$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199501.roa File: AS199501.roa (raw, json) Hash identifier: /o6qCsKHvNte1cOBzIirHl5Nvzp97SNBQo+YzWDm8f4= Subject key identifier: 11:56:2C:18:85:47:01:BD:5C:09:DC:6F:6E:59:BA:72:D0:24:38:3E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6C02201541C99198D09ED9E82FC902F6E75C4999 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199501.roa Signing time: Sun 06 Oct 2024 04:45:19 +0000 ROA not before: Sun 06 Oct 2024 04:40:19 +0000 ROA not after: Sun 05 Oct 2025 04:45:19 +0000 asID: 199501 IP address blocks: 2a0a:6040:dc00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:02:20:15:41:c9:91:98:d0:9e:d9:e8:2f:c9:02:f6:e7:5c:49:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:19 2024 GMT Not After : Oct 5 04:45:19 2025 GMT Subject: CN=11562C18854701BD5C09DC6F6E59BA72D024383E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:98:a7:0e:64:87:61:5e:51:41:54:37:a3: c5:18:1f:34:93:1e:14:e1:f4:67:69:46:d8:00:6f: 39:3e:de:d3:f4:10:48:53:e0:62:da:e1:da:6d:1a: b2:86:44:9c:8e:7b:4b:97:43:1d:92:cd:1b:f8:6f: 4c:56:4f:3c:3b:c5:d8:df:f3:6f:a5:3c:56:94:7f: 6b:bb:13:12:82:eb:58:c9:87:b2:f7:cd:5d:07:19: 24:a7:4d:7a:4a:59:fd:47:f8:62:0a:eb:e8:72:d6: b9:f3:a9:a6:02:a1:9e:e3:ca:e0:05:f3:78:1f:f2: 25:05:55:b6:a3:d7:39:83:05:28:fd:d9:51:cd:95: e5:82:0a:af:89:7b:44:36:6b:ff:bc:d1:16:6d:57: bb:2e:92:01:2b:b7:96:7a:d1:61:f5:19:41:00:25: e2:7d:83:61:16:18:ad:fd:29:7f:e3:6b:57:b3:3d: 22:3f:09:24:5a:7d:52:bf:e9:c2:a5:d8:b7:41:b2: 66:af:85:50:3c:df:65:b9:1e:13:cb:3f:40:2a:b7: d6:a8:a2:b5:16:a6:0b:db:f5:3a:0f:f8:36:89:39: 9b:a2:4d:3a:57:de:98:9d:4a:dc:5d:24:0c:bb:51: 4c:ba:fb:62:cc:54:59:0c:68:1e:18:7e:22:2e:cf: 6a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:56:2C:18:85:47:01:BD:5C:09:DC:6F:6E:59:BA:72:D0:24:38:3E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199501.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:dc00::/40 Signature Algorithm: sha256WithRSAEncryption 31:3e:8a:c2:ef:c0:4b:4f:46:c0:ff:5b:37:61:18:61:12:43: 96:17:27:3f:5d:2b:d3:ac:39:ad:b0:ec:9e:1d:45:7a:49:ba: e0:ce:88:c0:2f:9a:32:19:ef:c8:19:c6:29:d3:ce:78:bb:d7: 8f:e6:08:96:34:83:5d:1a:21:51:63:13:89:dc:65:44:c1:1f: 1c:2e:b4:29:96:09:2b:51:8a:47:ee:37:30:1c:00:fc:1d:47: a4:09:40:dd:78:90:13:fa:09:a4:42:ea:34:34:ab:f5:3e:f3: e3:b7:cb:0b:39:46:cf:62:55:7a:72:ef:43:6a:3c:51:ad:d3: 6e:ac:b2:19:92:f0:75:90:cc:f7:aa:36:f0:51:6b:47:da:c3: e3:4e:f0:27:63:65:03:e9:f5:2e:ed:39:73:5e:53:66:ae:82: 9e:30:b3:f5:5e:c4:41:74:77:80:d2:42:40:f7:e1:52:cf:e2: 10:8b:01:82:23:91:fa:fe:f1:9c:02:bc:7d:51:54:84:07:66: e7:2b:61:80:0d:ab:59:16:4d:73:7d:f9:cb:3e:09:74:e9:77: 8f:46:46:d2:c8:20:65:5e:c5:80:93:cc:dc:79:46:ca:ae:4f: 16:c9:93:6f:4c:ab:17:0d:4b:bc:25:d9:a9:c3:71:56:06:24: e3:f2:bb:9c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbAIgFUHJkZjQntnoL8kC9udcSZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTlaFw0yNTEwMDUwNDQ1MTlaMDMxMTAvBgNV BAMTKDExNTYyQzE4ODU0NzAxQkQ1QzA5REM2RjZFNTlCQTcyRDAyNDM4M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCSpinDmSHYV5RQVQ3o8UYHzST HhTh9GdpRtgAbzk+3tP0EEhT4GLa4dptGrKGRJyOe0uXQx2SzRv4b0xWTzw7xdjf 82+lPFaUf2u7ExKC61jJh7L3zV0HGSSnTXpKWf1H+GIK6+hy1rnzqaYCoZ7jyuAF 83gf8iUFVbaj1zmDBSj92VHNleWCCq+Je0Q2a/+80RZtV7sukgErt5Z60WH1GUEA JeJ9g2EWGK39KX/ja1ezPSI/CSRafVK/6cKl2LdBsmavhVA832W5HhPLP0Aqt9ao orUWpgvb9ToP+DaJOZuiTTpX3pidStxdJAy7UUy6+2LMVFkMaB4YfiIuz2rRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEVYsGIVHAb1cCdxvblm6ctAkOD4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NTAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNwwDQYJKoZIhvcNAQELBQADggEBADE+ isLvwEtPRsD/WzdhGGESQ5YXJz9dK9OsOa2w7J4dRXpJuuDOiMAvmjIZ78gZxinT zni714/mCJY0g10aIVFjE4ncZUTBHxwutCmWCStRikfuNzAcAPwdR6QJQN14kBP6 CaRC6jQ0q/U+8+O3yws5Rs9iVXpy70NqPFGt026sshmS8HWQzPeqNvBRa0faw+NO 8CdjZQPp9S7tOXNeU2augp4ws/VexEF0d4DSQkD34VLP4hCLAYIjkfr+8ZwCvH1R VIQHZucrYYANq1kWTXN9+cs+CXTpd49GRtLIIGVexYCTzNx5RsquTxbJk29MqxcN S7wl2anDcVYGJOPyu5w= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org