a8:05:4a:b4:ca:76: a4:f8:73:06:6e:9a:b8:27:a8:74:bd:82:4d:71:28: f0:32:ed:a1:4c:3e:96:0c:37:12:28:c8:59:5f:8f: a6:bb:20:ef:7b:da:20:c7:6b:24:2a:eb:da:8c:aa: 5c:c2:37:70:5a:46:d5:6f:92:42:84:7c:dc:ed:ee: f9:1d:a0:8a:6a:bf:37:cf:d9:27:dd:a3:e4:d3:fe: be:70:62:16:b1:49:f4:c0:04:82:27:8a:34:56:62: df:c6:51:33:68:1e:95:9e:f0:fb:f9:c3:4b:c6:2a: 09:2d:ba:b9:79:c2:5d:57:62:d5:c5:30:8d:9b:0d: cc:53:7f:26:fe:7e:c3:dd:b9:b5:a0:ac:16:c9:59: ae:67:e6:53:4c:3c:40:53:69:fa:f8:b1:86:4c:7a: 95:9f:70:3e:8d:3d:41:6f:29:dc:35:8a:0a:62:dc: 90:b7:90:ba:6d:06:e0:f9:f4:37:bf:aa:54:ef:31: ac:f6:3a:27:b0:b5:dc:bf:9c:85:04:96:e2:42:6d: 2c:aa:b1:bf:ad:84:97:06:45:c0:a2:25:aa:eb:4b: ce:cc:26:aa:f7:db:9a:1b:1b:28:6a:90:95:04:b5: 46:a1:cd:69:24:75:6e:e3:2e:95:5e:47:90:a8:26: bc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:32:86:76:E8:F1:0D:8C:A1:2C:55:B9:7F:54:8D:CF:3D:19:21:79 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216121.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b00::/40 2a05:dfc1:b100::/40 Signature Algorithm: sha256WithRSAEncryption a1:b3:f6:21:68:1c:0b:ee:d2:74:dc:8b:45:95:66:84:91:87: 64:35:af:89:bd:31:9e:ba:ee:1b:97:9e:0e:97:7f:2e:21:d6: 73:1e:04:b5:a2:8a:9c:09:90:bd:36:d8:8c:a8:79:ec:84:4b: 59:98:82:d0:80:e1:81:a3:24:c0:db:03:1e:62:82:23:f0:95: 83:5f:f9:a5:f8:a1:fe:b0:f6:39:87:ab:73:40:2b:1b:91:b8: 82:7e:4b:d0:90:7f:44:36:c4:a3:30:e2:3c:31:a6:ac:ef:09: b2:9c:9b:5d:86:0b:61:e7:32:68:09:33:44:60:30:18:43:98: c5:11:c7:48:d0:c4:fe:d3:f7:e4:60:f8:9d:39:cf:8d:f3:5f: 8a:a2:c4:67:f0:73:50:51:6d:09:40:74:77:d0:ec:95:45:c0: 45:6f:82:86:fe:fe:2a:7d:8f:5e:f4:e0:58:05:5c:c8:30:18: 2c:a4:7e:8c:ce:86:8e:8a:65:bf:5c:b1:35:bf:e3:d9:46:b0: f8:8d:87:0d:3c:a1:d0:b7:3e:b7:47:de:44:72:ce:02:cb:6f: c9:a5:f7:5e:ad:b2:42:dc:97:c5:e7:f5:4a:02:92:69:41:cb: ba:1e:17:bd:c6:fa:9c:a7:26:5d:6b:5c:92:25:5f:a4:89:fd: 77:54:89:7e -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUePdH/wGJtjw/H9/1Uqw1K5NxqtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMTkyMTA3NTdaFw0yNDEwMTcyMTEyNTdaMDMxMTAvBgNV BAMTKEQxMzI4Njc2RThGMTBEOENBMTJDNTVCOTdGNTQ4RENGM0QxOTIxNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC71QcZtb3KWqgFSrTKdqT4cwZu mrgnqHS9gk1xKPAy7aFMPpYMNxIoyFlfj6a7IO972iDHayQq69qMqlzCN3BaRtVv kkKEfNzt7vkdoIpqvzfP2Sfdo+TT/r5wYhaxSfTABIInijRWYt/GUTNoHpWe8Pv5 w0vGKgkturl5wl1XYtXFMI2bDcxTfyb+fsPdubWgrBbJWa5n5lNMPEBTafr4sYZM epWfcD6NPUFvKdw1igpi3JC3kLptBuD59De/qlTvMaz2Oiewtdy/nIUEluJCbSyq sb+thJcGRcCiJarrS87MJqr325obGyhqkJUEtUahzWkkdW7jLpVeR5CoJrwTAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQU0TKGdujxDYyhLFW5f1SNzz0ZIXkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTIxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgXfwQsDBgAqBd/BsTANBgkqhkiG9w0BAQsF AAOCAQEAobP2IWgcC+7SdNyLRZVmhJGHZDWvib0xnrruG5eeDpd/LiHWcx4EtaKK nAmQvTbYjKh57IRLWZiC0IDhgaMkwNsDHmKCI/CVg1/5pfih/rD2OYerc0ArG5G4 gn5L0JB/RDbEozDiPDGmrO8JspybXYYLYecyaAkzRGAwGEOYxRHHSNDE/tP35GD4 nTnPjfNfiqLEZ/BzUFFtCUB0d9DslUXARW+Chv7+Kn2PXvTgWAVcyDAYLKR+jM6G joplv1yxNb/j2Uaw+I2HDTyh0Lc+t0feRHLOAstvyaX3Xq2yQtyXxef1SgKSaUHL uh4Xvcb6nKcmXWtckiVfpIn9d1SJfg== -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org