$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216341.roa File: AS216341.roa (raw, json) Hash identifier: 67yQICTBhjEIjiN91XOZWBlQ9cC0/2fYOXDJFR9TnX4= Subject key identifier: 1A:1F:1D:94:78:89:03:4E:CD:C9:7F:29:55:4B:8F:EF:B8:DF:02:4E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 20AA9F718015113FAE33948F743FF48809F4A8E2 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216341.roa Signing time: Sat 10 Aug 2024 01:49:45 +0000 ROA not before: Sat 10 Aug 2024 01:44:45 +0000 ROA not after: Sat 09 Aug 2025 01:49:45 +0000 asID: 216341 IP address blocks: 2a05:dfc1:900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:aa:9f:71:80:15:11:3f:ae:33:94:8f:74:3f:f4:88:09:f4:a8:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 10 01:44:45 2024 GMT Not After : Aug 9 01:49:45 2025 GMT Subject: CN=1A1F1D947889034ECDC97F29554B8FEFB8DF024E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7c:e9:17:8c:ab:1f:ff:e4:91:1c:29:ab:19: 78:a5:13:0b:8a:41:89:10:b2:5f:f6:2d:fd:33:86: 1b:65:f6:b4:2a:2c:b0:93:29:eb:61:12:64:4f:4e: f3:ae:25:86:6e:d3:4f:39:d1:b0:54:6e:c5:0e:cd: ef:8c:b1:4b:75:29:05:18:3e:2a:72:94:c6:71:50: f2:0f:e4:70:1e:32:7d:18:78:de:cf:98:f8:b7:2e: 43:a2:d7:45:37:a5:1c:7c:b4:06:ef:0c:0b:25:88: a6:3f:68:7e:ca:22:47:a5:b2:33:92:a6:36:b0:3c: 66:87:d3:fd:6e:5d:20:06:84:ef:ee:0a:26:88:fd: 94:f4:5f:73:3e:a9:3d:de:00:e0:8a:4f:38:de:a2: 00:ee:71:72:7d:74:5e:73:e7:db:e8:34:a9:ac:6c: cb:9d:a0:1d:64:35:81:31:3a:6e:07:f6:c2:95:8f: 5b:b9:c1:46:c7:94:fd:11:41:1e:c6:c6:57:8c:b1: aa:06:c8:db:97:87:86:cd:15:16:1d:93:19:16:58: 94:9f:b6:0b:73:8f:ab:0d:7a:d9:c5:f0:98:1a:4a: c8:ad:b6:66:33:dd:b7:17:17:81:c3:83:c9:7d:73: d3:21:3b:ea:37:ae:67:4d:12:10:73:83:54:2e:3c: 95:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:1F:1D:94:78:89:03:4E:CD:C9:7F:29:55:4B:8F:EF:B8:DF:02:4E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216341.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:900::/40 Signature Algorithm: sha256WithRSAEncryption 58:0d:a4:3a:4d:6f:29:98:4c:c8:33:ce:b9:6d:9d:ed:ed:d8: 1f:df:54:b5:a4:bd:15:fd:72:6c:73:49:94:ff:17:17:28:97: 8d:7a:8d:dd:43:48:7d:bd:64:4a:70:79:11:2a:12:6d:c7:8a: 87:97:7c:db:1e:14:cf:e1:79:f6:1f:b8:5e:f3:01:33:36:88: cf:db:e4:fb:fd:ce:1d:76:77:6f:77:51:e2:68:99:09:63:b6: 95:0a:85:d9:0c:e5:cb:3c:67:d4:7a:08:6d:a1:c9:2d:46:ee: 5d:ee:ab:1f:0a:4a:75:80:3c:dd:49:f5:03:ea:a1:90:0f:b3: de:18:17:de:ea:5b:9a:71:62:f0:8a:ea:63:b0:a5:61:3e:57: 6b:d1:9f:63:34:49:bb:e4:ac:d1:e2:e0:06:b0:dc:fe:4c:e1: 5c:29:25:17:70:81:f9:76:fb:ba:24:5e:f6:fb:cf:06:5b:7d: a2:f9:9a:80:c5:a6:f1:b6:9e:43:79:0d:1a:90:44:64:4e:b5: ac:bd:78:fe:1e:e4:eb:5c:eb:38:d8:a9:c6:d2:cd:40:01:d4: f5:ed:d2:72:e8:04:c1:8c:c7:de:26:bd:a5:d3:2d:26:84:a3: 8e:42:01:49:1a:87:d0:44:48:54:3e:51:8b:04:9f:bb:cc:b7: d8:e9:8f:fa -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIKqfcYAVET+uM5SPdD/0iAn0qOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MTAwMTQ0NDVaFw0yNTA4MDkwMTQ5NDVaMDMxMTAvBgNV BAMTKDFBMUYxRDk0Nzg4OTAzNEVDREM5N0YyOTU1NEI4RkVGQjhERjAyNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFfOkXjKsf/+SRHCmrGXilEwuK QYkQsl/2Lf0zhhtl9rQqLLCTKethEmRPTvOuJYZu00850bBUbsUOze+MsUt1KQUY PipylMZxUPIP5HAeMn0YeN7PmPi3LkOi10U3pRx8tAbvDAsliKY/aH7KIkelsjOS pjawPGaH0/1uXSAGhO/uCiaI/ZT0X3M+qT3eAOCKTzjeogDucXJ9dF5z59voNKms bMudoB1kNYExOm4H9sKVj1u5wUbHlP0RQR7GxleMsaoGyNuXh4bNFRYdkxkWWJSf tgtzj6sNetnF8JgaSsittmYz3bcXF4HDg8l9c9MhO+o3rmdNEhBzg1QuPJWJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUGh8dlHiJA07NyX8pVUuP77jfAk4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MzQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwQkwDQYJKoZIhvcNAQELBQADggEBAFgN pDpNbymYTMgzzrltne3t2B/fVLWkvRX9cmxzSZT/Fxcol416jd1DSH29ZEpweREq Em3HioeXfNseFM/hefYfuF7zATM2iM/b5Pv9zh12d293UeJomQljtpUKhdkM5cs8 Z9R6CG2hyS1G7l3uqx8KSnWAPN1J9QPqoZAPs94YF97qW5pxYvCK6mOwpWE+V2vR n2M0SbvkrNHi4Aaw3P5M4VwpJRdwgfl2+7okXvb7zwZbfaL5moDFpvG2nkN5DRqQ RGROtay9eP4e5Otc6zjYqcbSzUAB1PXt0nLoBMGMx94mvaXTLSaEo45CAUkah9BE SFQ+UYsEn7vMt9jpj/o= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org