$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216340.roa File: AS216340.roa (raw, json) Hash identifier: khsa9PjOy8p4Wr/E/yw/9gCBkr9BEgvjyFcVIR7/oHE= Subject key identifier: FE:72:C3:3E:67:71:BD:D8:0B:65:35:7A:E7:5D:FF:5E:E0:CE:C2:50 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7912E22A7F4D869FBF21688F723E478048C8976F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216340.roa Signing time: Thu 08 Aug 2024 12:49:45 +0000 ROA not before: Thu 08 Aug 2024 12:44:45 +0000 ROA not after: Thu 07 Aug 2025 12:49:45 +0000 asID: 216340 IP address blocks: 2a05:dfc1:8f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Nov 2024 14:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:12:e2:2a:7f:4d:86:9f:bf:21:68:8f:72:3e:47:80:48:c8:97:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 8 12:44:45 2024 GMT Not After : Aug 7 12:49:45 2025 GMT Subject: CN=FE72C33E6771BDD80B65357AE75DFF5EE0CEC250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ad:52:ba:f7:90:08:16:75:4f:59:69:f1:72: 55:4e:23:6f:63:55:3c:4a:77:37:54:d5:88:1e:1c: b0:79:bb:0b:59:57:a4:7b:f6:ee:89:d1:e6:cb:9c: 64:91:c2:3e:4a:32:18:c9:d8:b9:a5:70:ee:65:e4: 16:0f:a5:49:5a:8d:34:e7:9b:fc:d8:5f:ac:06:3c: 35:5d:0b:9e:4a:b5:27:ea:27:d3:cb:97:f1:4d:ae: 6c:d6:36:1e:db:80:f4:80:2f:f3:49:e1:36:e5:c4: 8c:1c:19:db:fe:2c:d2:ec:7b:02:78:14:cc:60:90: 17:bf:bb:28:54:de:c2:38:4d:9b:47:80:7e:22:d1: d7:4c:88:5e:6b:2f:c1:85:de:45:35:ed:3e:04:37: f6:6b:87:66:8f:60:79:04:5d:74:c7:53:90:eb:9e: 55:b8:1f:a3:8b:06:03:88:fc:26:c0:22:75:7c:72: 74:d5:9f:32:63:68:55:ab:71:61:27:11:59:da:09: 31:71:a7:11:8d:c7:63:a8:d8:87:07:d0:a4:71:99: d7:ae:a6:94:18:58:24:52:63:41:38:95:04:e3:4e: 97:6a:da:d0:10:f9:c3:db:83:ee:bb:6b:9b:5d:dd: 7e:70:df:00:f2:7e:43:d1:0b:16:34:ea:d9:34:c9: 9c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:72:C3:3E:67:71:BD:D8:0B:65:35:7A:E7:5D:FF:5E:E0:CE:C2:50 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216340.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8f00::/40 Signature Algorithm: sha256WithRSAEncryption 96:b5:26:a1:dc:91:dc:2a:cc:b9:db:7e:a1:2d:fe:0a:6a:fa: a7:06:7b:d5:6e:40:2f:91:fd:c6:f0:7a:fa:88:4c:e5:30:4f: 16:34:cf:1b:1f:e5:4f:77:77:85:0c:a9:a3:40:96:54:4a:b3: 1a:2c:00:1d:fe:19:67:b5:53:e0:d6:df:5f:ba:61:74:3c:f3: f1:42:7c:e6:b3:cb:08:e2:99:2d:5a:1a:a1:95:46:52:73:e2: 86:5d:53:c8:55:c5:e0:58:ed:80:7c:a6:76:b8:a1:7a:6c:07: 60:1d:f6:55:f0:20:19:84:0f:0f:ed:b9:ef:50:75:2e:e6:a5: d7:af:c9:d4:cc:69:71:dc:b4:8a:a0:bd:fb:28:13:38:da:19: a5:17:b8:85:e5:dc:35:b4:5f:1e:85:1f:f6:1f:74:78:ce:35: 85:cc:15:ad:21:87:44:2e:3d:04:31:e6:a9:b2:a9:0b:8c:42: 33:d5:5b:7e:ae:1b:f2:42:df:c5:37:75:b0:77:af:83:9f:c2: f9:13:4e:92:61:36:f0:ff:eb:33:e7:ca:6a:7c:c6:f3:4c:3a: ce:14:d0:c4:be:cd:94:b8:4a:f5:84:6f:44:cf:43:45:8f:93: c4:0e:11:58:3a:2e:05:db:97:54:54:4f:1c:a4:84:6d:96:7a: 70:d0:2c:84 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUeRLiKn9Nhp+/IWiPcj5HgEjIl28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MDgxMjQ0NDVaFw0yNTA4MDcxMjQ5NDVaMDMxMTAvBgNV BAMTKEZFNzJDMzNFNjc3MUJERDgwQjY1MzU3QUU3NURGRjVFRTBDRUMyNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCarVK695AIFnVPWWnxclVOI29j VTxKdzdU1YgeHLB5uwtZV6R79u6J0ebLnGSRwj5KMhjJ2LmlcO5l5BYPpUlajTTn m/zYX6wGPDVdC55KtSfqJ9PLl/FNrmzWNh7bgPSAL/NJ4TblxIwcGdv+LNLsewJ4 FMxgkBe/uyhU3sI4TZtHgH4i0ddMiF5rL8GF3kU17T4EN/Zrh2aPYHkEXXTHU5Dr nlW4H6OLBgOI/CbAInV8cnTVnzJjaFWrcWEnEVnaCTFxpxGNx2Oo2IcH0KRxmdeu ppQYWCRSY0E4lQTjTpdq2tAQ+cPbg+67a5td3X5w3wDyfkPRCxY06tk0yZwxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/nLDPmdxvdgLZTV6513/XuDOwlAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MzQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwY8wDQYJKoZIhvcNAQELBQADggEBAJa1 JqHckdwqzLnbfqEt/gpq+qcGe9VuQC+R/cbwevqITOUwTxY0zxsf5U93d4UMqaNA llRKsxosAB3+GWe1U+DW31+6YXQ88/FCfOazywjimS1aGqGVRlJz4oZdU8hVxeBY 7YB8pna4oXpsB2Ad9lXwIBmEDw/tue9QdS7mpdevydTMaXHctIqgvfsoEzjaGaUX uIXl3DW0Xx6FH/YfdHjONYXMFa0hh0QuPQQx5qmyqQuMQjPVW36uG/JC38U3dbB3 r4OfwvkTTpJhNvD/6zPnymp8xvNMOs4U0MS+zZS4SvWEb0TPQ0WPk8QOEVg6LgXb l1RUTxykhG2WenDQLIQ= -----END CERTIFICATE-----Generated at Sun Nov 24 03:16:14 2024 by rpki-client on console-ams.rpki-client.org