$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199688.roa File: AS199688.roa (raw, json) Hash identifier: EVQI8FVeA8uN60RH3Ew9aRh8IMk2hafEJpKhuYXyWdc= Subject key identifier: 8F:C3:70:3D:79:35:DA:6C:A4:3A:B4:72:6B:71:31:BC:55:6C:CB:14 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5B1906968A7CCF6CBBA5006141475E0F3764CDAD Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199688.roa Signing time: Sun 05 Nov 2023 04:07:17 +0000 ROA not before: Sun 05 Nov 2023 04:02:17 +0000 ROA not after: Sun 03 Nov 2024 04:07:17 +0000 asID: 199688 IP address blocks: 2a0a:6040:7600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:19:06:96:8a:7c:cf:6c:bb:a5:00:61:41:47:5e:0f:37:64:cd:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:17 2023 GMT Not After : Nov 3 04:07:17 2024 GMT Subject: CN=8FC3703D7935DA6CA43AB4726B7131BC556CCB14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:fa:82:7d:88:e7:62:61:4b:17:0a:75:31: 13:dc:b5:6d:80:90:98:a5:47:d8:22:18:b0:10:77: b2:be:de:ef:a9:ee:60:ad:a0:bd:39:58:2e:09:e2: aa:2b:2c:8a:15:b6:8d:a8:fe:42:47:0d:a4:93:42: 42:b8:53:a5:20:6d:53:a8:cb:af:7e:82:3a:80:dc: 1e:47:d3:02:bb:90:b1:f7:c2:8d:20:41:24:d5:ff: 97:d9:20:fc:07:b1:68:37:14:d4:d9:2f:70:3a:f5: 55:c4:90:a6:26:c2:38:01:da:0a:5e:cd:64:d2:23: 5b:1a:4f:4c:22:66:f9:e8:84:f8:af:29:02:5b:72: 31:d9:45:20:6d:16:a4:ee:e7:35:4d:42:6f:98:c8: 65:a2:a1:69:74:0b:07:70:7e:80:b3:d8:2e:d8:97: d8:40:a5:d1:7f:ec:3f:a7:70:1c:db:d4:e3:db:b2: f8:73:b4:f7:a4:50:f6:26:90:65:f2:83:45:65:f6: 0a:19:a9:7e:a5:e7:49:fc:3b:d7:43:4d:4f:c2:2d: dd:c3:37:a3:9c:5f:d8:6e:fd:60:69:0a:aa:d0:40: 63:14:a8:cf:ba:91:c4:97:70:da:0d:52:8f:6c:68: 3b:f8:12:76:40:29:ef:ea:da:75:92:64:37:19:ac: 0b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C3:70:3D:79:35:DA:6C:A4:3A:B4:72:6B:71:31:BC:55:6C:CB:14 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199688.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7600::/40 Signature Algorithm: sha256WithRSAEncryption 12:25:09:15:47:e1:81:bd:8f:b5:da:95:4e:92:95:8e:02:b0: 1f:5b:5c:d9:ef:dd:08:e3:31:7e:99:8f:f9:81:45:e6:49:35: c4:92:5e:d6:9f:b2:aa:5f:52:70:c5:a1:69:70:0c:e2:9c:1b: b9:0c:0e:01:3a:09:d6:3f:88:93:71:9a:3c:0a:be:14:35:0f: 18:eb:31:31:93:fb:57:b8:8d:c6:d2:71:64:59:fc:fd:da:cb: ea:d4:c5:5c:a2:84:c0:b0:32:5e:ea:2b:a5:a9:90:15:2f:03: c7:b5:16:9f:8a:70:3d:02:4c:53:f3:c8:f9:0e:78:b2:aa:a7: ef:73:24:fc:3e:88:9d:e5:1d:19:32:1b:00:e5:fd:db:5b:7f: 9d:39:8e:31:c7:8e:70:5f:7e:f0:33:ab:e9:e9:d7:f4:bf:77: bc:6f:b5:f5:c8:c2:ab:24:96:34:71:dd:bc:c8:9e:ca:dd:95: d2:ac:91:a9:a1:4b:8d:09:5a:55:30:27:e3:f4:d3:57:6e:4e: ed:d2:35:12:c4:08:ba:69:04:19:4b:da:68:5b:9e:6a:d6:1f: b5:d6:be:ec:9e:42:f2:00:1d:f7:ec:9d:0e:b9:c2:42:ef:b6: e5:d7:fc:43:bb:a8:4a:80:b2:b4:88:f6:81:b3:78:75:cb:af: dc:44:ce:76 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWxkGlop8z2y7pQBhQUdeDzdkza0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTdaFw0yNDExMDMwNDA3MTdaMDMxMTAvBgNV BAMTKDhGQzM3MDNENzkzNURBNkNBNDNBQjQ3MjZCNzEzMUJDNTU2Q0NCMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaZPqCfYjnYmFLFwp1MRPctW2A kJilR9giGLAQd7K+3u+p7mCtoL05WC4J4qorLIoVto2o/kJHDaSTQkK4U6UgbVOo y69+gjqA3B5H0wK7kLH3wo0gQSTV/5fZIPwHsWg3FNTZL3A69VXEkKYmwjgB2gpe zWTSI1saT0wiZvnohPivKQJbcjHZRSBtFqTu5zVNQm+YyGWioWl0CwdwfoCz2C7Y l9hApdF/7D+ncBzb1OPbsvhztPekUPYmkGXyg0Vl9goZqX6l50n8O9dDTU/CLd3D N6OcX9hu/WBpCqrQQGMUqM+6kcSXcNoNUo9saDv4EnZAKe/q2nWSZDcZrAtjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUj8NwPXk12mykOrRya3ExvFVsyxQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5Njg4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHYwDQYJKoZIhvcNAQELBQADggEBABIl CRVH4YG9j7XalU6SlY4CsB9bXNnv3QjjMX6Zj/mBReZJNcSSXtafsqpfUnDFoWlw DOKcG7kMDgE6CdY/iJNxmjwKvhQ1DxjrMTGT+1e4jcbScWRZ/P3ay+rUxVyihMCw Ml7qK6WpkBUvA8e1Fp+KcD0CTFPzyPkOeLKqp+9zJPw+iJ3lHRkyGwDl/dtbf505 jjHHjnBffvAzq+np1/S/d7xvtfXIwqskljRx3bzInsrdldKskamhS40JWlUwJ+P0 01duTu3SNRLECLppBBlL2mhbnmrWH7XWvuyeQvIAHffsnQ65wkLvtuXX/EO7qEqA srSI9oGzeHXLr9xEznY= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org