$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216124.roa File: AS216124.roa (raw, json) Hash identifier: VIPNZJRfwiDVfd9kKxpcBGTJSyyQ6M/ubwRI+JMYrkw= Subject key identifier: FB:86:CD:26:AB:FE:65:F0:CF:F3:89:F6:33:55:09:DF:FD:45:5A:93 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 60144F8F8C0FF5D633F82344800CBD352A2E4AB1 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216124.roa Signing time: Thu 19 Oct 2023 08:37:34 +0000 ROA not before: Thu 19 Oct 2023 08:32:34 +0000 ROA not after: Thu 17 Oct 2024 08:37:34 +0000 asID: 216124 IP address blocks: 2a05:dfc1:aa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:14:4f:8f:8c:0f:f5:d6:33:f8:23:44:80:0c:bd:35:2a:2e:4a:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 19 08:32:34 2023 GMT Not After : Oct 17 08:37:34 2024 GMT Subject: CN=FB86CD26ABFE65F0CFF389F6335509DFFD455A93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:11:05:54:ca:2c:6a:63:ea:f0:e5:12:38:b2: 33:d9:40:c8:13:5f:73:f6:5a:c4:f3:83:9e:cc:01: 42:96:ef:8a:e6:d1:02:60:09:7f:45:cd:15:c7:42: 26:47:35:54:0b:ab:88:cf:67:ae:bf:95:ce:56:87: bb:6a:19:3f:0b:1e:df:13:9d:ee:72:3c:37:87:01: 60:4e:ec:a2:6a:f5:ad:7f:eb:c1:87:d9:cf:a0:08: e2:7d:da:02:cd:9d:ba:fd:28:aa:ba:d0:4e:38:95: 6a:30:03:22:cd:de:c4:7c:c0:97:22:a7:2b:53:6c: 44:c5:bb:17:7c:29:d5:4a:22:d4:87:e6:89:c8:87: da:d4:71:9f:77:74:58:02:77:52:f1:95:d2:ba:33: 48:ec:cb:aa:a9:50:04:3f:e2:df:15:1f:9c:59:2a: 8f:c8:4a:71:8f:c0:d3:67:b7:0f:93:15:51:ad:ac: e1:67:99:20:55:f4:6b:4c:e6:ba:eb:f9:ec:7a:11: 6c:e0:4f:4b:08:08:49:47:c5:a3:8b:2a:c7:1a:cb: 8e:71:c7:c4:33:e2:41:76:f5:c2:b7:87:a4:eb:4a: c5:85:74:05:f0:19:44:37:d8:27:f1:d8:6f:25:d9: e0:09:b0:7c:d0:ba:c1:bb:5a:2b:c7:2c:5b:76:5d: 3b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:86:CD:26:AB:FE:65:F0:CF:F3:89:F6:33:55:09:DF:FD:45:5A:93 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:aa00::/40 Signature Algorithm: sha256WithRSAEncryption 54:ad:36:57:fc:d8:05:4a:3a:17:02:6f:48:9e:0d:e9:f9:43: 93:d9:72:1d:70:1a:c1:ca:7c:59:1a:10:6e:37:6b:71:f8:a7: 5a:66:0b:3b:77:1b:79:2d:53:ad:9c:ef:bc:90:b8:d2:3f:05: a6:7f:bd:c0:8f:bd:25:07:87:c9:b6:57:92:1a:32:33:ce:f9: cf:6c:a3:76:8b:35:c7:40:19:70:7e:8a:c8:71:76:1a:7d:9f: ad:25:8f:bd:d7:2e:02:b0:a3:b4:a3:a0:b2:23:e6:c3:15:86: 7e:7a:0f:7f:0d:84:46:d6:e1:2d:eb:4e:8f:6e:8b:13:3e:49: cb:03:30:2a:56:84:c9:77:3b:e7:da:7e:1b:6f:7b:34:4c:e4: ae:3c:88:4b:cb:54:e2:92:17:5f:06:4c:e5:cd:b5:74:ff:ae: 9a:60:a3:a1:70:5f:cb:31:11:20:9e:33:62:9c:40:67:66:37: 7b:f1:ea:5e:bc:41:58:94:30:71:f7:a4:95:ab:54:ae:d9:02: e1:ff:62:16:ec:64:c7:f1:f1:7b:c1:b9:7f:59:ac:d5:02:c0: 44:83:da:1d:6f:cc:90:80:76:97:e8:1e:4c:25:39:bc:cf:eb: d9:b3:4c:e7:a0:0f:bd:7c:73:6c:2b:14:d9:68:3e:1d:42:2f: 3a:1c:9a:f3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYBRPj4wP9dYz+CNEgAy9NSouSrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMTkwODMyMzRaFw0yNDEwMTcwODM3MzRaMDMxMTAvBgNV BAMTKEZCODZDRDI2QUJGRTY1RjBDRkYzODlGNjMzNTUwOURGRkQ0NTVBOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNEQVUyixqY+rw5RI4sjPZQMgT X3P2WsTzg57MAUKW74rm0QJgCX9FzRXHQiZHNVQLq4jPZ66/lc5Wh7tqGT8LHt8T ne5yPDeHAWBO7KJq9a1/68GH2c+gCOJ92gLNnbr9KKq60E44lWowAyLN3sR8wJci pytTbETFuxd8KdVKItSH5onIh9rUcZ93dFgCd1LxldK6M0jsy6qpUAQ/4t8VH5xZ Ko/ISnGPwNNntw+TFVGtrOFnmSBV9GtM5rrr+ex6EWzgT0sICElHxaOLKscay45x x8Qz4kF29cK3h6TrSsWFdAXwGUQ32Cfx2G8l2eAJsHzQusG7WivHLFt2XTuTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+4bNJqv+ZfDP84n2M1UJ3/1FWpMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwaowDQYJKoZIhvcNAQELBQADggEBAFSt Nlf82AVKOhcCb0ieDen5Q5PZch1wGsHKfFkaEG43a3H4p1pmCzt3G3ktU62c77yQ uNI/BaZ/vcCPvSUHh8m2V5IaMjPO+c9so3aLNcdAGXB+ishxdhp9n60lj73XLgKw o7SjoLIj5sMVhn56D38NhEbW4S3rTo9uixM+ScsDMCpWhMl3O+fafhtvezRM5K48 iEvLVOKSF18GTOXNtXT/rppgo6FwX8sxESCeM2KcQGdmN3vx6l68QViUMHH3pJWr VK7ZAuH/YhbsZMfx8XvBuX9ZrNUCwESD2h1vzJCAdpfoHkwlObzP69mzTOegD718 c2wrFNloPh1CLzocmvM= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org