$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216227.roa File: AS216227.roa (raw, json) Hash identifier: /BNPRl1si4ICzgXj4DxXzzFt9ve6hzGF0oEeqlTJpY8= Subject key identifier: D8:E1:2E:86:18:0E:18:8D:37:95:B7:4E:18:A5:03:58:49:9F:F0:28 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 59FED6AAEF77942AC582219483340ED0ABCBA2EE Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216227.roa Signing time: Mon 06 Nov 2023 21:43:50 +0000 ROA not before: Mon 06 Nov 2023 21:38:50 +0000 ROA not after: Mon 04 Nov 2024 21:43:50 +0000 asID: 216227 IP address blocks: 2a05:dfc1:af00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:fe:d6:aa:ef:77:94:2a:c5:82:21:94:83:34:0e:d0:ab:cb:a2:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 6 21:38:50 2023 GMT Not After : Nov 4 21:43:50 2024 GMT Subject: CN=D8E12E86180E188D3795B74E18A50358499FF028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:05:93:e6:a7:6b:b0:95:e8:4c:69:cf:06:dc: 12:79:e4:a6:d3:91:29:5a:c3:fa:9d:24:a2:db:c6: 5b:46:a5:c7:62:93:fb:05:7b:32:2c:d6:00:d3:a7: 9f:c6:21:20:59:b8:6e:bf:1a:92:5e:55:4c:75:cf: 2b:2d:ff:45:83:4f:d4:01:f9:14:46:db:49:ca:71: 10:cd:f5:7e:12:23:29:92:31:f2:a5:ab:2e:85:32: bc:48:17:2d:47:86:fb:01:bd:ac:9c:a5:28:18:bf: 42:4f:d6:e7:b2:a8:f8:c0:b6:a2:33:04:d2:d3:16: 0e:ce:60:45:72:9b:eb:2f:53:a1:96:d5:e3:a6:48: e7:ab:4f:37:84:89:e3:de:e9:08:dd:7d:ed:09:04: b9:58:4a:32:53:64:7d:e8:4a:af:06:0e:21:68:31: f5:60:f8:f5:87:31:7e:6c:d7:27:55:b9:c8:95:ae: 05:31:ca:08:76:21:0c:69:eb:1e:c1:f1:fa:24:dd: 5a:9a:99:5c:3d:7e:96:c6:8b:13:1f:92:a1:86:f4: f6:df:e9:13:27:f5:90:25:1b:2d:44:fd:7d:ff:7b: db:e2:e5:f5:7e:12:a3:3e:68:61:e7:15:2c:7b:26: 0e:66:55:72:4b:74:95:f0:29:c9:d7:09:34:05:9e: f7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E1:2E:86:18:0E:18:8D:37:95:B7:4E:18:A5:03:58:49:9F:F0:28 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216227.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:af00::/40 Signature Algorithm: sha256WithRSAEncryption 8d:62:3a:b9:72:db:9b:b0:c3:39:89:1e:97:82:f9:12:76:81: f3:25:07:43:86:0e:d8:0b:3d:7f:80:27:89:cf:d5:16:db:0f: 74:1b:0e:93:d1:29:91:24:a5:10:1c:b3:20:53:43:cf:f7:5c: ca:1c:87:28:16:99:c0:65:d5:30:00:fc:e0:91:62:9c:04:ea: c6:f2:80:5e:02:ca:3f:d5:2c:08:a2:53:48:a1:65:04:ee:1b: 48:bf:e1:6a:24:59:7c:0e:8e:2e:9f:d3:e7:19:24:bf:4f:6a: b2:e2:3c:a8:58:ca:5c:8d:60:ee:8c:fa:fe:ca:43:b4:22:31: 8c:6f:bd:41:ef:9e:0e:de:87:23:35:dd:b6:8c:7b:0e:72:75: 94:71:2b:72:d8:c8:f0:c8:bb:be:e0:fc:af:33:7a:e9:b0:61: f8:3f:ce:80:33:78:e6:c5:27:d0:cf:bd:33:25:2b:9e:e1:2e: 3d:f0:87:ed:ae:51:ab:b4:cc:92:07:f7:50:b9:35:41:d5:7c: 74:cf:68:c0:29:db:87:74:67:d5:4c:bf:65:83:dd:a5:f0:e3: 57:5b:54:e8:56:d0:5c:26:4a:15:02:bc:47:fb:25:31:e4:1f: 05:59:ef:da:bb:e6:1a:5d:49:e2:b5:ad:84:8b:a2:7d:95:ed: 02:05:4c:4c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWf7Wqu93lCrFgiGUgzQO0KvLou4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDYyMTM4NTBaFw0yNDExMDQyMTQzNTBaMDMxMTAvBgNV BAMTKEQ4RTEyRTg2MTgwRTE4OEQzNzk1Qjc0RTE4QTUwMzU4NDk5RkYwMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/BZPmp2uwlehMac8G3BJ55KbT kSlaw/qdJKLbxltGpcdik/sFezIs1gDTp5/GISBZuG6/GpJeVUx1zyst/0WDT9QB +RRG20nKcRDN9X4SIymSMfKlqy6FMrxIFy1HhvsBvaycpSgYv0JP1ueyqPjAtqIz BNLTFg7OYEVym+svU6GW1eOmSOerTzeEiePe6Qjdfe0JBLlYSjJTZH3oSq8GDiFo MfVg+PWHMX5s1ydVuciVrgUxygh2IQxp6x7B8fok3VqamVw9fpbGixMfkqGG9Pbf 6RMn9ZAlGy1E/X3/e9vi5fV+EqM+aGHnFSx7Jg5mVXJLdJXwKcnXCTQFnvc7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU2OEuhhgOGI03lbdOGKUDWEmf8CgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MjI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwa8wDQYJKoZIhvcNAQELBQADggEBAI1i Orly25uwwzmJHpeC+RJ2gfMlB0OGDtgLPX+AJ4nP1RbbD3QbDpPRKZEkpRAcsyBT Q8/3XMochygWmcBl1TAA/OCRYpwE6sbygF4Cyj/VLAiiU0ihZQTuG0i/4WokWXwO ji6f0+cZJL9ParLiPKhYylyNYO6M+v7KQ7QiMYxvvUHvng7ehyM13baMew5ydZRx K3LYyPDIu77g/K8zeumwYfg/zoAzeObFJ9DPvTMlK57hLj3wh+2uUau0zJIH91C5 NUHVfHTPaMAp24d0Z9VMv2WD3aXw41dbVOhW0FwmShUCvEf7JTHkHwVZ79q75hpd SeK1rYSLon2V7QIFTEw= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org