$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216242.roa File: AS216242.roa (raw, json) Hash identifier: 8dnlPU6Uc6NfxL1Ea8ZPXc7aBz8cBfu5Bi8NZRukGgU= Subject key identifier: BD:36:DD:EF:A3:AE:17:55:1E:4B:FF:C6:DE:04:27:1E:78:75:CF:78 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5AE6CF9ED07555DF55683CFF5520285EB66C4752 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216242.roa Signing time: Wed 27 Sep 2023 08:40:57 +0000 ROA not before: Wed 27 Sep 2023 08:35:57 +0000 ROA not after: Wed 25 Sep 2024 08:40:57 +0000 asID: 216242 IP address blocks: 2a05:dfc1:9800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e6:cf:9e:d0:75:55:df:55:68:3c:ff:55:20:28:5e:b6:6c:47:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 27 08:35:57 2023 GMT Not After : Sep 25 08:40:57 2024 GMT Subject: CN=BD36DDEFA3AE17551E4BFFC6DE04271E7875CF78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1b:f4:81:ba:e2:ac:9a:72:2b:5c:1a:f9:42: 87:9d:40:f7:72:13:2d:d0:6a:58:36:51:1f:31:12: ba:cc:eb:c5:c4:bd:74:49:47:09:cf:74:f0:62:78: ad:0d:5f:2d:5c:20:f4:01:e0:3e:44:63:c3:d9:1f: 70:42:f9:3c:6b:25:32:15:70:f9:3f:8a:6c:4c:cb: a6:ae:e7:c3:0e:ad:dd:a9:f0:fd:23:b0:37:e9:3e: 5e:fa:3d:c2:9a:04:c1:27:87:30:cd:6b:a1:fb:0e: 7f:57:89:3f:a2:90:34:2a:ad:39:b9:5b:c0:a9:ca: ac:fe:fe:27:55:3c:0d:21:22:2d:26:ac:c2:e8:6c: e2:07:b1:de:ea:81:b9:cd:b0:79:66:0e:e5:29:25: a2:ac:8e:72:51:7e:91:95:c4:90:12:da:37:93:e1: 45:d3:6f:f0:7c:15:13:f6:24:6d:bb:5e:19:64:2e: 49:06:dd:0c:85:62:02:f8:6e:23:98:e5:5a:bd:c8: ac:28:39:17:9d:4a:08:b7:07:78:f7:29:17:a5:d6: a5:6e:0c:4d:9a:70:ca:a1:02:60:4c:a4:e0:9b:68: 99:9f:74:d3:9d:94:0c:da:cf:45:a0:5e:5d:59:71: 81:03:b8:7c:87:a5:db:82:b3:9e:f7:76:84:be:d7: 15:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:36:DD:EF:A3:AE:17:55:1E:4B:FF:C6:DE:04:27:1E:78:75:CF:78 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9800::/40 Signature Algorithm: sha256WithRSAEncryption a0:f2:22:f0:a2:16:23:f6:67:8a:15:77:e4:8e:b8:eb:7e:e9: 29:08:5b:a2:b2:7c:14:d2:7a:80:e7:5a:96:95:28:64:7c:e8: e5:43:ab:6d:1b:d6:92:69:58:1e:85:fd:dc:47:97:31:ce:20: 4b:36:4a:34:50:7c:f4:bb:c6:5b:50:10:e7:5e:cf:25:80:3a: 75:8c:ba:e5:7b:63:cc:de:f1:cc:7e:9e:d1:ff:ea:6c:46:83: 7f:29:08:16:04:1f:ae:09:4d:8b:65:58:ad:9c:72:6b:ba:63: 76:1b:22:42:1d:ba:76:03:b2:3f:40:23:50:b4:ea:96:ed:ab: c7:08:c2:10:69:0c:b2:45:6f:27:45:14:0c:82:2d:d8:2f:55: f1:3b:f7:db:6d:91:dc:ba:40:fe:98:c7:ca:c3:7d:09:8c:19: 5c:52:f0:f0:94:84:17:f9:73:cb:9e:fa:6f:4d:30:e8:38:ec: 7b:1b:44:ee:ab:38:73:18:40:89:08:1e:0c:2f:22:d5:fb:5c: e0:60:30:6a:61:fc:02:5c:df:51:bc:58:df:8b:bd:64:68:59: 9a:23:3d:bd:15:a4:03:8c:e0:65:71:5b:50:32:b3:c5:71:34: 48:b8:09:cb:7d:d9:db:1b:b6:e7:1c:e3:fe:7d:b1:c4:69:3d: 4a:09:8b:cb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWubPntB1Vd9VaDz/VSAoXrZsR1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA5MjcwODM1NTdaFw0yNDA5MjUwODQwNTdaMDMxMTAvBgNV BAMTKEJEMzZEREVGQTNBRTE3NTUxRTRCRkZDNkRFMDQyNzFFNzg3NUNGNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtG/SBuuKsmnIrXBr5QoedQPdy Ey3Qalg2UR8xErrM68XEvXRJRwnPdPBieK0NXy1cIPQB4D5EY8PZH3BC+TxrJTIV cPk/imxMy6au58MOrd2p8P0jsDfpPl76PcKaBMEnhzDNa6H7Dn9XiT+ikDQqrTm5 W8Cpyqz+/idVPA0hIi0mrMLobOIHsd7qgbnNsHlmDuUpJaKsjnJRfpGVxJAS2jeT 4UXTb/B8FRP2JG27XhlkLkkG3QyFYgL4biOY5Vq9yKwoORedSgi3B3j3KRel1qVu DE2acMqhAmBMpOCbaJmfdNOdlAzaz0WgXl1ZcYEDuHyHpduCs573doS+1xWzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUvTbd76OuF1UeS//G3gQnHnh1z3gwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MjQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwZgwDQYJKoZIhvcNAQELBQADggEBAKDy IvCiFiP2Z4oVd+SOuOt+6SkIW6KyfBTSeoDnWpaVKGR86OVDq20b1pJpWB6F/dxH lzHOIEs2SjRQfPS7xltQEOdezyWAOnWMuuV7Y8ze8cx+ntH/6mxGg38pCBYEH64J TYtlWK2ccmu6Y3YbIkIdunYDsj9AI1C06pbtq8cIwhBpDLJFbydFFAyCLdgvVfE7 99ttkdy6QP6Yx8rDfQmMGVxS8PCUhBf5c8ue+m9NMOg47HsbRO6rOHMYQIkIHgwv ItX7XOBgMGph/AJc31G8WN+LvWRoWZojPb0VpAOM4GVxW1Ays8VxNEi4Cct92dsb tucc4/59scRpPUoJi8s= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org