$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199651.roa File: AS199651.roa (raw, json) Hash identifier: qCkvySBnWGh4phd7rzEzl+8gW9Wh5kXIQ9N6F8b6n1U= Subject key identifier: DA:1F:7A:62:45:FF:C7:ED:6B:1C:BC:06:46:4E:D3:98:AD:55:ED:FC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5DA16B021421C2F30CE41AA63CDF3285AAE32EF3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199651.roa Signing time: Sun 05 Nov 2023 04:07:00 +0000 ROA not before: Sun 05 Nov 2023 04:02:00 +0000 ROA not after: Sun 03 Nov 2024 04:07:00 +0000 asID: 199651 IP address blocks: 2a0a:6040:1800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a1:6b:02:14:21:c2:f3:0c:e4:1a:a6:3c:df:32:85:aa:e3:2e:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:00 2023 GMT Not After : Nov 3 04:07:00 2024 GMT Subject: CN=DA1F7A6245FFC7ED6B1CBC06464ED398AD55EDFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0a:00:83:6c:ae:10:c5:ab:e2:48:df:bb:38: 84:ca:c9:3f:31:ca:ea:96:ad:7b:1e:d5:07:46:b3: 2a:84:02:52:67:d0:9d:8d:7b:60:f7:c9:22:5d:e0: 27:40:18:c5:f6:62:08:e1:81:e0:2d:91:29:2c:fc: 56:1f:eb:3c:4b:2f:a7:a3:f5:85:6a:af:59:47:1a: fe:78:0f:63:c6:f1:aa:71:27:eb:2a:58:16:5a:0b: 55:e8:ae:af:64:27:19:32:42:a9:c7:1d:2e:c8:fd: b6:18:7d:53:53:45:2b:c4:f2:f9:8c:84:c8:57:1e: 22:92:26:6a:93:d7:e5:bf:dc:cd:ff:54:22:86:e5: 2f:1c:8b:cf:48:73:a2:99:f2:d6:5c:a5:6b:8b:77: 1e:2a:01:d1:a0:0b:41:fe:8b:42:36:29:99:19:4f: 62:e6:d2:8e:ac:e0:8e:8f:a0:a6:62:bb:a0:e9:01: ba:18:d6:dc:9c:30:f5:22:43:06:e5:65:e8:1d:63: 41:a5:76:59:ee:f8:d4:6e:10:05:c7:ac:6b:1d:07: 15:74:e2:7e:19:d3:d3:b4:ce:b7:2d:17:ef:7a:88: 8f:e1:7a:f4:26:52:ee:23:98:3c:1d:04:8c:da:9e: fd:93:f6:f6:0f:34:b1:41:42:b1:6e:5c:47:a5:69: fa:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:1F:7A:62:45:FF:C7:ED:6B:1C:BC:06:46:4E:D3:98:AD:55:ED:FC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199651.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1800::/40 Signature Algorithm: sha256WithRSAEncryption 4c:14:e5:66:e6:30:b5:5e:d8:73:ce:76:46:51:25:e1:77:3e: 00:ee:f8:7b:52:0e:5a:85:75:a7:ef:ce:af:46:12:1e:34:09: a4:e6:f9:37:8d:b8:88:11:e9:38:65:cc:df:6a:46:56:58:a9: 29:67:96:71:60:99:dd:ea:a6:c9:6a:b0:9a:c0:59:a5:10:82: ec:8c:2c:b9:ff:a8:f8:62:95:34:86:51:69:b0:62:0c:53:09: 55:3b:ee:47:b5:67:dc:0a:32:a9:0a:2c:81:2d:61:68:4a:38: e8:52:c4:24:14:98:3c:17:b9:00:8a:15:91:f0:ec:e7:d3:d0: b1:6f:d5:c2:3e:be:6c:e5:a7:24:7d:dd:a9:74:15:20:cf:27: 52:f1:84:e6:0f:eb:b9:6d:bf:51:cc:38:f6:fe:01:ee:4f:27: d6:66:10:68:2e:2e:2f:d3:68:e2:87:ab:d9:2e:72:18:06:5f: 9d:d6:3e:b7:f6:69:b9:62:3a:81:80:1c:fd:2a:99:65:6b:e1: fe:1f:fd:4d:42:6b:d7:f2:cb:66:11:b0:1d:58:51:23:ca:fa: 72:41:7a:39:53:62:d5:65:35:85:d2:15:21:42:77:b8:3b:21: 43:8c:c3:8a:f7:4f:a8:f2:6e:ed:f5:82:90:e1:03:c7:28:85: 03:ad:66:ad -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXaFrAhQhwvMM5BqmPN8yharjLvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDBaFw0yNDExMDMwNDA3MDBaMDMxMTAvBgNV BAMTKERBMUY3QTYyNDVGRkM3RUQ2QjFDQkMwNjQ2NEVEMzk4QUQ1NUVERkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeCgCDbK4QxaviSN+7OITKyT8x yuqWrXse1QdGsyqEAlJn0J2Ne2D3ySJd4CdAGMX2YgjhgeAtkSks/FYf6zxLL6ej 9YVqr1lHGv54D2PG8apxJ+sqWBZaC1Xorq9kJxkyQqnHHS7I/bYYfVNTRSvE8vmM hMhXHiKSJmqT1+W/3M3/VCKG5S8ci89Ic6KZ8tZcpWuLdx4qAdGgC0H+i0I2KZkZ T2Lm0o6s4I6PoKZiu6DpAboY1tycMPUiQwblZegdY0Gldlnu+NRuEAXHrGsdBxV0 4n4Z09O0zrctF+96iI/hevQmUu4jmDwdBIzanv2T9vYPNLFBQrFuXEelafrLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU2h96YkX/x+1rHLwGRk7TmK1V7fwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjUxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBgwDQYJKoZIhvcNAQELBQADggEBAEwU 5WbmMLVe2HPOdkZRJeF3PgDu+HtSDlqFdafvzq9GEh40CaTm+TeNuIgR6ThlzN9q RlZYqSlnlnFgmd3qpslqsJrAWaUQguyMLLn/qPhilTSGUWmwYgxTCVU77ke1Z9wK MqkKLIEtYWhKOOhSxCQUmDwXuQCKFZHw7OfT0LFv1cI+vmzlpyR93al0FSDPJ1Lx hOYP67ltv1HMOPb+Ae5PJ9ZmEGguLi/TaOKHq9kuchgGX53WPrf2abliOoGAHP0q mWVr4f4f/U1Ca9fyy2YRsB1YUSPK+nJBejlTYtVlNYXSFSFCd7g7IUOMw4r3T6jy bu31gpDhA8cohQOtZq0= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org