$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199094.roa File: AS199094.roa (raw, json) Hash identifier: KZttIa+aiM/82rVAc08+k1C4BsyTaRbJThterC5NTzk= Subject key identifier: 30:F4:E0:AC:EB:0D:B0:44:E0:6B:1C:17:A0:2B:62:2E:00:65:A3:35 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 51FDACAA6EBB7A55AD28AA4FB94B18DCC5D560E3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199094.roa Signing time: Wed 28 Feb 2024 14:58:09 +0000 ROA not before: Wed 28 Feb 2024 14:53:09 +0000 ROA not after: Wed 26 Feb 2025 14:58:09 +0000 asID: 199094 IP address blocks: 2a05:dfc1:1800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:fd:ac:aa:6e:bb:7a:55:ad:28:aa:4f:b9:4b:18:dc:c5:d5:60:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 28 14:53:09 2024 GMT Not After : Feb 26 14:58:09 2025 GMT Subject: CN=30F4E0ACEB0DB044E06B1C17A02B622E0065A335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b1:44:24:79:0b:66:67:4f:c9:d3:8b:10:2a: a8:2b:f3:a4:57:9e:af:ae:6f:58:5f:5a:86:1b:08: 00:36:91:08:3b:1f:08:c4:19:e1:a4:9a:d3:eb:ac: 2b:10:a3:09:44:bd:7d:90:04:d8:4f:78:92:a6:63: ef:c0:4d:c9:e6:19:6b:85:9c:ab:b9:29:ea:4f:4c: 75:5d:2b:07:6f:68:20:b3:39:a2:e3:dd:25:fa:6a: 6d:da:30:8f:06:1d:74:bc:9d:9f:47:36:d8:fe:2a: 62:b6:65:e2:a0:b1:8e:79:9f:95:64:0a:d6:ed:dc: 74:5f:e5:94:12:df:6c:98:e8:6b:ae:c7:fe:f7:d2: e3:9f:5e:3e:22:56:3f:5b:a4:20:1e:99:c3:ab:ea: dc:17:6f:b2:4f:8d:07:74:c1:62:c6:e8:4c:b9:cd: 10:72:9e:93:be:20:2b:c4:a3:5d:43:33:78:dc:7b: d8:6c:5a:84:27:c4:15:d1:34:a6:27:37:5b:4c:6c: 65:c7:4e:68:c6:f0:54:de:a9:c5:c4:fa:62:71:7c: 3a:2a:b0:18:46:4e:71:bb:57:9f:aa:f0:8a:7b:b3: f3:35:5a:68:a6:d4:a8:3f:8d:8f:1e:7e:25:8a:d4: 08:45:58:b6:db:aa:0e:30:09:4a:33:c3:d8:5a:7f: 98:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F4:E0:AC:EB:0D:B0:44:E0:6B:1C:17:A0:2B:62:2E:00:65:A3:35 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199094.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1800::/40 Signature Algorithm: sha256WithRSAEncryption 69:9d:02:83:ed:77:74:e7:9a:02:c1:1d:d5:5a:73:c8:3a:65: b4:68:21:ca:74:b8:77:b5:6f:2b:fa:63:e2:63:17:b0:4d:bb: 99:37:d1:13:e4:76:de:45:65:50:99:7e:8d:07:ac:0a:d9:41: cc:e9:23:ab:5d:02:af:5c:ec:bf:74:72:6f:36:ab:60:b2:3a: f5:e1:e2:76:a0:2f:c0:5f:51:6e:cc:1d:e0:c3:2f:d9:34:38: 0d:46:1b:5d:78:28:5d:80:77:79:18:e1:4f:9a:5c:8a:52:4b: c9:05:c0:b5:a5:eb:df:95:60:ad:ab:31:e1:d2:76:57:4a:78: 0f:d8:a0:8d:05:b6:b6:01:91:c2:b4:d2:db:d5:b8:9a:cf:91: ca:6a:19:aa:a7:4a:98:a2:d8:d2:10:66:a2:9b:e9:8c:44:67: 21:8a:a4:bc:82:cf:78:21:b3:a7:69:1e:f2:a9:7a:79:f5:f8: c0:d5:bd:2e:8a:95:34:3d:05:b3:34:8b:39:49:b4:d5:1d:69: 13:4d:1c:6d:30:35:72:c2:5c:d8:de:d6:c3:ce:cd:97:a4:4b: 2b:87:5a:ab:41:46:2f:25:81:b9:aa:0a:1f:22:62:a7:50:c4: 95:aa:f5:7b:8a:6a:a1:ae:4c:ad:58:1d:4b:67:d8:28:b1:89: bb:d3:ab:cb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUf2sqm67elWtKKpPuUsY3MXVYOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMjgxNDUzMDlaFw0yNTAyMjYxNDU4MDlaMDMxMTAvBgNV BAMTKDMwRjRFMEFDRUIwREIwNDRFMDZCMUMxN0EwMkI2MjJFMDA2NUEzMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2sUQkeQtmZ0/J04sQKqgr86RX nq+ub1hfWoYbCAA2kQg7HwjEGeGkmtPrrCsQowlEvX2QBNhPeJKmY+/ATcnmGWuF nKu5KepPTHVdKwdvaCCzOaLj3SX6am3aMI8GHXS8nZ9HNtj+KmK2ZeKgsY55n5Vk Ctbt3HRf5ZQS32yY6Guux/730uOfXj4iVj9bpCAemcOr6twXb7JPjQd0wWLG6Ey5 zRBynpO+ICvEo11DM3jce9hsWoQnxBXRNKYnN1tMbGXHTmjG8FTeqcXE+mJxfDoq sBhGTnG7V5+q8Ip7s/M1Wmim1Kg/jY8efiWK1AhFWLbbqg4wCUozw9haf5htAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUMPTgrOsNsETgaxwXoCtiLgBlozUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MDk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRgwDQYJKoZIhvcNAQELBQADggEBAGmd AoPtd3TnmgLBHdVac8g6ZbRoIcp0uHe1byv6Y+JjF7BNu5k30RPkdt5FZVCZfo0H rArZQczpI6tdAq9c7L90cm82q2CyOvXh4nagL8BfUW7MHeDDL9k0OA1GG114KF2A d3kY4U+aXIpSS8kFwLWl69+VYK2rMeHSdldKeA/YoI0FtrYBkcK00tvVuJrPkcpq GaqnSpii2NIQZqKb6YxEZyGKpLyCz3ghs6dpHvKpenn1+MDVvS6KlTQ9BbM0izlJ tNUdaRNNHG0wNXLCXNje1sPOzZekSyuHWqtBRi8lgbmqCh8iYqdQxJWq9XuKaqGu TK1YHUtn2CixibvTq8s= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org