$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216127.roa File: AS216127.roa (raw, json) Hash identifier: HpMXyBi0rU+MugswWxvm1axamc5pQJoNZLcUqrZdMQY= Subject key identifier: BD:38:64:AC:98:16:19:6A:7C:81:56:D9:59:0F:DC:F0:06:D8:ED:DD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 19205D204666AF714219CC7DEE002173A3062EBD Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216127.roa Signing time: Wed 18 Oct 2023 10:10:47 +0000 ROA not before: Wed 18 Oct 2023 10:05:47 +0000 ROA not after: Wed 16 Oct 2024 10:10:47 +0000 asID: 216127 IP address blocks: 2a05:dfc1:a000::/40 maxlen: 48 2a05:dfc1:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:20:5d:20:46:66:af:71:42:19:cc:7d:ee:00:21:73:a3:06:2e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 18 10:05:47 2023 GMT Not After : Oct 16 10:10:47 2024 GMT Subject: CN=BD3864AC9816196A7C8156D9590FDCF006D8EDDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d2:5d:3a:02:02:90:30:e7:58:7c:4f:4f:c1: 45:b7:07:30:05:16:6c:8a:df:a0:42:d2:e6:42:f7: 7d:6b:62:8c:02:5a:c1:88:75:19:59:30:e4:f3:e5: 03:fe:4e:6b:0c:17:18:6c:4a:22:84:e8:3e:cb:33: 64:e9:5b:be:ed:88:b4:05:b5:1c:51:09:3e:4c:0c: e4:45:0b:35:6f:d4:34:ff:08:04:d3:c8:1c:44:da: 7c:51:bd:3d:c7:e4:1a:7f:0a:0c:1e:fb:b1:3c:91: 98:e8:74:a5:5f:85:08:c3:aa:ec:14:ce:cc:4d:84: 19:92:51:59:8a:12:de:b0:d3:2a:46:88:0a:d0:94: f9:59:9f:80:92:86:0d:e9:e8:60:7b:48:12:56:d7: 22:e0:e6:12:58:85:ca:e5:c7:10:5d:e8:4d:a0:0a: 74:bc:95:dc:8f:1a:3a:0a:78:e2:72:4a:aa:33:1f: 53:0e:b1:13:46:5f:0e:14:62:0d:9e:b5:1d:43:9e: 8a:45:20:7e:0a:2c:d9:65:a1:2a:3d:7d:89:8a:81: 1f:f6:87:6a:5d:ac:f0:b4:fc:63:91:1e:9c:1c:d1: 40:ac:cc:38:18:05:67:03:2b:5b:27:f2:94:51:83: 6b:e2:1b:52:07:db:3d:70:be:22:b3:56:58:ec:88: ec:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:38:64:AC:98:16:19:6A:7C:81:56:D9:59:0F:DC:F0:06:D8:ED:DD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216127.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a000::/39 Signature Algorithm: sha256WithRSAEncryption 78:d7:b9:b8:94:b5:4e:c5:09:74:71:af:0a:41:fb:06:2d:9b: 17:35:21:2a:98:17:e2:5c:a5:8f:13:b1:d2:94:91:4a:09:0c: a3:7f:e6:82:f9:27:45:87:3c:96:1f:91:59:21:ff:80:73:ad: 9a:c8:c1:d6:50:fe:be:bc:80:94:ee:cd:02:74:07:80:14:46: c6:c0:66:57:e6:65:5d:a1:6a:6c:93:87:13:a0:00:86:19:c6: 2e:fd:13:12:5c:38:dd:60:6d:cb:c4:d1:f5:a6:fa:df:30:a2: 5b:6c:a6:c2:52:33:9e:38:f3:f2:0a:65:ea:68:7b:16:ee:14: 52:c9:d2:ff:1a:f8:47:25:56:8f:b0:b4:6d:be:2f:5f:69:7f: c6:b2:e4:0e:03:1a:da:ef:34:a8:74:fa:27:59:05:f3:52:0a: 1b:84:b3:f2:fb:54:aa:db:e1:e3:d2:47:a7:1d:e1:0f:ed:a3: 23:72:b3:65:9a:7d:bb:6f:d3:d5:7a:5d:63:0c:62:3b:ba:00: 37:1e:08:45:be:0d:a8:d4:22:d2:57:3e:f4:48:68:91:87:96: da:37:39:ee:19:75:9c:c1:14:d3:da:b6:b5:5c:2c:49:44:cf: 29:65:a1:5f:dd:fd:76:4d:d6:d3:5b:1a:25:57:a1:f2:5e:d3: 42:d6:57:a1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGSBdIEZmr3FCGcx97gAhc6MGLr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMTgxMDA1NDdaFw0yNDEwMTYxMDEwNDdaMDMxMTAvBgNV BAMTKEJEMzg2NEFDOTgxNjE5NkE3QzgxNTZEOTU5MEZEQ0YwMDZEOEVEREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC80l06AgKQMOdYfE9PwUW3BzAF FmyK36BC0uZC931rYowCWsGIdRlZMOTz5QP+TmsMFxhsSiKE6D7LM2TpW77tiLQF tRxRCT5MDORFCzVv1DT/CATTyBxE2nxRvT3H5Bp/Cgwe+7E8kZjodKVfhQjDquwU zsxNhBmSUVmKEt6w0ypGiArQlPlZn4CShg3p6GB7SBJW1yLg5hJYhcrlxxBd6E2g CnS8ldyPGjoKeOJySqozH1MOsRNGXw4UYg2etR1DnopFIH4KLNlloSo9fYmKgR/2 h2pdrPC0/GORHpwc0UCszDgYBWcDK1sn8pRRg2viG1IH2z1wviKzVljsiOyhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUvThkrJgWGWp8gVbZWQ/c8AbY7d0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwaAwDQYJKoZIhvcNAQELBQADggEBAHjX ubiUtU7FCXRxrwpB+wYtmxc1ISqYF+JcpY8TsdKUkUoJDKN/5oL5J0WHPJYfkVkh /4BzrZrIwdZQ/r68gJTuzQJ0B4AURsbAZlfmZV2hamyThxOgAIYZxi79ExJcON1g bcvE0fWm+t8woltspsJSM5448/IKZepoexbuFFLJ0v8a+EclVo+wtG2+L19pf8ay 5A4DGtrvNKh0+idZBfNSChuEs/L7VKrb4ePSR6cd4Q/toyNys2Wafbtv09V6XWMM Yju6ADceCEW+DajUItJXPvRIaJGHlto3Oe4ZdZzBFNPatrVcLElEzylloV/d/XZN 1tNbGiVXofJe00LWV6E= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org