$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216454.roa File: AS216454.roa (raw, json) Hash identifier: EUYwQ2TJSco/IiUUIkfXHtdjWG4dFX4x5tmTJEKraIM= Subject key identifier: 00:27:2A:80:08:A0:D0:C9:2A:5B:F7:EF:7D:C9:9D:6B:CD:5A:76:95 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 315B5E5DC77F344C57B31280360C0948AF721D55 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216454.roa Signing time: Wed 16 Aug 2023 22:36:29 +0000 ROA not before: Wed 16 Aug 2023 22:31:29 +0000 ROA not after: Wed 14 Aug 2024 22:36:29 +0000 asID: 216454 IP address blocks: 2a05:dfc1:8300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:5b:5e:5d:c7:7f:34:4c:57:b3:12:80:36:0c:09:48:af:72:1d:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 16 22:31:29 2023 GMT Not After : Aug 14 22:36:29 2024 GMT Subject: CN=00272A8008A0D0C92A5BF7EF7DC99D6BCD5A7695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:16:f6:f7:f4:7a:70:39:73:1f:a8:88:d9:8b: 60:da:c6:57:d3:d2:cd:2b:4d:8d:96:68:e2:12:3b: 70:69:b9:ac:34:14:b1:fa:7c:d0:cd:a4:28:3f:cb: 25:fa:b4:6d:d0:db:b3:ad:76:22:e1:0d:2f:63:c8: 40:1e:7a:98:fd:a1:72:d5:2f:b0:ca:cc:08:fb:35: 8f:c0:15:c4:29:82:ac:32:eb:07:02:18:10:c4:6a: 2b:82:e0:30:b1:2e:18:55:1b:9b:e5:f0:55:b5:f3: 9f:bb:72:53:51:b3:8f:e5:62:28:a2:bc:95:dc:7d: 4e:6e:05:de:55:54:08:d8:3a:df:3d:4d:3e:24:69: 42:73:17:eb:44:a3:4f:20:f9:35:8e:c6:b0:ae:ce: 06:87:99:85:90:2e:10:cd:74:1f:de:54:57:3e:dc: 1a:ab:ab:0e:c4:63:cb:30:cd:21:71:0a:e5:6a:91: 58:50:e0:2c:25:28:fb:93:2e:3d:6a:ba:23:f2:9b: e1:2f:35:86:35:fb:e7:f3:77:25:1b:10:bd:16:42: 65:0f:80:6a:6a:ea:d4:8e:31:3f:cb:89:42:b8:00: 58:90:9e:f6:c5:0e:4a:48:74:99:31:6f:5b:e9:1b: 8a:a1:d1:6d:c9:a2:19:c8:0a:f7:63:28:9e:98:05: 53:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:27:2A:80:08:A0:D0:C9:2A:5B:F7:EF:7D:C9:9D:6B:CD:5A:76:95 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8300::/40 Signature Algorithm: sha256WithRSAEncryption 89:5e:e3:9d:64:27:21:f2:a9:b8:dc:45:bf:d0:16:b4:b3:35: 40:ce:d3:e6:e5:26:4c:a8:6e:64:18:a0:d6:9b:e1:2a:31:4b: 4a:fb:75:99:24:82:ae:23:d7:6d:cd:93:20:c4:04:e9:dc:ff: 8c:c6:42:e7:a9:99:e5:98:26:dd:5f:cc:fa:25:78:56:ac:bf: c6:37:6c:18:5b:38:89:27:d2:4f:72:04:d1:e4:bb:37:79:23: fd:98:18:e8:1e:16:b0:37:b0:85:d7:4a:78:8a:1e:9d:bd:e1: 2e:3c:d4:7a:4a:83:c2:41:c1:df:d0:9b:43:c1:9a:ae:14:6e: 3e:ff:b8:a1:87:97:84:fb:cd:02:9a:b9:7b:ef:20:96:00:01: 9d:4a:2c:87:36:9c:61:50:28:e3:2b:a8:6f:82:44:f2:a7:66: f5:a6:8b:ca:53:1e:8e:95:58:2b:b8:cb:cf:9d:7a:43:4b:05: ef:88:5b:56:9b:73:f2:d0:bd:31:aa:f9:7c:82:4d:fd:08:df: 0f:92:8f:42:07:13:54:6f:70:55:27:0b:c3:ca:c0:4e:b5:21: 18:64:95:df:be:b0:8f:42:2c:bf:87:e1:3f:aa:93:46:26:c5: 82:6b:37:da:ae:37:73:7d:50:f2:a4:e9:c5:a2:b1:f2:0c:d5: e1:0c:ce:14 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMVteXcd/NExXsxKANgwJSK9yHVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA4MTYyMjMxMjlaFw0yNDA4MTQyMjM2MjlaMDMxMTAvBgNV BAMTKDAwMjcyQTgwMDhBMEQwQzkyQTVCRjdFRjdEQzk5RDZCQ0Q1QTc2OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaFvb39HpwOXMfqIjZi2DaxlfT 0s0rTY2WaOISO3Bpuaw0FLH6fNDNpCg/yyX6tG3Q27OtdiLhDS9jyEAeepj9oXLV L7DKzAj7NY/AFcQpgqwy6wcCGBDEaiuC4DCxLhhVG5vl8FW185+7clNRs4/lYiii vJXcfU5uBd5VVAjYOt89TT4kaUJzF+tEo08g+TWOxrCuzgaHmYWQLhDNdB/eVFc+ 3Bqrqw7EY8swzSFxCuVqkVhQ4CwlKPuTLj1quiPym+EvNYY1++fzdyUbEL0WQmUP gGpq6tSOMT/LiUK4AFiQnvbFDkpIdJkxb1vpG4qh0W3JohnICvdjKJ6YBVNJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUACcqgAig0MkqW/fvfcmda81adpUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYMwDQYJKoZIhvcNAQELBQADggEBAIle 451kJyHyqbjcRb/QFrSzNUDO0+blJkyobmQYoNab4SoxS0r7dZkkgq4j123NkyDE BOnc/4zGQuepmeWYJt1fzPoleFasv8Y3bBhbOIkn0k9yBNHkuzd5I/2YGOgeFrA3 sIXXSniKHp294S481HpKg8JBwd/Qm0PBmq4Ubj7/uKGHl4T7zQKauXvvIJYAAZ1K LIc2nGFQKOMrqG+CRPKnZvWmi8pTHo6VWCu4y8+dekNLBe+IW1abc/LQvTGq+XyC Tf0I3w+Sj0IHE1RvcFUnC8PKwE61IRhkld++sI9CLL+H4T+qk0YmxYJrN9quN3N9 UPKk6cWisfIM1eEMzhQ= -----END CERTIFICATE-----Generated at Mon May 20 13:08:22 2024 by rpki-client on console-fra.rpki-client.org