$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216198.roa File: AS216198.roa (raw, json) Hash identifier: X/lVwadbHCgVg0JPWKqa6zx+b9B/lhsIZ/YJyer8Gjo= Subject key identifier: 4B:98:EC:3A:BB:DE:6C:88:56:B3:59:A5:97:E4:E8:94:89:F1:86:7C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 50CA7F719A41DB01289365F2C8ACBFFCD44EE0BE Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216198.roa Signing time: Tue 10 Oct 2023 07:27:49 +0000 ROA not before: Tue 10 Oct 2023 07:22:49 +0000 ROA not after: Tue 08 Oct 2024 07:27:49 +0000 asID: 216198 IP address blocks: 2a05:dfc1:a700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ca:7f:71:9a:41:db:01:28:93:65:f2:c8:ac:bf:fc:d4:4e:e0:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 10 07:22:49 2023 GMT Not After : Oct 8 07:27:49 2024 GMT Subject: CN=4B98EC3ABBDE6C8856B359A597E4E89489F1867C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:10:b9:7c:14:96:33:7c:3e:a6:13:62:cd:0f: 5a:ba:bb:a7:5d:2a:1f:0c:04:71:c3:85:73:90:f4: 0c:68:dc:d4:4d:c7:fc:36:35:b7:97:ef:48:1c:a2: 39:54:d2:ea:03:8e:3c:07:4a:71:16:c5:6a:fa:cd: 45:03:5c:97:83:fd:bc:22:52:30:ec:8c:f7:2d:77: 29:3a:be:ef:08:f1:f3:ac:b6:6f:08:b7:be:0e:a0: af:34:48:1b:85:a6:5a:a2:b2:32:80:3f:8a:4d:e4: 31:00:6d:cc:26:8d:cc:f4:99:bd:df:95:22:cc:65: 45:c2:8b:8c:42:05:12:df:4e:63:c3:6a:51:e0:5b: 06:28:30:95:66:a7:be:47:a0:95:65:ec:bc:c8:89: be:c6:1e:fc:b8:4e:0d:a7:95:fa:d1:e3:95:8c:bb: 4a:5f:51:98:38:b3:b3:58:78:bc:84:73:1d:0b:02: c2:6e:d1:81:2a:2c:dc:7b:a2:88:b2:d8:e1:67:5f: ee:3f:7e:bb:97:0a:e0:f0:95:10:a7:e0:64:84:99: 9f:0e:e4:20:2c:73:89:a8:e5:fb:0d:db:6e:b0:fb: 27:75:4d:62:ab:a6:47:a6:23:59:9f:70:a2:58:a5: cf:cb:5d:47:19:ed:ea:d1:ca:68:eb:7b:94:93:bc: 40:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:98:EC:3A:BB:DE:6C:88:56:B3:59:A5:97:E4:E8:94:89:F1:86:7C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216198.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a700::/40 Signature Algorithm: sha256WithRSAEncryption a2:51:ad:89:49:27:36:98:6a:e7:c8:1f:14:1d:6b:ad:eb:45: 6e:2c:d4:77:fb:e7:81:fd:bd:7d:50:96:a5:82:42:18:61:b0: 58:ec:de:52:63:ef:b8:a9:be:67:0d:a8:c3:bc:43:98:a4:62: c8:53:ec:98:0e:73:3b:da:bb:ee:39:54:fe:d6:dc:13:1a:a9: 3d:14:d5:6f:c9:12:6c:90:81:56:f3:4b:42:ea:1b:ab:43:5e: 2d:1e:52:53:5b:ef:69:7e:63:f1:ca:41:ae:8f:7e:60:af:1f: 86:5a:48:57:e4:f5:01:96:3a:42:4e:d8:d0:3a:21:a7:88:d1: a0:13:03:0a:c1:84:41:7e:c0:7f:e0:5f:99:bd:93:f0:0b:a9: 4b:a0:db:f9:5c:83:0e:ec:6f:29:7e:b9:90:6e:03:cc:ee:29: b3:e0:2b:0b:0b:9c:67:e5:d2:4c:20:6d:d7:0b:84:bc:73:6e: 6d:16:4f:72:4a:ae:ca:89:9b:1d:16:6e:12:4e:e0:94:52:2c: 08:59:79:b1:3e:b5:be:f8:25:f5:c8:59:7b:39:df:b5:6b:cd: 45:6b:b0:4c:f6:36:6b:d9:50:f2:cd:64:59:d7:22:91:d2:4d: e8:b9:53:0b:92:f5:75:34:29:80:cb:e3:08:e4:07:f9:a8:b7: 42:69:a1:35 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUMp/cZpB2wEok2XyyKy//NRO4L4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMTAwNzIyNDlaFw0yNDEwMDgwNzI3NDlaMDMxMTAvBgNV BAMTKDRCOThFQzNBQkJERTZDODg1NkIzNTlBNTk3RTRFODk0ODlGMTg2N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoELl8FJYzfD6mE2LND1q6u6dd Kh8MBHHDhXOQ9Axo3NRNx/w2NbeX70gcojlU0uoDjjwHSnEWxWr6zUUDXJeD/bwi UjDsjPctdyk6vu8I8fOstm8It74OoK80SBuFplqisjKAP4pN5DEAbcwmjcz0mb3f lSLMZUXCi4xCBRLfTmPDalHgWwYoMJVmp75HoJVl7LzIib7GHvy4Tg2nlfrR45WM u0pfUZg4s7NYeLyEcx0LAsJu0YEqLNx7ooiy2OFnX+4/fruXCuDwlRCn4GSEmZ8O 5CAsc4mo5fsN226w+yd1TWKrpkemI1mfcKJYpc/LXUcZ7erRymjre5STvEAfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUS5jsOrvebIhWs1mll+TolInxhnwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MTk4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwacwDQYJKoZIhvcNAQELBQADggEBAKJR rYlJJzaYaufIHxQda63rRW4s1Hf754H9vX1QlqWCQhhhsFjs3lJj77ipvmcNqMO8 Q5ikYshT7JgOczvau+45VP7W3BMaqT0U1W/JEmyQgVbzS0LqG6tDXi0eUlNb72l+ Y/HKQa6PfmCvH4ZaSFfk9QGWOkJO2NA6IaeI0aATAwrBhEF+wH/gX5m9k/ALqUug 2/lcgw7sbyl+uZBuA8zuKbPgKwsLnGfl0kwgbdcLhLxzbm0WT3JKrsqJmx0WbhJO 4JRSLAhZebE+tb74JfXIWXs537VrzUVrsEz2NmvZUPLNZFnXIpHSTei5UwuS9XU0 KYDL4wjkB/mot0JpoTU= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org