$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216341.roa File: AS216341.roa (raw, json) Hash identifier: VnoPPDVtEsgm7cLuaA6NM5xBGCJA49azPVxVcRrfxX0= Subject key identifier: 99:A6:AD:69:1B:5C:AC:7D:CF:D2:E6:DE:7F:11:F8:82:C9:89:62:1F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 48BFFF03705BCE734F3B3212A5A468815080B36E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216341.roa Signing time: Sat 09 Sep 2023 01:06:02 +0000 ROA not before: Sat 09 Sep 2023 01:01:02 +0000 ROA not after: Sat 07 Sep 2024 01:06:02 +0000 asID: 216341 IP address blocks: 2a05:dfc1:900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:bf:ff:03:70:5b:ce:73:4f:3b:32:12:a5:a4:68:81:50:80:b3:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 9 01:01:02 2023 GMT Not After : Sep 7 01:06:02 2024 GMT Subject: CN=99A6AD691B5CAC7DCFD2E6DE7F11F882C989621F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fa:9e:f0:39:46:8c:7c:2b:84:52:ad:91:ed: 9c:d5:b4:0c:52:de:83:99:b2:53:6a:a5:bd:9c:2a: 5d:ff:1e:86:ee:82:e4:43:24:d8:89:ac:54:ce:76: 0b:b4:7a:7b:02:88:e1:34:1c:8e:27:2d:87:98:a0: d5:2c:67:c1:48:32:90:6b:66:41:c0:8d:cd:35:f2: 76:b7:69:24:65:bd:d9:06:03:71:13:e5:25:96:e6: 7a:fb:3a:fc:e7:ee:4b:33:54:ff:60:3a:04:80:93: f0:0f:96:af:cf:3d:80:1c:4a:b0:fc:07:5d:f1:ab: c8:9c:29:3f:92:31:cb:86:be:ae:56:5a:5c:f8:22: ef:c8:a5:bb:32:68:a3:20:d4:4f:ae:50:8d:b0:f0: 0b:70:81:5b:23:eb:a8:9e:77:0e:c6:0f:c2:48:3d: e3:41:28:e2:d0:12:d3:ee:8b:4a:5b:6a:79:8a:de: be:0e:68:10:c6:08:15:6e:7c:d0:01:b1:f7:ce:99: f7:6c:a5:01:c0:52:75:52:e8:c8:86:05:06:19:07: 29:22:0d:55:05:aa:bc:54:dc:27:13:3c:6e:7f:19: 0e:ae:46:8c:47:89:81:4f:28:be:de:d2:95:39:18: b0:01:84:72:fa:ac:bd:72:48:05:f9:c9:f7:84:92: 59:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A6:AD:69:1B:5C:AC:7D:CF:D2:E6:DE:7F:11:F8:82:C9:89:62:1F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216341.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:900::/40 Signature Algorithm: sha256WithRSAEncryption 8b:fb:73:6d:80:a4:70:a3:35:4f:a8:43:23:95:a1:50:c9:34: 0e:3d:50:b0:89:e5:00:5f:2c:d5:e7:36:12:9e:64:d6:27:df: 0e:38:13:75:a8:a6:56:25:3e:b9:d8:c4:e3:ea:7c:37:c2:cc: 48:27:7b:08:21:60:87:24:b3:a1:b7:41:8e:23:ea:d3:e4:d3: 96:ad:3f:aa:64:9d:8e:16:db:33:96:1b:e5:49:6d:16:66:f7: 95:b2:6b:9b:9a:e4:bb:cf:22:05:a3:1f:66:8d:f5:82:7c:93: c4:38:69:f9:b0:3b:0f:90:79:2b:73:2d:2d:52:54:ab:e5:14: c2:34:3b:18:ba:76:03:d7:b8:c0:11:42:2c:d9:ec:8c:03:58: 35:c2:ca:74:84:66:90:1b:60:e4:df:99:27:ab:15:23:8f:40: 44:4e:78:de:f7:81:be:87:01:95:1f:01:de:00:ad:fa:57:82: b4:73:07:7f:e8:bc:4e:12:04:d0:b9:e6:33:0a:16:da:f0:4c: b7:39:37:96:66:3b:77:31:d3:32:9c:c0:dc:76:0e:6e:35:6f: b6:81:a4:9c:b9:78:9d:4a:0f:87:ff:8f:bb:73:7e:4a:e8:3c: 04:e6:39:83:e9:dc:5c:e0:fe:15:70:ed:22:50:25:80:04:8a: 41:1a:43:6e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSL//A3BbznNPOzISpaRogVCAs24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA5MDkwMTAxMDJaFw0yNDA5MDcwMTA2MDJaMDMxMTAvBgNV BAMTKDk5QTZBRDY5MUI1Q0FDN0RDRkQyRTZERTdGMTFGODgyQzk4OTYyMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3+p7wOUaMfCuEUq2R7ZzVtAxS 3oOZslNqpb2cKl3/HobuguRDJNiJrFTOdgu0ensCiOE0HI4nLYeYoNUsZ8FIMpBr ZkHAjc018na3aSRlvdkGA3ET5SWW5nr7Ovzn7kszVP9gOgSAk/APlq/PPYAcSrD8 B13xq8icKT+SMcuGvq5WWlz4Iu/IpbsyaKMg1E+uUI2w8AtwgVsj66iedw7GD8JI PeNBKOLQEtPui0pbanmK3r4OaBDGCBVufNABsffOmfdspQHAUnVS6MiGBQYZByki DVUFqrxU3CcTPG5/GQ6uRoxHiYFPKL7e0pU5GLABhHL6rL1ySAX5yfeEkllhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmaataRtcrH3P0ubefxH4gsmJYh8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MzQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwQkwDQYJKoZIhvcNAQELBQADggEBAIv7 c22ApHCjNU+oQyOVoVDJNA49ULCJ5QBfLNXnNhKeZNYn3w44E3WoplYlPrnYxOPq fDfCzEgnewghYIcks6G3QY4j6tPk05atP6pknY4W2zOWG+VJbRZm95Wya5ua5LvP IgWjH2aN9YJ8k8Q4afmwOw+QeStzLS1SVKvlFMI0Oxi6dgPXuMARQizZ7IwDWDXC ynSEZpAbYOTfmSerFSOPQEROeN73gb6HAZUfAd4ArfpXgrRzB3/ovE4SBNC55jMK FtrwTLc5N5ZmO3cx0zKcwNx2Dm41b7aBpJy5eJ1KD4f/j7tzfkroPATmOYPp3Fzg /hVw7SJQJYAEikEaQ24= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org