$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216436.roa File: AS216436.roa (raw, json) Hash identifier: xFWcF/4y9Cm9fwLN4Rsrf/KI0UkW06FDIq2iVSoVgxY= Subject key identifier: BB:B7:F3:29:CA:7A:3F:3D:67:B1:02:AB:D1:2A:6D:84:20:ED:D3:58 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3711F38C62410BB8D10D3DDF61424D982FEDAEB8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216436.roa Signing time: Fri 18 Aug 2023 10:50:18 +0000 ROA not before: Fri 18 Aug 2023 10:45:18 +0000 ROA not after: Fri 16 Aug 2024 10:50:18 +0000 asID: 216436 IP address blocks: 2a05:dfc1:8600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:11:f3:8c:62:41:0b:b8:d1:0d:3d:df:61:42:4d:98:2f:ed:ae:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 18 10:45:18 2023 GMT Not After : Aug 16 10:50:18 2024 GMT Subject: CN=BBB7F329CA7A3F3D67B102ABD12A6D8420EDD358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:eb:f3:48:4a:b7:44:a2:72:a1:d5:6a:9e:ca: e5:b7:d9:61:8c:a2:8e:66:07:0c:28:a2:aa:cc:62: 22:b6:2d:72:09:74:80:23:4b:a4:1c:d3:39:b7:6c: fe:a9:da:34:ff:45:0c:65:6e:78:ad:f1:56:a5:7f: ec:ff:18:09:00:7b:70:8b:2a:61:00:71:08:9e:c8: 97:d6:93:d7:cb:68:f8:06:c1:6d:98:5f:6f:21:75: 62:90:d3:28:8e:86:af:83:f9:4f:c5:f5:d4:9d:4c: 79:fd:96:34:e0:ef:40:5c:a8:70:22:61:3e:1d:b0: 2f:9b:10:6a:04:01:3c:9a:74:bb:06:85:64:e1:39: f1:f4:d8:2c:22:01:8d:e8:9e:0d:0e:e1:0a:c4:46: 11:4d:70:da:01:90:37:ef:4b:a1:cb:18:9f:a8:37: 75:57:8b:de:f0:dc:b5:5e:97:97:f4:3c:33:3a:ed: 5a:14:80:be:54:d0:63:7b:95:43:fd:c2:3d:f7:8a: ea:be:9f:d3:6f:8b:5a:43:30:c2:24:27:e7:c5:c5: 4e:86:02:ed:4b:bf:65:bc:0f:55:c8:4c:c9:e9:41: 19:54:ac:a0:44:53:3b:18:97:25:cd:5a:fe:3f:f1: f7:dc:76:8d:90:93:64:cf:36:fb:ce:2d:5e:04:c6: e7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B7:F3:29:CA:7A:3F:3D:67:B1:02:AB:D1:2A:6D:84:20:ED:D3:58 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8600::/40 Signature Algorithm: sha256WithRSAEncryption 41:59:ac:52:ae:2a:4d:b5:30:cb:7f:8f:7f:54:ca:f0:e9:86: 1e:5a:a2:19:e2:1f:d9:fc:ed:99:cb:36:b8:22:6b:1d:b3:92: c7:da:6f:6a:9d:35:7e:d1:c2:3c:c5:78:e8:63:04:d8:0e:7a: 3f:79:d6:36:21:6e:f9:92:7c:98:aa:0a:7b:4d:1c:38:21:6b: 4b:6e:6a:4d:35:5b:da:f1:72:fd:fa:0c:50:ef:eb:1a:95:8a: 49:6f:f2:74:2a:05:bc:e2:60:0f:d4:0e:e3:38:95:70:70:ff: 14:66:52:5c:26:6c:61:66:31:79:36:04:51:7f:10:c4:5a:2a: 4c:2a:df:be:ec:3b:13:d9:2b:9b:f3:c5:fe:48:86:8d:20:eb: ee:15:06:b6:8a:40:77:b5:45:4a:86:b4:8d:54:57:df:51:7c: 63:50:3a:33:1e:14:b4:78:ac:e5:d3:13:51:98:48:45:00:ec: 89:5a:1e:ae:c1:30:9c:41:5e:7f:58:be:c5:70:69:b4:77:75: 5b:8f:c7:2e:a1:75:90:8a:de:d6:77:49:14:8b:ef:5d:80:0d: b7:6a:f4:25:38:38:3f:d1:57:bb:15:6e:9b:3a:00:ae:f4:fb: a3:9d:17:e9:24:66:b7:ba:a1:32:2f:85:98:34:13:2b:ee:8f: a9:fd:a7:71 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNxHzjGJBC7jRDT3fYUJNmC/trrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA4MTgxMDQ1MThaFw0yNDA4MTYxMDUwMThaMDMxMTAvBgNV BAMTKEJCQjdGMzI5Q0E3QTNGM0Q2N0IxMDJBQkQxMkE2RDg0MjBFREQzNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD6/NISrdEonKh1WqeyuW32WGM oo5mBwwooqrMYiK2LXIJdIAjS6Qc0zm3bP6p2jT/RQxlbnit8Valf+z/GAkAe3CL KmEAcQieyJfWk9fLaPgGwW2YX28hdWKQ0yiOhq+D+U/F9dSdTHn9ljTg70BcqHAi YT4dsC+bEGoEATyadLsGhWThOfH02CwiAY3ong0O4QrERhFNcNoBkDfvS6HLGJ+o N3VXi97w3LVel5f0PDM67VoUgL5U0GN7lUP9wj33iuq+n9Nvi1pDMMIkJ+fFxU6G Au1Lv2W8D1XITMnpQRlUrKBEUzsYlyXNWv4/8ffcdo2Qk2TPNvvOLV4ExufhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUu7fzKcp6Pz1nsQKr0SpthCDt01gwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYYwDQYJKoZIhvcNAQELBQADggEBAEFZ rFKuKk21MMt/j39UyvDphh5aohniH9n87ZnLNrgiax2zksfab2qdNX7RwjzFeOhj BNgOej951jYhbvmSfJiqCntNHDgha0tuak01W9rxcv36DFDv6xqViklv8nQqBbzi YA/UDuM4lXBw/xRmUlwmbGFmMXk2BFF/EMRaKkwq377sOxPZK5vzxf5Iho0g6+4V BraKQHe1RUqGtI1UV99RfGNQOjMeFLR4rOXTE1GYSEUA7IlaHq7BMJxBXn9YvsVw abR3dVuPxy6hdZCK3tZ3SRSL712ADbdq9CU4OD/RV7sVbps6AK70+6OdF+kkZre6 oTIvhZg0Eyvuj6n9p3E= -----END CERTIFICATE-----Generated at Thu May 16 11:56:10 2024 by rpki-client on console-fra.rpki-client.org