$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216452.roa File: AS216452.roa (raw, json) Hash identifier: +o3UgyaJm32KLMFeUqSgcZpF8PWDsw0CmmzO4U58yF0= Subject key identifier: 9A:59:80:0C:6B:40:75:92:80:E3:00:13:3F:17:7D:78:59:9E:9E:E4 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5A330BB35C540CA1423A14BD90170C15F815207D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216452.roa Signing time: Wed 16 Aug 2023 22:39:28 +0000 ROA not before: Wed 16 Aug 2023 22:34:28 +0000 ROA not after: Wed 14 Aug 2024 22:39:28 +0000 asID: 216452 IP address blocks: 2a05:dfc1:8200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:33:0b:b3:5c:54:0c:a1:42:3a:14:bd:90:17:0c:15:f8:15:20:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 16 22:34:28 2023 GMT Not After : Aug 14 22:39:28 2024 GMT Subject: CN=9A59800C6B40759280E300133F177D78599E9EE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d4:05:cd:df:f2:cd:10:e7:8b:32:4f:e8:68: c1:08:da:ef:5a:c4:c0:c9:bd:c1:52:5c:27:f2:d0: e0:0d:e0:24:e6:d8:a8:47:71:cd:cc:e8:fb:e8:7d: 7f:fc:aa:39:6c:55:42:1d:2b:98:27:13:7b:7a:ec: 37:bd:e1:33:34:17:ea:ac:f1:20:22:9c:cf:ab:e8: ac:e5:45:1d:33:da:24:1a:28:2b:6d:52:b9:c1:ca: 4d:30:d6:b5:72:fa:ea:fe:5c:5c:dc:c8:57:12:3a: 7e:06:b8:48:ed:10:9e:79:01:71:e8:20:b8:d8:66: 95:3e:0a:b5:3d:1a:7a:e1:bc:16:95:87:04:d3:73: ee:a7:76:82:37:8a:c0:24:a7:ff:b1:3b:f5:8c:b2: 40:24:29:2e:bd:09:e3:4a:31:9b:63:13:90:51:e9: 74:fa:d8:2b:f8:ce:1b:d4:cc:8e:41:68:8d:6e:bd: 73:4d:0d:23:92:41:18:ac:75:a2:f8:05:20:6c:a2: c6:80:80:64:45:6c:57:8c:60:06:ef:aa:41:6a:ee: 77:ee:e5:bd:7d:ec:ff:7c:a0:6e:c7:35:22:6c:17: 1f:52:cb:24:52:c3:30:31:a8:3a:47:92:ff:ad:c5: da:71:3e:4f:98:7a:60:4f:d6:ca:d2:19:11:72:1e: ec:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:59:80:0C:6B:40:75:92:80:E3:00:13:3F:17:7D:78:59:9E:9E:E4 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216452.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8200::/40 Signature Algorithm: sha256WithRSAEncryption 52:79:de:5d:fc:86:53:6b:bc:64:00:47:eb:80:7c:c3:c4:27: 5f:35:91:3a:98:2d:a0:03:94:8f:23:c0:44:b2:7f:12:04:b2: 15:07:79:df:c5:b1:10:72:30:e6:5c:c1:72:a4:55:bb:e6:4b: d3:58:05:39:5c:aa:a0:0a:2d:9b:9a:be:f0:7e:87:97:40:cc: 56:c5:d7:f0:02:33:3e:7c:2f:92:19:ba:9f:08:4a:68:dc:16: fd:d8:ed:05:f8:3a:92:23:17:e1:b4:c4:b2:36:53:59:03:11: df:72:d7:76:c5:2b:88:22:75:6f:6a:83:f9:8d:24:02:67:c0: b3:71:8f:8f:54:5e:f7:6f:ee:85:66:4c:8a:00:e2:b4:4c:73: 65:13:59:d9:f8:bc:ba:f9:95:3a:06:82:d7:df:ff:c8:22:4e: 75:f7:bf:0f:0b:71:41:82:ee:ed:a2:48:33:f1:37:ef:3a:ff: 8e:8c:e5:55:3a:64:6d:43:a1:82:67:9e:35:7a:91:1b:33:ed: 11:b4:ed:05:90:d9:de:79:f1:83:45:84:f1:7d:27:9b:2a:29: 56:4b:d6:76:6f:9e:9f:09:be:08:80:b7:f4:4a:6f:73:a2:06: b4:68:b3:da:d6:6b:5a:ef:90:e7:66:02:09:51:4f:be:8b:96: 5e:9b:03:3c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWjMLs1xUDKFCOhS9kBcMFfgVIH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA4MTYyMjM0MjhaFw0yNDA4MTQyMjM5MjhaMDMxMTAvBgNV BAMTKDlBNTk4MDBDNkI0MDc1OTI4MEUzMDAxMzNGMTc3RDc4NTk5RTlFRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+1AXN3/LNEOeLMk/oaMEI2u9a xMDJvcFSXCfy0OAN4CTm2KhHcc3M6PvofX/8qjlsVUIdK5gnE3t67De94TM0F+qs 8SAinM+r6KzlRR0z2iQaKCttUrnByk0w1rVy+ur+XFzcyFcSOn4GuEjtEJ55AXHo ILjYZpU+CrU9GnrhvBaVhwTTc+6ndoI3isAkp/+xO/WMskAkKS69CeNKMZtjE5BR 6XT62Cv4zhvUzI5BaI1uvXNNDSOSQRisdaL4BSBsosaAgGRFbFeMYAbvqkFq7nfu 5b197P98oG7HNSJsFx9SyyRSwzAxqDpHkv+txdpxPk+YemBP1srSGRFyHuy5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmlmADGtAdZKA4wATPxd9eFmenuQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYIwDQYJKoZIhvcNAQELBQADggEBAFJ5 3l38hlNrvGQAR+uAfMPEJ181kTqYLaADlI8jwESyfxIEshUHed/FsRByMOZcwXKk VbvmS9NYBTlcqqAKLZuavvB+h5dAzFbF1/ACMz58L5IZup8ISmjcFv3Y7QX4OpIj F+G0xLI2U1kDEd9y13bFK4gidW9qg/mNJAJnwLNxj49UXvdv7oVmTIoA4rRMc2UT Wdn4vLr5lToGgtff/8giTnX3vw8LcUGC7u2iSDPxN+86/46M5VU6ZG1DoYJnnjV6 kRsz7RG07QWQ2d558YNFhPF9J5sqKVZL1nZvnp8JvgiAt/RKb3OiBrRos9rWa1rv kOdmAglRT76Lll6bAzw= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org