$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199344.roa File: AS199344.roa (raw, json) Hash identifier: QjRLa7e7ahv3Kuv+/HlyQ60KKGHEZDgpv/fuJlZCJJs= Subject key identifier: 42:DA:F4:ED:F4:0C:5C:7C:A8:95:E5:FA:37:39:BD:E3:EB:63:4B:69 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0A99CC8657A38B3DBAA358A86C2919724331EFB8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199344.roa Signing time: Sun 05 Nov 2023 04:06:59 +0000 ROA not before: Sun 05 Nov 2023 04:01:59 +0000 ROA not after: Sun 03 Nov 2024 04:06:59 +0000 asID: 199344 IP address blocks: 2a0a:6040:8600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:99:cc:86:57:a3:8b:3d:ba:a3:58:a8:6c:29:19:72:43:31:ef:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:59 2023 GMT Not After : Nov 3 04:06:59 2024 GMT Subject: CN=42DAF4EDF40C5C7CA895E5FA3739BDE3EB634B69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a6:c3:8e:5e:58:07:53:fe:da:cc:ba:db:33: 87:86:ea:2c:5e:66:ac:06:9d:13:97:4f:d3:85:3c: a8:ea:22:09:c3:2f:84:9d:f7:0b:2a:ea:5d:d7:de: 8d:cf:97:ff:32:f2:ee:25:c0:bd:e9:1d:ee:f3:bb: dc:4b:cb:5a:c9:ed:e1:a5:39:ee:f6:f9:84:6e:0f: 25:bb:f3:44:29:a0:4b:58:d7:f5:f2:cc:37:ce:d3: 7c:5c:16:9f:7b:e0:a9:c3:41:e4:33:dc:fc:b2:6f: 2d:9e:e3:3b:71:8d:75:72:6e:f5:47:48:f9:37:3e: 80:21:8d:0b:0c:55:9e:51:01:75:24:0c:b3:e4:2c: 3f:76:d8:17:bf:08:76:8b:d8:68:ba:8e:e8:07:1a: a0:fc:79:19:a4:b0:ba:9f:ab:01:9b:89:59:b3:7f: 2e:f4:b4:52:2b:b5:65:3a:65:4a:46:f9:85:dd:0f: 42:74:85:cc:a6:b3:f8:bb:85:0d:17:34:cf:7d:08: c0:eb:da:3f:18:ab:fb:ce:6d:c2:fe:5a:f7:63:e0: 06:4d:35:97:28:62:c5:80:fa:85:63:ba:ed:08:65: 03:8e:04:7a:60:67:a3:10:6e:38:8f:61:69:3a:3a: f8:ed:bd:12:dc:2f:2e:f0:1e:55:8c:fb:65:06:d0: aa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DA:F4:ED:F4:0C:5C:7C:A8:95:E5:FA:37:39:BD:E3:EB:63:4B:69 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199344.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8600::/40 Signature Algorithm: sha256WithRSAEncryption 20:b0:02:d1:a4:8b:fb:f5:93:5b:b1:5f:61:e1:64:1b:0a:37: 05:e7:4b:f8:a9:f1:d4:1e:70:b2:b8:60:09:44:ac:8d:78:76: a8:63:a6:d5:e6:fe:73:41:8b:21:4a:2c:82:70:e0:e1:1c:48: 5f:90:22:6a:19:57:e0:2f:1d:95:d1:9f:bc:54:ab:74:f2:e6: f5:dc:3c:33:57:28:98:99:9e:c7:d9:7e:cd:2e:67:08:50:5e: 85:d8:01:96:a4:fe:a1:1b:1f:5c:b5:38:d5:a6:32:97:14:62: 82:f7:de:ac:64:a2:3d:38:76:be:b4:65:2d:21:de:5f:ff:d9: ee:f4:0a:34:ef:51:00:24:9e:0d:47:42:4c:69:4c:ba:05:bd: 38:e5:4b:ae:a9:dd:e0:6b:e4:0e:81:c8:db:94:8e:00:44:a4: 45:a6:46:8b:13:81:a7:96:9d:42:26:dc:12:55:20:1e:f1:79: 23:c0:1b:98:9d:3b:4e:2f:d0:1c:b9:1d:f9:f6:e3:1c:d2:4c: fc:61:b7:b4:55:e6:95:7f:1b:37:9a:10:75:b1:cf:96:d1:05: b5:c0:9f:f3:26:b9:ca:8a:6b:bc:07:62:f4:03:2b:6d:e7:bf: 97:a9:73:fe:8b:86:75:34:44:55:4a:55:18:7d:08:36:10:e8: 69:cb:8e:14 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCpnMhlejiz26o1iobCkZckMx77gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNTlaFw0yNDExMDMwNDA2NTlaMDMxMTAvBgNV BAMTKDQyREFGNEVERjQwQzVDN0NBODk1RTVGQTM3MzlCREUzRUI2MzRCNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzpsOOXlgHU/7azLrbM4eG6ixe ZqwGnROXT9OFPKjqIgnDL4Sd9wsq6l3X3o3Pl/8y8u4lwL3pHe7zu9xLy1rJ7eGl Oe72+YRuDyW780QpoEtY1/XyzDfO03xcFp974KnDQeQz3Pyyby2e4ztxjXVybvVH SPk3PoAhjQsMVZ5RAXUkDLPkLD922Be/CHaL2Gi6jugHGqD8eRmksLqfqwGbiVmz fy70tFIrtWU6ZUpG+YXdD0J0hcyms/i7hQ0XNM99CMDr2j8Yq/vObcL+Wvdj4AZN NZcoYsWA+oVjuu0IZQOOBHpgZ6MQbjiPYWk6OvjtvRLcLy7wHlWM+2UG0KplAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQtr07fQMXHyoleX6Nzm94+tjS2kwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MzQ0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIYwDQYJKoZIhvcNAQELBQADggEBACCw AtGki/v1k1uxX2HhZBsKNwXnS/ip8dQecLK4YAlErI14dqhjptXm/nNBiyFKLIJw 4OEcSF+QImoZV+AvHZXRn7xUq3Ty5vXcPDNXKJiZnsfZfs0uZwhQXoXYAZak/qEb H1y1ONWmMpcUYoL33qxkoj04dr60ZS0h3l//2e70CjTvUQAkng1HQkxpTLoFvTjl S66p3eBr5A6ByNuUjgBEpEWmRosTgaeWnUIm3BJVIB7xeSPAG5idO04v0By5Hfn2 4xzSTPxht7RV5pV/GzeaEHWxz5bRBbXAn/MmucqKa7wHYvQDK23nv5epc/6LhnU0 RFVKVRh9CDYQ6GnLjhQ= -----END CERTIFICATE-----Generated at Tue May 21 05:34:01 2024 by rpki-client on console-ams.rpki-client.org