$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199266.roa File: AS199266.roa (raw, json) Hash identifier: qcYEXHcT8M6KLV5fwH6DesXqMNFi7Llnge/QbAPTpYk= Subject key identifier: 88:20:82:2B:03:7C:2A:D8:50:5E:52:48:22:11:5F:FE:83:7A:96:72 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 652A845A314E3668E6BA943A0BDEF0668A70446E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199266.roa Signing time: Sun 05 Nov 2023 04:07:11 +0000 ROA not before: Sun 05 Nov 2023 04:02:11 +0000 ROA not after: Sun 03 Nov 2024 04:07:11 +0000 asID: 199266 IP address blocks: 2a0a:6040:8900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:2a:84:5a:31:4e:36:68:e6:ba:94:3a:0b:de:f0:66:8a:70:44:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:11 2023 GMT Not After : Nov 3 04:07:11 2024 GMT Subject: CN=8820822B037C2AD8505E524822115FFE837A9672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1b:35:d4:7e:87:55:ad:6d:41:f0:ac:6c:ea: 38:b7:59:9a:27:ed:6b:fb:fe:97:79:e5:57:b1:45: d6:aa:1a:e9:f1:97:5f:bd:2c:46:bd:55:6a:f8:85: bd:eb:5f:39:78:8e:f1:fb:79:44:85:2b:09:09:ee: a8:fb:81:98:ea:10:48:14:fc:8c:e8:6b:2c:da:70: 29:de:86:60:e0:73:52:ea:bd:c9:ab:d4:34:f0:d3: 35:16:27:16:95:5f:74:94:5e:f7:96:03:a0:c2:88: 3d:2f:2d:72:5f:2b:d7:73:55:97:df:b2:e4:3b:05: 77:94:14:75:08:c4:14:44:55:ff:94:04:e7:4c:75: f0:69:93:2f:7e:45:47:d2:67:93:8c:f1:55:ea:f3: ee:df:e5:24:be:93:00:9a:21:4e:b6:9a:ce:21:ec: ca:95:65:07:dd:58:0f:8a:ef:d2:9c:bf:a5:8a:02: 01:fb:9e:e5:9a:f3:ff:18:01:2a:fa:fa:c5:ad:cd: 6f:b2:41:2b:3d:58:12:cd:5a:e2:02:4c:e9:27:15: 41:a2:3a:67:0a:a0:64:96:1a:31:ca:3a:5a:64:89: 82:cc:83:73:72:a1:f2:10:ed:b6:ef:16:07:74:46: 97:a5:71:10:4d:6f:55:87:bd:76:2e:79:6b:68:a5: 4e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:20:82:2B:03:7C:2A:D8:50:5E:52:48:22:11:5F:FE:83:7A:96:72 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199266.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8900::/40 Signature Algorithm: sha256WithRSAEncryption c4:ff:58:e4:ad:e3:39:d7:99:ba:9b:f1:55:6c:f1:d3:8e:9e: 73:65:29:18:84:45:35:80:bd:e3:d6:36:dc:20:da:0c:bd:08: 1e:07:a6:54:90:e0:8c:f0:70:c6:fb:9a:e8:93:9c:b9:53:f5: 32:52:9f:07:76:c5:42:5f:ac:ac:64:90:6c:8a:fe:ce:99:44: 5f:a2:80:89:dd:69:d4:55:5a:ad:39:f6:76:f3:58:86:6c:f3: 69:58:6f:44:1b:21:73:86:96:34:5e:92:24:6b:55:05:0d:15: cf:6a:20:2e:c2:24:c7:56:be:9e:b5:a0:d0:42:c3:9c:af:cb: 77:b3:97:5b:f0:ba:8e:df:08:9f:0e:bf:51:16:8a:cd:3e:e7: d0:10:4e:a6:62:e1:2e:79:d9:c6:fd:9b:8b:fd:c9:c1:0f:e0: fe:1e:c7:d2:54:a2:3d:73:52:6e:99:1f:dc:3e:f1:48:70:f3: 00:dd:6c:b0:98:43:af:d9:03:8b:ac:22:25:1e:be:26:00:9a: 7b:9b:a0:7b:1d:4b:30:4f:0c:1c:e4:4e:04:b8:89:6f:5a:c3: 2c:f8:f7:76:b3:9b:30:db:f4:17:ff:75:9f:32:83:b4:64:c8: 2c:06:6f:6f:2b:1c:aa:0b:ee:91:50:54:bd:31:64:c0:4b:4f: 91:ef:ff:1c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZSqEWjFONmjmupQ6C97wZopwRG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTFaFw0yNDExMDMwNDA3MTFaMDMxMTAvBgNV BAMTKDg4MjA4MjJCMDM3QzJBRDg1MDVFNTI0ODIyMTE1RkZFODM3QTk2NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYGzXUfodVrW1B8Kxs6ji3WZon 7Wv7/pd55VexRdaqGunxl1+9LEa9VWr4hb3rXzl4jvH7eUSFKwkJ7qj7gZjqEEgU /IzoayzacCnehmDgc1Lqvcmr1DTw0zUWJxaVX3SUXveWA6DCiD0vLXJfK9dzVZff suQ7BXeUFHUIxBREVf+UBOdMdfBpky9+RUfSZ5OM8VXq8+7f5SS+kwCaIU62ms4h 7MqVZQfdWA+K79Kcv6WKAgH7nuWa8/8YASr6+sWtzW+yQSs9WBLNWuICTOknFUGi OmcKoGSWGjHKOlpkiYLMg3NyofIQ7bbvFgd0RpelcRBNb1WHvXYueWtopU6BAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiCCCKwN8KthQXlJIIhFf/oN6lnIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MjY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIkwDQYJKoZIhvcNAQELBQADggEBAMT/ WOSt4znXmbqb8VVs8dOOnnNlKRiERTWAvePWNtwg2gy9CB4HplSQ4IzwcMb7muiT nLlT9TJSnwd2xUJfrKxkkGyK/s6ZRF+igIndadRVWq059nbzWIZs82lYb0QbIXOG ljRekiRrVQUNFc9qIC7CJMdWvp61oNBCw5yvy3ezl1vwuo7fCJ8Ov1EWis0+59AQ TqZi4S552cb9m4v9ycEP4P4ex9JUoj1zUm6ZH9w+8Uhw8wDdbLCYQ6/ZA4usIiUe viYAmnuboHsdSzBPDBzkTgS4iW9awyz493azmzDb9Bf/dZ8yg7RkyCwGb28rHKoL 7pFQVL0xZMBLT5Hv/xw= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org