$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199626.roa File: AS199626.roa (raw, json) Hash identifier: tpBavH6EHncO/PiW2tHy9aQVoA34hJONkHButgacjTA= Subject key identifier: F0:BB:2C:E2:63:65:2D:75:32:40:07:7C:F2:E7:5F:86:72:ED:8F:F6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2E81B32478E0D3DB2CD9032B2658697A16FEBB28 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199626.roa Signing time: Sun 05 Nov 2023 04:07:10 +0000 ROA not before: Sun 05 Nov 2023 04:02:10 +0000 ROA not after: Sun 03 Nov 2024 04:07:10 +0000 asID: 199626 IP address blocks: 2a0a:6040:7a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:81:b3:24:78:e0:d3:db:2c:d9:03:2b:26:58:69:7a:16:fe:bb:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:10 2023 GMT Not After : Nov 3 04:07:10 2024 GMT Subject: CN=F0BB2CE263652D753240077CF2E75F8672ED8FF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:99:c3:0a:1a:f1:57:b6:eb:38:42:ee:87:84: f4:08:17:c1:f2:91:4b:50:36:49:b5:32:6f:1e:d0: 33:c8:40:9a:bf:a8:8f:40:01:35:e6:40:4b:fd:2a: 66:74:14:53:19:50:be:ff:2a:42:6b:59:f4:24:8b: 4c:75:77:ab:0a:50:f5:b2:b1:9d:79:92:8a:48:4c: 4b:81:ff:b3:d9:b1:42:4c:b3:aa:a9:65:c6:e8:e6: e2:e9:5a:d7:6c:4c:1d:90:c7:a2:50:14:0c:63:2f: 70:2e:56:9a:db:63:aa:c8:cb:b6:e5:50:e0:fe:c8: 58:c2:f8:f5:08:f7:4c:20:72:95:cf:ca:1a:08:ac: 6b:2e:ed:e0:d3:cd:ed:75:aa:69:ea:d1:4d:96:6c: 16:c0:3b:44:7e:f1:60:04:e2:28:69:7e:ea:13:2f: 74:4e:3c:72:5a:ef:d7:f0:1f:49:51:c9:54:29:29: 1a:c8:7a:30:1f:a3:60:03:f4:b7:ce:54:cf:11:f7: 39:a1:3e:a3:54:72:f8:ba:d8:74:72:17:88:5f:9e: 79:b8:42:aa:3a:10:e3:ae:e0:bd:07:0a:4f:3f:ec: 55:0f:c2:62:da:ef:63:a9:85:4b:8a:46:e8:b3:1b: c6:81:52:af:ba:78:1a:6f:c0:a6:fd:40:36:22:09: ec:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:BB:2C:E2:63:65:2D:75:32:40:07:7C:F2:E7:5F:86:72:ED:8F:F6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199626.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7a00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:3d:09:8b:b1:a5:43:4d:7e:31:85:1e:c6:4b:b8:5c:76:4b: e7:74:64:d6:cf:48:08:28:1e:74:ce:72:4e:4a:f1:31:c0:8e: a2:68:fa:f1:1a:93:86:ba:6c:08:23:ad:f5:a1:f0:0c:66:a5: a9:11:9d:19:a3:3d:59:99:90:2d:b1:1f:cb:3b:15:d3:2c:24: 02:60:b8:47:eb:dc:94:b4:14:68:9f:08:7c:7c:99:0c:bf:d8: 4c:8d:13:5e:ee:85:1b:03:a8:5a:61:de:0f:de:23:dd:f2:94: 5c:4d:d6:82:81:77:64:bf:c1:1e:6d:17:c4:07:d4:57:39:73: 40:b3:a7:69:12:8f:ee:bf:90:96:46:2e:d9:f3:95:7d:84:8a: 47:1f:52:13:33:d9:0a:3b:4f:fa:eb:d8:1a:97:71:19:2d:66: 5c:5c:32:8c:02:b7:2d:eb:af:be:1b:f9:41:a3:e5:9a:d7:fa: 24:62:68:71:69:3a:97:4d:cf:77:41:67:da:e6:2d:62:ee:2f: 87:e2:4f:47:0e:56:02:f6:98:6f:98:22:f3:2d:6c:f8:ba:d6: 66:88:46:45:d5:e4:2b:f2:41:8c:2a:d1:17:88:0b:e8:49:22: 8b:ee:9e:56:d6:61:a4:88:cd:0e:35:11:5a:0b:9c:90:c1:4d: 6e:54:c3:b7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIULoGzJHjg09ss2QMrJlhpehb+uygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTBaFw0yNDExMDMwNDA3MTBaMDMxMTAvBgNV BAMTKEYwQkIyQ0UyNjM2NTJENzUzMjQwMDc3Q0YyRTc1Rjg2NzJFRDhGRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtmcMKGvFXtus4Qu6HhPQIF8Hy kUtQNkm1Mm8e0DPIQJq/qI9AATXmQEv9KmZ0FFMZUL7/KkJrWfQki0x1d6sKUPWy sZ15kopITEuB/7PZsUJMs6qpZcbo5uLpWtdsTB2Qx6JQFAxjL3AuVprbY6rIy7bl UOD+yFjC+PUI90wgcpXPyhoIrGsu7eDTze11qmnq0U2WbBbAO0R+8WAE4ihpfuoT L3ROPHJa79fwH0lRyVQpKRrIejAfo2AD9LfOVM8R9zmhPqNUcvi62HRyF4hfnnm4 Qqo6EOOu4L0HCk8/7FUPwmLa72OphUuKRuizG8aBUq+6eBpvwKb9QDYiCexTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8Lss4mNlLXUyQAd88udfhnLtj/YwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHowDQYJKoZIhvcNAQELBQADggEBAJ49 CYuxpUNNfjGFHsZLuFx2S+d0ZNbPSAgoHnTOck5K8THAjqJo+vEak4a6bAgjrfWh 8AxmpakRnRmjPVmZkC2xH8s7FdMsJAJguEfr3JS0FGifCHx8mQy/2EyNE17uhRsD qFph3g/eI93ylFxN1oKBd2S/wR5tF8QH1Fc5c0Czp2kSj+6/kJZGLtnzlX2Eikcf UhMz2Qo7T/rr2BqXcRktZlxcMowCty3rr74b+UGj5ZrX+iRiaHFpOpdNz3dBZ9rm LWLuL4fiT0cOVgL2mG+YIvMtbPi61maIRkXV5CvyQYwq0ReIC+hJIovunlbWYaSI zQ41EVoLnJDBTW5Uw7c= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org