$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199097.roa File: AS199097.roa (raw, json) Hash identifier: XoYO3HJVqcQgsmvq8xA+Q9qN5ZWj/SaZ3HpqS14s5pU= Subject key identifier: A8:32:34:69:8E:C7:9F:3C:0C:BC:25:CA:AA:13:E1:5D:BA:C7:9E:F1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4738F8A059D9DD69868F9A689C36221E73FF6D10 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199097.roa Signing time: Wed 28 Feb 2024 13:58:08 +0000 ROA not before: Wed 28 Feb 2024 13:53:08 +0000 ROA not after: Wed 26 Feb 2025 13:58:08 +0000 asID: 199097 IP address blocks: 2a05:dfc1:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:38:f8:a0:59:d9:dd:69:86:8f:9a:68:9c:36:22:1e:73:ff:6d:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 28 13:53:08 2024 GMT Not After : Feb 26 13:58:08 2025 GMT Subject: CN=A83234698EC79F3C0CBC25CAAA13E15DBAC79EF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:66:0c:97:e2:95:df:7c:c6:8d:22:23:89:dc: 63:65:d3:40:ec:27:63:ca:bc:b1:5b:03:78:66:3a: a9:3d:5f:9d:8c:84:09:3b:e2:03:9a:e4:f1:6f:9c: 1e:fe:b0:36:10:11:18:db:6f:68:de:ba:d7:1b:ba: d8:b0:5e:53:27:3e:32:03:4b:4d:ee:47:52:c3:4b: 50:25:5e:b1:c9:07:50:af:bd:1b:96:8f:04:70:b7: 1c:3d:54:91:b9:12:be:4d:77:89:ab:a8:58:b8:b7: 40:ed:39:e2:af:31:af:f3:2d:59:50:30:8b:42:2d: 97:65:b2:de:73:95:5f:29:1a:6c:30:b4:cb:2b:2e: 94:64:65:ef:de:97:13:20:ab:53:18:9d:34:70:73: c8:50:34:c4:5b:7e:6e:4a:56:80:46:42:d5:56:9a: e0:a8:88:5b:0e:8c:98:90:2d:15:74:03:4a:59:bd: 0a:91:44:25:85:f3:79:5f:f6:c5:1c:13:6b:e6:67: f5:bc:32:fc:84:f0:b1:a0:7a:12:64:17:00:c2:5a: 7b:9b:76:86:33:97:1f:97:39:b4:08:7c:60:30:5b: 3d:6c:0a:3c:f9:bc:c7:cb:a0:fe:f6:a8:b6:f6:c6: ca:b3:4d:6e:70:4e:d5:2b:0b:64:4c:ee:34:74:64: 8c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:32:34:69:8E:C7:9F:3C:0C:BC:25:CA:AA:13:E1:5D:BA:C7:9E:F1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199097.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1100::/40 Signature Algorithm: sha256WithRSAEncryption 93:91:1d:ea:11:8e:71:c5:ca:b5:b8:10:02:a5:91:7d:20:33: 1f:2d:c4:dd:ea:fe:e9:95:a9:41:7f:e6:f2:79:b9:36:eb:f0: c3:c8:a6:5b:89:03:ff:78:15:06:e9:38:33:6a:d3:a4:24:bb: fa:e9:90:ad:b6:34:d2:07:b2:62:06:97:0f:7f:a0:14:86:ac: cc:6f:a4:97:c1:43:bb:36:f7:4e:f7:af:fa:1c:6a:b3:3c:68: f8:aa:32:f5:7c:05:e1:30:7d:22:b7:5f:41:7b:f6:f5:b5:0f: ce:50:19:62:a7:91:e6:d6:88:73:45:e9:2d:26:d5:e9:ec:98: c5:fc:6c:bf:4a:93:f2:3b:e2:bf:34:25:50:95:a9:4d:07:59: ec:20:7b:11:c5:f5:fb:99:2e:48:10:da:dc:cc:0a:63:33:72: c3:70:44:33:67:5b:3b:03:69:0b:01:db:a9:f1:87:92:82:80: 6e:c8:c1:04:47:4f:15:9e:f8:5e:7d:40:b4:cc:28:44:fa:17: b4:f9:e9:4d:30:c9:44:fc:14:0d:ba:8e:59:bf:05:95:70:45: fe:f9:e3:37:4f:7a:07:89:60:b7:d0:6d:ce:60:9d:88:48:40: 38:40:00:0d:15:df:b2:77:b1:f6:2f:b7:de:01:4c:c3:47:1c: e8:cd:b8:93 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURzj4oFnZ3WmGj5ponDYiHnP/bRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAyMjgxMzUzMDhaFw0yNTAyMjYxMzU4MDhaMDMxMTAvBgNV BAMTKEE4MzIzNDY5OEVDNzlGM0MwQ0JDMjVDQUFBMTNFMTVEQkFDNzlFRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsZgyX4pXffMaNIiOJ3GNl00Ds J2PKvLFbA3hmOqk9X52MhAk74gOa5PFvnB7+sDYQERjbb2jeutcbutiwXlMnPjID S03uR1LDS1AlXrHJB1CvvRuWjwRwtxw9VJG5Er5Nd4mrqFi4t0DtOeKvMa/zLVlQ MItCLZdlst5zlV8pGmwwtMsrLpRkZe/elxMgq1MYnTRwc8hQNMRbfm5KVoBGQtVW muCoiFsOjJiQLRV0A0pZvQqRRCWF83lf9sUcE2vmZ/W8MvyE8LGgehJkFwDCWnub doYzlx+XObQIfGAwWz1sCjz5vMfLoP72qLb2xsqzTW5wTtUrC2RM7jR0ZIxVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUqDI0aY7HnzwMvCXKqhPhXbrHnvEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MDk3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwREwDQYJKoZIhvcNAQELBQADggEBAJOR HeoRjnHFyrW4EAKlkX0gMx8txN3q/umVqUF/5vJ5uTbr8MPIpluJA/94FQbpODNq 06Qku/rpkK22NNIHsmIGlw9/oBSGrMxvpJfBQ7s29073r/ocarM8aPiqMvV8BeEw fSK3X0F79vW1D85QGWKnkebWiHNF6S0m1ensmMX8bL9Kk/I74r80JVCVqU0HWewg exHF9fuZLkgQ2tzMCmMzcsNwRDNnWzsDaQsB26nxh5KCgG7IwQRHTxWe+F59QLTM KET6F7T56U0wyUT8FA26jlm/BZVwRf754zdPegeJYLfQbc5gnYhIQDhAAA0V37J3 sfYvt94BTMNHHOjNuJM= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org