$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199566.roa File: AS199566.roa (raw, json) Hash identifier: e9ezppwmfuc0sdadmhf5Yo3VMPDbvF0Pu23tgqrHckg= Subject key identifier: 71:AF:A9:F5:26:F2:C6:54:F7:1E:7A:C5:9E:A2:72:9A:9F:81:B6:F9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 043A8A969E73A0E6431069FEB0B126C8F310BC9C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199566.roa Signing time: Sun 05 Nov 2023 04:07:09 +0000 ROA not before: Sun 05 Nov 2023 04:02:09 +0000 ROA not after: Sun 03 Nov 2024 04:07:09 +0000 asID: 199566 IP address blocks: 2a0a:6040:bc00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:3a:8a:96:9e:73:a0:e6:43:10:69:fe:b0:b1:26:c8:f3:10:bc:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:09 2023 GMT Not After : Nov 3 04:07:09 2024 GMT Subject: CN=71AFA9F526F2C654F71E7AC59EA2729A9F81B6F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:80:fd:67:e1:0c:13:be:02:4b:e5:cc:29:94: 73:d1:6a:00:38:45:43:d6:7b:b8:68:30:0f:a4:f8: 81:33:c9:af:ba:01:b8:ab:b2:5c:51:f3:93:50:f2: 6a:fe:8d:74:e6:68:c3:15:2d:ba:e0:d3:ad:98:9c: b8:69:7b:9e:a0:cc:85:93:15:30:86:2e:67:0b:46: 31:fe:d5:c5:5d:e4:7d:91:2a:2d:20:8e:f3:88:e9: 77:e2:a9:fb:a1:f7:4e:a2:69:a5:29:7b:f2:1a:c5: 09:4b:09:f4:85:b4:75:9c:63:5f:52:f0:67:9e:d5: ad:58:35:08:79:08:37:95:f7:c2:2f:ad:20:4f:a2: 71:80:d6:8d:cb:cc:ce:19:dd:4e:bf:62:bb:bb:d2: c2:98:61:7a:d2:a9:76:2b:de:48:89:b5:c3:58:c3: 15:cd:ca:dd:33:7c:ec:38:76:2a:4d:04:b5:43:16: 9e:ac:41:c2:5f:d4:f4:d1:4b:a9:f8:64:92:bf:6d: 0a:d9:47:0c:d2:03:b4:be:06:8c:3c:2f:a5:df:6f: a6:a5:18:50:a1:ce:55:f5:af:32:98:bb:48:4f:29: 93:01:9b:b0:1b:a3:b2:52:76:fd:5d:8f:85:23:f7: 50:41:88:9e:7e:0c:9a:bc:48:0e:16:28:b2:0e:fa: ac:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:AF:A9:F5:26:F2:C6:54:F7:1E:7A:C5:9E:A2:72:9A:9F:81:B6:F9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199566.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bc00::/40 Signature Algorithm: sha256WithRSAEncryption 34:32:9a:cd:b7:1f:55:1a:d9:fb:cb:d7:6f:6b:cc:ac:a3:99: 7d:28:50:55:32:9f:22:9f:37:5f:2d:73:f3:0d:91:af:8d:d1: 53:41:2c:d0:cd:6f:f7:56:9d:3b:6c:e3:33:7c:ae:9d:82:74: e7:aa:a2:d7:4c:d7:1e:7c:d0:ce:49:2c:ad:4a:77:b0:36:73: 71:02:ba:36:b5:33:f0:34:64:33:97:d9:13:64:6f:36:d8:26: 03:2a:83:f2:95:46:52:d2:96:2c:6b:a6:f8:ac:a1:02:af:66: fd:94:20:f3:a4:3a:8d:df:9d:34:61:e8:9d:20:d5:f7:24:17: ba:21:2c:c9:f8:3b:5e:02:ab:16:03:5e:b8:7c:b4:4e:d7:61: ae:db:78:42:eb:99:18:24:90:06:47:e8:76:b4:5b:eb:23:de: 7b:8e:ef:6e:19:c2:82:ad:e8:79:4f:e4:4a:1d:1f:47:6e:0c: 84:8c:93:33:b1:a5:2e:02:0a:ab:da:90:a0:02:be:ab:41:63: cf:b0:a0:2f:61:ff:e3:72:07:f7:74:9b:76:80:38:5d:f1:dc: 07:35:91:77:ff:fb:e6:e8:49:87:8d:05:ec:89:42:b5:e8:a7: f2:52:67:22:b8:20:39:83:07:0f:8e:7e:61:91:fa:df:c8:d3: 05:c0:e2:f7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBDqKlp5zoOZDEGn+sLEmyPMQvJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDlaFw0yNDExMDMwNDA3MDlaMDMxMTAvBgNV BAMTKDcxQUZBOUY1MjZGMkM2NTRGNzFFN0FDNTlFQTI3MjlBOUY4MUI2RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpgP1n4QwTvgJL5cwplHPRagA4 RUPWe7hoMA+k+IEzya+6AbirslxR85NQ8mr+jXTmaMMVLbrg062YnLhpe56gzIWT FTCGLmcLRjH+1cVd5H2RKi0gjvOI6Xfiqfuh906iaaUpe/IaxQlLCfSFtHWcY19S 8Gee1a1YNQh5CDeV98IvrSBPonGA1o3LzM4Z3U6/Yru70sKYYXrSqXYr3kiJtcNY wxXNyt0zfOw4dipNBLVDFp6sQcJf1PTRS6n4ZJK/bQrZRwzSA7S+Bow8L6Xfb6al GFChzlX1rzKYu0hPKZMBm7Abo7JSdv1dj4Uj91BBiJ5+DJq8SA4WKLIO+qwPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUca+p9SbyxlT3HnrFnqJymp+BtvkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NTY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLwwDQYJKoZIhvcNAQELBQADggEBADQy ms23H1Ua2fvL129rzKyjmX0oUFUynyKfN18tc/MNka+N0VNBLNDNb/dWnTts4zN8 rp2CdOeqotdM1x580M5JLK1Kd7A2c3ECuja1M/A0ZDOX2RNkbzbYJgMqg/KVRlLS lixrpvisoQKvZv2UIPOkOo3fnTRh6J0g1fckF7ohLMn4O14CqxYDXrh8tE7XYa7b eELrmRgkkAZH6Ha0W+sj3nuO724ZwoKt6HlP5EodH0duDISMkzOxpS4CCqvakKAC vqtBY8+woC9h/+NyB/d0m3aAOF3x3Ac1kXf/++boSYeNBeyJQrXop/JSZyK4IDmD Bw+OfmGR+t/I0wXA4vc= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org