$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216373.roa File: AS216373.roa (raw, json) Hash identifier: 600wTBLzbJ9+CW84daAQgKAOGBPUVkFo+BicuiIcQoM= Subject key identifier: A1:21:F2:57:40:95:91:5D:DB:11:2E:E8:6D:B7:6F:C6:2E:0A:AE:08 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1DEBE541FA9EF66940C97544B64A77E565BF7431 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216373.roa Signing time: Wed 06 Sep 2023 06:02:06 +0000 ROA not before: Wed 06 Sep 2023 05:57:06 +0000 ROA not after: Wed 04 Sep 2024 06:02:06 +0000 asID: 216373 IP address blocks: 2a05:dfc1:8d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:eb:e5:41:fa:9e:f6:69:40:c9:75:44:b6:4a:77:e5:65:bf:74:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 6 05:57:06 2023 GMT Not After : Sep 4 06:02:06 2024 GMT Subject: CN=A121F2574095915DDB112EE86DB76FC62E0AAE08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d7:61:e7:b5:ad:ac:97:98:ff:cc:82:4b:a8: 4f:6b:bf:5c:01:d1:c8:24:3f:30:fa:68:aa:b3:28: c4:7b:39:6b:3d:29:8d:17:10:a8:33:60:8b:19:0c: e4:54:39:2c:af:07:89:83:da:61:b7:3b:c0:32:1d: 8c:86:61:8a:ef:5c:65:a1:3b:ef:68:a8:df:22:99: 2e:4f:10:0f:3a:f5:a9:cb:26:28:1d:73:4d:38:92: a8:9b:1b:f9:0f:d4:ed:5e:30:fb:e8:dc:bf:36:27: fe:6f:fa:e0:c3:1d:0e:dc:06:ad:43:73:26:57:74: a7:2a:20:10:d2:80:47:64:c2:f6:40:19:87:4c:66: 8b:13:39:71:bb:07:47:c1:72:c1:88:20:52:19:69: 4d:ae:1c:dc:7e:bb:2f:14:27:36:8a:c1:15:0b:ea: 53:42:81:5e:51:ba:80:00:4a:fc:30:b8:26:a8:93: 50:60:d1:ff:d7:23:c1:2b:98:03:33:29:0d:2d:c0: 85:22:0f:94:e5:59:70:a9:f2:de:8e:b5:60:b8:27: 7b:97:ee:5f:b8:8e:f1:f5:da:95:b0:a2:68:47:c0: 3e:6f:34:31:75:28:d9:22:61:49:10:32:3c:dc:86: aa:51:a4:76:82:5c:e1:cc:55:06:ca:ae:60:c0:f3: aa:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:21:F2:57:40:95:91:5D:DB:11:2E:E8:6D:B7:6F:C6:2E:0A:AE:08 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216373.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8d00::/40 Signature Algorithm: sha256WithRSAEncryption a5:45:9f:14:25:99:ad:eb:fe:a9:7a:5c:d9:88:4b:89:d9:5a: d5:fd:6e:4e:bc:61:aa:5a:ae:29:72:11:52:36:ca:5e:6c:b7: c2:aa:1a:e1:26:1d:0d:5c:93:20:10:1a:ce:7d:ce:53:45:fa: a7:48:0a:ed:5c:90:dd:7b:4e:c6:87:68:7f:c1:7e:ae:f4:7b: 96:84:11:40:94:f0:f4:11:bc:fe:3c:14:9f:f5:d7:6b:9c:fd: 51:eb:14:64:27:c9:7d:57:c0:e2:24:51:ec:e7:a7:28:9c:23: d3:68:5a:cc:dc:0f:d8:bd:c9:d2:9b:5b:11:7c:9e:cf:30:11: 6f:11:8e:ba:f2:f5:73:d8:e5:6c:45:31:9e:ec:30:1c:a6:42: 92:f4:3d:d0:f4:2c:06:64:ac:24:06:9c:ca:af:5a:4e:83:78: 09:50:f9:84:7c:64:d5:15:53:93:82:1a:5e:a9:d4:21:6f:41: 54:2d:b4:22:f7:2b:07:54:9b:78:6c:99:7e:89:e9:e6:e5:7a: 89:34:be:a7:42:d5:81:a8:05:12:d4:a6:2a:99:61:ae:e7:3a: 4b:00:d8:54:b0:28:2e:70:5c:6c:ee:30:05:41:ba:13:83:84: 9f:6e:bf:d5:4e:0f:01:4a:cb:78:14:e9:68:00:51:64:62:0a: 4f:ef:df:95 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHevlQfqe9mlAyXVEtkp35WW/dDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA5MDYwNTU3MDZaFw0yNDA5MDQwNjAyMDZaMDMxMTAvBgNV BAMTKEExMjFGMjU3NDA5NTkxNUREQjExMkVFODZEQjc2RkM2MkUwQUFFMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA12Hnta2sl5j/zIJLqE9rv1wB 0cgkPzD6aKqzKMR7OWs9KY0XEKgzYIsZDORUOSyvB4mD2mG3O8AyHYyGYYrvXGWh O+9oqN8imS5PEA869anLJigdc004kqibG/kP1O1eMPvo3L82J/5v+uDDHQ7cBq1D cyZXdKcqIBDSgEdkwvZAGYdMZosTOXG7B0fBcsGIIFIZaU2uHNx+uy8UJzaKwRUL 6lNCgV5RuoAASvwwuCaok1Bg0f/XI8ErmAMzKQ0twIUiD5TlWXCp8t6OtWC4J3uX 7l+4jvH12pWwomhHwD5vNDF1KNkiYUkQMjzchqpRpHaCXOHMVQbKrmDA86onAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUoSHyV0CVkV3bES7obbdvxi4KrggwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MzczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwY0wDQYJKoZIhvcNAQELBQADggEBAKVF nxQlma3r/ql6XNmIS4nZWtX9bk68YaparilyEVI2yl5st8KqGuEmHQ1ckyAQGs59 zlNF+qdICu1ckN17TsaHaH/Bfq70e5aEEUCU8PQRvP48FJ/112uc/VHrFGQnyX1X wOIkUeznpyicI9NoWszcD9i9ydKbWxF8ns8wEW8Rjrry9XPY5WxFMZ7sMBymQpL0 PdD0LAZkrCQGnMqvWk6DeAlQ+YR8ZNUVU5OCGl6p1CFvQVQttCL3KwdUm3hsmX6J 6ebleok0vqdC1YGoBRLUpiqZYa7nOksA2FSwKC5wXGzuMAVBuhODhJ9uv9VODwFK y3gU6WgAUWRiCk/v35U= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org