$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199497.roa File: AS199497.roa (raw, json) Hash identifier: sXPLKprIW4Vk+qyTt5/Ticu6JGo5bMUqGSO4DhQjH44= Subject key identifier: 89:89:D2:B2:50:96:B7:12:F5:63:DA:96:0C:14:A7:3F:61:5B:33:84 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 327EF941E57BDAA7CCBCB08BC1EA898093E53C55 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199497.roa Signing time: Sun 05 Nov 2023 04:07:20 +0000 ROA not before: Sun 05 Nov 2023 04:02:20 +0000 ROA not after: Sun 03 Nov 2024 04:07:20 +0000 asID: 199497 IP address blocks: 2a0a:6040:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:7e:f9:41:e5:7b:da:a7:cc:bc:b0:8b:c1:ea:89:80:93:e5:3c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:20 2023 GMT Not After : Nov 3 04:07:20 2024 GMT Subject: CN=8989D2B25096B712F563DA960C14A73F615B3384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d8:42:89:d0:66:26:61:ea:c7:db:2b:aa:21: 99:96:e3:0a:52:14:78:ca:7a:75:6e:fe:96:65:2c: 11:ff:50:bf:ba:ac:71:f5:7d:95:8f:93:0f:f3:d9: 49:dd:9a:1d:af:b5:96:3f:d7:24:16:52:58:07:2d: 0c:61:df:ac:df:26:cf:04:0b:90:c0:5a:dc:a0:ce: a1:2b:9b:80:d5:8e:e4:36:ae:0e:d9:e7:5d:43:c7: e9:08:a8:7f:3c:4f:f8:8c:e3:88:18:1e:78:d7:e9: a6:88:fc:d6:64:b7:49:20:5a:a1:4b:ca:fe:41:87: ff:f2:e4:4a:16:62:5b:1e:3d:ed:77:83:61:9f:4b: 39:ca:e7:e7:de:64:10:ab:8e:b2:11:56:c7:dc:34: 57:02:0d:af:dc:7e:fe:4e:2f:e2:75:e9:d2:ec:22: 4d:7a:6f:25:4c:42:dc:06:b3:2f:a9:45:0e:1c:90: 51:d2:be:d7:96:68:6c:9f:2d:1e:d8:e5:0d:cd:47: c0:8f:23:de:e4:25:4a:ff:eb:e4:50:df:55:02:3a: 5c:38:cc:2e:32:10:96:28:4d:a1:67:6a:24:9e:fe: 05:2c:03:b0:6f:fe:a2:70:0e:25:41:30:e6:c5:5f: 6a:41:8b:e8:b9:03:56:31:58:ce:2c:10:6c:cf:bf: a8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:89:D2:B2:50:96:B7:12:F5:63:DA:96:0C:14:A7:3F:61:5B:33:84 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199497.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:eb00::/40 Signature Algorithm: sha256WithRSAEncryption c1:98:40:98:ea:c1:d6:98:7f:18:18:1f:40:d7:cb:3a:36:0f: 00:da:58:ba:bd:75:49:e7:7a:d4:92:7d:8c:83:25:9a:09:18: e4:ad:35:e2:e7:cc:b2:b3:eb:ec:8a:70:f5:66:87:8f:65:3f: f3:2d:a4:69:2a:74:f9:f9:dc:82:c0:ee:75:d4:f5:c3:be:22: 77:ae:44:48:91:a0:e7:f7:82:7b:93:cb:d8:ea:79:48:bb:1a: 37:31:51:f6:5b:e8:bf:0f:89:12:29:07:81:3b:87:73:5f:27: b9:a0:01:ec:f2:22:be:57:e8:bb:d3:83:93:a5:30:3a:de:f8: d1:52:4b:3f:bb:a0:ef:8d:35:1d:fb:17:36:df:13:af:89:3c: 76:ee:93:4e:b3:17:19:51:e8:61:cf:c1:c4:f2:e4:f1:9e:78: 66:bd:42:46:4b:aa:6b:50:d1:2a:0b:6e:2a:3b:65:76:bf:22: 25:de:e2:15:99:e4:bd:4b:7f:1e:f3:3e:9a:0b:d3:0a:aa:32: 02:49:5b:ed:32:60:b8:6d:a7:7b:90:3b:68:fb:51:d2:ec:17: 64:29:9f:bd:72:59:35:e9:46:0b:0d:a4:dc:85:5e:bb:19:4c: f6:a0:77:a4:10:a0:e8:15:b0:df:2c:b0:4b:c8:f2:3c:93:71: f3:67:f8:ef -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMn75QeV72qfMvLCLweqJgJPlPFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjBaFw0yNDExMDMwNDA3MjBaMDMxMTAvBgNV BAMTKDg5ODlEMkIyNTA5NkI3MTJGNTYzREE5NjBDMTRBNzNGNjE1QjMzODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI2EKJ0GYmYerH2yuqIZmW4wpS FHjKenVu/pZlLBH/UL+6rHH1fZWPkw/z2Undmh2vtZY/1yQWUlgHLQxh36zfJs8E C5DAWtygzqErm4DVjuQ2rg7Z511Dx+kIqH88T/iM44gYHnjX6aaI/NZkt0kgWqFL yv5Bh//y5EoWYlsePe13g2GfSznK5+feZBCrjrIRVsfcNFcCDa/cfv5OL+J16dLs Ik16byVMQtwGsy+pRQ4ckFHSvteWaGyfLR7Y5Q3NR8CPI97kJUr/6+RQ31UCOlw4 zC4yEJYoTaFnaiSe/gUsA7Bv/qJwDiVBMObFX2pBi+i5A1YxWM4sEGzPv6jPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiYnSslCWtxL1Y9qWDBSnP2FbM4QwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NDk3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOswDQYJKoZIhvcNAQELBQADggEBAMGY QJjqwdaYfxgYH0DXyzo2DwDaWLq9dUnnetSSfYyDJZoJGOStNeLnzLKz6+yKcPVm h49lP/MtpGkqdPn53ILA7nXU9cO+IneuREiRoOf3gnuTy9jqeUi7GjcxUfZb6L8P iRIpB4E7h3NfJ7mgAezyIr5X6LvTg5OlMDre+NFSSz+7oO+NNR37FzbfE6+JPHbu k06zFxlR6GHPwcTy5PGeeGa9QkZLqmtQ0SoLbio7ZXa/IiXe4hWZ5L1Lfx7zPpoL 0wqqMgJJW+0yYLhtp3uQO2j7UdLsF2Qpn71yWTXpRgsNpNyFXrsZTPagd6QQoOgV sN8ssEvI8jyTcfNn+O8= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org