$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199501.roa File: AS199501.roa (raw, json) Hash identifier: Aaw7JDwP0sHiFAnUiYGwWlF7ODu94BLi+tDpyIM9LuA= Subject key identifier: 4C:51:7C:33:7C:91:E8:E6:DE:21:3D:D6:AF:01:1C:9F:7E:87:DB:35 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 123EB5A10C76F2AEC057EFDABB22FD67332A41CA Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199501.roa Signing time: Sun 05 Nov 2023 04:07:02 +0000 ROA not before: Sun 05 Nov 2023 04:02:02 +0000 ROA not after: Sun 03 Nov 2024 04:07:02 +0000 asID: 199501 IP address blocks: 2a0a:6040:dc00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:3e:b5:a1:0c:76:f2:ae:c0:57:ef:da:bb:22:fd:67:33:2a:41:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:02 2023 GMT Not After : Nov 3 04:07:02 2024 GMT Subject: CN=4C517C337C91E8E6DE213DD6AF011C9F7E87DB35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:77:c2:be:64:e5:7a:d1:c0:3d:2a:71:1a: 12:08:ce:a2:59:cf:20:15:3f:b3:c3:8b:20:e2:00: 86:da:6e:d4:79:05:20:e9:67:78:31:b6:04:84:5d: 5f:1c:c5:66:1b:4d:ca:5e:d7:9f:2f:21:09:a8:98: 2d:26:53:da:e9:bd:2d:af:ce:04:1c:7b:0c:36:cb: 8a:34:cd:85:03:42:81:08:fa:d6:38:79:75:d8:d2: 14:08:b8:5d:34:fd:1f:02:81:b6:12:50:c9:c2:aa: a0:38:d8:60:e6:f8:3a:d5:93:b8:bb:c3:87:76:84: f6:eb:68:24:f3:f9:98:10:a4:0f:2d:d4:3f:14:c1: ff:1d:de:66:5c:2b:d3:6f:2e:7e:70:ca:0a:c3:4b: ee:d5:c8:aa:b1:80:28:94:fc:f9:29:3f:e5:cf:e2: 82:8b:b9:94:4e:aa:9e:4a:4e:a2:ff:97:36:76:0f: 1c:9e:0d:d9:bf:b6:ad:2a:2b:6e:88:ce:93:a1:25: 9f:cf:50:5e:36:a5:46:56:89:28:83:5a:ef:12:45: 17:f7:f1:b7:d7:48:a8:29:80:a2:ea:fa:c4:db:4e: a8:31:62:a7:f2:a3:0a:4e:01:cf:d5:42:e4:17:7a: c8:d0:c0:83:04:72:9f:91:50:1e:f2:93:d5:f6:df: e2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:51:7C:33:7C:91:E8:E6:DE:21:3D:D6:AF:01:1C:9F:7E:87:DB:35 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199501.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:dc00::/40 Signature Algorithm: sha256WithRSAEncryption 95:48:13:81:0f:16:07:07:2f:37:4f:66:a3:3e:68:c3:aa:d4: b7:bd:12:4a:96:48:13:5a:07:a4:39:1b:06:39:1b:8b:11:62: 5c:c4:24:47:bc:ca:11:5e:0c:33:80:47:0b:54:55:a9:89:6a: 91:bc:6a:c3:14:d1:07:c1:fc:f9:c0:d3:0d:31:5b:99:d8:be: 33:a6:86:f8:ad:85:d8:cf:7b:2a:de:23:f2:2e:73:3d:6d:e0: a9:39:2c:dd:0b:76:77:4f:d6:3f:56:a0:55:df:21:c3:6f:dd: 9a:4c:91:a8:50:48:f1:c7:40:01:65:ae:0d:24:5b:b7:40:85: 53:da:ea:43:d9:fd:8b:87:eb:fe:21:a9:3b:87:01:0d:ae:d7: 08:53:fc:b2:b7:c9:1c:df:74:03:83:8e:7e:50:7b:b5:8e:1d: e7:59:06:23:5e:f5:84:0f:83:54:39:c9:ed:19:d4:fd:d2:a7: 5a:65:f6:55:82:b9:31:47:39:6f:06:1c:1e:f0:f4:fe:7d:f8: 2b:db:ec:ab:a9:e8:d4:a5:2e:43:b6:c3:bc:76:55:66:2c:6b: cc:75:23:95:d5:ea:a2:f1:c6:3c:fa:f5:12:ab:4a:c1:fb:77: d8:42:ee:8b:71:3b:77:3d:ae:bd:ff:e2:7e:3e:ff:d2:c7:ab: 9f:6d:0b:57 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEj61oQx28q7AV+/auyL9ZzMqQcowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDJaFw0yNDExMDMwNDA3MDJaMDMxMTAvBgNV BAMTKDRDNTE3QzMzN0M5MUU4RTZERTIxM0RENkFGMDExQzlGN0U4N0RCMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7+HfCvmTletHAPSpxGhIIzqJZ zyAVP7PDiyDiAIbabtR5BSDpZ3gxtgSEXV8cxWYbTcpe158vIQmomC0mU9rpvS2v zgQceww2y4o0zYUDQoEI+tY4eXXY0hQIuF00/R8CgbYSUMnCqqA42GDm+DrVk7i7 w4d2hPbraCTz+ZgQpA8t1D8Uwf8d3mZcK9NvLn5wygrDS+7VyKqxgCiU/PkpP+XP 4oKLuZROqp5KTqL/lzZ2DxyeDdm/tq0qK26IzpOhJZ/PUF42pUZWiSiDWu8SRRf3 8bfXSKgpgKLq+sTbTqgxYqfyowpOAc/VQuQXesjQwIMEcp+RUB7yk9X23+L9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTFF8M3yR6ObeIT3WrwEcn36H2zUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NTAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNwwDQYJKoZIhvcNAQELBQADggEBAJVI E4EPFgcHLzdPZqM+aMOq1Le9EkqWSBNaB6Q5GwY5G4sRYlzEJEe8yhFeDDOARwtU VamJapG8asMU0QfB/PnA0w0xW5nYvjOmhvithdjPeyreI/Iucz1t4Kk5LN0LdndP 1j9WoFXfIcNv3ZpMkahQSPHHQAFlrg0kW7dAhVPa6kPZ/YuH6/4hqTuHAQ2u1whT /LK3yRzfdAODjn5Qe7WOHedZBiNe9YQPg1Q5ye0Z1P3Sp1pl9lWCuTFHOW8GHB7w 9P59+Cvb7Kup6NSlLkO2w7x2VWYsa8x1I5XV6qLxxjz69RKrSsH7d9hC7otxO3c9 rr3/4n4+/9LHq59tC1c= -----END CERTIFICATE-----Generated at Fri May 17 06:17:21 2024 by rpki-client on console-fra.rpki-client.org