$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216215.roa File: AS216215.roa (raw, json) Hash identifier: xpnd7czjbnu8KteZbKCB4E4w4DHjyns0AQbJFO0Xewc= Subject key identifier: 8F:79:D5:CA:7C:C6:32:8B:EA:B0:FE:B9:0D:AA:E6:0C:52:51:1F:20 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3A348B29E5EA3EDBA0298690BFE677917C4D89D7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216215.roa Signing time: Tue 03 Oct 2023 21:16:13 +0000 ROA not before: Tue 03 Oct 2023 21:11:13 +0000 ROA not after: Tue 01 Oct 2024 21:16:13 +0000 asID: 216215 IP address blocks: 2a05:dfc1:a200::/40 maxlen: 48 2a05:dfc1:a300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:34:8b:29:e5:ea:3e:db:a0:29:86:90:bf:e6:77:91:7c:4d:89:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 3 21:11:13 2023 GMT Not After : Oct 1 21:16:13 2024 GMT Subject: CN=8F79D5CA7CC6328BEAB0FEB90DAAE60C52511F20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:21:64:bc:85:68:c9:f3:e9:5f:09:98:37:eb: 62:71:9d:91:a3:bc:5a:89:ee:3e:ca:12:f7:38:b6: 4f:d9:3e:ff:87:d3:6c:ec:fa:b5:37:a5:67:9d:e0: 75:81:15:a4:db:be:2d:86:a3:28:da:67:6c:32:0f: 26:2f:c2:7e:b2:2c:af:3c:1a:d2:01:46:88:42:84: fe:5a:4e:13:04:ad:83:31:aa:46:1c:9b:b9:ab:63: 4c:4b:52:3b:10:2f:5d:58:8c:12:fe:57:b5:fd:27: 8d:84:e4:18:5e:bc:2d:7c:70:fe:fa:44:2b:41:e9: 15:2c:95:4a:39:62:13:9d:43:a8:71:d4:93:2c:e4: 2b:bd:d0:71:f1:9f:23:c2:3b:38:fe:be:65:0b:d9: 4e:e8:26:2c:b3:af:b2:4c:78:f0:59:09:88:f5:43: 12:18:47:b7:a2:d3:71:ce:b7:62:b8:ab:43:76:23: ca:d1:3a:96:b6:8e:5d:3b:80:b3:32:b6:8c:aa:60: a8:6a:d8:d8:70:20:20:8e:5a:41:93:fe:b7:e6:7d: 43:7d:77:f1:78:9c:6b:26:2d:f2:a0:70:17:92:03: 43:54:4b:8c:66:38:03:47:fb:73:37:2f:12:f5:d7: 02:44:97:ef:66:ce:5f:fd:06:bd:93:02:f0:97:bc: 85:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:79:D5:CA:7C:C6:32:8B:EA:B0:FE:B9:0D:AA:E6:0C:52:51:1F:20 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216215.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a200::/39 Signature Algorithm: sha256WithRSAEncryption c2:49:95:5f:1d:1d:cf:ec:71:b7:3e:01:e6:9e:03:e7:b6:24: bb:ea:39:1f:3a:a9:09:e9:db:7c:b2:81:c3:aa:58:3c:aa:2e: 3d:2f:7b:b9:09:20:24:a2:9a:b2:29:d2:21:e9:92:54:df:8f: a7:9b:89:51:24:93:47:4e:1a:2f:3a:bb:15:ca:9b:58:41:b5: 1c:d6:76:23:32:b9:2f:04:f3:39:ea:15:4e:33:08:be:69:3c: b9:f0:2c:18:1f:12:cc:c2:6d:75:d8:0a:4c:fb:52:2f:10:1b: 3e:7f:5b:7c:b1:eb:01:89:77:0b:8b:dd:84:d6:92:b1:96:cb: 10:49:8d:40:62:82:a7:a4:b5:97:7f:0d:3a:09:bf:92:9e:44: 39:c4:5a:d7:73:c2:4e:28:04:31:8b:4d:0b:f7:34:a6:74:8c: 2b:6c:ff:53:f6:6b:57:74:4b:6f:39:07:68:7f:87:02:0a:f8: 66:7c:ee:be:18:6f:a2:8d:58:8b:d0:8a:44:61:a9:5d:67:48: 3d:bd:2e:9f:0f:af:28:0e:3d:97:ef:2c:3f:74:08:b0:ba:2e: fd:5b:45:f2:35:6d:67:da:14:a2:36:54:b3:72:67:69:fe:a7: 16:a0:80:46:57:7f:7f:6f:b9:8c:0c:1f:d0:74:5e:48:c2:24: f2:fe:94:97 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOjSLKeXqPtugKYaQv+Z3kXxNidcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzEwMDMyMTExMTNaFw0yNDEwMDEyMTE2MTNaMDMxMTAvBgNV BAMTKDhGNzlENUNBN0NDNjMyOEJFQUIwRkVCOTBEQUFFNjBDNTI1MTFGMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRIWS8hWjJ8+lfCZg362JxnZGj vFqJ7j7KEvc4tk/ZPv+H02zs+rU3pWed4HWBFaTbvi2GoyjaZ2wyDyYvwn6yLK88 GtIBRohChP5aThMErYMxqkYcm7mrY0xLUjsQL11YjBL+V7X9J42E5BhevC18cP76 RCtB6RUslUo5YhOdQ6hx1JMs5Cu90HHxnyPCOzj+vmUL2U7oJiyzr7JMePBZCYj1 QxIYR7ei03HOt2K4q0N2I8rROpa2jl07gLMytoyqYKhq2NhwICCOWkGT/rfmfUN9 d/F4nGsmLfKgcBeSA0NUS4xmOANH+3M3LxL11wJEl+9mzl/9Br2TAvCXvIW3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUj3nVynzGMovqsP65DarmDFJRHyAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MjE1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwaIwDQYJKoZIhvcNAQELBQADggEBAMJJ lV8dHc/scbc+AeaeA+e2JLvqOR86qQnp23yygcOqWDyqLj0ve7kJICSimrIp0iHp klTfj6ebiVEkk0dOGi86uxXKm1hBtRzWdiMyuS8E8znqFU4zCL5pPLnwLBgfEszC bXXYCkz7Ui8QGz5/W3yx6wGJdwuL3YTWkrGWyxBJjUBigqektZd/DToJv5KeRDnE Wtdzwk4oBDGLTQv3NKZ0jCts/1P2a1d0S285B2h/hwIK+GZ87r4Yb6KNWIvQikRh qV1nSD29Lp8PrygOPZfvLD90CLC6Lv1bRfI1bWfaFKI2VLNyZ2n+pxaggEZXf39v uYwMH9B0XkjCJPL+lJc= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org