$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199184.roa File: AS199184.roa (raw, json) Hash identifier: y1JUt7Mg06jeDZPWc8Yz8mvCKVxdldRaQS2z4hM00Pw= Subject key identifier: A4:0C:77:68:7E:D2:16:A8:9E:96:59:A0:81:28:53:EA:6D:8D:11:21 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6CB597914E33C1FF44F2846014219FF58E6AF728 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199184.roa Signing time: Sun 05 Nov 2023 04:07:09 +0000 ROA not before: Sun 05 Nov 2023 04:02:09 +0000 ROA not after: Sun 03 Nov 2024 04:07:09 +0000 asID: 199184 IP address blocks: 2a0a:6040:9d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:b5:97:91:4e:33:c1:ff:44:f2:84:60:14:21:9f:f5:8e:6a:f7:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:09 2023 GMT Not After : Nov 3 04:07:09 2024 GMT Subject: CN=A40C77687ED216A89E9659A0812853EA6D8D1121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4b:9c:2e:2d:2b:ff:23:5e:ff:6b:47:29:df: 16:42:38:18:c1:af:e8:24:8f:1a:97:8f:cf:fd:2a: 1b:a2:4b:a2:4f:7d:88:55:3b:3b:f9:2b:7a:a7:db: 74:3f:6e:51:68:f8:7a:7e:ac:99:6b:e7:88:f5:df: 76:ac:06:52:fb:8e:1f:cf:d3:a5:41:d5:e6:52:05: 65:22:93:a6:d0:8a:c6:38:ce:b9:25:b3:d7:be:cf: aa:1e:d5:21:67:87:ce:ae:86:da:34:92:e3:e0:fd: 0a:3b:f4:36:5f:03:8f:ac:3a:52:3d:d0:82:82:e2: 4f:d6:47:6d:08:a0:07:11:32:a8:22:10:21:02:04: 2a:ab:34:51:c1:a6:a9:fa:2e:61:47:dd:25:6a:2c: 0c:bd:3a:c7:b4:79:b1:3a:2a:87:e5:18:b3:79:52: 70:78:70:76:ac:46:a7:83:d5:f0:a4:51:d8:00:2a: f6:61:a1:c1:ea:9e:25:27:df:e5:d9:cd:2b:95:4e: 50:1e:e9:cc:f3:db:7d:08:57:bf:93:95:f4:85:6c: 82:d6:e2:21:77:ac:d9:df:1f:ef:7e:19:58:79:1f: 0e:6b:5f:22:e2:c5:43:4c:10:1a:3f:42:d0:77:5b: b8:ee:7f:f1:b8:a7:b7:0f:78:b4:a9:cd:d4:8a:0a: 6b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0C:77:68:7E:D2:16:A8:9E:96:59:A0:81:28:53:EA:6D:8D:11:21 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199184.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9d00::/40 Signature Algorithm: sha256WithRSAEncryption 2e:d1:92:34:76:32:df:98:71:a0:39:01:12:35:a7:50:2c:82: f8:c7:1e:1c:58:3a:70:60:26:dd:c6:26:86:b9:12:25:4c:2d: 03:59:39:7a:af:5b:21:86:18:1a:74:08:49:28:9b:9d:24:cb: e7:00:05:19:78:ec:85:64:59:d7:3e:ea:f7:f6:d1:84:1f:22: 27:1e:bf:3b:3d:17:d0:f1:1b:15:ad:44:af:d9:82:88:7d:c8: a2:f1:28:85:dc:a4:64:a8:0d:1d:7b:a4:c3:6b:ba:cf:07:1d: a4:10:a1:3d:1b:67:e9:c8:46:64:9f:32:9d:1a:60:03:c5:e8: ba:f8:90:b7:74:10:f5:63:a3:09:6f:fc:10:93:31:f2:2f:df: 6c:73:9f:fb:30:9a:7c:9f:bd:c1:c0:9b:f7:72:d1:06:08:90: 8e:ba:7a:b1:04:dc:25:22:d9:f3:97:12:5d:a2:96:b7:c2:f3: 85:af:e2:18:9d:fe:48:da:ff:a4:39:98:d1:44:82:a6:31:7f: bb:ac:08:41:2e:a2:67:f9:ce:34:e3:6b:c5:a0:8c:9f:4d:09: be:4d:1f:11:a1:f0:68:26:51:5d:d3:56:86:e7:f0:22:57:bd: 17:82:79:d1:b2:47:cf:1c:72:95:6c:8a:e3:37:44:e4:37:6c: f0:51:9b:35 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbLWXkU4zwf9E8oRgFCGf9Y5q9ygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDlaFw0yNDExMDMwNDA3MDlaMDMxMTAvBgNV BAMTKEE0MEM3NzY4N0VEMjE2QTg5RTk2NTlBMDgxMjg1M0VBNkQ4RDExMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMS5wuLSv/I17/a0cp3xZCOBjB r+gkjxqXj8/9KhuiS6JPfYhVOzv5K3qn23Q/blFo+Hp+rJlr54j133asBlL7jh/P 06VB1eZSBWUik6bQisY4zrkls9e+z6oe1SFnh86uhto0kuPg/Qo79DZfA4+sOlI9 0IKC4k/WR20IoAcRMqgiECECBCqrNFHBpqn6LmFH3SVqLAy9Ose0ebE6KoflGLN5 UnB4cHasRqeD1fCkUdgAKvZhocHqniUn3+XZzSuVTlAe6czz230IV7+TlfSFbILW 4iF3rNnfH+9+GVh5Hw5rXyLixUNMEBo/QtB3W7juf/G4p7cPeLSpzdSKCmstAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUpAx3aH7SFqiellmggShT6m2NESEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MTg0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQJ0wDQYJKoZIhvcNAQELBQADggEBAC7R kjR2Mt+YcaA5ARI1p1AsgvjHHhxYOnBgJt3GJoa5EiVMLQNZOXqvWyGGGBp0CEko m50ky+cABRl47IVkWdc+6vf20YQfIicevzs9F9DxGxWtRK/Zgoh9yKLxKIXcpGSo DR17pMNrus8HHaQQoT0bZ+nIRmSfMp0aYAPF6Lr4kLd0EPVjowlv/BCTMfIv32xz n/swmnyfvcHAm/dy0QYIkI66erEE3CUi2fOXEl2ilrfC84Wv4hid/kja/6Q5mNFE gqYxf7usCEEuomf5zjTja8WgjJ9NCb5NHxGh8GgmUV3TVobn8CJXvReCedGyR88c cpVsiuM3ROQ3bPBRmzU= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org