$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199605.roa File: AS199605.roa (raw, json) Hash identifier: bgFkA4aGNJHeHJgf7Ub6qppKz3r2B0zLyINWlOvoxrI= Subject key identifier: 77:17:0B:D4:6D:F4:0E:13:D6:99:5E:39:0A:AE:70:59:36:00:60:B5 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5AF26100D407964A9AA6F9A8715565CDA33669A8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199605.roa Signing time: Sun 05 Nov 2023 04:07:11 +0000 ROA not before: Sun 05 Nov 2023 04:02:11 +0000 ROA not after: Sun 03 Nov 2024 04:07:11 +0000 asID: 199605 IP address blocks: 2a0a:6040:7e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f2:61:00:d4:07:96:4a:9a:a6:f9:a8:71:55:65:cd:a3:36:69:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:11 2023 GMT Not After : Nov 3 04:07:11 2024 GMT Subject: CN=77170BD46DF40E13D6995E390AAE7059360060B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3b:63:bf:fd:06:d2:4d:31:0d:70:e2:74:d4: a3:ba:e2:76:72:b0:57:2d:d3:af:d3:4d:8b:de:a3: 48:3c:6e:6c:01:b1:33:f4:eb:25:bc:16:23:94:58: 65:59:42:f0:c2:b4:44:3f:87:99:21:a8:21:e0:a5: 99:5f:74:d8:6a:d9:f3:4f:09:9e:bc:f1:59:1a:d1: 6f:da:bf:60:25:cc:e3:04:2a:e1:66:ca:7c:6d:16: c6:4a:19:f2:93:64:9f:bc:2c:69:a4:f4:2c:db:96: e2:13:c9:c2:69:dc:8e:5e:1a:4c:d6:70:7f:de:a9: e8:f7:0e:38:10:d9:04:81:14:b5:54:17:32:d5:a3: 6d:8b:5a:d4:67:37:18:5e:5a:e4:76:6e:6b:c6:a4: 6d:db:ae:1a:04:64:9c:13:df:04:00:9f:b6:87:5e: 1f:15:9e:e8:3c:0a:09:8a:4d:fe:be:ea:c1:b1:48: 10:1e:6e:da:63:f5:60:2f:31:8f:5e:cf:3d:32:ae: c1:f1:77:2d:5a:3d:59:97:68:bf:2f:ef:e3:8a:37: cb:3a:84:3a:03:3c:f1:a6:19:5b:bb:97:ae:93:a4: 21:89:6c:91:86:98:42:ec:5c:4f:d2:a6:51:cd:93: 0b:14:96:8f:46:1c:f8:cd:01:76:d0:cd:c1:e5:a5: c0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:17:0B:D4:6D:F4:0E:13:D6:99:5E:39:0A:AE:70:59:36:00:60:B5 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199605.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7e00::/40 Signature Algorithm: sha256WithRSAEncryption 5c:da:92:0c:01:d2:76:a2:ed:ed:7f:2b:48:b2:9f:dc:2b:a8: ee:c4:ac:73:87:e3:9f:f4:1f:d8:5e:63:a9:e4:33:59:85:bd: 1e:32:89:ac:7f:68:a8:e7:c5:e4:e2:9f:e6:07:82:46:62:98: 64:52:ea:65:ae:5e:e9:51:36:96:4a:21:f8:a5:2a:a2:7b:81: 02:77:05:0f:47:eb:d9:05:a9:36:73:ca:4d:50:62:90:45:38: 4f:ee:bf:70:00:05:61:84:3d:ea:eb:2d:82:88:51:2b:55:b7: 1e:3e:b2:35:5c:90:7e:3d:bf:f9:6a:ab:5b:fb:f9:c4:bb:4a: 98:6b:05:26:cb:1a:0c:48:ae:34:1e:7b:99:d8:f8:ae:12:db: 9e:62:f6:a3:c3:02:5b:99:ef:d7:7f:11:75:6b:b9:99:b3:d6: 80:8d:16:40:21:92:a0:34:43:8f:da:d7:22:e3:63:94:9e:39: ec:9c:9a:fd:ad:40:99:78:c5:63:c9:35:6f:d3:e9:a2:80:40: 1f:fe:f7:8a:ee:ce:f1:70:90:f4:1f:52:d3:df:6c:e9:7e:17: 82:84:6c:c0:36:7c:e1:77:90:f6:60:41:1b:e0:0b:cb:4f:53: f7:cf:c0:3f:67:6e:02:b3:72:d7:c7:8d:ab:4a:a2:c0:c2:b2: 43:0f:55:92 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWvJhANQHlkqapvmocVVlzaM2aagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTFaFw0yNDExMDMwNDA3MTFaMDMxMTAvBgNV BAMTKDc3MTcwQkQ0NkRGNDBFMTNENjk5NUUzOTBBQUU3MDU5MzYwMDYwQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsO2O//QbSTTENcOJ01KO64nZy sFct06/TTYveo0g8bmwBsTP06yW8FiOUWGVZQvDCtEQ/h5khqCHgpZlfdNhq2fNP CZ688Vka0W/av2AlzOMEKuFmynxtFsZKGfKTZJ+8LGmk9CzbluITycJp3I5eGkzW cH/eqej3DjgQ2QSBFLVUFzLVo22LWtRnNxheWuR2bmvGpG3brhoEZJwT3wQAn7aH Xh8Vnug8CgmKTf6+6sGxSBAebtpj9WAvMY9ezz0yrsHxdy1aPVmXaL8v7+OKN8s6 hDoDPPGmGVu7l66TpCGJbJGGmELsXE/SplHNkwsUlo9GHPjNAXbQzcHlpcDVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdxcL1G30DhPWmV45Cq5wWTYAYLUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjA1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQH4wDQYJKoZIhvcNAQELBQADggEBAFza kgwB0nai7e1/K0iyn9wrqO7ErHOH45/0H9heY6nkM1mFvR4yiax/aKjnxeTin+YH gkZimGRS6mWuXulRNpZKIfilKqJ7gQJ3BQ9H69kFqTZzyk1QYpBFOE/uv3AABWGE PerrLYKIUStVtx4+sjVckH49v/lqq1v7+cS7SphrBSbLGgxIrjQee5nY+K4S255i 9qPDAluZ79d/EXVruZmz1oCNFkAhkqA0Q4/a1yLjY5SeOeycmv2tQJl4xWPJNW/T 6aKAQB/+94ruzvFwkPQfUtPfbOl+F4KEbMA2fOF3kPZgQRvgC8tPU/fPwD9nbgKz ctfHjatKosDCskMPVZI= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org