$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199650.roa File: AS199650.roa (raw, json) Hash identifier: TJQd7ntAp9qrbsgGWaOIbPhCbyrJvns0vfIVzIF0oaw= Subject key identifier: 09:0E:82:90:61:C2:80:01:0E:23:3E:E9:84:50:CF:27:90:D6:21:36 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 177D39648095AF555235E36C808D3E41AC98BEFD Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199650.roa Signing time: Sun 06 Oct 2024 04:45:11 +0000 ROA not before: Sun 06 Oct 2024 04:40:11 +0000 ROA not after: Sun 05 Oct 2025 04:45:11 +0000 asID: 199650 IP address blocks: 2a0a:6040:7b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:7d:39:64:80:95:af:55:52:35:e3:6c:80:8d:3e:41:ac:98:be:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:11 2024 GMT Not After : Oct 5 04:45:11 2025 GMT Subject: CN=090E829061C280010E233EE98450CF2790D62136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ca:19:d4:86:93:4a:2c:4f:c5:21:59:4d:19: 6c:a6:cd:31:c7:3a:14:23:c6:c5:fe:d7:9c:de:03: 6c:6e:1d:13:a7:41:62:03:0e:ba:cb:63:54:f9:2f: b5:93:dc:e7:0a:80:36:bb:81:11:4b:05:d8:9f:30: fd:d3:c1:6b:88:4f:c4:3f:65:e8:14:e5:cf:a1:97: a7:51:2d:cb:0f:6f:27:e7:e8:2c:eb:10:cf:a4:21: a2:c0:32:76:65:60:45:eb:f7:d2:40:36:6f:33:8c: 40:92:06:91:ad:30:ca:d5:f9:52:5c:49:6c:71:b6: fa:23:8e:cf:4c:9c:be:f1:ee:d0:e0:e4:c6:50:f4: e2:36:8d:31:d5:c5:4b:b2:da:f9:3a:51:92:85:d9: 81:0a:9b:e3:6f:2e:1a:a4:05:6c:3c:d9:fd:b8:bf: ef:49:16:f0:ec:9c:76:55:07:08:b9:d7:ee:57:43: 96:90:19:99:47:62:a6:c9:54:93:de:36:f8:a5:5c: 73:36:b1:b6:51:c9:47:d5:6e:f9:b0:b4:5d:0e:c0: 57:1a:21:a6:07:3b:c6:36:33:29:5e:53:41:8f:eb: ec:4b:26:8d:55:c4:1c:b5:20:d6:9a:7f:c0:3f:48: 9d:9e:60:35:31:f7:c3:de:f7:1c:c2:5e:62:7d:63: 47:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:0E:82:90:61:C2:80:01:0E:23:3E:E9:84:50:CF:27:90:D6:21:36 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7b00::/40 Signature Algorithm: sha256WithRSAEncryption c3:17:26:8f:eb:a2:c3:94:7f:a6:ee:2b:b7:d4:a6:c2:95:0f: cf:c3:23:78:f8:58:9b:b8:6c:47:d3:94:b4:a6:96:14:d4:d3: 54:57:f9:92:2b:5d:53:ed:22:c0:76:9e:3f:e3:fa:d7:5c:07: cd:c3:08:63:4e:70:ab:93:d4:f8:88:78:88:b8:31:1d:0a:23: 28:05:11:87:49:a7:da:d9:03:5a:4c:84:86:32:58:1e:59:bb: 81:dc:c3:8c:c7:f1:fb:ad:1e:63:23:55:a4:8d:49:1e:06:d8: c2:1c:9f:9b:98:a7:8c:71:7c:a2:79:24:fb:a1:13:0e:ce:5f: cb:b3:7d:2a:33:af:ef:7f:91:1e:43:fc:51:9e:bc:a6:2a:14: 4e:b3:cf:94:15:3a:6b:a1:a1:37:ac:9f:c2:2c:ca:51:c2:17: c8:41:08:bb:0b:3e:dd:3b:b9:1c:9a:13:a2:af:42:f1:74:18: 80:7a:9a:ac:57:bb:5a:ff:10:e5:c3:04:a4:dd:df:e3:99:a6: da:01:41:db:62:1f:0b:dd:98:dd:f5:70:ce:12:9e:bb:9d:dc: 37:01:cf:16:ad:62:9c:29:79:ee:98:73:6d:42:7f:6c:15:10: 4d:c4:21:90:2f:7b:3e:c3:bc:28:d4:e6:99:e4:7c:ae:89:77: d6:bc:31:3c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUF305ZICVr1VSNeNsgI0+QayYvv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTFaFw0yNTEwMDUwNDQ1MTFaMDMxMTAvBgNV BAMTKDA5MEU4MjkwNjFDMjgwMDEwRTIzM0VFOTg0NTBDRjI3OTBENjIxMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNyhnUhpNKLE/FIVlNGWymzTHH OhQjxsX+15zeA2xuHROnQWIDDrrLY1T5L7WT3OcKgDa7gRFLBdifMP3TwWuIT8Q/ ZegU5c+hl6dRLcsPbyfn6CzrEM+kIaLAMnZlYEXr99JANm8zjECSBpGtMMrV+VJc SWxxtvojjs9MnL7x7tDg5MZQ9OI2jTHVxUuy2vk6UZKF2YEKm+NvLhqkBWw82f24 v+9JFvDsnHZVBwi51+5XQ5aQGZlHYqbJVJPeNvilXHM2sbZRyUfVbvmwtF0OwFca IaYHO8Y2MyleU0GP6+xLJo1VxBy1INaaf8A/SJ2eYDUx98Pe9xzCXmJ9Y0d3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCQ6CkGHCgAEOIz7phFDPJ5DWITYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjUwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHswDQYJKoZIhvcNAQELBQADggEBAMMX Jo/rosOUf6buK7fUpsKVD8/DI3j4WJu4bEfTlLSmlhTU01RX+ZIrXVPtIsB2nj/j +tdcB83DCGNOcKuT1PiIeIi4MR0KIygFEYdJp9rZA1pMhIYyWB5Zu4Hcw4zH8fut HmMjVaSNSR4G2MIcn5uYp4xxfKJ5JPuhEw7OX8uzfSozr+9/kR5D/FGevKYqFE6z z5QVOmuhoTesn8IsylHCF8hBCLsLPt07uRyaE6KvQvF0GIB6mqxXu1r/EOXDBKTd 3+OZptoBQdtiHwvdmN31cM4Snrud3DcBzxatYpwpee6Yc21Cf2wVEE3EIZAvez7D vCjU5pnkfK6Jd9a8MTw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org