$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199344.roa File: AS199344.roa (raw, json) Hash identifier: iq1edS6+dp4JUcLLdTJO07hJ2xmXf0Oerh4DTPDd11c= Subject key identifier: CD:F3:38:76:22:B8:E2:0C:42:E4:EF:C6:29:9C:ED:8C:9F:5D:2F:39 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4029C1FC4ACE5BE76DC2E785C29FEF2C5C160551 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199344.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 199344 IP address blocks: 2a0a:6040:8600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:29:c1:fc:4a:ce:5b:e7:6d:c2:e7:85:c2:9f:ef:2c:5c:16:05:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=CDF3387622B8E20C42E4EFC6299CED8C9F5D2F39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8d:bc:ff:a5:4a:53:cd:d1:a7:f3:59:b1:c9: fa:d1:32:df:28:1d:f5:1b:0c:1c:44:4d:6c:0c:54: df:d7:bb:dc:13:47:31:a6:53:3f:80:c0:08:e6:25: f7:82:39:16:8c:c8:94:35:83:22:9a:2b:d8:92:58: 2c:df:53:5f:9d:cd:6d:29:60:8c:90:ec:b6:f8:b1: e2:b2:8b:e7:8a:9e:2a:1a:71:92:c5:9a:3e:16:40: 0a:58:c9:a8:2e:d9:3a:91:b5:25:9f:59:24:af:6f: eb:cf:ce:78:75:9d:84:e0:df:46:74:cf:7c:4e:92: f6:c4:84:82:5a:64:e1:d9:b8:06:bf:8d:7b:6e:0b: a8:88:be:8d:b2:b4:c8:13:81:ae:2e:61:27:c2:4e: 2d:16:77:b4:10:35:71:ce:29:9a:62:70:6a:40:d2: e5:93:7c:e5:af:92:a3:36:20:5f:b4:8b:9a:4e:4a: ba:3e:fc:de:93:ab:17:70:81:b0:85:a5:7d:f7:4f: cc:26:1c:e1:fe:b8:2d:a5:6b:32:31:35:33:9a:31: b2:a7:81:f5:e3:d7:3f:b2:78:ee:96:19:ad:8e:61: 75:b1:82:0d:e2:de:b3:ec:42:df:2f:dd:e0:2d:c1: 16:54:52:3c:94:c9:4e:9b:71:79:f8:02:02:1e:8b: 6b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F3:38:76:22:B8:E2:0C:42:E4:EF:C6:29:9C:ED:8C:9F:5D:2F:39 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199344.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8600::/40 Signature Algorithm: sha256WithRSAEncryption b0:e6:fd:83:55:77:0b:8d:15:cf:43:e4:6e:27:6f:80:71:8a: ff:13:50:dd:b8:67:01:34:e2:02:0d:f8:e2:cc:8d:58:8b:28: 11:e8:aa:d5:f5:3a:17:8d:5f:fa:3f:98:06:50:7c:a9:f4:2d: 07:98:c8:37:7e:6d:50:31:30:47:ae:0d:43:ab:a0:dd:55:6f: 27:07:de:49:10:e4:87:b9:4a:02:8d:6d:91:37:2b:81:ed:63: 1d:9a:58:2d:49:3b:44:83:2b:da:38:79:ab:60:a7:57:86:03: ca:c3:5f:d9:04:78:51:a3:6d:0e:48:63:23:01:22:d5:d8:82: 93:a6:af:15:7b:c6:b3:94:ef:ae:82:60:12:33:7e:eb:8d:38: 39:93:cf:a3:b9:9a:5e:ff:17:b8:03:98:c3:60:b5:9f:33:59: ad:f0:47:77:50:61:08:bd:63:e0:b8:8f:eb:ef:6f:92:66:ef: e1:b8:ab:d3:ac:c2:07:6a:55:2c:ac:f7:a2:f7:71:ff:95:13: 7d:30:40:32:f4:47:2b:20:62:f3:81:56:46:a3:29:4a:66:41: a5:c7:6a:6b:8e:5c:41:6f:8e:f2:fd:a1:c2:8d:60:bb:5a:19: df:d1:5e:27:a4:16:5f:41:0a:0b:7e:e0:2a:3a:d0:d8:48:48: 58:9d:bc:f7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQCnB/ErOW+dtwueFwp/vLFwWBVEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKENERjMzODc2MjJCOEUyMEM0MkU0RUZDNjI5OUNFRDhDOUY1RDJGMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNjbz/pUpTzdGn81mxyfrRMt8o HfUbDBxETWwMVN/Xu9wTRzGmUz+AwAjmJfeCORaMyJQ1gyKaK9iSWCzfU1+dzW0p YIyQ7Lb4seKyi+eKnioacZLFmj4WQApYyagu2TqRtSWfWSSvb+vPznh1nYTg30Z0 z3xOkvbEhIJaZOHZuAa/jXtuC6iIvo2ytMgTga4uYSfCTi0Wd7QQNXHOKZpicGpA 0uWTfOWvkqM2IF+0i5pOSro+/N6TqxdwgbCFpX33T8wmHOH+uC2lazIxNTOaMbKn gfXj1z+yeO6WGa2OYXWxgg3i3rPsQt8v3eAtwRZUUjyUyU6bcXn4AgIei2v9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUzfM4diK44gxC5O/GKZztjJ9dLzkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MzQ0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIYwDQYJKoZIhvcNAQELBQADggEBALDm /YNVdwuNFc9D5G4nb4Bxiv8TUN24ZwE04gIN+OLMjViLKBHoqtX1OheNX/o/mAZQ fKn0LQeYyDd+bVAxMEeuDUOroN1VbycH3kkQ5Ie5SgKNbZE3K4HtYx2aWC1JO0SD K9o4eatgp1eGA8rDX9kEeFGjbQ5IYyMBItXYgpOmrxV7xrOU766CYBIzfuuNODmT z6O5ml7/F7gDmMNgtZ8zWa3wR3dQYQi9Y+C4j+vvb5Jm7+G4q9OswgdqVSys96L3 cf+VE30wQDL0RysgYvOBVkajKUpmQaXHamuOXEFvjvL9ocKNYLtaGd/RXiekFl9B Cgt+4Co60NhISFidvPc= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org