$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199594.roa File: AS199594.roa (raw, json) Hash identifier: LVWdEo3YTd32GB/PdVw1TtGnT6tk/kk9OQiN0yWLtz4= Subject key identifier: 53:39:6C:5D:63:90:97:CF:7D:EC:C8:F1:C7:5A:E5:EA:1A:2D:44:5B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3766B110C8216A75AC7F9D18478069AA3D305FD8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199594.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 199594 IP address blocks: 2a0a:6040:8100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:66:b1:10:c8:21:6a:75:ac:7f:9d:18:47:80:69:aa:3d:30:5f:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=53396C5D639097CF7DECC8F1C75AE5EA1A2D445B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:50:5b:34:83:cd:8f:ca:e6:7e:c7:06:7b:73: 1e:31:b1:fa:7e:7b:ef:8b:79:19:a7:c0:49:03:02: 4c:1b:54:79:01:1c:a1:84:62:cb:0f:c0:a4:39:26: 1c:f6:fe:e2:a8:f8:a3:ad:7f:0c:b3:13:e3:3e:6e: b7:4c:4f:32:f4:9e:3e:0d:66:db:f2:4b:51:87:9c: 67:1a:66:f9:ed:14:a8:ee:af:76:a1:d6:80:9a:79: e5:0f:8f:c9:30:d7:9c:8b:88:3f:1e:a7:73:69:1c: 03:13:74:e8:55:05:e5:c8:ce:12:22:f6:1a:20:9e: e9:2f:60:ca:42:b9:f8:39:30:d9:1d:27:4c:c0:3f: 6d:8d:b0:bc:3b:cc:86:e3:ef:f1:bd:77:dc:85:69: 10:82:24:20:b5:b8:29:5a:09:9a:78:bc:a8:77:ab: 9a:a8:45:f0:10:20:d3:1e:2c:9c:8e:85:91:39:54: 11:c3:23:28:c8:a5:cd:9f:d9:a9:17:c0:ac:c7:fa: 47:1c:0d:2a:12:45:5d:ff:82:09:c5:34:db:45:9b: f8:86:8d:97:1e:c5:c0:a7:2c:d1:3c:f1:47:7f:fc: dc:1d:1c:f7:80:07:10:da:57:8e:7a:23:b3:62:03: ad:2f:ac:a7:52:0c:5e:40:6c:89:03:f2:35:10:12: fa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:39:6C:5D:63:90:97:CF:7D:EC:C8:F1:C7:5A:E5:EA:1A:2D:44:5B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199594.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8100::/40 Signature Algorithm: sha256WithRSAEncryption c5:de:eb:e4:52:36:ad:43:dd:60:78:a5:85:b2:82:61:9d:33: 96:30:78:bb:43:ea:3c:1a:bc:05:e6:2d:ee:8d:88:a5:ff:8d: f5:80:12:95:9b:27:e9:c8:d1:52:59:85:3d:a0:ef:9c:e0:1c: 5d:50:ab:56:a4:e8:91:8b:52:f6:44:49:2f:21:da:2b:8c:ea: b7:7d:4c:5c:ad:b3:c9:f0:40:cb:02:27:47:e3:ca:d2:34:83: 3b:ca:cc:00:56:f5:c0:17:8a:0b:44:76:2f:54:56:96:1b:fc: e9:d5:c7:aa:4d:36:0f:eb:5e:fa:38:1d:91:b7:2e:b5:61:20: a2:b3:e1:67:4d:3e:67:73:09:f4:06:37:8b:3e:fe:61:03:b4: 07:6f:21:4a:e6:71:c8:be:db:54:e1:0f:a4:7a:2b:6a:c8:21: 4c:56:04:d7:39:6e:d8:49:f7:47:8c:b2:76:16:35:c6:36:26: 4f:7a:a3:a4:e0:8b:7d:21:16:7c:60:c9:dc:1e:ab:78:19:5b: 1c:a6:c3:b5:cf:51:a9:2a:dc:89:bf:4c:8f:f0:e0:3e:13:ca: 08:98:9b:1c:10:1c:05:40:cf:df:11:59:0a:18:ec:54:6f:8f: 16:2a:11:06:58:d8:9f:1f:b7:83:10:3d:1c:50:ee:02:7e:ab: e6:60:18:fd -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUN2axEMghanWsf50YR4Bpqj0wX9gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKDUzMzk2QzVENjM5MDk3Q0Y3REVDQzhGMUM3NUFFNUVBMUEyRDQ0NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClUFs0g82PyuZ+xwZ7cx4xsfp+ e++LeRmnwEkDAkwbVHkBHKGEYssPwKQ5Jhz2/uKo+KOtfwyzE+M+brdMTzL0nj4N ZtvyS1GHnGcaZvntFKjur3ah1oCaeeUPj8kw15yLiD8ep3NpHAMTdOhVBeXIzhIi 9hognukvYMpCufg5MNkdJ0zAP22NsLw7zIbj7/G9d9yFaRCCJCC1uClaCZp4vKh3 q5qoRfAQINMeLJyOhZE5VBHDIyjIpc2f2akXwKzH+kccDSoSRV3/ggnFNNtFm/iG jZcexcCnLNE88Ud//NwdHPeABxDaV456I7NiA60vrKdSDF5AbIkD8jUQEvrHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUzlsXWOQl8997Mjxx1rl6hotRFswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NTk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIEwDQYJKoZIhvcNAQELBQADggEBAMXe 6+RSNq1D3WB4pYWygmGdM5YweLtD6jwavAXmLe6NiKX/jfWAEpWbJ+nI0VJZhT2g 75zgHF1Qq1ak6JGLUvZESS8h2iuM6rd9TFyts8nwQMsCJ0fjytI0gzvKzABW9cAX igtEdi9UVpYb/OnVx6pNNg/rXvo4HZG3LrVhIKKz4WdNPmdzCfQGN4s+/mEDtAdv IUrmcci+21ThD6R6K2rIIUxWBNc5bthJ90eMsnYWNcY2Jk96o6Tgi30hFnxgydwe q3gZWxymw7XPUakq3Im/TI/w4D4TygiYmxwQHAVAz98RWQoY7FRvjxYqEQZY2J8f t4MQPRxQ7gJ+q+ZgGP0= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org