$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199680.roa File: AS199680.roa (raw, json) Hash identifier: Iop8jQwheBIpCjyLV/2TYTn61kXvc5XewX3XlVj+qos= Subject key identifier: 44:57:CA:37:ED:93:B5:B5:3E:FC:7B:6E:A8:55:58:23:2C:37:A7:80 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0BD18F3B80BBEF5C4429E788514B5E215FFAA518 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199680.roa Signing time: Sun 05 Nov 2023 04:07:19 +0000 ROA not before: Sun 05 Nov 2023 04:02:19 +0000 ROA not after: Sun 03 Nov 2024 04:07:19 +0000 asID: 199680 IP address blocks: 2a0a:6040:7800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d1:8f:3b:80:bb:ef:5c:44:29:e7:88:51:4b:5e:21:5f:fa:a5:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:19 2023 GMT Not After : Nov 3 04:07:19 2024 GMT Subject: CN=4457CA37ED93B5B53EFC7B6EA85558232C37A780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d0:32:52:ea:61:ee:36:8c:47:f3:63:b3:4a: 79:f5:0e:ff:86:30:92:26:45:d2:96:4b:dc:0d:b3: ce:21:49:65:c5:ce:81:e7:5c:5c:51:ce:94:e1:b7: dc:cb:7d:35:29:7b:20:53:fa:c0:70:a0:a4:93:a5: 58:8a:a6:c7:dc:36:81:e8:e2:8c:5a:1d:95:d0:2f: 11:18:ab:48:76:8f:2c:b4:90:a0:82:c5:b1:c3:d2: 4c:d4:cd:1d:6e:14:35:36:ad:6d:f1:b5:15:fa:99: c6:b0:8c:5f:77:bc:46:3e:78:de:20:93:68:75:1d: 86:5e:5d:24:14:c3:e5:e6:55:bf:13:1a:3c:cd:3a: 63:3c:03:79:24:1a:82:a9:52:47:86:54:91:b7:fe: 83:b2:f9:32:8e:3a:5a:8d:9f:1c:9f:44:ac:3a:5c: cc:30:a6:75:37:4b:c2:7e:cc:14:bc:30:f8:99:74: 8f:e9:a8:cb:7b:e8:60:d3:0e:ef:eb:76:20:81:e8: eb:85:59:9e:09:a0:c0:16:b0:f6:06:22:69:14:fb: 3d:ad:21:1a:c3:7a:1f:50:00:52:cf:5c:c9:d8:3e: 68:d6:77:1b:93:95:bb:e5:1e:d8:57:a6:16:6d:d1: 66:d7:d7:54:d8:31:54:c6:6e:bb:50:f8:dd:ff:08: 2a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:57:CA:37:ED:93:B5:B5:3E:FC:7B:6E:A8:55:58:23:2C:37:A7:80 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199680.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7800::/40 Signature Algorithm: sha256WithRSAEncryption 5a:1a:45:6b:a1:af:80:f0:a2:1a:fb:8a:56:21:d3:e1:47:8b: 07:43:19:ab:0d:d6:e8:cb:9d:17:d8:31:93:c7:16:2d:5c:79: 84:89:4a:02:64:1b:ed:e0:33:6c:f0:33:8d:14:e6:a3:2e:59: d8:bd:5c:ab:61:95:ba:21:64:e3:42:d1:6b:37:e2:bd:3f:d7: e3:e8:d1:20:92:e9:86:4b:f2:dc:c5:48:06:ae:7b:fd:09:88: c6:74:96:04:9f:8e:d7:f3:6a:35:c1:b0:b0:2a:d1:5c:cb:a8: ab:cb:ec:53:7c:25:5e:e5:26:7c:69:a7:2d:60:9c:34:89:4b: ff:fe:63:5c:51:5b:d4:dc:74:66:31:fa:31:9e:b8:92:e5:f0: 28:d2:a8:25:4d:96:f8:bf:12:19:db:c0:60:30:f4:c9:cc:42: 14:7d:60:a1:7f:f2:cd:97:d5:62:2e:40:d3:ca:41:8f:38:61: 29:59:49:95:fc:27:dc:88:bb:12:fc:fd:1f:67:a5:c8:4b:36: b9:8a:fc:d4:11:a9:fb:4e:07:b3:26:ac:5d:4b:dc:10:5e:da: 41:aa:da:07:7b:7a:6e:1e:c2:3c:15:94:71:58:ae:fb:56:f0: db:8e:31:e6:ff:51:7b:fd:92:cf:d7:b6:45:d0:46:01:86:12: c1:3a:a5:2a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUC9GPO4C771xEKeeIUUteIV/6pRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTlaFw0yNDExMDMwNDA3MTlaMDMxMTAvBgNV BAMTKDQ0NTdDQTM3RUQ5M0I1QjUzRUZDN0I2RUE4NTU1ODIzMkMzN0E3ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+0DJS6mHuNoxH82OzSnn1Dv+G MJImRdKWS9wNs84hSWXFzoHnXFxRzpTht9zLfTUpeyBT+sBwoKSTpViKpsfcNoHo 4oxaHZXQLxEYq0h2jyy0kKCCxbHD0kzUzR1uFDU2rW3xtRX6mcawjF93vEY+eN4g k2h1HYZeXSQUw+XmVb8TGjzNOmM8A3kkGoKpUkeGVJG3/oOy+TKOOlqNnxyfRKw6 XMwwpnU3S8J+zBS8MPiZdI/pqMt76GDTDu/rdiCB6OuFWZ4JoMAWsPYGImkU+z2t IRrDeh9QAFLPXMnYPmjWdxuTlbvlHthXphZt0WbX11TYMVTGbrtQ+N3/CCrtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQURFfKN+2TtbU+/HtuqFVYIyw3p4AwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NjgwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHgwDQYJKoZIhvcNAQELBQADggEBAFoa RWuhr4Dwohr7ilYh0+FHiwdDGasN1ujLnRfYMZPHFi1ceYSJSgJkG+3gM2zwM40U 5qMuWdi9XKthlbohZONC0Ws34r0/1+Po0SCS6YZL8tzFSAaue/0JiMZ0lgSfjtfz ajXBsLAq0VzLqKvL7FN8JV7lJnxppy1gnDSJS//+Y1xRW9TcdGYx+jGeuJLl8CjS qCVNlvi/EhnbwGAw9MnMQhR9YKF/8s2X1WIuQNPKQY84YSlZSZX8J9yIuxL8/R9n pchLNrmK/NQRqftOB7MmrF1L3BBe2kGq2gd7em4ewjwVlHFYrvtW8NuOMeb/UXv9 ks/XtkXQRgGGEsE6pSo= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org