$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199594.roa File: AS199594.roa (raw, json) Hash identifier: E61yOrn5huzdVF2lqgMctqHSNHxntX/HDeeoft2XWWc= Subject key identifier: B4:1F:F6:0A:01:71:CC:B2:DC:53:4B:89:D7:70:97:80:B5:E1:24:51 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7FD5A6FD0A199D0C1E0A2BD493B812E0863128EC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199594.roa Signing time: Sun 05 Nov 2023 04:06:58 +0000 ROA not before: Sun 05 Nov 2023 04:01:58 +0000 ROA not after: Sun 03 Nov 2024 04:06:58 +0000 asID: 199594 IP address blocks: 2a0a:6040:8100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:d5:a6:fd:0a:19:9d:0c:1e:0a:2b:d4:93:b8:12:e0:86:31:28:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:58 2023 GMT Not After : Nov 3 04:06:58 2024 GMT Subject: CN=B41FF60A0171CCB2DC534B89D7709780B5E12451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6b:9b:3b:04:86:fe:72:51:5e:8f:00:49:a7: 76:de:d9:91:e9:a2:6c:10:dc:66:ee:4d:da:bf:07: dd:1b:b4:62:87:ce:fa:16:6a:41:2b:18:ae:92:51: ca:a3:5d:10:a8:91:eb:05:f8:e1:d1:5b:88:6b:5b: cc:ae:a1:50:48:01:4a:1f:de:ad:13:c9:c1:8a:9e: ca:64:1c:d5:54:fc:49:d9:c6:be:01:63:04:e2:52: 72:54:6c:19:ee:5c:48:a3:4d:5a:6d:0d:7e:a8:be: 83:5f:5c:1a:36:6e:88:26:8f:a2:5a:70:21:8d:72: 6e:06:0a:08:37:ff:59:6c:4f:c7:47:bd:d0:fb:08: 4d:8b:92:da:8c:cf:73:1a:78:af:fb:55:f6:01:6e: 93:c2:a7:64:c7:d1:ea:31:72:67:6a:61:ef:ef:f4: bf:eb:46:11:ec:50:8a:e5:38:81:ed:4b:cf:08:d7: b9:34:13:cb:4c:78:07:88:38:d8:7b:2f:80:92:b6: 36:89:48:c6:0d:cd:c2:ef:f0:d6:ad:b0:df:27:a3: b5:56:91:79:eb:6e:46:a4:13:c6:67:e6:5c:86:96: 4a:a8:9b:47:b6:73:43:fb:73:97:9e:5e:97:da:dd: 29:f0:eb:52:33:ae:ec:2e:4d:22:ed:d7:47:ac:e2: db:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:1F:F6:0A:01:71:CC:B2:DC:53:4B:89:D7:70:97:80:B5:E1:24:51 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199594.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8100::/40 Signature Algorithm: sha256WithRSAEncryption 43:83:1c:40:41:b0:db:45:8f:a0:4d:f4:fa:14:d6:61:d7:b7: 67:df:dc:e6:9e:37:8e:75:5c:31:58:73:5c:79:f4:d2:f2:87: 89:63:6d:d7:f5:c5:a3:db:8e:d4:a3:52:61:f3:b1:9c:24:6d: b8:9f:0d:86:a2:fe:5f:10:23:71:a4:63:f3:d7:b5:d8:04:f2: ec:0c:30:34:38:cf:1a:4c:c0:13:28:bf:5f:14:eb:8f:57:89: 2b:47:05:ee:cd:a0:36:77:7f:d5:87:01:ce:ac:51:e8:72:0a: 68:03:72:71:d7:31:76:6e:24:01:cc:1a:1b:61:02:c9:4a:ec: d1:0c:ab:c1:e4:43:87:38:2f:0c:10:68:9c:97:b5:5a:e1:61: 64:71:59:46:0b:df:78:1b:16:8c:7b:cb:0e:3e:0b:07:70:db: f0:e8:9e:81:a8:7d:29:a6:55:dd:92:dc:9a:63:4b:ae:e6:e1: 0f:33:72:35:41:03:af:3d:3f:7a:fa:35:f7:00:9e:3c:29:a6: 0b:20:86:52:f2:0b:3e:21:24:41:e5:a3:14:e7:8a:12:a3:eb: 6c:b9:a4:b0:00:51:4c:01:c3:ba:2a:20:14:49:f8:6c:28:30: fe:22:43:d0:82:d8:cb:c8:c9:49:84:bd:a7:47:64:68:62:80: 05:eb:be:00 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUf9Wm/QoZnQweCivUk7gS4IYxKOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNThaFw0yNDExMDMwNDA2NThaMDMxMTAvBgNV BAMTKEI0MUZGNjBBMDE3MUNDQjJEQzUzNEI4OUQ3NzA5NzgwQjVFMTI0NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIa5s7BIb+clFejwBJp3be2ZHp omwQ3GbuTdq/B90btGKHzvoWakErGK6SUcqjXRCokesF+OHRW4hrW8yuoVBIAUof 3q0TycGKnspkHNVU/EnZxr4BYwTiUnJUbBnuXEijTVptDX6ovoNfXBo2bogmj6Ja cCGNcm4GCgg3/1lsT8dHvdD7CE2LktqMz3MaeK/7VfYBbpPCp2TH0eoxcmdqYe/v 9L/rRhHsUIrlOIHtS88I17k0E8tMeAeIONh7L4CStjaJSMYNzcLv8NatsN8no7VW kXnrbkakE8Zn5lyGlkqom0e2c0P7c5eeXpfa3Snw61IzruwuTSLt10es4tuZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUtB/2CgFxzLLcU0uJ13CXgLXhJFEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NTk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIEwDQYJKoZIhvcNAQELBQADggEBAEOD HEBBsNtFj6BN9PoU1mHXt2ff3OaeN451XDFYc1x59NLyh4ljbdf1xaPbjtSjUmHz sZwkbbifDYai/l8QI3GkY/PXtdgE8uwMMDQ4zxpMwBMov18U649XiStHBe7NoDZ3 f9WHAc6sUehyCmgDcnHXMXZuJAHMGhthAslK7NEMq8HkQ4c4LwwQaJyXtVrhYWRx WUYL33gbFox7yw4+Cwdw2/DonoGofSmmVd2S3JpjS67m4Q8zcjVBA689P3r6NfcA njwppgsghlLyCz4hJEHloxTnihKj62y5pLAAUUwBw7oqIBRJ+GwoMP4iQ9CC2MvI yUmEvadHZGhigAXrvgA= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org