$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199073.roa File: AS199073.roa (raw, json) Hash identifier: 43nCRaT81lNLibLcvBueXDT6RY5no74q73dr5s1XZtc= Subject key identifier: 2A:86:B3:39:C1:32:4F:98:13:45:03:DD:BE:AC:6A:3F:0E:16:08:EB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 12D0D26815126F18455DD1802E4E47A46C83CD25 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199073.roa Signing time: Thu 29 Feb 2024 01:58:10 +0000 ROA not before: Thu 29 Feb 2024 01:53:10 +0000 ROA not after: Thu 27 Feb 2025 01:58:10 +0000 asID: 199073 IP address blocks: 2a05:dfc1:1b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d0:d2:68:15:12:6f:18:45:5d:d1:80:2e:4e:47:a4:6c:83:cd:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 29 01:53:10 2024 GMT Not After : Feb 27 01:58:10 2025 GMT Subject: CN=2A86B339C1324F98134503DDBEAC6A3F0E1608EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7f:fa:c3:da:fa:72:60:5c:b4:ba:d5:c2:ae: df:e4:ed:d6:a3:b1:39:a3:f5:65:20:53:22:c3:19: 1e:a1:d0:92:ce:f9:0e:49:4f:07:47:2e:a7:3e:72: c9:ae:08:11:8d:db:48:3b:43:04:7d:17:a3:47:e2: 7f:24:5e:6d:2e:49:5c:a9:96:80:8d:bc:2d:8a:24: d1:e1:c3:22:d0:f3:a6:e1:f2:59:b6:7a:10:8d:1c: 29:5d:f8:57:e4:bd:b5:2e:fa:3d:18:10:63:d6:5c: d9:61:d7:93:25:df:35:73:74:93:4c:71:98:05:96: 57:9c:2e:04:3a:b9:c0:2c:31:89:59:6b:6a:21:a2: 4c:43:c0:93:cb:99:fa:9b:af:ee:b0:60:e7:ce:67: 42:aa:26:a8:c7:b3:1e:37:ca:b9:d7:54:ce:e3:31: 86:f2:6e:18:2b:a6:7f:a7:f4:94:38:e5:01:ec:ab: 42:43:ee:3d:34:fa:83:62:14:73:c4:6b:8b:81:5e: 4a:4a:eb:06:10:3e:39:72:ca:94:8d:d7:ff:54:f9: c3:75:ab:9f:7e:27:b3:85:eb:c7:9f:86:7d:a1:b6: c3:b5:0a:60:ab:60:4c:2d:6a:a0:0b:24:58:5d:b7: 8b:a7:d0:10:1a:ff:6e:65:02:ab:42:79:9e:f7:ff: 2d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:86:B3:39:C1:32:4F:98:13:45:03:DD:BE:AC:6A:3F:0E:16:08:EB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1b00::/40 Signature Algorithm: sha256WithRSAEncryption 1c:61:af:80:bc:86:c8:96:48:17:47:97:19:9a:d4:4d:f1:a6: 87:fe:25:26:36:fc:1d:7b:fb:a6:bd:87:28:ea:77:ce:80:cb: 5c:3c:8b:aa:da:55:5b:eb:20:12:29:f8:04:38:14:6d:66:30: 58:cf:57:82:22:a2:01:b3:55:13:2f:79:82:f8:5e:dd:e8:53: d0:e8:b1:d6:2f:5e:1e:af:1c:31:5d:8c:ea:5a:09:e8:c6:e1: 65:59:94:5a:d4:b4:31:68:23:60:2f:ca:e4:1d:58:c2:ba:c3: d4:ca:2e:47:39:ee:ed:e0:17:ee:9e:7f:12:e0:1a:a9:fd:e0: f8:27:f5:c5:f7:a1:b6:33:d1:6d:bb:a3:0e:b6:63:13:cc:ea: fa:90:32:e2:c5:2d:17:5a:f8:4b:3c:4c:6f:3d:ca:af:56:93: 8a:fc:c9:76:4d:d1:dc:d0:95:fa:bc:f3:50:15:cc:8f:cb:9f: e1:04:4b:96:fa:8c:2f:55:6c:84:3d:d7:7f:d8:e1:81:cf:54: 83:4a:8b:92:fa:dd:b6:1b:2d:0f:f2:da:93:26:2a:c6:81:97: 82:f6:f3:0b:14:a3:28:5e:b7:d6:f2:df:b3:17:49:70:a4:33: e6:da:8d:58:4a:f8:d8:7e:f3:09:76:f5:11:a7:ad:ed:5f:1e: 07:bb:1b:e9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEtDSaBUSbxhFXdGALk5HpGyDzSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMjkwMTUzMTBaFw0yNTAyMjcwMTU4MTBaMDMxMTAvBgNV BAMTKDJBODZCMzM5QzEzMjRGOTgxMzQ1MDNEREJFQUM2QTNGMEUxNjA4RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGf/rD2vpyYFy0utXCrt/k7daj sTmj9WUgUyLDGR6h0JLO+Q5JTwdHLqc+csmuCBGN20g7QwR9F6NH4n8kXm0uSVyp loCNvC2KJNHhwyLQ86bh8lm2ehCNHCld+FfkvbUu+j0YEGPWXNlh15Ml3zVzdJNM cZgFllecLgQ6ucAsMYlZa2ohokxDwJPLmfqbr+6wYOfOZ0KqJqjHsx43yrnXVM7j MYbybhgrpn+n9JQ45QHsq0JD7j00+oNiFHPEa4uBXkpK6wYQPjlyypSN1/9U+cN1 q59+J7OF68efhn2htsO1CmCrYEwtaqALJFhdt4un0BAa/25lAqtCeZ73/y1jAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUKoazOcEyT5gTRQPdvqxqPw4WCOswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MDczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRswDQYJKoZIhvcNAQELBQADggEBABxh r4C8hsiWSBdHlxma1E3xpof+JSY2/B17+6a9hyjqd86Ay1w8i6raVVvrIBIp+AQ4 FG1mMFjPV4IiogGzVRMveYL4Xt3oU9DosdYvXh6vHDFdjOpaCejG4WVZlFrUtDFo I2AvyuQdWMK6w9TKLkc57u3gF+6efxLgGqn94Pgn9cX3obYz0W27ow62YxPM6vqQ MuLFLRda+Es8TG89yq9Wk4r8yXZN0dzQlfq881AVzI/Ln+EES5b6jC9VbIQ913/Y 4YHPVINKi5L63bYbLQ/y2pMmKsaBl4L28wsUoyhet9by37MXSXCkM+bajVhK+Nh+ 8wl29RGnre1fHge7G+k= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org