$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199497.roa File: AS199497.roa (raw, json) Hash identifier: /vt+WuY6uyu3C4kMqgs+Hij++Kat82y8rqnJblQ1liM= Subject key identifier: B0:77:A7:B7:42:E4:92:91:67:1A:C3:D6:05:1B:50:93:33:55:5C:1B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 72EF157B5365272D13E7A045493C4E73103654CC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199497.roa Signing time: Sun 06 Oct 2024 04:45:06 +0000 ROA not before: Sun 06 Oct 2024 04:40:06 +0000 ROA not after: Sun 05 Oct 2025 04:45:06 +0000 asID: 199497 IP address blocks: 2a0a:6040:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ef:15:7b:53:65:27:2d:13:e7:a0:45:49:3c:4e:73:10:36:54:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:06 2024 GMT Not After : Oct 5 04:45:06 2025 GMT Subject: CN=B077A7B742E49291671AC3D6051B509333555C1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6a:a8:ed:aa:7d:03:f0:83:4d:c6:43:e6:64: 46:c3:e5:0c:5f:a8:f6:e6:e9:4d:b4:00:dc:79:19: d4:1a:37:df:52:33:e3:27:8f:4f:2b:2a:c9:94:03: 5a:23:fb:f8:1b:5a:d3:d3:db:3b:4f:5e:3a:f1:84: 1e:a8:10:15:49:ef:ac:4f:f1:f8:e8:d9:2f:b7:6b: 9e:46:8b:00:31:45:a2:a7:7c:1c:a5:cb:61:73:db: 80:2b:7d:e3:f0:39:a4:dc:87:8d:5c:b9:76:4f:71: a9:95:c6:9a:fd:24:c3:0b:b4:a6:04:e2:ef:4a:5d: 60:03:57:c5:61:a4:c8:1b:b0:78:1e:f6:1d:7a:30: 81:a1:02:59:8d:d3:f1:c6:eb:a9:64:9a:69:1b:39: d4:66:cb:27:32:a1:3f:57:f6:36:1b:75:40:6f:41: 6c:96:6a:fe:fe:0b:ef:b5:98:37:14:07:29:73:80: 4d:88:52:93:06:65:e6:48:57:75:7f:52:4d:74:cc: 08:d6:fa:5c:1a:f9:e4:2e:69:e7:79:ed:93:06:b2: 0e:4d:17:7d:2d:36:7a:b9:b7:fb:62:17:52:f2:12: 3d:8e:ad:1a:45:8c:56:5e:a7:ba:70:e2:0c:13:16: 98:9f:ce:f3:a9:d1:cb:12:34:bf:e4:a2:f9:34:ce: b5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:77:A7:B7:42:E4:92:91:67:1A:C3:D6:05:1B:50:93:33:55:5C:1B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199497.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 65:1f:c5:58:02:df:eb:e7:1c:bb:ac:12:57:5c:60:20:20:7b: 28:72:a4:a7:51:ab:bb:6e:fd:41:cb:70:ec:55:8d:9c:6f:ef: 7a:03:79:13:be:19:71:af:38:54:ee:79:48:59:95:48:f9:44: 7b:fb:a9:cb:ea:80:8f:92:7c:77:c6:ea:2d:0e:3b:12:a4:ff: 77:db:22:49:59:38:c4:9c:54:39:74:dc:3b:c4:3d:61:da:81: 38:0f:58:4d:ee:87:a5:88:6e:4f:40:b4:e8:61:66:ae:2c:db: 5f:d4:82:58:a1:bc:cf:73:8a:0e:b7:61:80:fb:04:fe:bf:61: e1:5b:91:1d:e2:c8:17:8d:f6:74:90:96:4b:72:6a:71:e4:8b: df:1c:35:e9:d7:6b:92:eb:2b:7e:db:c7:14:eb:1b:49:a3:51: 7c:a1:83:d2:99:c5:e9:c1:a5:66:0d:c3:dc:43:8c:62:7c:4e: 2d:b1:c2:c5:19:37:d8:60:5b:92:bd:71:70:4f:7f:56:ca:ec: b2:ac:a6:06:cb:73:d7:01:ed:9a:aa:40:7d:e9:99:ee:b2:3a: 88:cf:a8:28:fe:e6:f2:19:3e:7b:5f:51:96:36:7a:67:c8:25: d1:9c:37:89:7b:f0:b4:a8:79:00:98:32:1d:c4:33:d7:7f:49: 73:ac:85:ff -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcu8Ve1NlJy0T56BFSTxOcxA2VMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDZaFw0yNTEwMDUwNDQ1MDZaMDMxMTAvBgNV BAMTKEIwNzdBN0I3NDJFNDkyOTE2NzFBQzNENjA1MUI1MDkzMzM1NTVDMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAaqjtqn0D8INNxkPmZEbD5Qxf qPbm6U20ANx5GdQaN99SM+Mnj08rKsmUA1oj+/gbWtPT2ztPXjrxhB6oEBVJ76xP 8fjo2S+3a55GiwAxRaKnfByly2Fz24ArfePwOaTch41cuXZPcamVxpr9JMMLtKYE 4u9KXWADV8VhpMgbsHge9h16MIGhAlmN0/HG66lkmmkbOdRmyycyoT9X9jYbdUBv QWyWav7+C++1mDcUBylzgE2IUpMGZeZIV3V/Uk10zAjW+lwa+eQuaed57ZMGsg5N F30tNnq5t/tiF1LyEj2OrRpFjFZep7pw4gwTFpifzvOp0csSNL/kovk0zrVbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUsHent0LkkpFnGsPWBRtQkzNVXBswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NDk3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOswDQYJKoZIhvcNAQELBQADggEBAGUf xVgC3+vnHLusEldcYCAgeyhypKdRq7tu/UHLcOxVjZxv73oDeRO+GXGvOFTueUhZ lUj5RHv7qcvqgI+SfHfG6i0OOxKk/3fbIklZOMScVDl03DvEPWHagTgPWE3uh6WI bk9AtOhhZq4s21/UglihvM9zig63YYD7BP6/YeFbkR3iyBeN9nSQlktyanHki98c NenXa5LrK37bxxTrG0mjUXyhg9KZxenBpWYNw9xDjGJ8Ti2xwsUZN9hgW5K9cXBP f1bK7LKspgbLc9cB7ZqqQH3pme6yOojPqCj+5vIZPntfUZY2emfIJdGcN4l78LSo eQCYMh3EM9d/SXOshf8= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org