$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216123.roa File: AS216123.roa (raw, json) Hash identifier: mMvndLOHckOG7cFur2CqrMOK7w+s0PxZ3b6sfQKm/Rw= Subject key identifier: 94:48:7C:1B:9D:6D:BE:39:04:35:33:B7:00:96:E5:79:65:05:39:E0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 06E8186F79CC42E6A949F7CF3CA315615EF9A60F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216123.roa Signing time: Thu 19 Oct 2023 12:17:49 +0000 ROA not before: Thu 19 Oct 2023 12:12:49 +0000 ROA not after: Thu 17 Oct 2024 12:17:49 +0000 asID: 216123 IP address blocks: 2a05:dfc1:a900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e8:18:6f:79:cc:42:e6:a9:49:f7:cf:3c:a3:15:61:5e:f9:a6:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 19 12:12:49 2023 GMT Not After : Oct 17 12:17:49 2024 GMT Subject: CN=94487C1B9D6DBE39043533B70096E579650539E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:91:92:ed:4e:7a:5f:1d:ec:86:de:e2:b6:6f: 50:c7:ab:26:38:04:36:cf:85:b4:6c:d7:e0:4e:1c: 5a:33:dd:b4:1a:9b:a7:bb:df:1d:1d:a0:1b:ca:7f: 4c:8d:83:57:23:6a:ab:d8:fa:c4:0b:ac:70:45:35: 69:08:a1:88:71:b9:8b:bb:8e:7a:ce:24:8c:a7:b0: 11:e4:94:ed:c8:9a:39:2a:72:c7:86:e3:5d:85:be: 60:7c:5b:87:06:fa:cf:d4:3f:34:4c:07:af:38:0d: f8:16:4b:66:70:30:43:bb:ce:cb:db:72:e1:40:15: ad:2d:b1:05:0d:45:30:cf:c9:15:78:cd:2e:3c:48: 48:d5:d9:6c:25:dd:23:06:fc:76:d9:7a:33:85:97: 3d:43:9a:c4:31:96:ae:06:42:57:99:ed:46:0b:14: 7b:17:da:f7:98:e5:03:f8:b7:f8:e3:74:ef:8d:42: 1c:93:52:eb:44:53:43:f4:4f:b6:d6:a3:a8:2a:db: 50:38:c8:3a:39:e7:fb:c5:58:a7:12:e7:96:04:a2: b4:d0:89:6b:de:65:b6:d5:c7:76:13:0b:84:bc:3c: 37:6d:51:d9:27:57:53:68:9a:53:e2:ce:bb:37:7e: b6:8b:18:0c:da:a9:f8:90:1c:87:5b:65:dc:4c:e7: de:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:48:7C:1B:9D:6D:BE:39:04:35:33:B7:00:96:E5:79:65:05:39:E0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216123.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a900::/40 Signature Algorithm: sha256WithRSAEncryption b3:d3:ec:05:96:19:84:4b:7a:46:41:2d:4f:c9:1c:e3:d0:e8: 85:4e:68:56:a9:43:b4:9c:75:52:37:09:7e:24:d2:5e:55:c0: 26:0d:22:de:4d:53:2c:24:78:c5:36:de:3f:78:9f:ce:29:ef: e8:f7:2b:8f:b0:8b:09:df:f3:46:6c:bc:04:01:e0:e9:0c:cd: 37:54:30:08:27:12:72:0d:47:4d:9b:67:ed:0a:e8:df:ce:bc: 4f:80:1e:69:f7:91:8f:61:56:2a:a9:85:aa:4f:9b:95:53:40: 6c:3e:3b:08:d7:5a:6e:e2:bc:44:00:3d:5b:70:7b:d9:2f:ed: 16:98:bf:28:4e:a0:16:66:c9:5a:b3:33:b2:49:e1:0d:5c:a4: e2:f2:3e:99:fb:45:78:34:33:4e:8e:92:dc:f0:02:ba:85:af: 2d:e9:23:77:33:35:b7:dd:9a:c2:9d:bf:4c:62:17:90:b2:93: 71:67:15:a6:03:14:09:cf:62:44:ed:fd:c3:53:44:f7:9e:b5: f0:e1:2c:de:65:5a:3c:08:52:4f:bd:97:37:7c:61:1e:47:24: da:98:2d:74:d7:54:26:38:72:b6:f2:38:71:4a:40:c2:84:7b: 49:5c:12:27:fa:43:4c:4e:61:64:26:a4:ea:b7:35:0a:86:2b: d4:7f:49:c7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBugYb3nMQuapSffPPKMVYV75pg8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMTkxMjEyNDlaFw0yNDEwMTcxMjE3NDlaMDMxMTAvBgNV BAMTKDk0NDg3QzFCOUQ2REJFMzkwNDM1MzNCNzAwOTZFNTc5NjUwNTM5RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5kZLtTnpfHeyG3uK2b1DHqyY4 BDbPhbRs1+BOHFoz3bQam6e73x0doBvKf0yNg1cjaqvY+sQLrHBFNWkIoYhxuYu7 jnrOJIynsBHklO3ImjkqcseG412FvmB8W4cG+s/UPzRMB684DfgWS2ZwMEO7zsvb cuFAFa0tsQUNRTDPyRV4zS48SEjV2Wwl3SMG/HbZejOFlz1DmsQxlq4GQleZ7UYL FHsX2veY5QP4t/jjdO+NQhyTUutEU0P0T7bWo6gq21A4yDo55/vFWKcS55YEorTQ iWveZbbVx3YTC4S8PDdtUdknV1NomlPizrs3fraLGAzaqfiQHIdbZdxM594nAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlEh8G51tvjkENTO3AJbleWUFOeAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwakwDQYJKoZIhvcNAQELBQADggEBALPT 7AWWGYRLekZBLU/JHOPQ6IVOaFapQ7ScdVI3CX4k0l5VwCYNIt5NUywkeMU23j94 n84p7+j3K4+wiwnf80ZsvAQB4OkMzTdUMAgnEnINR02bZ+0K6N/OvE+AHmn3kY9h ViqphapPm5VTQGw+OwjXWm7ivEQAPVtwe9kv7RaYvyhOoBZmyVqzM7JJ4Q1cpOLy Ppn7RXg0M06OktzwArqFry3pI3czNbfdmsKdv0xiF5Cyk3FnFaYDFAnPYkTt/cNT RPeetfDhLN5lWjwIUk+9lzd8YR5HJNqYLXTXVCY4crbyOHFKQMKEe0lcEif6Q0xO YWQmpOq3NQqGK9R/Scc= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org