$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216430.roa File: AS216430.roa (raw, json) Hash identifier: 7zHX5phisZShWzc9+9c5s8Djfc0Z14Ky/bNNIBJj2Ow= Subject key identifier: 40:6B:FC:A3:33:10:2E:27:BC:0E:AA:96:5F:FD:10:CE:7E:1D:64:A1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3A8203FE05C8C045196EA44B84474001DD341CE0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216430.roa Signing time: Mon 21 Aug 2023 13:32:39 +0000 ROA not before: Mon 21 Aug 2023 13:27:39 +0000 ROA not after: Mon 19 Aug 2024 13:32:39 +0000 asID: 216430 IP address blocks: 2a05:dfc1:7d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:82:03:fe:05:c8:c0:45:19:6e:a4:4b:84:47:40:01:dd:34:1c:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 21 13:27:39 2023 GMT Not After : Aug 19 13:32:39 2024 GMT Subject: CN=406BFCA333102E27BC0EAA965FFD10CE7E1D64A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9b:1c:18:64:d4:50:83:61:85:a4:52:fa:33: 88:30:81:0e:a9:da:b4:4d:0e:ad:c8:6d:aa:19:d1: 5a:8b:a3:f9:dd:bc:68:33:d6:99:4f:83:70:52:ce: 6a:07:41:db:ad:58:ce:a5:5b:be:5b:f9:15:32:c7: 01:50:21:e0:47:5c:fd:11:0d:b0:59:bf:4f:f9:ce: 52:e8:ea:52:ce:98:90:9f:bf:d4:74:b0:5d:2f:c3: 2f:76:c9:96:10:9d:28:9d:ee:c4:33:9f:a2:e3:1f: c9:2e:fc:6d:bc:b3:b9:c7:8e:be:ae:1c:6f:20:e1: a5:d8:f0:8a:d2:ea:fa:62:33:73:e8:de:b2:21:e7: 0c:97:8e:b6:96:ff:23:19:4a:55:1d:76:61:7c:ac: 3e:6c:ca:17:7f:5e:30:69:60:20:37:e1:25:79:d5: 97:19:d7:07:6d:14:18:26:77:fe:00:5c:b0:ce:25: 73:18:7d:74:0c:b8:2b:48:23:0c:2f:11:2a:09:9d: fc:ee:c1:02:b0:09:de:a0:08:a7:17:58:40:58:cc: 00:78:9f:36:8e:28:5e:c5:40:a0:db:50:8f:d6:65: 61:00:c1:b1:63:92:f7:67:e4:39:9a:75:d9:9c:20: c5:1f:57:f8:b1:d5:12:18:7e:f9:52:47:22:de:d4: 12:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:6B:FC:A3:33:10:2E:27:BC:0E:AA:96:5F:FD:10:CE:7E:1D:64:A1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7d00::/40 Signature Algorithm: sha256WithRSAEncryption 91:ca:dd:01:d3:f3:b8:63:36:bd:ae:e7:28:b3:0a:32:b3:20: c8:18:86:4a:68:7f:f9:7a:5d:94:a7:29:6c:69:ef:d2:fc:9a: 62:05:0f:90:f2:24:31:de:9d:76:1b:80:9a:04:03:5b:f2:e6: 7d:a3:b0:a4:d2:51:71:4e:f1:99:7f:3a:4d:d3:b5:2f:ad:2a: 3f:d6:ca:e3:16:fc:72:88:7c:68:90:dd:a6:92:f0:a9:a0:f1: 90:70:7c:70:6e:f8:d8:5c:42:d0:fe:93:56:72:65:69:31:a0: 25:d9:51:18:3e:df:8c:ad:b3:d5:7e:0c:7a:b6:fa:90:f6:3d: 38:25:db:e1:32:94:7d:41:ee:fc:db:7c:63:49:f0:0e:43:15: 8f:da:31:34:3a:ed:e2:8f:a1:b8:b9:b8:7c:a3:a5:ea:10:f6: 52:8f:cf:f2:10:79:2c:9d:5f:80:4d:ef:1b:73:8f:d0:46:96: 76:a5:8d:a8:db:2d:df:a4:fa:e8:eb:e2:d7:fb:34:7a:db:6f: 0f:59:87:63:f6:12:6a:ee:9a:3a:33:0d:96:d3:29:69:0d:e3: 31:dc:b5:b2:d7:c6:a4:22:f2:38:d9:72:81:df:87:5d:da:9c: 1a:28:cc:f0:d9:a6:4b:f5:2e:d9:fb:71:f7:0c:f7:a3:d7:b7: b0:61:93:6a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOoID/gXIwEUZbqRLhEdAAd00HOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA4MjExMzI3MzlaFw0yNDA4MTkxMzMyMzlaMDMxMTAvBgNV BAMTKDQwNkJGQ0EzMzMxMDJFMjdCQzBFQUE5NjVGRkQxMENFN0UxRDY0QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDmxwYZNRQg2GFpFL6M4gwgQ6p 2rRNDq3IbaoZ0VqLo/ndvGgz1plPg3BSzmoHQdutWM6lW75b+RUyxwFQIeBHXP0R DbBZv0/5zlLo6lLOmJCfv9R0sF0vwy92yZYQnSid7sQzn6LjH8ku/G28s7nHjr6u HG8g4aXY8IrS6vpiM3Po3rIh5wyXjraW/yMZSlUddmF8rD5syhd/XjBpYCA34SV5 1ZcZ1wdtFBgmd/4AXLDOJXMYfXQMuCtIIwwvESoJnfzuwQKwCd6gCKcXWEBYzAB4 nzaOKF7FQKDbUI/WZWEAwbFjkvdn5DmaddmcIMUfV/ix1RIYfvlSRyLe1BJVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQGv8ozMQLie8DqqWX/0Qzn4dZKEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwX0wDQYJKoZIhvcNAQELBQADggEBAJHK 3QHT87hjNr2u5yizCjKzIMgYhkpof/l6XZSnKWxp79L8mmIFD5DyJDHenXYbgJoE A1vy5n2jsKTSUXFO8Zl/Ok3TtS+tKj/WyuMW/HKIfGiQ3aaS8Kmg8ZBwfHBu+Nhc QtD+k1ZyZWkxoCXZURg+34yts9V+DHq2+pD2PTgl2+EylH1B7vzbfGNJ8A5DFY/a MTQ67eKPobi5uHyjpeoQ9lKPz/IQeSydX4BN7xtzj9BGlnaljajbLd+k+ujr4tf7 NHrbbw9Zh2P2EmrumjozDZbTKWkN4zHctbLXxqQi8jjZcoHfh13anBoozPDZpkv1 Ltn7cfcM96PXt7Bhk2o= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org