$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199762.roa File: AS199762.roa (raw, json) Hash identifier: 7Q52Nl7c1ZPRYuBQOlbmV70nu4TJRUap2NL8M6ZTttw= Subject key identifier: 42:19:F2:0F:E0:06:6A:D1:D6:31:18:A6:F1:C9:C9:B5:77:47:C7:96 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 257F4D366E0ECA902D84A6D34502684B44503E97 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199762.roa Signing time: Sun 05 Nov 2023 04:07:17 +0000 ROA not before: Sun 05 Nov 2023 04:02:17 +0000 ROA not after: Sun 03 Nov 2024 04:07:17 +0000 asID: 199762 IP address blocks: 2a0a:6040:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Apr 2024 04:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:7f:4d:36:6e:0e:ca:90:2d:84:a6:d3:45:02:68:4b:44:50:3e:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:17 2023 GMT Not After : Nov 3 04:07:17 2024 GMT Subject: CN=4219F20FE0066AD1D63118A6F1C9C9B57747C796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:06:b6:f0:93:90:60:fe:14:b9:12:5c:18: ae:c0:1d:f6:13:21:d3:6b:8b:4e:48:50:61:80:42: 80:b0:2b:b3:78:fe:9d:5a:ad:ab:67:16:b3:6e:60: 75:92:02:0b:81:ec:cd:2a:79:40:90:1a:8f:75:d5: 9f:79:2c:b0:8a:43:22:2f:e4:69:c1:5b:c6:36:fa: 46:90:b3:68:f9:18:42:2a:14:dc:84:04:40:85:c1: 45:87:86:33:29:89:a1:70:6c:ed:31:3a:83:c7:b9: 02:8a:29:97:96:fa:57:41:a3:99:12:e6:ff:a8:1e: 9c:2f:c6:6c:b8:65:24:7d:7b:5b:4e:2d:fe:1d:ac: fe:86:63:32:ef:68:06:0e:ff:43:33:73:34:48:05: 83:a6:e8:87:00:bb:79:14:12:7a:1e:42:20:9e:33: 7a:05:1d:c5:af:65:59:41:2c:63:04:28:78:b7:bf: 6c:c3:7c:03:fc:cb:47:b0:d9:ac:6f:ab:e8:7b:9d: 76:f1:14:87:23:ab:99:6c:fc:99:05:db:bb:48:b8: 0f:0b:be:41:46:b2:bd:ff:ff:c6:10:c9:be:0b:ec: 5d:b7:77:93:51:74:7e:a1:46:75:1f:c7:85:d1:c4: 58:0a:d1:de:14:82:86:d0:88:bd:be:5a:fb:65:35: 65:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:19:F2:0F:E0:06:6A:D1:D6:31:18:A6:F1:C9:C9:B5:77:47:C7:96 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199762.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3000::/40 Signature Algorithm: sha256WithRSAEncryption 50:62:f9:ec:da:9d:41:6c:89:02:4d:49:57:3c:45:9d:52:b0: a0:a5:e2:fe:32:cb:a9:4f:07:2c:60:77:48:c9:59:55:c0:1f: e7:17:d2:dd:e5:18:85:13:3e:68:38:e6:5c:3b:40:c3:57:08: f2:4a:59:14:35:9b:45:6c:96:ef:dd:5d:ee:9f:9f:ba:59:65: c4:e2:a2:cf:82:22:d0:2b:23:8e:44:3e:20:fd:4d:58:ca:be: cc:fe:35:c1:b5:2d:0d:52:a3:e2:4d:46:d3:ef:e6:2c:e3:84: a7:eb:be:7d:6d:3d:4d:a6:43:1f:77:14:4e:a4:bc:5f:ec:ba: 5a:67:43:00:b0:49:66:d7:67:ca:a0:23:41:30:02:5a:74:7e: 7d:67:ca:10:ab:40:4f:c0:fb:23:7b:22:b8:b1:71:5c:07:b6: 72:c4:d6:a8:56:08:f8:6b:ac:2c:91:cc:df:ae:5d:3b:62:da: cb:b5:5d:c4:5a:cb:76:ea:f8:5a:db:94:65:0a:9e:15:29:8b: 67:34:10:4b:dd:99:30:3b:9a:40:5a:4b:6f:32:9e:e4:6b:f0: a5:19:7b:3d:f6:be:8a:ca:95:79:9a:6a:32:43:16:02:d4:7d: 43:87:cc:37:71:61:ea:24:f7:81:e0:56:54:fa:29:82:05:6d: d4:b3:bc:64 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJX9NNm4OypAthKbTRQJoS0RQPpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTdaFw0yNDExMDMwNDA3MTdaMDMxMTAvBgNV BAMTKDQyMTlGMjBGRTAwNjZBRDFENjMxMThBNkYxQzlDOUI1Nzc0N0M3OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+0ga28JOQYP4UuRJcGK7AHfYT IdNri05IUGGAQoCwK7N4/p1aratnFrNuYHWSAguB7M0qeUCQGo911Z95LLCKQyIv 5GnBW8Y2+kaQs2j5GEIqFNyEBECFwUWHhjMpiaFwbO0xOoPHuQKKKZeW+ldBo5kS 5v+oHpwvxmy4ZSR9e1tOLf4drP6GYzLvaAYO/0MzczRIBYOm6IcAu3kUEnoeQiCe M3oFHcWvZVlBLGMEKHi3v2zDfAP8y0ew2axvq+h7nXbxFIcjq5ls/JkF27tIuA8L vkFGsr3//8YQyb4L7F23d5NRdH6hRnUfx4XRxFgK0d4UgobQiL2+WvtlNWUPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQhnyD+AGatHWMRim8cnJtXdHx5YwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NzYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDAwDQYJKoZIhvcNAQELBQADggEBAFBi +ezanUFsiQJNSVc8RZ1SsKCl4v4yy6lPByxgd0jJWVXAH+cX0t3lGIUTPmg45lw7 QMNXCPJKWRQ1m0Vslu/dXe6fn7pZZcTios+CItArI45EPiD9TVjKvsz+NcG1LQ1S o+JNRtPv5izjhKfrvn1tPU2mQx93FE6kvF/sulpnQwCwSWbXZ8qgI0EwAlp0fn1n yhCrQE/A+yN7IrixcVwHtnLE1qhWCPhrrCyRzN+uXTti2su1XcRay3bq+FrblGUK nhUpi2c0EEvdmTA7mkBaS28ynuRr8KUZez32vorKlXmaajJDFgLUfUOHzDdxYeok 94HgVlT6KYIFbdSzvGQ= -----END CERTIFICATE-----Generated at Thu Apr 25 11:35:08 2024 by rpki-client on console-ams.rpki-client.org