$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199626.roa File: AS199626.roa (raw, json) Hash identifier: neeeVOUfNIpDyRL9XNm1WuAQUPdKSxJNbN4pEc1rAIo= Subject key identifier: 1B:2B:5E:F5:B9:69:A5:56:16:15:61:7E:BF:92:02:CE:7A:2F:D1:2F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 69741A70D40D0202A54098DF855B1EFD53B201F5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199626.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 199626 IP address blocks: 2a0a:6040:7a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:74:1a:70:d4:0d:02:02:a5:40:98:df:85:5b:1e:fd:53:b2:01:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=1B2B5EF5B969A5561615617EBF9202CE7A2FD12F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:df:82:bf:69:bd:fe:2c:a2:2c:f5:cb:db:5b: 28:d6:86:27:69:e9:7a:47:64:e8:a2:64:89:9b:7f: 3b:98:df:ae:ed:71:7c:44:df:9b:cc:d3:40:ec:98: 5b:48:52:33:23:4d:cd:63:e4:3f:9e:51:fe:67:de: 8b:88:53:41:46:c5:d8:a2:3c:3b:c6:a1:a9:34:be: 1b:06:6f:01:9a:f9:50:8e:cd:80:b3:f7:ae:d8:a4: 35:55:9a:b2:90:e2:58:a3:ce:94:89:81:56:77:08: d3:6e:c0:10:2e:b0:6b:94:25:5e:f8:15:bf:7e:cc: 71:df:6b:e3:e5:d7:d2:d2:6b:d3:1b:e5:59:57:ba: c7:32:3f:c3:31:bf:dd:21:2c:28:13:4c:b4:b1:ac: a0:00:ba:7b:71:36:73:23:79:51:98:98:af:13:86: 76:c5:61:77:62:72:17:47:a4:6a:39:91:50:59:a3: 47:b1:06:d4:74:e7:cf:4a:18:3c:6b:6f:bd:dc:8a: 47:c7:9a:00:57:a0:cf:ff:29:1f:f6:0f:6f:bf:83: 6f:d6:76:c6:9e:c1:5b:8e:0c:2d:7c:57:1e:07:ab: 6b:d3:3f:e7:3b:d9:f5:14:e1:a8:8e:3e:a6:e3:ef: ba:f5:3c:97:70:e8:32:a3:19:67:f6:c2:4f:9d:95: 08:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2B:5E:F5:B9:69:A5:56:16:15:61:7E:BF:92:02:CE:7A:2F:D1:2F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199626.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7a00::/40 Signature Algorithm: sha256WithRSAEncryption 3a:da:ae:7c:c6:17:b5:be:47:4e:40:78:b5:06:2a:41:72:6c: 62:f9:92:61:22:34:04:21:3f:f3:f7:2f:cb:d8:85:e5:b4:d7: b3:be:8f:cf:95:7c:3a:73:9b:1c:b6:c7:39:dd:a1:49:1b:5d: 9a:8f:41:e7:ff:32:6c:a5:b9:65:d3:03:e2:98:e8:7f:61:88: 99:7c:33:9b:b7:bd:4f:83:4b:da:92:e6:d0:7f:b3:97:55:73: 95:a9:7a:b8:f3:33:c2:2b:5e:d8:8a:ad:8e:39:59:1d:03:6d: d3:13:aa:77:ee:f1:e7:4b:a5:d5:69:18:bd:99:3e:e5:7e:fc: fb:12:05:5b:15:02:39:0f:86:76:e4:70:a4:45:ee:61:fc:f0: 8b:83:74:ad:24:70:b4:9e:46:54:b0:a7:7e:29:f6:79:02:25: a6:cd:23:6d:b3:94:e2:1b:fe:8f:35:fb:96:f6:12:f3:98:88: 5f:ee:39:94:16:6e:e3:dd:5f:27:f9:58:fc:60:eb:ac:ce:bc: b9:a5:05:86:bf:24:01:86:e3:06:64:d8:6e:70:80:a7:ef:56: 90:4e:cf:e7:c1:07:ea:64:fe:da:1c:c5:d0:00:1b:83:5d:a1: b5:29:66:f9:1f:b5:62:2b:bd:54:4a:5b:1f:59:f3:80:d7:9a: 2d:3f:c6:d3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaXQacNQNAgKlQJjfhVse/VOyAfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKDFCMkI1RUY1Qjk2OUE1NTYxNjE1NjE3RUJGOTIwMkNFN0EyRkQxMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC834K/ab3+LKIs9cvbWyjWhidp 6XpHZOiiZImbfzuY367tcXxE35vM00DsmFtIUjMjTc1j5D+eUf5n3ouIU0FGxdii PDvGoak0vhsGbwGa+VCOzYCz967YpDVVmrKQ4lijzpSJgVZ3CNNuwBAusGuUJV74 Fb9+zHHfa+Pl19LSa9Mb5VlXuscyP8Mxv90hLCgTTLSxrKAAuntxNnMjeVGYmK8T hnbFYXdichdHpGo5kVBZo0exBtR0589KGDxrb73cikfHmgBXoM//KR/2D2+/g2/W dsaewVuODC18Vx4Hq2vTP+c72fUU4aiOPqbj77r1PJdw6DKjGWf2wk+dlQgRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUGyte9blppVYWFWF+v5ICznov0S8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHowDQYJKoZIhvcNAQELBQADggEBADra rnzGF7W+R05AeLUGKkFybGL5kmEiNAQhP/P3L8vYheW017O+j8+VfDpzmxy2xznd oUkbXZqPQef/MmyluWXTA+KY6H9hiJl8M5u3vU+DS9qS5tB/s5dVc5WperjzM8Ir XtiKrY45WR0DbdMTqnfu8edLpdVpGL2ZPuV+/PsSBVsVAjkPhnbkcKRF7mH88IuD dK0kcLSeRlSwp34p9nkCJabNI22zlOIb/o81+5b2EvOYiF/uOZQWbuPdXyf5WPxg 66zOvLmlBYa/JAGG4wZk2G5wgKfvVpBOz+fBB+pk/tocxdAAG4NdobUpZvkftWIr vVRKWx9Z84DXmi0/xtM= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org