$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199079.roa File: AS199079.roa (raw, json) Hash identifier: +7EKtmRSj7AfLUMGYAm4F+FM4XOi2XiYLnuYpx5O5LA= Subject key identifier: 84:A8:36:3E:EA:4B:46:9D:BA:F2:71:CD:C6:97:C7:BF:68:21:42:DB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5AEC865DA87C70EF14436825B6E1C1ADEF3B5A2D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199079.roa Signing time: Thu 29 Feb 2024 01:58:10 +0000 ROA not before: Thu 29 Feb 2024 01:53:10 +0000 ROA not after: Thu 27 Feb 2025 01:58:10 +0000 asID: 199079 IP address blocks: 2a05:dfc1:1900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ec:86:5d:a8:7c:70:ef:14:43:68:25:b6:e1:c1:ad:ef:3b:5a:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 29 01:53:10 2024 GMT Not After : Feb 27 01:58:10 2025 GMT Subject: CN=84A8363EEA4B469DBAF271CDC697C7BF682142DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:38:1d:b9:0f:91:83:09:fc:23:56:2b:aa:69: 96:37:ea:ce:6b:9d:44:dd:4b:b3:2e:c5:dd:b6:ae: 4d:3d:d4:59:3f:7d:3f:0b:b6:5b:20:09:83:2e:e2: 28:42:e0:04:2c:3d:fd:16:b3:0f:30:0b:f9:be:ae: d3:9d:47:1b:3a:9e:2a:89:2a:1f:7e:ec:48:a5:ff: 06:22:e8:cd:56:ae:ae:6c:dc:8e:67:15:d7:46:11: ca:62:c7:c4:0d:04:33:99:1f:bc:36:60:b1:a1:25: d7:b9:aa:ac:28:5c:7e:fd:e9:31:fe:c8:41:80:14: e1:79:a1:08:86:c9:3a:f7:65:57:6d:6b:b0:0f:76: 74:ec:42:26:d7:44:94:e8:0d:b8:f6:9b:0a:ce:d8: 5b:80:47:f7:0e:e0:75:c2:fd:03:95:05:e6:5c:6e: 00:7d:ca:4e:ac:a7:6b:61:86:67:27:33:26:d5:76: 59:15:61:d2:7e:a2:5b:23:6a:ba:d8:56:f3:77:91: 46:61:76:28:02:7a:a4:81:66:31:b3:3b:c6:39:bf: 64:bd:72:08:6d:44:de:eb:39:60:95:88:ac:95:37: c2:50:0f:fb:4f:10:97:f5:5a:ef:33:a9:dd:98:d4: 35:a9:42:68:3c:db:fc:c6:b4:b7:10:25:41:1a:e1: a9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A8:36:3E:EA:4B:46:9D:BA:F2:71:CD:C6:97:C7:BF:68:21:42:DB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1900::/40 Signature Algorithm: sha256WithRSAEncryption 52:03:3d:98:cf:95:9c:22:69:70:45:bd:4e:ac:ed:33:63:90: 76:81:f5:07:19:f4:58:dd:7e:15:b4:d7:b3:44:56:58:45:99: e6:0d:c2:89:da:ae:cf:73:e3:91:7c:83:be:c9:9a:be:b2:4b: ea:2b:1c:5c:19:10:8e:bf:b9:bf:4c:2e:dc:e3:73:b6:7b:17: a4:48:7b:fa:44:ba:fa:7d:2f:92:5b:8d:ce:90:9d:5f:51:25: e7:19:a3:d8:0c:fd:a7:7a:8c:91:28:da:88:af:48:37:ee:2b: e5:47:34:5b:1a:fd:43:40:6b:f8:f9:5e:5f:38:50:f2:db:aa: 43:49:06:5d:6c:ec:e1:f4:c6:98:d8:fb:d8:03:dd:b9:9c:80: 82:97:db:1d:f8:28:34:d7:08:dc:af:ca:b0:7f:06:4b:61:cd: 1a:ca:68:be:d1:6e:28:da:e9:32:f2:3f:63:1a:f8:fa:18:4b: ba:32:5a:d7:4e:31:34:32:a7:cd:0f:0c:e5:4f:d6:31:5d:73: b5:80:f3:f9:9f:9c:92:aa:db:14:9b:00:1b:4a:5d:4b:b0:30: aa:1a:9d:46:ea:30:16:59:da:16:c6:ed:60:95:5e:b7:59:6c: 34:de:f4:3f:03:9e:56:10:67:3b:46:55:53:9f:c2:b0:69:1d: 39:da:27:a5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWuyGXah8cO8UQ2gltuHBre87Wi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMjkwMTUzMTBaFw0yNTAyMjcwMTU4MTBaMDMxMTAvBgNV BAMTKDg0QTgzNjNFRUE0QjQ2OURCQUYyNzFDREM2OTdDN0JGNjgyMTQyREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVOB25D5GDCfwjViuqaZY36s5r nUTdS7Muxd22rk091Fk/fT8LtlsgCYMu4ihC4AQsPf0Wsw8wC/m+rtOdRxs6niqJ Kh9+7Eil/wYi6M1Wrq5s3I5nFddGEcpix8QNBDOZH7w2YLGhJde5qqwoXH796TH+ yEGAFOF5oQiGyTr3ZVdta7APdnTsQibXRJToDbj2mwrO2FuAR/cO4HXC/QOVBeZc bgB9yk6sp2thhmcnMybVdlkVYdJ+olsjarrYVvN3kUZhdigCeqSBZjGzO8Y5v2S9 cghtRN7rOWCViKyVN8JQD/tPEJf1Wu8zqd2Y1DWpQmg82/zGtLcQJUEa4anlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhKg2PupLRp268nHNxpfHv2ghQtswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MDc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRkwDQYJKoZIhvcNAQELBQADggEBAFID PZjPlZwiaXBFvU6s7TNjkHaB9QcZ9FjdfhW017NEVlhFmeYNwonars9z45F8g77J mr6yS+orHFwZEI6/ub9MLtzjc7Z7F6RIe/pEuvp9L5Jbjc6QnV9RJecZo9gM/ad6 jJEo2oivSDfuK+VHNFsa/UNAa/j5Xl84UPLbqkNJBl1s7OH0xpjY+9gD3bmcgIKX 2x34KDTXCNyvyrB/BkthzRrKaL7Rbija6TLyP2Ma+PoYS7oyWtdOMTQyp80PDOVP 1jFdc7WA8/mfnJKq2xSbABtKXUuwMKoanUbqMBZZ2hbG7WCVXrdZbDTe9D8DnlYQ ZztGVVOfwrBpHTnaJ6U= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org