$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216430.roa File: AS216430.roa (raw, json) Hash identifier: SfoYAq20AsBlznLq2MY5nFgQjwihQNCNGUE+32iXQSs= Subject key identifier: 00:85:82:61:7D:96:10:24:6D:5C:23:74:E7:37:7C:3E:7D:F1:E2:7C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5A3EAE4940F5E29D329FC5E2F1005629E19ABBE7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216430.roa Signing time: Mon 22 Jul 2024 14:01:02 +0000 ROA not before: Mon 22 Jul 2024 13:56:02 +0000 ROA not after: Mon 21 Jul 2025 14:01:02 +0000 asID: 216430 IP address blocks: 2a05:dfc1:7d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:3e:ae:49:40:f5:e2:9d:32:9f:c5:e2:f1:00:56:29:e1:9a:bb:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 22 13:56:02 2024 GMT Not After : Jul 21 14:01:02 2025 GMT Subject: CN=008582617D9610246D5C2374E7377C3E7DF1E27C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a7:94:03:8f:28:47:88:09:e7:8f:16:bc:6e: 86:85:ad:18:c2:0d:c9:f1:16:ec:ca:ea:c0:99:14: 41:00:4a:bf:28:4b:50:0f:e1:09:c0:c1:73:90:a9: de:53:e5:63:a9:5e:b1:7e:ac:b1:62:31:72:db:30: 38:1f:d5:2e:a8:36:44:05:b7:f1:29:c1:e7:c6:65: 00:20:b6:38:e0:18:35:ad:ca:96:32:3e:a2:d0:9c: 94:88:e4:dc:bb:74:2a:54:d0:fb:be:01:6d:98:46: 0c:18:55:1c:82:78:61:d9:94:0c:a6:d9:9a:a9:31: 49:18:9d:3f:79:0b:cb:33:8d:3b:fd:fc:13:5e:41: 0a:75:76:79:b7:93:39:a0:a1:f4:ca:05:1d:cf:d8: 45:05:52:f0:23:9b:24:da:9b:de:39:2c:08:2e:29: 61:61:11:a2:87:66:94:68:50:dc:fe:2e:5f:4e:74: 15:89:d7:d5:66:c2:c0:5e:47:9a:fe:1d:71:f9:40: c6:3e:a7:ea:85:db:17:3d:3e:c9:28:bb:7e:49:e5: 95:f4:3e:83:db:5b:dd:21:0a:21:c6:0d:2d:2c:23: 17:08:9a:d3:f1:86:bd:95:ce:95:05:d7:89:f8:d5: 4d:a6:cb:e6:10:a1:f4:bb:bc:fa:bc:77:06:72:3e: 3b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:85:82:61:7D:96:10:24:6D:5C:23:74:E7:37:7C:3E:7D:F1:E2:7C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7d00::/40 Signature Algorithm: sha256WithRSAEncryption b8:43:14:9d:db:4f:c4:b3:9e:c0:f2:ac:a7:c2:47:59:c7:00: 87:6b:3e:ab:c5:b5:28:e5:6c:d8:0e:b6:9f:58:63:aa:66:fb: 02:2c:3d:04:36:94:dc:7c:98:ea:c1:6f:ff:80:64:ed:6e:62: 71:e1:aa:c4:64:c7:d3:ee:e6:d1:2c:30:d8:5e:e0:ea:0c:85: 6a:93:70:88:61:12:ad:af:00:24:d5:b0:50:70:bd:1f:79:e7: a2:5f:27:fe:60:61:ae:8c:7c:4e:96:4b:48:d4:f7:1e:89:3a: ec:d8:01:97:24:db:b7:ae:4e:87:29:57:86:c0:b3:ca:af:47: 40:d2:d2:52:d6:99:ab:10:3e:c7:a0:79:99:d9:81:5a:53:d5: 0e:71:7a:6b:29:1b:64:d9:07:8f:ac:2d:fd:c8:91:9b:27:ce: 3b:d0:1d:1b:07:09:63:ee:06:62:6e:f6:45:e6:7b:da:d1:fd: b8:be:16:7d:d2:2d:f9:d9:84:cb:4e:5d:1a:96:19:b3:18:d9: 56:81:46:a3:2d:bb:db:f1:0f:0e:42:65:c9:76:dc:de:e9:4e: a3:9b:89:42:1f:3c:e6:00:68:29:c1:81:80:01:c4:ea:39:50: b8:eb:30:ee:7a:a6:cf:89:44:7c:bf:96:66:87:95:e2:4f:64: 06:69:93:2a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWj6uSUD14p0yn8Xi8QBWKeGau+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MjIxMzU2MDJaFw0yNTA3MjExNDAxMDJaMDMxMTAvBgNV BAMTKDAwODU4MjYxN0Q5NjEwMjQ2RDVDMjM3NEU3Mzc3QzNFN0RGMUUyN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqp5QDjyhHiAnnjxa8boaFrRjC DcnxFuzK6sCZFEEASr8oS1AP4QnAwXOQqd5T5WOpXrF+rLFiMXLbMDgf1S6oNkQF t/EpwefGZQAgtjjgGDWtypYyPqLQnJSI5Ny7dCpU0Pu+AW2YRgwYVRyCeGHZlAym 2ZqpMUkYnT95C8szjTv9/BNeQQp1dnm3kzmgofTKBR3P2EUFUvAjmyTam945LAgu KWFhEaKHZpRoUNz+Ll9OdBWJ19VmwsBeR5r+HXH5QMY+p+qF2xc9Pskou35J5ZX0 PoPbW90hCiHGDS0sIxcImtPxhr2VzpUF14n41U2my+YQofS7vPq8dwZyPjulAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUAIWCYX2WECRtXCN05zd8Pn3x4nwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwX0wDQYJKoZIhvcNAQELBQADggEBALhD FJ3bT8SznsDyrKfCR1nHAIdrPqvFtSjlbNgOtp9YY6pm+wIsPQQ2lNx8mOrBb/+A ZO1uYnHhqsRkx9Pu5tEsMNhe4OoMhWqTcIhhEq2vACTVsFBwvR9556JfJ/5gYa6M fE6WS0jU9x6JOuzYAZck27euTocpV4bAs8qvR0DS0lLWmasQPsegeZnZgVpT1Q5x emspG2TZB4+sLf3IkZsnzjvQHRsHCWPuBmJu9kXme9rR/bi+Fn3SLfnZhMtOXRqW GbMY2VaBRqMtu9vxDw5CZcl23N7pTqObiUIfPOYAaCnBgYABxOo5ULjrMO56ps+J RHy/lmaHleJPZAZpkyo= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org