$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199184.roa File: AS199184.roa (raw, json) Hash identifier: glKayuuyfhIxP17Vse9Hq2tfAIZ1Qwlc8Lp3baL7lSg= Subject key identifier: 8A:79:6D:29:48:24:E1:22:19:4C:2D:25:A7:47:DD:7D:71:57:75:8B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 22C1F9011F7F6669750FC40961227DD83D2E3C13 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199184.roa Signing time: Sun 06 Oct 2024 04:45:06 +0000 ROA not before: Sun 06 Oct 2024 04:40:06 +0000 ROA not after: Sun 05 Oct 2025 04:45:06 +0000 asID: 199184 IP address blocks: 2a0a:6040:9d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:c1:f9:01:1f:7f:66:69:75:0f:c4:09:61:22:7d:d8:3d:2e:3c:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:06 2024 GMT Not After : Oct 5 04:45:06 2025 GMT Subject: CN=8A796D294824E122194C2D25A747DD7D7157758B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:41:ad:a7:e3:93:eb:49:2a:3b:e7:be:51:33: 61:aa:15:26:ed:6c:5c:83:7c:2f:76:8a:fa:9e:cc: cc:19:66:b9:37:0b:82:cf:7b:be:51:f3:5f:9f:86: 3d:cf:9a:25:17:0b:7b:b2:00:a9:a3:85:80:c3:41: de:9c:5d:a9:63:5f:10:14:29:b3:de:4b:bc:a9:05: 92:87:5e:6f:a0:f0:34:df:3c:c3:10:58:03:8c:bb: 7f:25:db:52:18:ed:0e:e8:ef:eb:ff:c4:68:e3:56: 70:58:b9:0a:0e:26:8a:8c:2e:1f:a8:e3:a9:a8:5b: 4b:2c:c7:a9:75:80:b7:b7:b6:07:f2:36:6f:48:0d: bc:0c:fa:88:c6:5c:13:ac:f1:57:b5:6c:06:7a:ee: 1d:9b:ce:36:2b:69:c8:3f:59:bd:a9:be:57:52:52: 87:67:cf:da:1a:13:d7:bf:c5:50:60:d6:b4:d1:0c: 90:61:4a:e4:5d:50:c1:4f:39:d3:13:4e:a0:50:4d: e3:c4:01:69:eb:80:a5:31:a6:9d:e0:d0:50:12:06: d5:39:2c:d9:d4:aa:ff:70:f0:66:0f:32:e7:80:17: 24:44:2d:75:0d:30:d2:00:39:9e:f2:ac:7f:bd:87: 77:fa:d6:eb:5d:86:15:73:73:36:0b:8e:75:4a:4b: 8d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:79:6D:29:48:24:E1:22:19:4C:2D:25:A7:47:DD:7D:71:57:75:8B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199184.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9d00::/40 Signature Algorithm: sha256WithRSAEncryption 51:70:f0:52:f1:b6:a9:b3:bb:ba:b0:2f:dd:6b:51:1f:e3:16: 98:2a:80:f5:2b:7f:3d:72:53:29:4b:b7:3d:87:ee:44:00:58: b6:96:25:65:07:39:5f:22:68:4a:c6:3a:84:98:07:c2:0d:3f: 8b:c2:99:57:58:60:06:24:73:f3:b9:37:41:37:48:e4:15:c0: 29:0c:d8:ec:6a:04:25:bd:d4:80:7c:7a:b7:bc:d5:9b:bb:13: 2a:a3:67:8f:63:e9:81:af:9a:5c:9d:a2:56:e2:bf:e7:3f:b3: a9:5d:77:aa:88:21:75:11:53:be:0e:ca:5c:d3:8c:54:cc:d0: bb:05:ac:f6:7a:64:dc:8d:8b:6d:a4:e6:7f:84:df:22:5c:1e: e8:31:28:23:dd:c7:e3:85:b6:dd:eb:f3:e8:2e:32:de:fa:75: 63:7e:44:f5:ee:e6:4a:97:27:db:9e:d3:37:57:a6:f9:04:30: 70:91:38:30:34:56:f3:e6:bf:87:92:38:af:eb:f6:d5:e4:38: f7:93:dc:e9:c2:28:c9:28:7b:2d:82:4b:bb:9a:65:d4:97:13: d8:d8:d4:9d:2d:9a:cb:9f:af:39:3c:fc:aa:01:94:28:f4:b9: c4:e1:57:4c:68:c7:4d:0e:b2:38:d1:b9:63:5a:34:e1:fb:3d: 16:66:1d:5e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIsH5AR9/Zml1D8QJYSJ92D0uPBMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDZaFw0yNTEwMDUwNDQ1MDZaMDMxMTAvBgNV BAMTKDhBNzk2RDI5NDgyNEUxMjIxOTRDMkQyNUE3NDdERDdENzE1Nzc1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsQa2n45PrSSo7575RM2GqFSbt bFyDfC92ivqezMwZZrk3C4LPe75R81+fhj3PmiUXC3uyAKmjhYDDQd6cXaljXxAU KbPeS7ypBZKHXm+g8DTfPMMQWAOMu38l21IY7Q7o7+v/xGjjVnBYuQoOJoqMLh+o 46moW0ssx6l1gLe3tgfyNm9IDbwM+ojGXBOs8Ve1bAZ67h2bzjYracg/Wb2pvldS Uodnz9oaE9e/xVBg1rTRDJBhSuRdUMFPOdMTTqBQTePEAWnrgKUxpp3g0FASBtU5 LNnUqv9w8GYPMueAFyRELXUNMNIAOZ7yrH+9h3f61utdhhVzczYLjnVKS42vAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUinltKUgk4SIZTC0lp0fdfXFXdYswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MTg0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQJ0wDQYJKoZIhvcNAQELBQADggEBAFFw 8FLxtqmzu7qwL91rUR/jFpgqgPUrfz1yUylLtz2H7kQAWLaWJWUHOV8iaErGOoSY B8INP4vCmVdYYAYkc/O5N0E3SOQVwCkM2OxqBCW91IB8ere81Zu7EyqjZ49j6YGv mlydolbiv+c/s6ldd6qIIXURU74OylzTjFTM0LsFrPZ6ZNyNi22k5n+E3yJcHugx KCPdx+OFtt3r8+guMt76dWN+RPXu5kqXJ9ue0zdXpvkEMHCRODA0VvPmv4eSOK/r 9tXkOPeT3OnCKMkoey2CS7uaZdSXE9jY1J0tmsufrzk8/KoBlCj0ucThV0xox00O sjjRuWNaNOH7PRZmHV4= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org