$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199504.roa File: AS199504.roa (raw, json) Hash identifier: ToDcW6bpQaQYPXuclc3r21/b/BlvL7SUYKYaafqHBpo= Subject key identifier: 7E:19:A5:9C:B6:2C:36:5A:9A:2B:C7:48:6B:7B:90:B6:15:93:61:74 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4D16540765FA4AC409287BB6E919AE173E38B288 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199504.roa Signing time: Sun 05 Nov 2023 04:07:14 +0000 ROA not before: Sun 05 Nov 2023 04:02:14 +0000 ROA not after: Sun 03 Nov 2024 04:07:14 +0000 asID: 199504 IP address blocks: 2a0a:6040:b500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:16:54:07:65:fa:4a:c4:09:28:7b:b6:e9:19:ae:17:3e:38:b2:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:14 2023 GMT Not After : Nov 3 04:07:14 2024 GMT Subject: CN=7E19A59CB62C365A9A2BC7486B7B90B615936174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8a:b8:39:88:17:83:8b:02:94:cd:be:01:a5: 3f:b0:99:4c:28:ed:d4:d5:c3:92:78:bc:00:95:98: 25:72:f5:4e:79:cb:62:8b:54:7a:26:3e:f6:1b:c3: 5e:5b:77:ca:c1:ab:c1:7e:ab:61:ba:27:9e:52:29: 98:8b:58:ec:a7:fd:3a:bd:8c:7e:84:b2:e9:9d:3d: a2:fb:47:15:a7:8a:63:46:24:9b:34:9e:51:48:f1: 3e:31:13:2e:09:f8:ec:ca:d1:eb:30:6b:df:56:eb: 74:40:39:04:8b:d5:f0:bd:56:d2:c5:9d:5f:0e:df: 7c:fa:9a:eb:cb:43:f1:fb:35:f0:8b:b7:97:49:45: d3:46:6c:34:10:e9:df:32:0d:f5:2b:b1:f2:ea:33: f2:a5:78:c1:6f:dd:9b:36:75:06:71:0b:71:fa:8d: c6:52:25:3d:97:ab:54:16:82:47:ba:d5:27:43:1e: a3:e9:d9:3d:29:13:25:7c:04:a5:c6:2c:78:ac:fa: d7:c3:da:91:68:07:42:34:6f:df:db:32:9e:ba:58: 19:3b:e4:12:80:6f:02:6c:16:51:51:23:a5:95:d5: 5e:6f:0a:8d:cc:e1:67:68:10:6c:95:32:b8:a6:3c: b7:0a:8d:42:ff:6a:7c:2c:73:6c:ba:6e:3d:6d:b2: 98:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:19:A5:9C:B6:2C:36:5A:9A:2B:C7:48:6B:7B:90:B6:15:93:61:74 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b500::/40 Signature Algorithm: sha256WithRSAEncryption 81:6c:af:67:8b:96:43:b1:1b:93:71:2d:19:86:ec:d1:c8:4d: 6c:fc:d1:ae:09:f3:81:49:d6:53:ba:3f:ab:a5:3d:60:ae:b2: 0a:6f:c5:07:c5:d0:97:fa:35:35:99:e6:7c:04:2d:4a:49:8f: 8e:4b:71:c5:a7:86:66:fd:4b:ed:9a:80:fa:82:4f:be:b4:92: 23:7d:bd:d0:d8:30:76:0c:3a:21:1f:26:4c:7a:9f:d8:6b:b5: 12:a8:df:a6:ec:02:eb:31:ee:dd:b0:71:73:cb:e8:90:c3:79: 45:c8:4c:49:58:b1:ce:2c:0d:f4:72:8f:d1:4f:cb:9f:a7:59: e6:d1:c7:a9:a3:bd:77:9f:f5:d1:a1:ec:9c:35:17:0f:26:dc: c8:f2:51:f4:9d:71:b5:d3:36:ee:82:f8:c0:aa:21:68:35:63: 8b:89:25:a5:6f:b2:d7:47:a2:fa:00:59:c3:89:ca:88:c8:56: ab:f8:a5:fc:53:0e:9c:7a:54:1c:fb:d2:42:d0:42:42:5e:1a: 03:5e:70:e8:65:a3:c7:2f:b9:af:f4:a0:05:00:d2:7f:6d:f4: bb:d5:da:a7:c3:b8:e2:d4:31:9e:5f:c3:4e:41:37:8c:b1:a3: 14:5b:43:91:1e:9b:13:4e:bd:fd:37:43:6c:ea:47:0c:2e:3f: 2d:60:1f:56 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTRZUB2X6SsQJKHu26RmuFz44sogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTRaFw0yNDExMDMwNDA3MTRaMDMxMTAvBgNV BAMTKDdFMTlBNTlDQjYyQzM2NUE5QTJCQzc0ODZCN0I5MEI2MTU5MzYxNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8irg5iBeDiwKUzb4BpT+wmUwo 7dTVw5J4vACVmCVy9U55y2KLVHomPvYbw15bd8rBq8F+q2G6J55SKZiLWOyn/Tq9 jH6EsumdPaL7RxWnimNGJJs0nlFI8T4xEy4J+OzK0eswa99W63RAOQSL1fC9VtLF nV8O33z6muvLQ/H7NfCLt5dJRdNGbDQQ6d8yDfUrsfLqM/KleMFv3Zs2dQZxC3H6 jcZSJT2Xq1QWgke61SdDHqPp2T0pEyV8BKXGLHis+tfD2pFoB0I0b9/bMp66WBk7 5BKAbwJsFlFRI6WV1V5vCo3M4WdoEGyVMrimPLcKjUL/anwsc2y6bj1tspiLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUfhmlnLYsNlqaK8dIa3uQthWTYXQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NTA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLUwDQYJKoZIhvcNAQELBQADggEBAIFs r2eLlkOxG5NxLRmG7NHITWz80a4J84FJ1lO6P6ulPWCusgpvxQfF0Jf6NTWZ5nwE LUpJj45LccWnhmb9S+2agPqCT760kiN9vdDYMHYMOiEfJkx6n9hrtRKo36bsAusx 7t2wcXPL6JDDeUXITElYsc4sDfRyj9FPy5+nWebRx6mjvXef9dGh7Jw1Fw8m3Mjy UfSdcbXTNu6C+MCqIWg1Y4uJJaVvstdHovoAWcOJyojIVqv4pfxTDpx6VBz70kLQ QkJeGgNecOhlo8cvua/0oAUA0n9t9LvV2qfDuOLUMZ5fw05BN4yxoxRbQ5EemxNO vf03Q2zqRwwuPy1gH1Y= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org