$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199347.roa File: AS199347.roa (raw, json) Hash identifier: hG3WCuUm4xJgH254zB+rp5sVPKQ5GqFAmrpmIqjJpC8= Subject key identifier: 87:34:0C:80:05:DC:E6:FF:ED:0F:73:98:B0:B0:05:2F:BF:1F:5D:A0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 043354C5E063742887B01CCB9F0189CE9435F231 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199347.roa Signing time: Sun 05 Nov 2023 04:07:16 +0000 ROA not before: Sun 05 Nov 2023 04:02:16 +0000 ROA not after: Sun 03 Nov 2024 04:07:16 +0000 asID: 199347 IP address blocks: 2a0a:6040:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:33:54:c5:e0:63:74:28:87:b0:1c:cb:9f:01:89:ce:94:35:f2:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:16 2023 GMT Not After : Nov 3 04:07:16 2024 GMT Subject: CN=87340C8005DCE6FFED0F7398B0B0052FBF1F5DA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:47:90:d0:1d:60:72:93:ee:86:50:ba:2b:37: 58:8e:96:1e:71:8b:5b:5b:ec:f2:6e:15:7d:91:ce: 7a:69:43:ae:be:03:70:15:be:24:dc:99:c7:0c:f3: ff:4a:87:d2:d1:da:b4:a5:75:7a:31:f8:ee:2f:d8: 43:5a:20:6c:e2:82:78:5e:69:32:61:64:bd:f7:54: 57:3d:4b:b0:fb:fc:b3:18:3e:1c:7c:51:2d:86:00: dc:45:0a:db:3f:76:6b:f8:c7:db:60:fc:28:bf:b0: bd:97:b0:4d:03:ab:58:43:fc:c6:60:f5:d7:fe:59: d5:d4:ca:d0:12:26:1d:5a:77:99:80:76:ed:a9:5a: bb:ac:43:a0:a8:39:ec:91:39:12:58:07:ba:73:7f: b3:f8:0f:23:99:51:3c:4c:70:85:dc:fa:dd:d2:dc: 6b:bb:72:3b:b9:82:f3:98:db:8b:8d:6f:7c:72:62: 93:76:7a:d3:3b:9f:fb:14:52:d4:19:e5:7d:ee:4c: 69:56:54:79:19:69:d7:6b:ee:5e:6e:2c:c8:be:67: b9:ce:66:2e:dc:2b:94:2c:c7:57:81:b3:c8:1f:2d: b6:4e:ab:ad:ce:6f:47:06:2f:93:22:a6:04:14:58: 3b:0a:33:b3:e1:bc:c5:f1:4d:b7:53:1d:67:35:d1: d4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:34:0C:80:05:DC:E6:FF:ED:0F:73:98:B0:B0:05:2F:BF:1F:5D:A0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199347.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4000::/40 Signature Algorithm: sha256WithRSAEncryption 0f:bd:83:65:34:ef:16:16:08:05:0c:3a:79:ba:de:cd:f1:22: 24:a6:9a:fc:a5:44:86:c4:8e:d2:85:23:d9:37:6c:30:d2:db: bb:7f:01:48:8b:db:b7:7c:ec:1f:4f:65:46:4d:c7:68:48:17: e7:db:91:2a:36:45:39:f5:5a:2f:ac:80:7a:ed:39:88:90:02: ca:00:c2:67:f1:75:ef:79:4e:fc:cd:c0:3f:e9:43:a7:51:7e: cc:11:92:f7:9d:70:36:7c:80:33:c3:69:97:53:d2:58:36:bb: ae:19:cf:4a:ca:39:88:18:5b:25:d1:b2:1c:d0:fe:8b:a3:db: 7b:4a:74:ca:5d:db:ed:ee:84:9b:bc:db:01:e0:7c:a7:31:2d: 98:c5:e9:18:4a:0a:1c:97:5a:73:52:6d:70:82:b3:61:2f:db: ee:51:12:87:b6:06:89:ea:3c:a7:ae:2a:f0:ee:b6:43:58:00: ad:2b:1b:90:84:03:36:3b:83:82:62:13:6b:97:93:e9:d6:8b: 40:94:ab:d8:74:65:e0:b1:7c:66:45:51:f6:c5:80:c5:8f:e3: 6a:99:cf:2d:1a:06:e1:0e:38:7e:97:d5:1c:05:a7:27:e0:0d: 52:85:95:cc:eb:a6:58:45:d6:3e:eb:45:08:f2:43:01:c2:62: da:07:17:bb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBDNUxeBjdCiHsBzLnwGJzpQ18jEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTZaFw0yNDExMDMwNDA3MTZaMDMxMTAvBgNV BAMTKDg3MzQwQzgwMDVEQ0U2RkZFRDBGNzM5OEIwQjAwNTJGQkYxRjVEQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8R5DQHWByk+6GULorN1iOlh5x i1tb7PJuFX2RznppQ66+A3AVviTcmccM8/9Kh9LR2rSldXox+O4v2ENaIGzignhe aTJhZL33VFc9S7D7/LMYPhx8US2GANxFCts/dmv4x9tg/Ci/sL2XsE0Dq1hD/MZg 9df+WdXUytASJh1ad5mAdu2pWrusQ6CoOeyRORJYB7pzf7P4DyOZUTxMcIXc+t3S 3Gu7cju5gvOY24uNb3xyYpN2etM7n/sUUtQZ5X3uTGlWVHkZaddr7l5uLMi+Z7nO Zi7cK5Qsx1eBs8gfLbZOq63Ob0cGL5MipgQUWDsKM7PhvMXxTbdTHWc10dSrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhzQMgAXc5v/tD3OYsLAFL78fXaAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MzQ3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEAwDQYJKoZIhvcNAQELBQADggEBAA+9 g2U07xYWCAUMOnm63s3xIiSmmvylRIbEjtKFI9k3bDDS27t/AUiL27d87B9PZUZN x2hIF+fbkSo2RTn1Wi+sgHrtOYiQAsoAwmfxde95TvzNwD/pQ6dRfswRkvedcDZ8 gDPDaZdT0lg2u64Zz0rKOYgYWyXRshzQ/ouj23tKdMpd2+3uhJu82wHgfKcxLZjF 6RhKChyXWnNSbXCCs2Ev2+5REoe2BonqPKeuKvDutkNYAK0rG5CEAzY7g4JiE2uX k+nWi0CUq9h0ZeCxfGZFUfbFgMWP42qZzy0aBuEOOH6X1RwFpyfgDVKFlczrplhF 1j7rRQjyQwHCYtoHF7s= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org