$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199668.roa File: AS199668.roa (raw, json) Hash identifier: QYKDf+mennQ9YklGhBUjTCc8OBsN5zBtu8Iw39kxAhY= Subject key identifier: 26:DD:C5:CE:92:09:B7:34:AE:FE:BB:57:C0:1B:EF:73:3E:0D:50:B9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 788CDDFFC4C9C724283C7EE7B196D74392DCBA7A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199668.roa Signing time: Sun 06 Oct 2024 04:45:13 +0000 ROA not before: Sun 06 Oct 2024 04:40:13 +0000 ROA not after: Sun 05 Oct 2025 04:45:13 +0000 asID: 199668 IP address blocks: 2a0a:6040:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:8c:dd:ff:c4:c9:c7:24:28:3c:7e:e7:b1:96:d7:43:92:dc:ba:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:13 2024 GMT Not After : Oct 5 04:45:13 2025 GMT Subject: CN=26DDC5CE9209B734AEFEBB57C01BEF733E0D50B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:af:8b:30:1c:31:3f:22:83:48:94:f5:ff:5d: 46:1e:95:a5:e5:a1:73:0c:a8:07:58:c0:af:4d:2b: 11:04:98:0a:d0:60:11:f3:68:ab:3f:5c:df:eb:f2: 5d:89:35:00:f9:24:86:a0:83:77:7e:b6:50:bf:e6: 97:45:eb:1c:1a:26:63:89:55:78:9a:bd:e6:45:30: c2:b3:b7:56:de:7e:41:54:13:7e:76:f0:f5:43:f2: c8:ae:48:41:b9:6f:30:52:90:3b:f2:a9:77:8a:a0: d6:a3:2a:ef:20:a0:9f:94:08:b8:74:2f:93:60:65: 27:05:d2:00:08:04:a3:89:6a:b8:4e:26:4a:91:ff: 4b:e9:4c:3c:df:8f:b2:7b:a5:4f:02:ef:09:b2:f8: 9c:f3:19:7c:3c:c4:8b:83:f3:61:c3:a1:7d:79:9c: 66:f5:22:ae:c8:13:62:65:50:e1:02:74:1b:0e:be: 66:fe:1e:20:09:2c:01:91:04:d6:7d:14:e1:3e:6c: 29:9b:db:38:42:da:47:df:1f:81:95:ae:da:c2:b2: 15:e6:f3:ed:38:2b:6f:eb:ee:75:48:9b:f5:4e:6c: f4:36:ee:ce:d9:52:02:88:1d:4f:79:93:90:d6:95: e4:9a:99:d0:e2:25:11:7b:2a:97:58:c7:b0:b1:28: 5b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DD:C5:CE:92:09:B7:34:AE:FE:BB:57:C0:1B:EF:73:3E:0D:50:B9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199668.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7400::/40 Signature Algorithm: sha256WithRSAEncryption 4a:76:b3:41:0e:c6:e9:db:06:a6:cb:06:e2:e6:28:ff:26:81: 7e:ab:97:e7:f4:3c:1e:fe:6e:1c:06:56:5c:ad:fc:f5:41:38: a9:1a:e6:94:a3:9f:2d:5a:77:8f:c8:c0:a5:d3:9d:a8:76:20: 5f:cc:3c:5e:5d:2e:4d:d0:e6:ac:1b:9f:48:c1:8f:1f:0e:0b: 7c:eb:62:9b:76:1a:35:aa:ff:51:07:3c:17:6a:51:dd:76:b1: 6a:2e:f8:97:12:f6:17:50:cb:95:46:a8:9c:37:3f:c3:ce:4b: 14:c6:a6:ea:45:fb:e9:aa:31:b9:3e:2f:90:e6:94:77:04:d8: 89:e2:d2:d8:02:af:ac:73:24:87:49:48:2c:be:1c:a3:05:65: 54:fe:8c:7f:ae:9c:f5:6f:55:ad:41:5a:71:58:7e:ab:b6:74: a7:a4:1b:0b:90:b6:ef:a2:d5:c8:8e:a4:2d:64:23:23:3f:f6: 94:5a:9e:0f:cc:e9:e6:5c:bb:03:7a:5d:f9:f6:3b:77:1b:d3: 43:6c:13:3a:fe:98:52:fc:b9:7e:a8:5e:82:0e:67:04:29:b5: 28:82:4b:8b:d9:9e:ee:e2:12:79:03:d7:7d:1d:d6:ae:93:33: f8:29:9a:11:0f:3c:7d:d8:2d:59:d4:5a:ac:79:07:f9:40:b4: 60:80:42:10 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUeIzd/8TJxyQoPH7nsZbXQ5LcunowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTNaFw0yNTEwMDUwNDQ1MTNaMDMxMTAvBgNV BAMTKDI2RERDNUNFOTIwOUI3MzRBRUZFQkI1N0MwMUJFRjczM0UwRDUwQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpr4swHDE/IoNIlPX/XUYelaXl oXMMqAdYwK9NKxEEmArQYBHzaKs/XN/r8l2JNQD5JIagg3d+tlC/5pdF6xwaJmOJ VXiaveZFMMKzt1befkFUE3528PVD8siuSEG5bzBSkDvyqXeKoNajKu8goJ+UCLh0 L5NgZScF0gAIBKOJarhOJkqR/0vpTDzfj7J7pU8C7wmy+JzzGXw8xIuD82HDoX15 nGb1Iq7IE2JlUOECdBsOvmb+HiAJLAGRBNZ9FOE+bCmb2zhC2kffH4GVrtrCshXm 8+04K2/r7nVIm/VObPQ27s7ZUgKIHU95k5DWleSamdDiJRF7KpdYx7CxKFs5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJt3FzpIJtzSu/rtXwBvvcz4NULkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHQwDQYJKoZIhvcNAQELBQADggEBAEp2 s0EOxunbBqbLBuLmKP8mgX6rl+f0PB7+bhwGVlyt/PVBOKka5pSjny1ad4/IwKXT nah2IF/MPF5dLk3Q5qwbn0jBjx8OC3zrYpt2GjWq/1EHPBdqUd12sWou+JcS9hdQ y5VGqJw3P8POSxTGpupF++mqMbk+L5DmlHcE2Ini0tgCr6xzJIdJSCy+HKMFZVT+ jH+unPVvVa1BWnFYfqu2dKekGwuQtu+i1ciOpC1kIyM/9pRang/M6eZcuwN6Xfn2 O3cb00NsEzr+mFL8uX6oXoIOZwQptSiCS4vZnu7iEnkD130d1q6TM/gpmhEPPH3Y LVnUWqx5B/lAtGCAQhA= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org