$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216382.roa File: AS216382.roa (raw, json) Hash identifier: Ztkk0Pro6CWG4z4k9oFJRcyeUR4uKRCWkCqFaE8lGTw= Subject key identifier: 84:10:A2:00:33:FB:26:E8:0C:05:70:3D:EC:85:96:D5:0E:C4:CD:81 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1BBAA7A5209067179999ED9C1A2B4CC3542EF49D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216382.roa Signing time: Tue 29 Aug 2023 22:31:24 +0000 ROA not before: Tue 29 Aug 2023 22:26:24 +0000 ROA not after: Tue 27 Aug 2024 22:31:24 +0000 asID: 216382 IP address blocks: 2a05:dfc1:7f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ba:a7:a5:20:90:67:17:99:99:ed:9c:1a:2b:4c:c3:54:2e:f4:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 29 22:26:24 2023 GMT Not After : Aug 27 22:31:24 2024 GMT Subject: CN=8410A20033FB26E80C05703DEC8596D50EC4CD81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1b:77:bd:34:09:8b:7d:59:47:3b:57:28:12: db:67:6a:15:fa:b3:55:f2:d3:42:75:63:5b:96:2e: a7:10:95:7a:e6:ec:8c:b1:93:65:4f:11:c7:38:6b: 97:db:ae:0e:f6:6f:7e:f4:33:fa:36:fc:2e:6c:96: 58:33:f8:ae:33:a7:2c:a8:a7:75:df:33:77:1c:cc: ed:d3:6e:be:98:05:fa:61:3b:14:80:04:92:6d:de: c1:dd:c6:2d:5e:ac:2d:2d:67:c9:a5:91:fc:26:35: fe:30:c5:d3:22:05:a1:34:40:aa:79:a8:50:63:6e: a7:38:a8:79:92:c2:e9:00:15:e9:0a:4e:d5:8f:64: 15:23:d4:5c:cf:b8:ca:2b:cc:7b:8f:5d:13:ab:4c: 80:7e:b1:20:c3:ad:de:76:af:ca:3a:19:cb:6f:15: d8:56:91:d0:be:47:1d:e5:b4:0c:c2:e5:02:b4:57: f5:3c:62:ff:63:48:67:c8:2a:c5:47:a6:23:96:97: 8b:09:af:67:80:fe:69:78:ee:58:b9:67:59:94:7a: 7a:ce:19:30:d1:18:22:ae:8e:66:bc:75:e2:af:e2: 47:6c:0e:b8:12:3c:72:2f:ac:de:5e:4c:a5:cd:75: 4d:a8:72:37:0b:ce:04:64:a4:fb:76:21:ee:9b:a4: 31:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:10:A2:00:33:FB:26:E8:0C:05:70:3D:EC:85:96:D5:0E:C4:CD:81 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216382.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7f00::/40 Signature Algorithm: sha256WithRSAEncryption ac:4a:12:cb:95:dc:25:75:99:eb:96:ab:4d:bd:bd:a0:18:f1: 03:dd:11:75:f8:f6:29:62:2a:ff:15:8c:e4:9f:8c:6b:54:1f: 56:91:0a:e1:76:5b:31:da:a9:69:5e:66:13:bd:a9:e9:1f:5b: 67:42:2a:35:24:78:26:f8:39:3a:1c:01:10:f0:3e:c8:95:4e: ab:a4:f8:69:71:2c:ea:b6:ae:4f:86:31:c8:86:79:b3:05:09: 7e:45:e9:ff:1e:36:6e:0f:be:84:70:7b:ff:da:fd:75:a6:48: 34:ff:5f:9d:19:14:f0:f8:26:77:93:96:73:82:3a:3d:5c:cf: 51:94:08:b8:01:2c:86:68:da:c8:44:88:8f:05:44:9a:22:3a: 42:d9:38:c8:62:51:ae:bb:44:05:38:d0:60:3f:90:0c:5c:b4: d6:b5:70:1d:56:82:71:c1:9b:64:a4:05:c5:15:19:e5:52:55: a5:fc:54:d5:c1:e4:b2:11:dd:7d:fe:bd:cd:08:ba:f6:d5:e4: 7f:99:a1:6c:f5:cf:dd:65:e8:c1:d3:74:9d:0b:b7:fc:f9:b5: e7:90:72:d8:eb:dc:26:21:e4:76:45:ae:ab:3d:dd:82:37:08: ab:a0:9a:9a:da:52:0d:28:25:38:91:29:6d:6a:c3:a1:bd:b5: b3:73:6e:83 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUG7qnpSCQZxeZme2cGitMw1Qu9J0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA4MjkyMjI2MjRaFw0yNDA4MjcyMjMxMjRaMDMxMTAvBgNV BAMTKDg0MTBBMjAwMzNGQjI2RTgwQzA1NzAzREVDODU5NkQ1MEVDNENEODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgG3e9NAmLfVlHO1coEttnahX6 s1Xy00J1Y1uWLqcQlXrm7Iyxk2VPEcc4a5fbrg72b370M/o2/C5sllgz+K4zpyyo p3XfM3cczO3Tbr6YBfphOxSABJJt3sHdxi1erC0tZ8mlkfwmNf4wxdMiBaE0QKp5 qFBjbqc4qHmSwukAFekKTtWPZBUj1FzPuMorzHuPXROrTIB+sSDDrd52r8o6Gctv FdhWkdC+Rx3ltAzC5QK0V/U8Yv9jSGfIKsVHpiOWl4sJr2eA/ml47li5Z1mUenrO GTDRGCKujma8deKv4kdsDrgSPHIvrN5eTKXNdU2ocjcLzgRkpPt2Ie6bpDHBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhBCiADP7JugMBXA97IWW1Q7EzYEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MzgyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwX8wDQYJKoZIhvcNAQELBQADggEBAKxK EsuV3CV1meuWq029vaAY8QPdEXX49iliKv8VjOSfjGtUH1aRCuF2WzHaqWleZhO9 qekfW2dCKjUkeCb4OTocARDwPsiVTquk+GlxLOq2rk+GMciGebMFCX5F6f8eNm4P voRwe//a/XWmSDT/X50ZFPD4JneTlnOCOj1cz1GUCLgBLIZo2shEiI8FRJoiOkLZ OMhiUa67RAU40GA/kAxctNa1cB1WgnHBm2SkBcUVGeVSVaX8VNXB5LIR3X3+vc0I uvbV5H+ZoWz1z91l6MHTdJ0Lt/z5teeQctjr3CYh5HZFrqs93YI3CKugmpraUg0o JTiRKW1qw6G9tbNzboM= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org