$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199347.roa File: AS199347.roa (raw, json) Hash identifier: jRo2DWFQ9KkD3tdQ4T3XZtHQu4VnaIJabf2CH60mMFM= Subject key identifier: 8E:67:5C:8B:41:ED:0D:9F:1B:F8:E1:C5:BB:BE:C9:54:1A:A0:3C:30 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0F1E3D15619B9326EAD15D8410DCBFC48FFD5849 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199347.roa Signing time: Sun 06 Oct 2024 04:45:04 +0000 ROA not before: Sun 06 Oct 2024 04:40:04 +0000 ROA not after: Sun 05 Oct 2025 04:45:04 +0000 asID: 199347 IP address blocks: 2a0a:6040:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:1e:3d:15:61:9b:93:26:ea:d1:5d:84:10:dc:bf:c4:8f:fd:58:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:04 2024 GMT Not After : Oct 5 04:45:04 2025 GMT Subject: CN=8E675C8B41ED0D9F1BF8E1C5BBBEC9541AA03C30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:88:32:68:b0:9a:a1:4b:ef:1a:f3:84:80:7b: 30:c5:e8:ec:8c:71:1e:a1:d4:55:d4:ae:ad:f7:b3: 2d:89:ff:47:f7:21:f1:c5:ce:31:c4:c1:61:2c:cb: 49:c7:7e:bb:49:0c:ee:c9:d6:57:d4:4a:2b:f9:58: b5:79:60:15:e9:53:4d:3a:68:99:2d:d8:6e:e3:ee: 32:fb:49:43:49:3f:6c:b2:01:14:5c:e9:23:97:b1: 29:c8:aa:57:51:03:ef:85:3a:2c:60:be:0f:ea:75: 0c:73:ab:be:b5:f0:46:b0:15:f4:58:9c:25:59:12: 41:f0:6c:7b:1c:ea:30:3c:b4:b6:cd:6d:20:bc:f4: 46:2f:da:c3:77:82:64:2b:f4:63:39:b8:41:c5:49: c3:03:a5:14:96:8c:67:52:5c:31:2d:9e:2e:db:b4: cb:29:72:69:6f:28:38:e4:5e:1f:3f:c0:0d:42:52: 70:c2:18:04:28:41:d8:95:b3:8f:7b:ad:c7:91:5e: 6d:87:af:bb:ae:24:c1:d0:22:a7:df:dc:31:fd:07: b1:d5:f1:ad:3c:e7:86:15:19:7d:ba:bc:b9:c6:32: c5:34:77:45:b0:ae:85:90:b9:96:89:f4:71:1e:07: b3:bd:fb:c3:d7:b3:b6:bc:19:83:19:77:71:88:98: 49:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:67:5C:8B:41:ED:0D:9F:1B:F8:E1:C5:BB:BE:C9:54:1A:A0:3C:30 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199347.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4000::/40 Signature Algorithm: sha256WithRSAEncryption 75:d0:55:fc:d9:cc:12:95:2d:5a:33:5e:96:97:4a:ca:af:97: 6b:ad:c1:21:d4:4f:1c:df:49:3b:ad:2f:0d:5a:a2:fe:48:1d: ea:d8:bf:50:bc:67:7b:72:a2:50:a2:d1:d1:51:c2:3c:2f:ef: 86:e1:2a:c8:36:ee:e0:8a:91:d4:f8:2c:3a:0d:55:e1:af:fd: 00:0f:d8:3b:14:bd:7a:4b:d1:30:8d:6f:73:fa:2c:57:50:fc: d9:8b:59:bc:4c:ce:24:c4:2e:65:c6:7c:a0:46:23:d1:b9:34: 42:b3:f7:2c:db:94:3f:85:c0:fa:f4:86:70:84:a1:64:ac:46: cf:94:43:aa:d3:fb:5e:1d:00:01:05:c6:da:16:51:3c:31:76: 01:e8:47:74:41:cc:6a:43:ae:4b:7a:a8:af:09:10:51:70:9c: 20:3c:5e:98:0c:02:68:80:58:ef:81:5c:61:2f:76:0d:af:fd: ba:34:29:0a:5f:59:31:38:f0:88:0c:40:5a:09:bf:e5:03:23: e7:72:e6:0b:53:09:95:06:ec:50:9f:75:b0:2e:fa:d5:e7:ab: 60:6a:99:ab:04:ff:1e:07:13:2c:d2:7e:fc:60:36:80:83:47: 29:6f:94:29:55:4d:4f:b7:6f:8e:1f:84:47:18:d7:1b:e0:70: b4:8a:da:9d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDx49FWGbkybq0V2EENy/xI/9WEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDRaFw0yNTEwMDUwNDQ1MDRaMDMxMTAvBgNV BAMTKDhFNjc1QzhCNDFFRDBEOUYxQkY4RTFDNUJCQkVDOTU0MUFBMDNDMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxiDJosJqhS+8a84SAezDF6OyM cR6h1FXUrq33sy2J/0f3IfHFzjHEwWEsy0nHfrtJDO7J1lfUSiv5WLV5YBXpU006 aJkt2G7j7jL7SUNJP2yyARRc6SOXsSnIqldRA++FOixgvg/qdQxzq7618EawFfRY nCVZEkHwbHsc6jA8tLbNbSC89EYv2sN3gmQr9GM5uEHFScMDpRSWjGdSXDEtni7b tMspcmlvKDjkXh8/wA1CUnDCGAQoQdiVs497rceRXm2Hr7uuJMHQIqff3DH9B7HV 8a0854YVGX26vLnGMsU0d0WwroWQuZaJ9HEeB7O9+8PXs7a8GYMZd3GImEl7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUjmdci0HtDZ8b+OHFu77JVBqgPDAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MzQ3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEAwDQYJKoZIhvcNAQELBQADggEBAHXQ VfzZzBKVLVozXpaXSsqvl2utwSHUTxzfSTutLw1aov5IHerYv1C8Z3tyolCi0dFR wjwv74bhKsg27uCKkdT4LDoNVeGv/QAP2DsUvXpL0TCNb3P6LFdQ/NmLWbxMziTE LmXGfKBGI9G5NEKz9yzblD+FwPr0hnCEoWSsRs+UQ6rT+14dAAEFxtoWUTwxdgHo R3RBzGpDrkt6qK8JEFFwnCA8XpgMAmiAWO+BXGEvdg2v/bo0KQpfWTE48IgMQFoJ v+UDI+dy5gtTCZUG7FCfdbAu+tXnq2BqmasE/x4HEyzSfvxgNoCDRylvlClVTU+3 b44fhEcY1xvgcLSK2p0= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org