$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199079.roa File: AS199079.roa (raw, json) Hash identifier: +2aNci1uY2c3ClOqGUsMgI3mZwt/t54UgTEhg+MyKrw= Subject key identifier: 03:76:4B:57:08:D2:34:54:B3:0D:FC:04:FC:A1:45:5C:09:A0:3B:4A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 40822DC7B626AFDD0065A0B4B89D8178898FD67E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199079.roa Signing time: Thu 30 Jan 2025 02:45:44 +0000 ROA not before: Thu 30 Jan 2025 02:40:44 +0000 ROA not after: Thu 29 Jan 2026 02:45:44 +0000 asID: 199079 IP address blocks: 2a05:dfc1:1900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:82:2d:c7:b6:26:af:dd:00:65:a0:b4:b8:9d:81:78:89:8f:d6:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jan 30 02:40:44 2025 GMT Not After : Jan 29 02:45:44 2026 GMT Subject: CN=03764B5708D23454B30DFC04FCA1455C09A03B4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7e:93:7c:cf:de:f4:81:d6:d9:ca:b2:99:22: 6c:3d:03:d0:2e:54:41:82:ff:65:f4:5c:8f:f3:d5: a5:d1:df:80:ce:0d:d4:26:b4:fd:5f:1c:ca:b8:2a: 08:21:12:81:d6:e7:69:7c:9c:25:7d:9d:70:a3:c8: 54:ab:d1:07:4a:c3:9f:26:45:c0:dd:5c:79:22:ce: c8:b5:e4:03:1a:7f:91:41:eb:96:da:8f:95:8e:35: fd:d7:0d:9d:b5:ac:90:71:eb:18:04:a4:7d:e8:fc: 2c:a6:96:eb:1a:b9:d9:3b:67:fb:50:02:77:df:fa: 5f:4f:07:26:58:1a:ad:96:82:e0:3a:b2:c1:ad:f4: ba:d2:86:8a:5d:9a:12:93:91:ab:dc:17:d0:f3:0a: 9f:67:18:1f:87:53:90:09:b2:87:66:a3:62:ba:e2: 73:86:9d:f9:ac:8f:a6:d7:96:f5:65:fa:db:9e:22: e9:7b:65:ed:1e:2c:6a:80:0a:a2:91:58:75:89:48: 4d:e6:80:ec:a7:01:4f:75:fc:e0:52:e2:09:d9:fe: 80:89:99:c0:0a:f3:5c:7d:45:0d:e1:42:d2:5d:4e: f3:76:a7:93:e2:67:f3:72:b6:1b:64:cf:19:b0:b4: 48:12:c1:75:95:bd:2e:8a:95:6f:a4:5d:3f:59:06: c9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:76:4B:57:08:D2:34:54:B3:0D:FC:04:FC:A1:45:5C:09:A0:3B:4A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1900::/40 Signature Algorithm: sha256WithRSAEncryption 04:d4:b8:03:e5:70:18:a5:3d:11:06:7c:c6:24:5d:5f:3e:fe: fe:bd:8b:40:14:ac:28:f7:82:ba:d8:a5:36:84:0e:c2:f6:fe: 13:9d:c5:57:4a:00:ed:2a:85:98:76:33:f7:06:48:14:11:d9: 28:6e:5d:41:f2:9a:e3:7f:c2:ad:ae:72:32:e3:95:fa:8b:fe: eb:8b:08:99:08:51:c2:f6:c7:27:98:b2:b1:e5:06:67:93:30: 7c:e9:91:ed:0a:db:ae:5e:ab:6c:32:68:99:28:2a:73:f4:6f: 1b:d8:b9:e5:df:87:bd:61:8f:91:13:26:cd:eb:ac:b5:ae:c5: 24:d7:be:5b:c4:0d:88:ff:97:a0:1b:bf:b1:86:0f:e8:de:6a: 31:af:d1:33:ac:a8:8d:04:4a:a2:65:f1:cb:df:66:dd:3d:0e: 82:69:e4:24:02:2f:a3:d5:a9:4d:9d:69:d4:9c:07:2a:84:7a: 6e:38:b2:0d:b1:8c:f9:87:15:5f:47:3f:7a:e0:24:95:77:cd: 1e:22:01:82:8a:56:05:d9:ee:76:0c:ce:e3:c7:20:d3:2e:67: 10:21:9b:26:65:a2:41:31:9c:24:4c:af:bc:c3:69:f4:95:d4: 39:a9:fb:ba:fc:8b:95:17:73:77:1c:c5:6e:15:77:67:aa:47: a1:c4:af:75 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQIItx7Ymr90AZaC0uJ2BeImP1n4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAxMzAwMjQwNDRaFw0yNjAxMjkwMjQ1NDRaMDMxMTAvBgNV BAMTKDAzNzY0QjU3MDhEMjM0NTRCMzBERkMwNEZDQTE0NTVDMDlBMDNCNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRfpN8z970gdbZyrKZImw9A9Au VEGC/2X0XI/z1aXR34DODdQmtP1fHMq4KgghEoHW52l8nCV9nXCjyFSr0QdKw58m RcDdXHkizsi15AMaf5FB65baj5WONf3XDZ21rJBx6xgEpH3o/Cymlusaudk7Z/tQ Anff+l9PByZYGq2WguA6ssGt9LrShopdmhKTkavcF9DzCp9nGB+HU5AJsodmo2K6 4nOGnfmsj6bXlvVl+tueIul7Ze0eLGqACqKRWHWJSE3mgOynAU91/OBS4gnZ/oCJ mcAK81x9RQ3hQtJdTvN2p5PiZ/NythtkzxmwtEgSwXWVvS6KlW+kXT9ZBskNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUA3ZLVwjSNFSzDfwE/KFFXAmgO0owHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MDc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRkwDQYJKoZIhvcNAQELBQADggEBAATU uAPlcBilPREGfMYkXV8+/v69i0AUrCj3grrYpTaEDsL2/hOdxVdKAO0qhZh2M/cG SBQR2ShuXUHymuN/wq2ucjLjlfqL/uuLCJkIUcL2xyeYsrHlBmeTMHzpke0K265e q2wyaJkoKnP0bxvYueXfh71hj5ETJs3rrLWuxSTXvlvEDYj/l6Abv7GGD+jeajGv 0TOsqI0ESqJl8cvfZt09DoJp5CQCL6PVqU2dadScByqEem44sg2xjPmHFV9HP3rg JJV3zR4iAYKKVgXZ7nYMzuPHINMuZxAhmyZlokExnCRMr7zDafSV1Dmp+7r8i5UX c3ccxW4Vd2eqR6HEr3U= -----END CERTIFICATE-----Generated at Fri Apr 4 17:01:00 2025 by rpki-client