$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199566.roa File: AS199566.roa (raw, json) Hash identifier: 0Q0vlI1YroYgP6eYLyTxqyu92PUaecmf5UDhdmaRfPE= Subject key identifier: 68:4F:D8:AA:1A:DA:A2:76:7C:F7:F6:BF:8D:DF:1C:BD:65:08:0E:8E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 77BE430BAB1DFFCC4D731722387CC4E44D47C48E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199566.roa Signing time: Sun 06 Oct 2024 04:45:05 +0000 ROA not before: Sun 06 Oct 2024 04:40:05 +0000 ROA not after: Sun 05 Oct 2025 04:45:05 +0000 asID: 199566 IP address blocks: 2a0a:6040:bc00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:be:43:0b:ab:1d:ff:cc:4d:73:17:22:38:7c:c4:e4:4d:47:c4:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:05 2024 GMT Not After : Oct 5 04:45:05 2025 GMT Subject: CN=684FD8AA1ADAA2767CF7F6BF8DDF1CBD65080E8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ff:a1:8b:c0:56:db:9b:e9:55:c0:f4:f5:b6: d3:0c:c6:c4:f9:69:47:ad:60:f5:ec:e6:a0:03:ef: e0:c7:d1:a1:e6:08:9e:da:78:5b:e9:0e:8f:f4:f8: 88:c8:61:24:a7:fb:38:0a:f6:dd:ed:d9:1a:78:fc: 97:7b:b6:16:69:2a:fd:37:d5:ac:10:08:39:fb:e1: 3e:0f:49:07:11:09:ce:98:5e:85:de:fe:92:2c:d8: 68:08:9d:ec:d6:2d:0a:f0:81:38:df:23:bd:30:d0: 02:3b:be:f5:d2:77:84:c8:76:d4:c3:a0:46:cb:bc: 24:68:d1:86:63:45:e3:fb:43:b8:50:87:00:7e:68: 99:2a:1b:b5:dc:b6:26:0b:85:ed:72:ca:4c:5c:27: 7c:95:de:1c:9d:fc:72:f3:b7:45:8e:f8:bc:20:af: 88:18:70:aa:12:7d:74:32:13:a6:70:c8:c7:72:b3: f2:8b:1c:e7:1c:63:27:3f:c1:f1:17:f6:00:48:d7: 6a:fc:19:5c:20:ec:43:a3:71:1e:c1:04:41:e3:9f: 6c:35:c8:f3:0b:ce:17:d4:8c:d5:c4:41:3e:33:00: a5:b3:1b:ac:14:34:7f:ae:5e:4b:e9:b8:c8:a2:12: d7:b4:fd:16:97:80:15:ea:1b:66:35:e0:9a:a3:68: 4c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4F:D8:AA:1A:DA:A2:76:7C:F7:F6:BF:8D:DF:1C:BD:65:08:0E:8E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199566.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bc00::/40 Signature Algorithm: sha256WithRSAEncryption 5b:94:87:d0:1f:62:58:ee:2c:83:2e:2e:e9:e7:01:00:ea:a7: 63:1c:9f:1b:5a:ab:47:14:77:35:1e:56:51:b0:b1:7f:4d:28: ca:ec:eb:66:f9:62:cd:8a:f6:1b:0d:f5:7e:49:5d:43:30:71: df:31:e9:95:db:de:6e:0c:33:48:25:c6:3c:9e:bc:71:ee:fa: 86:7d:e4:f7:e2:32:05:d3:6a:32:a4:ad:f3:9e:53:b5:6e:aa: de:75:38:c4:cb:9d:c2:25:78:3b:c7:0b:de:b5:d3:29:f4:a1: 4f:7f:f5:89:3f:32:bf:9f:bf:f9:d4:0f:97:f5:4c:25:eb:e5: 00:24:16:2b:19:e6:43:b2:e6:40:cc:2e:39:59:a4:b2:94:7d: 94:c6:66:75:80:03:c9:a9:15:75:8d:65:8d:9d:bd:b6:a6:e3: 63:36:c2:79:5d:19:14:06:77:1c:19:c0:e7:6a:3e:1b:2d:6e: 0d:63:dc:b8:bd:aa:1f:34:ef:bd:10:ce:6b:f6:58:5a:2a:30: bf:f0:6d:0d:ab:f6:69:9e:d6:89:e6:8d:8c:8a:92:8a:ec:8a: e1:3c:5e:38:f3:96:f3:b2:71:44:cf:2e:d5:26:ac:72:95:07: 19:51:e6:db:7e:3c:23:37:23:68:4a:ea:49:b8:62:1c:e7:8f: 0e:6e:33:b2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd75DC6sd/8xNcxciOHzE5E1HxI4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDVaFw0yNTEwMDUwNDQ1MDVaMDMxMTAvBgNV BAMTKDY4NEZEOEFBMUFEQUEyNzY3Q0Y3RjZCRjhEREYxQ0JENjUwODBFOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy/6GLwFbbm+lVwPT1ttMMxsT5 aUetYPXs5qAD7+DH0aHmCJ7aeFvpDo/0+IjIYSSn+zgK9t3t2Rp4/Jd7thZpKv03 1awQCDn74T4PSQcRCc6YXoXe/pIs2GgInezWLQrwgTjfI70w0AI7vvXSd4TIdtTD oEbLvCRo0YZjReP7Q7hQhwB+aJkqG7XctiYLhe1yykxcJ3yV3hyd/HLzt0WO+Lwg r4gYcKoSfXQyE6ZwyMdys/KLHOccYyc/wfEX9gBI12r8GVwg7EOjcR7BBEHjn2w1 yPMLzhfUjNXEQT4zAKWzG6wUNH+uXkvpuMiiEte0/RaXgBXqG2Y14JqjaEyBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaE/YqhraonZ89/a/jd8cvWUIDo4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NTY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLwwDQYJKoZIhvcNAQELBQADggEBAFuU h9AfYljuLIMuLunnAQDqp2Mcnxtaq0cUdzUeVlGwsX9NKMrs62b5Ys2K9hsN9X5J XUMwcd8x6ZXb3m4MM0glxjyevHHu+oZ95PfiMgXTajKkrfOeU7Vuqt51OMTLncIl eDvHC9610yn0oU9/9Yk/Mr+fv/nUD5f1TCXr5QAkFisZ5kOy5kDMLjlZpLKUfZTG ZnWAA8mpFXWNZY2dvbam42M2wnldGRQGdxwZwOdqPhstbg1j3Li9qh80770Qzmv2 WFoqML/wbQ2r9mme1onmjYyKkorsiuE8XjjzlvOycUTPLtUmrHKVBxlR5tt+PCM3 I2hK6km4Yhznjw5uM7I= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org