$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199668.roa File: AS199668.roa (raw, json) Hash identifier: uwWwVA8x8d/ZE93mUWHpfpBQnGRqet25qgeLPHw8xrM= Subject key identifier: C0:E7:E5:9E:6B:98:7D:9D:1B:1A:89:77:6C:DE:50:F0:A3:95:61:07 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0B1DD66898C6EE58250CE9A640F7E0DA526C8FCE Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199668.roa Signing time: Sun 05 Nov 2023 04:07:01 +0000 ROA not before: Sun 05 Nov 2023 04:02:01 +0000 ROA not after: Sun 03 Nov 2024 04:07:01 +0000 asID: 199668 IP address blocks: 2a0a:6040:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:1d:d6:68:98:c6:ee:58:25:0c:e9:a6:40:f7:e0:da:52:6c:8f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:01 2023 GMT Not After : Nov 3 04:07:01 2024 GMT Subject: CN=C0E7E59E6B987D9D1B1A89776CDE50F0A3956107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a9:de:1b:4a:84:d6:cb:c8:c2:96:c8:70:6e: 56:93:5a:b0:97:cb:74:97:90:d3:c9:eb:37:1d:22: f8:af:e3:23:1a:c4:03:3c:cb:5a:00:1d:74:50:96: f3:61:60:76:53:d1:30:91:d0:4a:30:79:5c:6b:d2: cf:b8:26:9f:a6:38:b5:4c:2d:22:e4:a3:cf:2d:af: 1c:be:e3:dc:94:6f:01:7f:e1:9f:6d:f0:97:82:a8: 1a:19:35:34:c9:17:95:57:23:6b:68:07:6c:5e:21: 78:0a:31:da:67:cf:47:4b:92:f6:d9:2d:c5:3f:85: 8c:23:d8:10:a5:58:1d:b6:4a:69:b7:f9:9b:6c:cc: ac:59:60:a3:d6:23:9d:fb:a5:49:cd:8d:d3:ff:0b: 4b:78:69:15:af:4c:2b:af:57:de:fb:f0:ea:46:ab: ec:ac:7d:26:73:aa:9f:9b:b5:73:10:f4:6c:b7:6c: e8:ad:01:0b:44:5f:f3:80:07:28:f9:d3:d6:f1:0a: 4f:65:09:9d:ed:20:79:23:ba:72:6c:bf:04:b6:3c: 98:a5:7b:6e:a6:93:a7:26:fe:00:c2:4d:a7:5a:75: cb:13:e5:48:f4:39:2c:0f:25:bb:ab:7e:96:8d:90: 4f:08:01:24:28:29:b2:3e:cd:1a:e9:b2:d3:73:87: 88:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E7:E5:9E:6B:98:7D:9D:1B:1A:89:77:6C:DE:50:F0:A3:95:61:07 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199668.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7400::/40 Signature Algorithm: sha256WithRSAEncryption 9d:31:ad:44:54:14:02:56:e0:c8:32:b0:89:6a:e8:cc:3a:5e: 2c:55:b6:53:f8:2c:c6:92:16:ff:e8:1b:0c:f2:22:ee:d2:75: f3:3d:89:43:e1:35:23:08:94:6b:c8:3d:93:f9:0f:8f:01:01: 9c:b0:31:50:5a:fe:99:80:7f:72:35:d3:3b:0a:98:c4:92:57: 1b:bb:99:15:90:39:24:5a:cf:4c:19:d1:cd:e7:cf:90:15:e8: c9:b9:d5:4d:58:c9:90:5e:c0:a0:6f:55:59:e8:2a:a4:28:9a: ef:e8:e9:11:15:03:39:92:63:f4:58:9d:4f:b3:d7:ab:fa:01: 2c:6f:cd:47:be:8d:38:cb:aa:46:a3:dc:92:f3:23:d2:6d:1c: a0:f7:ae:09:12:91:cd:ef:d7:fe:8d:50:82:ac:ae:f9:a2:5b: b0:5f:d3:af:fa:8c:3f:2f:9b:69:f9:c5:66:54:b8:cf:5e:92: e4:bd:05:5f:da:13:c7:45:0d:36:03:3c:48:dd:44:16:d8:2f: 19:cc:e9:11:74:5e:eb:f1:19:b9:f2:c0:c4:1e:23:c8:00:2c: 4c:e1:7f:2a:94:ac:88:e1:6c:5a:60:04:35:61:08:a6:25:36: 8c:16:2a:45:3b:dd:12:a5:88:88:bb:3a:17:db:82:c3:44:a3: 62:f1:ac:f4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCx3WaJjG7lglDOmmQPfg2lJsj84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDFaFw0yNDExMDMwNDA3MDFaMDMxMTAvBgNV BAMTKEMwRTdFNTlFNkI5ODdEOUQxQjFBODk3NzZDREU1MEYwQTM5NTYxMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYqd4bSoTWy8jClshwblaTWrCX y3SXkNPJ6zcdIviv4yMaxAM8y1oAHXRQlvNhYHZT0TCR0EoweVxr0s+4Jp+mOLVM LSLko88trxy+49yUbwF/4Z9t8JeCqBoZNTTJF5VXI2toB2xeIXgKMdpnz0dLkvbZ LcU/hYwj2BClWB22Smm3+ZtszKxZYKPWI537pUnNjdP/C0t4aRWvTCuvV9778OpG q+ysfSZzqp+btXMQ9Gy3bOitAQtEX/OAByj509bxCk9lCZ3tIHkjunJsvwS2PJil e26mk6cm/gDCTadadcsT5Uj0OSwPJburfpaNkE8IASQoKbI+zRrpstNzh4hfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUwOflnmuYfZ0bGol3bN5Q8KOVYQcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHQwDQYJKoZIhvcNAQELBQADggEBAJ0x rURUFAJW4MgysIlq6Mw6XixVtlP4LMaSFv/oGwzyIu7SdfM9iUPhNSMIlGvIPZP5 D48BAZywMVBa/pmAf3I10zsKmMSSVxu7mRWQOSRaz0wZ0c3nz5AV6Mm51U1YyZBe wKBvVVnoKqQomu/o6REVAzmSY/RYnU+z16v6ASxvzUe+jTjLqkaj3JLzI9JtHKD3 rgkSkc3v1/6NUIKsrvmiW7Bf06/6jD8vm2n5xWZUuM9ekuS9BV/aE8dFDTYDPEjd RBbYLxnM6RF0XuvxGbnywMQeI8gALEzhfyqUrIjhbFpgBDVhCKYlNowWKkU73RKl iIi7OhfbgsNEo2LxrPQ= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org