$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216429.roa File: AS216429.roa (raw, json) Hash identifier: P84WXA61aGq9dzEOCZLSuMPxFQNPL9w3HGdCSkTBSPY= Subject key identifier: 31:6A:24:04:1E:E9:88:82:35:4A:B7:46:DA:64:F4:CE:FE:3A:8B:1B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 101F4739AB9D514019F4F58127CB0EBD3549176C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216429.roa Signing time: Mon 22 Jul 2024 23:01:03 +0000 ROA not before: Mon 22 Jul 2024 22:56:03 +0000 ROA not after: Mon 21 Jul 2025 23:01:03 +0000 asID: 216429 IP address blocks: 2a05:dfc1:8700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:1f:47:39:ab:9d:51:40:19:f4:f5:81:27:cb:0e:bd:35:49:17:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 22 22:56:03 2024 GMT Not After : Jul 21 23:01:03 2025 GMT Subject: CN=316A24041EE98882354AB746DA64F4CEFE3A8B1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:80:fc:12:3d:9c:6a:ad:a9:52:55:dd:cc:cf: f0:52:54:d3:e4:77:28:a4:dc:93:ae:ad:ea:98:be: 77:d1:c5:58:ca:d9:53:4d:83:1e:87:aa:f8:05:b1: c3:41:6c:27:52:91:ae:17:11:c3:9c:71:37:12:ca: 66:6f:91:0b:fd:a7:31:00:cb:cc:1b:85:c7:58:45: 81:21:96:a5:6a:ed:43:f4:af:aa:0a:d9:c0:47:7e: 0a:b6:e7:8a:60:bc:4b:02:40:5e:ea:37:37:6f:d9: aa:eb:a9:f4:21:b0:7d:3b:62:bc:56:5a:59:83:73: f1:e5:b2:6b:3f:29:27:5a:50:e8:9c:9e:aa:c7:15: 15:86:7e:5e:e0:11:87:e1:cb:a2:05:40:77:ad:8c: f6:2b:f0:8a:db:71:83:a1:34:27:05:9c:13:f7:fb: 6f:80:e3:b2:89:1d:1c:8d:2e:46:7f:1a:67:00:d6: 02:33:e4:59:f6:79:b4:34:19:75:ce:14:59:3a:f9: 67:62:45:88:cb:97:bf:12:c1:13:31:dc:70:25:5e: d0:5f:a9:1f:b4:f6:ef:bf:e3:f4:dd:1c:b2:63:a8: 55:b2:73:85:28:87:5e:fe:14:b2:8d:3e:e2:ac:f8: e6:4b:37:7d:62:21:eb:ae:5f:ad:3d:e5:ec:52:3b: 4d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:6A:24:04:1E:E9:88:82:35:4A:B7:46:DA:64:F4:CE:FE:3A:8B:1B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216429.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8700::/40 Signature Algorithm: sha256WithRSAEncryption a0:e2:93:89:64:45:12:cd:f3:cf:9a:19:89:54:fb:48:61:d1: 52:c1:5f:ee:63:d5:6c:24:64:e4:e5:65:ff:66:2a:17:98:6f: a9:9c:4c:7b:c6:cb:78:ef:b1:98:0f:26:90:13:5d:ff:f0:db: 10:07:e1:25:f6:95:4f:68:d6:98:f7:43:31:ae:59:bc:1e:76: 19:8b:d4:8f:4b:36:b6:8e:2f:34:f8:dd:27:56:6d:97:c2:e7: 43:76:2e:c5:c2:ea:55:4b:64:52:b3:6e:ae:ed:10:dc:63:6b: 30:f8:b3:33:1d:9d:e9:eb:72:7a:26:87:5e:b0:ff:97:d8:49: 60:7f:3e:45:ce:8a:44:bb:55:43:be:99:4f:3b:23:c0:cb:ae: 7d:70:ba:d8:a3:b4:1a:38:c1:ed:cc:02:84:e2:50:47:a3:49: 0e:e7:7d:ef:ee:5d:82:75:a5:58:4d:de:b7:27:d7:a4:db:dd: 23:f3:61:a3:60:f1:31:49:e3:35:90:05:00:71:af:0b:95:59: 04:f2:5d:14:76:6a:45:4d:c5:5f:a5:31:fb:47:12:39:46:7b: 4e:9b:ca:d0:b3:b4:01:3a:73:30:b4:d9:e9:52:08:52:eb:24: e8:cf:b6:f9:e1:b4:02:ae:80:ff:f0:f0:fb:89:29:e4:3a:b6: e6:83:6e:19 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEB9HOaudUUAZ9PWBJ8sOvTVJF2wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MjIyMjU2MDNaFw0yNTA3MjEyMzAxMDNaMDMxMTAvBgNV BAMTKDMxNkEyNDA0MUVFOTg4ODIzNTRBQjc0NkRBNjRGNENFRkUzQThCMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkgPwSPZxqralSVd3Mz/BSVNPk dyik3JOureqYvnfRxVjK2VNNgx6HqvgFscNBbCdSka4XEcOccTcSymZvkQv9pzEA y8wbhcdYRYEhlqVq7UP0r6oK2cBHfgq254pgvEsCQF7qNzdv2arrqfQhsH07YrxW WlmDc/Hlsms/KSdaUOicnqrHFRWGfl7gEYfhy6IFQHetjPYr8IrbcYOhNCcFnBP3 +2+A47KJHRyNLkZ/GmcA1gIz5Fn2ebQ0GXXOFFk6+WdiRYjLl78SwRMx3HAlXtBf qR+09u+/4/TdHLJjqFWyc4Uoh17+FLKNPuKs+OZLN31iIeuuX6095exSO02JAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUMWokBB7piII1SrdG2mT0zv46ixswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYcwDQYJKoZIhvcNAQELBQADggEBAKDi k4lkRRLN88+aGYlU+0hh0VLBX+5j1WwkZOTlZf9mKheYb6mcTHvGy3jvsZgPJpAT Xf/w2xAH4SX2lU9o1pj3QzGuWbwedhmL1I9LNraOLzT43SdWbZfC50N2LsXC6lVL ZFKzbq7tENxjazD4szMdnenrcnomh16w/5fYSWB/PkXOikS7VUO+mU87I8DLrn1w utijtBo4we3MAoTiUEejSQ7nfe/uXYJ1pVhN3rcn16Tb3SPzYaNg8TFJ4zWQBQBx rwuVWQTyXRR2akVNxV+lMftHEjlGe06bytCztAE6czC02elSCFLrJOjPtvnhtAKu gP/w8PuJKeQ6tuaDbhk= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org