$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199459.roa File: AS199459.roa (raw, json) Hash identifier: zf1EvSgpTWE+kFofZTLhg6/CkYp3WFRgxKNw8Da38wE= Subject key identifier: 9A:07:79:1A:F1:20:17:B4:6A:A5:D5:C0:C6:CE:79:13:48:5A:39:6B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2673ACFFA1F92C5AC55F708DD6E3C5FD9378CB3E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199459.roa Signing time: Wed 06 Mar 2024 12:58:15 +0000 ROA not before: Wed 06 Mar 2024 12:53:15 +0000 ROA not after: Wed 05 Mar 2025 12:58:15 +0000 asID: 199459 IP address blocks: 2a05:dfc1:800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:73:ac:ff:a1:f9:2c:5a:c5:5f:70:8d:d6:e3:c5:fd:93:78:cb:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 6 12:53:15 2024 GMT Not After : Mar 5 12:58:15 2025 GMT Subject: CN=9A07791AF12017B46AA5D5C0C6CE7913485A396B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:de:f9:80:46:f9:67:7c:be:9e:f1:8f:00:3b: bd:00:09:65:66:2b:cc:bf:8e:bc:2a:df:4e:eb:e3: 1a:51:05:e1:27:55:20:ab:13:bf:3e:1b:22:67:c2: 81:1b:9f:42:07:99:16:3c:89:42:fc:d7:18:a9:c0: 42:9d:5f:87:95:f6:e2:50:e7:05:f5:eb:f4:db:9f: c6:b4:35:cb:6c:e6:fc:bd:c7:05:34:ed:0b:8c:e0: 27:34:be:4b:dd:1a:fd:59:03:5c:7e:d0:a0:93:a4: 34:f1:6d:d5:9b:20:13:97:1a:47:30:95:c7:82:d3: e4:b5:11:3c:ce:49:c2:88:d8:ec:bc:79:0d:ce:6e: 37:d3:23:1b:89:78:2c:66:41:bd:58:d7:7c:67:6a: 32:a4:90:99:e5:0b:23:c9:98:33:e1:cb:db:c3:58: 05:d9:e5:af:71:79:50:74:c6:c3:9a:f2:63:c1:a9: 53:f5:a2:fc:48:2f:ac:8c:20:18:34:5c:a4:c8:ef: a5:16:14:d0:a1:99:8b:3f:98:d4:e0:ff:02:56:d5: db:46:7f:2e:21:ef:1b:95:9c:be:a9:52:f0:87:4b: 7f:82:f5:90:c5:0c:59:8b:82:3b:28:87:f9:85:77: 00:d2:f9:f3:4e:cc:46:92:98:68:30:72:f4:17:fe: 7e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:07:79:1A:F1:20:17:B4:6A:A5:D5:C0:C6:CE:79:13:48:5A:39:6B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199459.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:800::/40 Signature Algorithm: sha256WithRSAEncryption 2b:f4:ff:c2:0f:4a:c5:1f:84:a8:d1:6b:7e:4e:ad:ea:70:ab: 7c:a0:6e:d1:56:8e:77:fd:80:c5:a2:de:46:83:05:92:13:49: 41:1b:75:d1:29:fc:42:d0:88:ff:55:ed:46:fe:7c:5d:99:f3: e8:8a:a1:9f:3f:0d:db:f4:f2:a8:2f:ad:f0:23:76:b5:1a:3e: 25:e9:86:87:73:c4:8f:70:14:8f:b8:7e:ac:be:0a:cc:7c:8c: 1f:b4:8e:d5:3e:d7:f3:ab:94:27:f4:e5:42:f3:39:2c:2b:6e: 14:24:d9:a5:29:1c:39:88:bd:b1:09:4f:48:00:90:f7:4d:87: e7:37:9c:8f:b4:07:03:1e:a6:60:6a:3f:5b:e9:b1:41:d4:f1: 91:24:4a:9e:1d:ec:c8:9e:70:14:ce:d6:86:77:65:68:b3:ba: 4b:67:98:0e:58:bb:8f:2a:cf:21:49:c7:07:71:27:13:ec:20: 05:79:f9:3e:7e:31:cc:e2:75:60:2f:f0:96:33:7a:2a:0b:10: d8:e0:99:be:80:6d:42:d4:19:3c:73:3c:c3:85:74:61:b7:88: 3a:e7:5a:53:4c:82:d3:13:e1:55:27:ea:a7:b0:61:ce:d5:ac: 6e:b3:23:40:3c:db:7a:1b:ce:f5:5d:e1:bd:ea:25:68:51:84: 1d:e8:58:7f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJnOs/6H5LFrFX3CN1uPF/ZN4yz4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMDYxMjUzMTVaFw0yNTAzMDUxMjU4MTVaMDMxMTAvBgNV BAMTKDlBMDc3OTFBRjEyMDE3QjQ2QUE1RDVDMEM2Q0U3OTEzNDg1QTM5NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY3vmARvlnfL6e8Y8AO70ACWVm K8y/jrwq307r4xpRBeEnVSCrE78+GyJnwoEbn0IHmRY8iUL81xipwEKdX4eV9uJQ 5wX16/Tbn8a0Ncts5vy9xwU07QuM4Cc0vkvdGv1ZA1x+0KCTpDTxbdWbIBOXGkcw lceC0+S1ETzOScKI2Oy8eQ3ObjfTIxuJeCxmQb1Y13xnajKkkJnlCyPJmDPhy9vD WAXZ5a9xeVB0xsOa8mPBqVP1ovxIL6yMIBg0XKTI76UWFNChmYs/mNTg/wJW1dtG fy4h7xuVnL6pUvCHS3+C9ZDFDFmLgjsoh/mFdwDS+fNOzEaSmGgwcvQX/n5tAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmgd5GvEgF7RqpdXAxs55E0haOWswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NDU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwQgwDQYJKoZIhvcNAQELBQADggEBACv0 /8IPSsUfhKjRa35Orepwq3ygbtFWjnf9gMWi3kaDBZITSUEbddEp/ELQiP9V7Ub+ fF2Z8+iKoZ8/Ddv08qgvrfAjdrUaPiXphodzxI9wFI+4fqy+Csx8jB+0jtU+1/Or lCf05ULzOSwrbhQk2aUpHDmIvbEJT0gAkPdNh+c3nI+0BwMepmBqP1vpsUHU8ZEk Sp4d7MiecBTO1oZ3ZWizuktnmA5Yu48qzyFJxwdxJxPsIAV5+T5+MczidWAv8JYz eioLENjgmb6AbULUGTxzPMOFdGG3iDrnWlNMgtMT4VUn6qewYc7VrG6zI0A823ob zvVd4b3qJWhRhB3oWH8= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org