$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199504.roa File: AS199504.roa (raw, json) Hash identifier: S2iqjgxzeX+mVP/2xC+Qq1WgLeEaQd7reZ98PXq9TsY= Subject key identifier: 6C:CC:A9:10:6B:18:8F:6E:32:ED:98:2D:42:06:5A:DA:91:51:EF:20 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 03F91110E307F6341845E0E8F5DCE9CDBA16705F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199504.roa Signing time: Sun 06 Oct 2024 04:45:01 +0000 ROA not before: Sun 06 Oct 2024 04:40:01 +0000 ROA not after: Sun 05 Oct 2025 04:45:01 +0000 asID: 199504 IP address blocks: 2a0a:6040:b500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f9:11:10:e3:07:f6:34:18:45:e0:e8:f5:dc:e9:cd:ba:16:70:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:01 2024 GMT Not After : Oct 5 04:45:01 2025 GMT Subject: CN=6CCCA9106B188F6E32ED982D42065ADA9151EF20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5d:95:28:b6:1e:f7:65:ea:8c:45:78:74:78: d6:91:2c:68:e4:bb:e8:96:08:24:d6:f6:d3:a7:50: 68:b5:91:b8:02:e8:b3:f6:50:ed:85:35:17:0d:2b: d0:51:2a:5c:ec:3f:13:7a:16:4d:8c:4e:ce:ca:88: 3c:da:83:ee:0f:aa:68:fe:92:53:32:bb:58:d0:1a: 18:02:36:74:4a:04:22:0a:da:1b:ab:ec:db:83:25: 81:2b:76:9e:98:03:51:4e:91:b0:25:b5:18:dc:77: 0b:9a:e9:46:4f:1c:9c:aa:9d:cc:31:8c:1c:04:1d: 82:10:e9:c7:33:ef:91:da:29:1a:36:fa:c5:e3:06: 55:e8:d2:b3:6d:a1:5b:0f:0a:70:18:92:12:44:59: cd:1a:03:c8:4e:17:a0:cd:f2:a4:7f:12:f7:3a:dd: f1:36:a2:b2:c3:29:1c:49:47:02:84:76:04:99:0e: ba:59:dd:04:50:ed:37:86:c2:67:e0:e2:6b:e0:f6: aa:78:01:d4:a5:05:f7:a0:c4:2b:ea:31:99:37:88: f9:11:34:c1:f8:31:a6:dd:e5:51:8f:e0:ca:6b:7d: 7c:88:00:b5:15:4e:68:e0:7c:70:62:7a:49:34:a9: 49:b4:ba:1e:1c:5c:a5:35:ce:41:84:dc:19:10:a3: 40:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CC:A9:10:6B:18:8F:6E:32:ED:98:2D:42:06:5A:DA:91:51:EF:20 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b500::/40 Signature Algorithm: sha256WithRSAEncryption 5e:58:a8:eb:40:9b:d8:55:37:87:ee:c5:42:a2:68:58:72:bb: c1:20:eb:de:21:68:d1:7c:25:d3:9b:e2:3d:ce:47:bd:06:ab: e0:37:7b:46:a2:06:ae:46:16:dc:0e:bd:c4:8b:b2:9f:84:7a: 06:91:20:98:91:79:8f:8d:98:92:ec:1f:6a:9f:28:94:7c:f8: 61:d6:00:2d:de:bc:fe:c1:e6:9a:c2:5e:c3:12:57:89:2d:e6: de:6c:17:75:79:f7:af:92:2f:f1:fd:26:87:19:88:88:a5:30: 5b:41:49:7d:4e:fd:a7:45:26:fb:b1:3a:86:48:5b:9c:67:85: e6:9b:c9:78:d2:15:d3:c1:1d:f4:e4:39:12:c6:2b:3e:1a:ef: 0e:39:c9:93:ba:d5:65:4d:6a:e4:62:5b:11:db:18:0f:59:65: 74:1c:23:e1:9c:dc:0f:db:ac:f7:e8:50:40:47:c7:08:65:68: 29:b9:49:af:73:62:6c:3a:02:1e:f7:20:4b:df:fb:81:02:98: 6e:30:fa:bc:e1:8d:3d:01:ae:96:da:fe:2d:b5:a0:f4:62:18: 39:67:22:63:73:46:78:e1:d5:2f:d7:c4:0c:e8:a2:03:0d:8f: 87:78:6a:a3:3c:56:43:ac:f9:c7:aa:1d:db:2b:3b:ca:ee:dc: bf:f3:ca:fc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUA/kREOMH9jQYReDo9dzpzboWcF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDFaFw0yNTEwMDUwNDQ1MDFaMDMxMTAvBgNV BAMTKDZDQ0NBOTEwNkIxODhGNkUzMkVEOTgyRDQyMDY1QURBOTE1MUVGMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgXZUoth73ZeqMRXh0eNaRLGjk u+iWCCTW9tOnUGi1kbgC6LP2UO2FNRcNK9BRKlzsPxN6Fk2MTs7KiDzag+4Pqmj+ klMyu1jQGhgCNnRKBCIK2hur7NuDJYErdp6YA1FOkbAltRjcdwua6UZPHJyqncwx jBwEHYIQ6ccz75HaKRo2+sXjBlXo0rNtoVsPCnAYkhJEWc0aA8hOF6DN8qR/Evc6 3fE2orLDKRxJRwKEdgSZDrpZ3QRQ7TeGwmfg4mvg9qp4AdSlBfegxCvqMZk3iPkR NMH4Mabd5VGP4MprfXyIALUVTmjgfHBiekk0qUm0uh4cXKU1zkGE3BkQo0A/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUbMypEGsYj24y7ZgtQgZa2pFR7yAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NTA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLUwDQYJKoZIhvcNAQELBQADggEBAF5Y qOtAm9hVN4fuxUKiaFhyu8Eg694haNF8JdOb4j3OR70Gq+A3e0aiBq5GFtwOvcSL sp+EegaRIJiReY+NmJLsH2qfKJR8+GHWAC3evP7B5prCXsMSV4kt5t5sF3V596+S L/H9JocZiIilMFtBSX1O/adFJvuxOoZIW5xnheabyXjSFdPBHfTkORLGKz4a7w45 yZO61WVNauRiWxHbGA9ZZXQcI+Gc3A/brPfoUEBHxwhlaCm5Sa9zYmw6Ah73IEvf +4ECmG4w+rzhjT0Brpba/i21oPRiGDlnImNzRnjh1S/XxAzoogMNj4d4aqM8VkOs +ceqHdsrO8ru3L/zyvw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org