$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199650.roa File: AS199650.roa (raw, json) Hash identifier: EIeqkKP5Ppjp7a7CfX13A+6yLIhquJZxBmoJ7xyHCCQ= Subject key identifier: 5F:43:AB:3B:50:EA:FE:CF:B8:56:4E:66:DF:00:BC:2F:0A:97:DF:EC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6F3AA573A06AA9160BCB41D4416288E4517C8DE4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199650.roa Signing time: Sun 05 Nov 2023 04:07:03 +0000 ROA not before: Sun 05 Nov 2023 04:02:03 +0000 ROA not after: Sun 03 Nov 2024 04:07:03 +0000 asID: 199650 IP address blocks: 2a0a:6040:7b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:3a:a5:73:a0:6a:a9:16:0b:cb:41:d4:41:62:88:e4:51:7c:8d:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:03 2023 GMT Not After : Nov 3 04:07:03 2024 GMT Subject: CN=5F43AB3B50EAFECFB8564E66DF00BC2F0A97DFEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9a:0c:74:e2:29:b4:8f:e8:1f:66:5f:c1:cc: 59:82:2d:fc:99:1c:23:0e:11:2e:cb:50:60:5f:e7: ef:ee:7a:f1:81:c4:39:ce:cb:1b:46:54:0a:23:e6: d5:57:b5:b6:85:3f:70:d2:b0:d4:0f:0c:5d:35:64: d2:41:dc:32:19:7d:2f:51:d5:8e:b7:5b:2a:50:4f: dd:04:a4:fc:73:4b:59:1f:25:24:39:cf:13:52:87: 5a:9f:85:33:3d:d4:e0:b7:23:37:46:23:1b:6c:97: 8e:1c:42:e2:a5:a9:29:55:35:3a:ef:8a:45:c8:34: e4:0b:80:d7:63:1a:9d:09:b4:51:8f:d3:eb:1d:94: af:f4:1c:17:05:84:9d:09:55:e6:52:9e:c3:e0:b5: b5:92:00:90:b3:bd:49:49:0a:9e:2b:7d:31:c2:5e: 65:2c:9c:ca:d1:7b:76:35:e4:54:cc:d1:c8:e0:02: 4e:d7:be:23:c4:77:52:98:00:fa:e4:25:3d:f4:25: 38:61:ee:61:50:06:33:85:62:11:ee:38:f3:09:e2: 7f:ae:e5:bf:ef:3b:49:2b:24:0f:c9:b9:74:16:5c: 3f:c2:17:5b:11:c5:c9:9f:d6:9d:88:7c:77:f7:4d: 3f:78:06:26:e4:b6:21:77:ce:7d:a9:6b:33:b3:88: 11:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:43:AB:3B:50:EA:FE:CF:B8:56:4E:66:DF:00:BC:2F:0A:97:DF:EC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7b00::/40 Signature Algorithm: sha256WithRSAEncryption 21:3e:61:59:8d:82:49:5f:1c:9b:30:49:ed:a4:e0:2a:3d:83: 7a:21:48:8d:d6:89:34:f6:51:ba:68:04:3b:ed:f3:81:29:a6: e2:ad:26:27:c8:05:05:ec:c3:ac:80:26:9d:1c:82:e1:6d:65: 0f:8b:c7:e9:f2:47:6e:b3:85:e9:18:36:2b:9f:60:f9:7d:10: 7e:a3:ff:e7:43:36:f4:d7:37:33:71:70:42:13:30:f5:1e:96: 5c:b8:2c:d8:f1:a8:19:0c:66:46:37:24:55:b5:ac:49:32:4e: 1c:bb:17:ca:41:c5:c6:df:4c:01:68:36:30:e5:db:96:0c:07: 70:1a:e7:cd:c1:d2:af:0b:69:65:ff:fc:d7:2d:22:a8:7a:7d: db:94:ef:f0:9b:45:76:6e:35:0c:ec:40:7e:97:02:39:e3:ec: ae:49:bb:c0:2e:96:41:21:d8:c1:46:48:3b:85:6d:41:79:b7: b8:06:11:09:47:01:ef:d1:5c:f4:2d:c3:16:92:f2:97:03:7c: 1c:cc:ab:f5:73:67:3e:24:96:f7:e8:17:52:21:c5:38:25:a5: 05:02:76:79:ad:cb:a2:33:84:1a:62:ae:ca:7a:01:d4:b9:26: f5:98:9d:51:c2:31:90:b4:3a:b1:93:2d:a3:c1:bb:68:bb:45: c5:58:28:41 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbzqlc6BqqRYLy0HUQWKI5FF8jeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDNaFw0yNDExMDMwNDA3MDNaMDMxMTAvBgNV BAMTKDVGNDNBQjNCNTBFQUZFQ0ZCODU2NEU2NkRGMDBCQzJGMEE5N0RGRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6mgx04im0j+gfZl/BzFmCLfyZ HCMOES7LUGBf5+/uevGBxDnOyxtGVAoj5tVXtbaFP3DSsNQPDF01ZNJB3DIZfS9R 1Y63WypQT90EpPxzS1kfJSQ5zxNSh1qfhTM91OC3IzdGIxtsl44cQuKlqSlVNTrv ikXINOQLgNdjGp0JtFGP0+sdlK/0HBcFhJ0JVeZSnsPgtbWSAJCzvUlJCp4rfTHC XmUsnMrRe3Y15FTM0cjgAk7XviPEd1KYAPrkJT30JThh7mFQBjOFYhHuOPMJ4n+u 5b/vO0krJA/JuXQWXD/CF1sRxcmf1p2IfHf3TT94BibktiF3zn2pazOziBHXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUX0OrO1Dq/s+4Vk5m3wC8LwqX3+wwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjUwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHswDQYJKoZIhvcNAQELBQADggEBACE+ YVmNgklfHJswSe2k4Co9g3ohSI3WiTT2UbpoBDvt84EppuKtJifIBQXsw6yAJp0c guFtZQ+Lx+nyR26zhekYNiufYPl9EH6j/+dDNvTXNzNxcEITMPUelly4LNjxqBkM ZkY3JFW1rEkyThy7F8pBxcbfTAFoNjDl25YMB3Aa583B0q8LaWX//NctIqh6fduU 7/CbRXZuNQzsQH6XAjnj7K5Ju8AulkEh2MFGSDuFbUF5t7gGEQlHAe/RXPQtwxaS 8pcDfBzMq/VzZz4klvfoF1IhxTglpQUCdnmty6IzhBpirsp6AdS5JvWYnVHCMZC0 OrGTLaPBu2i7RcVYKEE= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org