$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199651.roa File: AS199651.roa (raw, json) Hash identifier: e3VIUkNc4W4VSeZpl7RIZYosiS2o75UHcFWTlAjnYEU= Subject key identifier: AC:52:4A:F5:DF:AE:3A:9B:B1:05:6C:3E:7F:E1:15:10:55:8E:51:A3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 70734374EB443E834B1898032F4C024D422B3315 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199651.roa Signing time: Sun 06 Oct 2024 04:45:03 +0000 ROA not before: Sun 06 Oct 2024 04:40:03 +0000 ROA not after: Sun 05 Oct 2025 04:45:03 +0000 asID: 199651 IP address blocks: 2a0a:6040:1800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:73:43:74:eb:44:3e:83:4b:18:98:03:2f:4c:02:4d:42:2b:33:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:03 2024 GMT Not After : Oct 5 04:45:03 2025 GMT Subject: CN=AC524AF5DFAE3A9BB1056C3E7FE11510558E51A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ba:fd:ce:28:b4:21:c2:a3:4d:b6:1f:41:f4: 84:90:a4:5f:a7:18:01:f9:d1:d3:e3:ff:66:80:98: 03:98:2b:80:45:6f:a3:23:35:ef:27:e3:4b:1e:78: 54:dd:41:00:14:23:9a:46:f0:b8:22:b1:88:56:93: 93:42:8a:e4:40:b6:28:7d:9e:18:90:5a:1b:93:fb: 84:7d:7a:0a:e5:b1:09:06:e6:46:43:7a:4a:e5:98: 8b:35:7e:b2:54:b0:a7:a7:68:70:ad:5a:75:d0:29: 67:67:65:ab:98:0c:12:af:1f:75:44:70:36:90:aa: 75:07:f5:d0:99:21:01:84:ba:61:b3:6d:f2:e0:a1: 07:7e:2c:2e:2a:96:42:3a:3a:71:46:d8:fb:a2:18: 5f:82:a7:33:f8:4e:11:0d:cd:19:da:f3:a4:a7:7d: 54:28:61:0e:13:15:85:a5:81:3d:2c:74:e4:09:79: c8:cb:a1:a2:62:8c:80:a7:62:07:81:b9:59:da:31: 4c:1b:59:ff:7b:90:46:f9:75:ab:e9:44:a5:ef:15: 3a:ae:91:50:04:67:7f:d9:4e:d6:96:ee:c7:32:f5: b2:ae:18:7b:c1:ad:f6:d9:b2:cb:ec:a5:48:92:b2: ac:72:b1:0c:16:42:ec:b3:31:f3:22:2c:c6:54:16: 6f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:52:4A:F5:DF:AE:3A:9B:B1:05:6C:3E:7F:E1:15:10:55:8E:51:A3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199651.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1800::/40 Signature Algorithm: sha256WithRSAEncryption 70:e7:d4:1c:4e:71:0e:25:a1:d6:4a:35:e2:67:87:72:34:85: d3:0a:6d:04:66:33:1e:66:d1:31:0c:99:1e:64:5b:ee:a9:7e: b2:24:f2:0d:42:6e:23:92:8e:91:29:01:21:8f:90:89:40:60: 63:93:25:ab:0e:28:40:23:64:c5:6a:3e:86:23:8a:e3:2e:a8: ed:55:45:ac:b5:f0:a9:58:c1:3f:ad:23:09:7f:6f:5b:28:d4: 02:57:f4:9c:e3:ee:cc:a1:78:eb:38:44:45:bf:09:96:b0:5c: 9b:f1:08:aa:8a:6d:1d:59:1b:f4:6a:d4:b6:2e:80:a9:4c:b5: 00:b4:d2:51:f1:03:ce:2f:82:ef:d8:75:c6:47:11:c1:0e:a0: ba:d5:1d:81:a0:b4:ec:06:ae:8e:8e:af:01:ee:8e:3b:68:32: 2f:3f:10:e3:c0:01:a2:27:63:af:f8:69:34:d8:4f:5d:2d:46: d1:96:49:e3:e3:ea:0a:56:21:92:76:10:2b:9d:44:f2:db:65: dd:0f:50:a0:a0:c4:ee:07:b7:04:fd:99:0a:ef:07:ec:7e:84: aa:d4:82:0d:c2:c3:4d:c0:4d:67:28:d7:05:d9:a2:54:a7:c6: 65:d1:2b:1a:d9:a2:dc:74:d9:c5:5b:9c:6a:6e:fe:e9:b5:52: 8c:36:16:73 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcHNDdOtEPoNLGJgDL0wCTUIrMxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDNaFw0yNTEwMDUwNDQ1MDNaMDMxMTAvBgNV BAMTKEFDNTI0QUY1REZBRTNBOUJCMTA1NkMzRTdGRTExNTEwNTU4RTUxQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmuv3OKLQhwqNNth9B9ISQpF+n GAH50dPj/2aAmAOYK4BFb6MjNe8n40seeFTdQQAUI5pG8LgisYhWk5NCiuRAtih9 nhiQWhuT+4R9egrlsQkG5kZDekrlmIs1frJUsKenaHCtWnXQKWdnZauYDBKvH3VE cDaQqnUH9dCZIQGEumGzbfLgoQd+LC4qlkI6OnFG2PuiGF+CpzP4ThENzRna86Sn fVQoYQ4TFYWlgT0sdOQJecjLoaJijICnYgeBuVnaMUwbWf97kEb5davpRKXvFTqu kVAEZ3/ZTtaW7scy9bKuGHvBrfbZssvspUiSsqxysQwWQuyzMfMiLMZUFm9XAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUrFJK9d+uOpuxBWw+f+EVEFWOUaMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjUxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBgwDQYJKoZIhvcNAQELBQADggEBAHDn 1BxOcQ4lodZKNeJnh3I0hdMKbQRmMx5m0TEMmR5kW+6pfrIk8g1CbiOSjpEpASGP kIlAYGOTJasOKEAjZMVqPoYjiuMuqO1VRay18KlYwT+tIwl/b1so1AJX9Jzj7syh eOs4REW/CZawXJvxCKqKbR1ZG/Rq1LYugKlMtQC00lHxA84vgu/YdcZHEcEOoLrV HYGgtOwGro6OrwHujjtoMi8/EOPAAaInY6/4aTTYT10tRtGWSePj6gpWIZJ2ECud RPLbZd0PUKCgxO4HtwT9mQrvB+x+hKrUgg3Cw03ATWco1wXZolSnxmXRKxrZotx0 2cVbnGpu/um1Uow2FnM= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org