$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216340.roa File: AS216340.roa (raw, json) Hash identifier: xUWD97URTpK0Kxeyqh1QVbeizbWj/S6RaeHRQ31QH+0= Subject key identifier: 5D:54:32:48:27:93:41:C0:89:F6:4B:06:3D:77:90:57:C0:4B:9E:5E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 18C85B723AF38354AF081D37C8921881AF1DCB6D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216340.roa Signing time: Thu 07 Sep 2023 11:52:22 +0000 ROA not before: Thu 07 Sep 2023 11:47:22 +0000 ROA not after: Thu 05 Sep 2024 11:52:22 +0000 asID: 216340 IP address blocks: 2a05:dfc1:8f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:c8:5b:72:3a:f3:83:54:af:08:1d:37:c8:92:18:81:af:1d:cb:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 7 11:47:22 2023 GMT Not After : Sep 5 11:52:22 2024 GMT Subject: CN=5D543248279341C089F64B063D779057C04B9E5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b9:74:a0:9c:4b:2a:bd:10:a8:fa:dd:71:5c: 08:03:50:e4:67:7b:53:16:41:ad:a2:62:c1:d0:d3: 9e:7b:74:55:63:14:a4:69:16:55:ca:60:fb:36:68: 80:76:2c:bb:2d:1e:2c:cc:ea:16:57:98:98:48:5f: ce:c7:65:1c:9a:c8:ec:ac:36:23:7e:ce:c6:db:ff: ec:b9:5d:92:32:65:21:fd:17:5a:c9:7d:96:fa:2a: 15:04:7a:a1:fe:ba:be:99:b6:24:40:59:f4:3e:70: 52:e2:69:f7:6f:40:2f:ae:eb:10:da:2f:40:5c:4f: 54:54:7e:dc:0a:31:87:df:01:2d:57:bc:b3:b4:91: 40:87:e9:57:b9:5a:54:4d:7e:b6:7a:67:0c:be:6f: 3e:d4:eb:49:25:cf:b7:4c:55:3e:39:3d:f5:1c:66: 09:df:d9:0d:68:41:00:e6:19:2a:57:8b:47:de:2a: 61:8d:95:ea:d0:aa:a5:49:30:99:e1:3e:1f:17:62: c4:0c:09:41:cd:2c:92:4c:8e:f1:9b:c0:22:21:0d: 97:0e:db:bd:d1:08:6a:9e:30:2e:24:70:cf:42:9e: a1:30:53:1c:f9:0b:5d:d2:ed:8a:db:07:98:fe:56: c4:cb:55:e0:26:ea:2c:49:79:a7:1d:b6:ee:06:2b: 5f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:54:32:48:27:93:41:C0:89:F6:4B:06:3D:77:90:57:C0:4B:9E:5E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216340.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8f00::/40 Signature Algorithm: sha256WithRSAEncryption 8d:c1:fe:60:6c:88:15:7f:e2:dc:7d:2a:3f:07:a6:e9:a9:0f: b5:1d:d8:50:80:66:80:95:79:02:39:4e:91:02:59:96:78:06: 2d:fa:ff:19:dc:d4:48:2c:fb:e7:26:b8:18:dc:62:9e:19:a8: af:0c:03:96:94:7f:30:21:11:9a:27:87:b3:dc:9c:7d:be:31: f3:21:47:bf:fc:07:db:16:96:27:54:65:d7:6a:61:21:20:17: 58:28:cd:b5:87:8c:d2:1a:6a:8b:01:f7:29:8e:d6:36:dc:94: af:d5:30:ce:c3:ed:83:ad:5e:fb:0e:e8:2d:d0:41:ec:38:eb: c8:0d:5d:e4:00:43:b4:fd:3c:3c:57:c7:6a:8d:e2:42:19:bc: 2c:45:56:a2:be:94:b1:fe:bc:26:ab:23:29:2e:87:4d:f9:6b: 63:fe:c3:72:6a:87:34:fc:d6:49:91:bc:af:a4:c9:0a:4e:8c: 07:09:d9:89:60:46:7c:2a:bf:32:7d:0f:5a:cc:8f:4f:f1:d1: 3b:51:07:f5:15:d8:4d:d7:b1:55:90:da:6d:c5:93:92:c5:f2: a6:e9:8b:96:9d:32:6e:37:3d:b1:43:56:c2:fd:81:75:f6:80: a8:df:79:11:5e:54:69:7f:26:1d:4a:40:86:3c:1a:31:b6:45: 45:9c:7b:9d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGMhbcjrzg1SvCB03yJIYga8dy20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA5MDcxMTQ3MjJaFw0yNDA5MDUxMTUyMjJaMDMxMTAvBgNV BAMTKDVENTQzMjQ4Mjc5MzQxQzA4OUY2NEIwNjNENzc5MDU3QzA0QjlFNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzuXSgnEsqvRCo+t1xXAgDUORn e1MWQa2iYsHQ0557dFVjFKRpFlXKYPs2aIB2LLstHizM6hZXmJhIX87HZRyayOys NiN+zsbb/+y5XZIyZSH9F1rJfZb6KhUEeqH+ur6ZtiRAWfQ+cFLiafdvQC+u6xDa L0BcT1RUftwKMYffAS1XvLO0kUCH6Ve5WlRNfrZ6Zwy+bz7U60klz7dMVT45PfUc Zgnf2Q1oQQDmGSpXi0feKmGNlerQqqVJMJnhPh8XYsQMCUHNLJJMjvGbwCIhDZcO 273RCGqeMC4kcM9CnqEwUxz5C13S7YrbB5j+VsTLVeAm6ixJeacdtu4GK18hAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXVQySCeTQcCJ9ksGPXeQV8BLnl4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MzQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwY8wDQYJKoZIhvcNAQELBQADggEBAI3B /mBsiBV/4tx9Kj8HpumpD7Ud2FCAZoCVeQI5TpECWZZ4Bi36/xnc1Egs++cmuBjc Yp4ZqK8MA5aUfzAhEZonh7PcnH2+MfMhR7/8B9sWlidUZddqYSEgF1gozbWHjNIa aosB9ymO1jbclK/VMM7D7YOtXvsO6C3QQew468gNXeQAQ7T9PDxXx2qN4kIZvCxF VqK+lLH+vCarIykuh035a2P+w3JqhzT81kmRvK+kyQpOjAcJ2YlgRnwqvzJ9D1rM j0/x0TtRB/UV2E3XsVWQ2m3Fk5LF8qbpi5adMm43PbFDVsL9gXX2gKjfeRFeVGl/ Jh1KQIY8GjG2RUWce50= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org