$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199680.roa File: AS199680.roa (raw, json) Hash identifier: 3QLWkhPJp210I12PdWzj477moExEHhdXIV+PIxvC49o= Subject key identifier: 0B:3C:1A:F9:29:44:5B:12:D8:1F:94:40:0C:94:09:DB:1A:B6:EE:7F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0787F19801AD9742D9845F92C54707D6F4E50DCF Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199680.roa Signing time: Sun 06 Oct 2024 04:45:17 +0000 ROA not before: Sun 06 Oct 2024 04:40:17 +0000 ROA not after: Sun 05 Oct 2025 04:45:17 +0000 asID: 199680 IP address blocks: 2a0a:6040:7800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:87:f1:98:01:ad:97:42:d9:84:5f:92:c5:47:07:d6:f4:e5:0d:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:17 2024 GMT Not After : Oct 5 04:45:17 2025 GMT Subject: CN=0B3C1AF929445B12D81F94400C9409DB1AB6EE7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ea:9c:ea:44:e8:f8:ee:82:41:5b:13:d1:0a: d3:f9:bd:52:4f:24:d2:82:bb:3a:7e:c7:ae:0a:ac: 3f:17:93:d1:94:10:4e:43:67:3e:13:ff:ca:01:d0: 64:09:26:0f:bd:0c:71:39:42:34:80:a4:90:69:5c: 90:f6:e1:57:b5:7c:09:f6:35:b5:8b:49:80:24:fa: 93:c9:90:10:b8:a3:6a:28:e7:6a:6e:05:3f:d0:54: 51:54:c7:e9:a4:86:fc:bb:46:8b:07:1f:72:82:40: 9f:87:53:c0:96:be:da:62:a0:29:52:94:35:51:02: bd:93:32:b7:09:d7:cc:d1:6c:f5:ec:0d:34:c7:1b: 8d:de:82:6a:a3:e9:1c:13:4a:1e:25:41:50:1d:01: 50:87:04:ff:49:ec:73:6e:97:2d:9f:dc:27:b9:a1: 16:4f:60:ce:ea:9e:ae:9b:55:e4:7a:94:a6:c8:10: f2:24:37:74:b3:0c:1a:e3:91:b2:7b:1a:ce:31:68: 0d:91:d4:6f:c4:5f:fd:8c:1f:b2:4b:58:f3:7e:e5: 6b:69:84:2b:25:9e:c0:23:56:ea:a1:bb:36:ab:52: 3b:95:69:67:99:c2:a6:14:ee:25:d7:e5:e5:70:6d: 4a:40:c9:ce:ab:ae:d7:da:f0:f9:dc:0a:bd:db:d6: 72:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:3C:1A:F9:29:44:5B:12:D8:1F:94:40:0C:94:09:DB:1A:B6:EE:7F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199680.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7800::/40 Signature Algorithm: sha256WithRSAEncryption 4e:6b:f5:1c:c1:66:a4:65:8c:e7:6d:b7:e5:89:c1:3c:6c:20: 9c:ac:6f:55:5c:39:9d:3e:28:77:7d:f2:a7:e7:7b:9b:8d:1b: c7:9f:7c:b2:1b:2e:48:a4:31:2a:f6:65:93:4d:24:ec:7a:25: 87:6f:e5:12:2d:b6:77:14:39:11:e8:52:1a:b9:ca:f3:ea:5e: 8b:cf:a4:df:49:48:c3:3f:63:f6:fb:98:1e:18:04:9f:dd:59: eb:74:59:59:83:b7:c5:25:3b:e5:94:0d:21:c9:56:57:6e:0a: c7:86:91:4d:2c:3a:72:2c:40:37:4d:29:44:05:be:aa:92:65: 4e:37:a4:59:99:77:e0:e4:46:bb:a1:01:2d:49:99:ef:db:24: f6:be:f4:b8:7b:d0:64:d0:b4:1c:6d:22:f3:c2:60:57:08:b0: 08:b8:02:39:3f:32:24:e0:86:5e:9d:6a:86:0e:f7:cd:9e:79: 68:d3:b3:2d:ea:65:9b:94:90:63:1f:a0:8d:2d:77:b3:9c:a2: d7:a7:79:59:d7:6b:46:2e:c3:f1:30:a3:ee:2a:16:8c:0c:94: 22:aa:b3:61:4d:0a:4d:83:3a:ee:de:a8:d5:34:ac:31:81:9e: 0b:7f:c8:59:87:49:06:50:f4:6d:87:41:44:2e:85:2e:2d:0e: 42:c1:d0:5c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUB4fxmAGtl0LZhF+SxUcH1vTlDc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTdaFw0yNTEwMDUwNDQ1MTdaMDMxMTAvBgNV BAMTKDBCM0MxQUY5Mjk0NDVCMTJEODFGOTQ0MDBDOTQwOURCMUFCNkVFN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe6pzqROj47oJBWxPRCtP5vVJP JNKCuzp+x64KrD8Xk9GUEE5DZz4T/8oB0GQJJg+9DHE5QjSApJBpXJD24Ve1fAn2 NbWLSYAk+pPJkBC4o2oo52puBT/QVFFUx+mkhvy7RosHH3KCQJ+HU8CWvtpioClS lDVRAr2TMrcJ18zRbPXsDTTHG43egmqj6RwTSh4lQVAdAVCHBP9J7HNuly2f3Ce5 oRZPYM7qnq6bVeR6lKbIEPIkN3SzDBrjkbJ7Gs4xaA2R1G/EX/2MH7JLWPN+5Wtp hCslnsAjVuqhuzarUjuVaWeZwqYU7iXX5eVwbUpAyc6rrtfa8PncCr3b1nINAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCzwa+SlEWxLYH5RADJQJ2xq27n8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjgwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHgwDQYJKoZIhvcNAQELBQADggEBAE5r 9RzBZqRljOdtt+WJwTxsIJysb1VcOZ0+KHd98qfne5uNG8effLIbLkikMSr2ZZNN JOx6JYdv5RIttncUORHoUhq5yvPqXovPpN9JSMM/Y/b7mB4YBJ/dWet0WVmDt8Ul O+WUDSHJVlduCseGkU0sOnIsQDdNKUQFvqqSZU43pFmZd+DkRruhAS1Jme/bJPa+ 9Lh70GTQtBxtIvPCYFcIsAi4Ajk/MiTghl6daoYO982eeWjTsy3qZZuUkGMfoI0t d7OcoteneVnXa0Yuw/Ewo+4qFowMlCKqs2FNCk2DOu7eqNU0rDGBngt/yFmHSQZQ 9G2HQUQuhS4tDkLB0Fw= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org