$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216429.roa File: AS216429.roa (raw, json) Hash identifier: G5i9rNnSnVrGtuXbri4slk2FxCwVhrnIiaGCCIkNvIs= Subject key identifier: 60:83:27:1A:C7:C3:B1:0E:54:7B:21:00:7C:D0:12:09:9D:DF:84:7D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1C8CDAD50BC6C225D4D111DFF272D8DD3AA22FAB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216429.roa Signing time: Mon 21 Aug 2023 22:49:22 +0000 ROA not before: Mon 21 Aug 2023 22:44:22 +0000 ROA not after: Mon 19 Aug 2024 22:49:22 +0000 asID: 216429 IP address blocks: 2a05:dfc1:8700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:8c:da:d5:0b:c6:c2:25:d4:d1:11:df:f2:72:d8:dd:3a:a2:2f:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 21 22:44:22 2023 GMT Not After : Aug 19 22:49:22 2024 GMT Subject: CN=6083271AC7C3B10E547B21007CD012099DDF847D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:be:e5:46:e9:50:83:f7:de:6c:fa:d8:c6:20: 7e:38:8e:0d:e9:90:86:73:d1:25:b0:78:dc:e7:7c: ec:d4:af:06:f3:fb:d7:d4:0f:f8:67:6f:7e:6e:d9: 0c:20:b0:c0:9f:45:b7:56:66:d7:0e:70:c9:6f:cd: eb:4f:4c:d7:82:bd:17:e6:86:13:91:5e:19:75:71: 5b:48:cd:2d:58:52:d9:1f:3b:21:72:40:5b:5a:17: 39:f4:80:ae:f1:ee:7e:8b:b7:9a:3b:14:b2:13:0e: 00:d4:2b:54:b7:93:a3:b6:9d:32:59:63:f4:ea:b4: 76:c8:0a:62:5b:bd:90:3f:3c:a6:7c:7a:12:84:b0: a6:7c:74:9a:35:ed:88:44:8e:dd:be:3c:3e:88:81: df:e7:0b:c8:97:9e:19:8c:7a:08:c8:92:e1:02:95: 4c:84:0e:72:c4:f1:a8:74:3c:0f:b0:8b:23:6f:db: ac:f1:e0:65:89:93:51:a5:49:ed:9a:85:d5:25:a3: 93:f3:43:ca:e9:63:2f:40:c8:bf:3d:f2:f6:ae:9b: 0a:9d:c2:78:90:ed:a6:ab:c5:2e:b7:ae:4b:2f:8d: 8f:75:9d:6d:96:5e:26:66:db:16:cb:76:85:9e:d5: 52:ba:1f:05:1e:e0:2f:42:52:d1:35:40:55:76:ea: 7c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:83:27:1A:C7:C3:B1:0E:54:7B:21:00:7C:D0:12:09:9D:DF:84:7D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216429.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8700::/40 Signature Algorithm: sha256WithRSAEncryption b3:80:99:74:9d:6d:9a:4a:79:76:0e:32:81:1f:bd:ce:3d:e4: 47:7e:2e:2f:8f:24:1f:52:68:6a:1c:a2:97:a6:10:cd:8b:d2: 47:27:25:a4:b0:08:e7:da:e5:a2:b8:e7:f2:8a:9b:23:9c:71: c3:88:19:94:54:99:c1:31:9a:1f:e9:d5:a0:78:27:bb:e8:e1: ce:ec:11:eb:43:8a:55:e6:26:63:71:ec:32:be:02:e1:55:47: de:99:84:4c:af:c0:c8:d5:b6:d6:e1:d8:4c:e2:55:60:c6:f8: 98:f4:3b:63:18:80:13:1f:b4:1a:2f:24:e1:a7:58:61:b4:11: 18:6d:68:39:33:0e:7d:1f:92:cb:4c:73:4a:01:dd:e9:49:af: 7a:20:ba:68:b0:18:41:5a:e8:56:4b:41:97:d5:8d:b4:92:7d: 34:8f:46:84:b5:75:39:1d:53:31:30:43:da:96:65:11:93:b9: 2f:74:0e:5b:07:25:d1:3e:db:22:69:91:bf:0a:58:34:72:07: b7:17:82:3a:11:45:81:ab:1b:b2:20:d9:71:65:7c:44:70:23: 41:df:8d:9b:2a:d6:8e:95:be:89:83:63:87:19:ff:f6:38:f0: 2c:9a:dd:e2:5e:b0:ba:8e:1e:70:2f:d7:d0:b9:3d:78:fd:ea: 22:ea:7a:95 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHIza1QvGwiXU0RHf8nLY3TqiL6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA4MjEyMjQ0MjJaFw0yNDA4MTkyMjQ5MjJaMDMxMTAvBgNV BAMTKDYwODMyNzFBQzdDM0IxMEU1NDdCMjEwMDdDRDAxMjA5OURERjg0N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCevuVG6VCD995s+tjGIH44jg3p kIZz0SWweNznfOzUrwbz+9fUD/hnb35u2QwgsMCfRbdWZtcOcMlvzetPTNeCvRfm hhORXhl1cVtIzS1YUtkfOyFyQFtaFzn0gK7x7n6Lt5o7FLITDgDUK1S3k6O2nTJZ Y/TqtHbICmJbvZA/PKZ8ehKEsKZ8dJo17YhEjt2+PD6Igd/nC8iXnhmMegjIkuEC lUyEDnLE8ah0PA+wiyNv26zx4GWJk1GlSe2ahdUlo5PzQ8rpYy9AyL898vaumwqd wniQ7aarxS63rksvjY91nW2WXiZm2xbLdoWe1VK6HwUe4C9CUtE1QFV26ny1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUYIMnGsfDsQ5UeyEAfNASCZ3fhH0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYcwDQYJKoZIhvcNAQELBQADggEBALOA mXSdbZpKeXYOMoEfvc495Ed+Li+PJB9SaGocopemEM2L0kcnJaSwCOfa5aK45/KK myOcccOIGZRUmcExmh/p1aB4J7vo4c7sEetDilXmJmNx7DK+AuFVR96ZhEyvwMjV ttbh2EziVWDG+Jj0O2MYgBMftBovJOGnWGG0ERhtaDkzDn0fkstMc0oB3elJr3og umiwGEFa6FZLQZfVjbSSfTSPRoS1dTkdUzEwQ9qWZRGTuS90DlsHJdE+2yJpkb8K WDRyB7cXgjoRRYGrG7Ig2XFlfERwI0HfjZsq1o6VvomDY4cZ//Y48Cya3eJesLqO HnAv19C5PXj96iLqepU= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org