$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199762.roa File: AS199762.roa (raw, json) Hash identifier: 6S9Ibiw1JTHyePrcRU+nBgxvZTvTAg7t7m76rUb+M5o= Subject key identifier: A5:40:45:CC:BE:1A:70:E0:5B:6C:D6:9E:84:D0:AB:45:2D:97:0D:BE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 690BFD857146573C49DD9066413AEB4CC1420EFD Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199762.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 199762 IP address blocks: 2a0a:6040:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0b:fd:85:71:46:57:3c:49:dd:90:66:41:3a:eb:4c:c1:42:0e:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=A54045CCBE1A70E05B6CD69E84D0AB452D970DBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:95:e7:2e:48:cd:84:4e:1c:b6:6c:0a:4b:41: 47:fc:38:d9:78:e4:64:4b:7d:d0:52:49:0a:58:e5: 5f:63:d9:3b:30:7e:d2:ae:4f:64:f9:dd:8a:15:50: 79:09:9a:5b:d3:89:ba:3c:bc:3d:21:c2:11:9c:1d: f7:fe:9f:d1:9e:e6:36:b4:ea:b8:ba:4f:76:b4:73: 99:17:fa:7a:88:f5:a0:6a:c0:e5:a9:59:fc:e1:7c: 88:68:97:94:21:3d:b8:82:2e:1d:26:ce:1a:4e:ba: a9:f3:26:d3:e5:45:59:8d:d9:ed:b6:b3:95:e2:c7: 35:ee:68:40:f1:a7:f2:24:26:ff:b5:3d:ef:fb:1f: bb:6a:6c:ff:25:1d:66:f9:65:52:8f:92:3a:e9:c3: c1:38:b6:56:ee:3d:7c:10:54:fe:9a:05:3e:be:f7: 54:fe:d8:df:ce:25:69:c5:47:d2:b2:76:41:14:11: ca:66:6f:65:1d:21:e3:b4:db:9b:5b:c3:b3:d3:00: 66:a2:1f:93:c4:57:cf:e9:6c:aa:bb:be:1e:1f:51: c8:00:d4:69:d8:50:c9:e2:21:88:e9:b6:f3:af:fd: d6:4b:0a:ed:ba:cd:46:e7:48:b6:d1:61:8b:97:c4: bd:ac:e4:f6:09:64:af:02:c8:d7:21:d3:9d:18:55: c6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:40:45:CC:BE:1A:70:E0:5B:6C:D6:9E:84:D0:AB:45:2D:97:0D:BE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199762.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3000::/40 Signature Algorithm: sha256WithRSAEncryption c3:1c:b9:b9:b5:c9:4a:5b:4a:b5:57:6f:f5:50:d6:d3:20:24: 9b:6d:12:5f:d6:5f:ee:15:b4:f1:1d:37:77:36:d2:23:ad:89: 49:e1:49:60:4e:3a:87:be:1c:33:47:4f:0d:93:93:24:72:07: 04:c1:49:bc:b2:8e:1d:f7:31:26:4e:25:80:0b:0e:ce:89:55: e6:0f:cb:0b:63:64:ba:64:77:37:49:c4:52:3e:39:0b:18:59: 01:45:ab:05:20:41:a0:db:51:a6:47:67:e4:be:ec:9b:e0:6c: 2f:06:39:7e:9d:62:6f:64:65:eb:91:5a:60:82:44:2a:4b:e2: 9c:46:a1:1a:d1:dd:e2:28:c1:bf:c5:8c:8c:29:24:af:7a:17: 08:95:36:82:57:93:34:7e:18:44:3f:6c:04:ac:33:49:4e:c5: 43:17:ea:bf:00:8d:37:ec:f1:cb:fa:e1:c1:16:3f:76:7c:cc: 0d:e3:17:4c:6e:d0:dc:2a:4e:5c:7e:bb:2e:5e:4f:35:bf:6c: 12:64:ae:6d:3c:48:4a:e7:e1:5a:ad:9b:12:31:41:3f:d5:c5: 41:7c:c3:ad:db:eb:eb:1b:f7:68:58:9d:07:05:42:79:45:83: 7a:9e:3d:b5:47:b2:dc:33:f8:e2:97:98:38:fa:04:80:02:11: 99:8e:f0:ae -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaQv9hXFGVzxJ3ZBmQTrrTMFCDv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKEE1NDA0NUNDQkUxQTcwRTA1QjZDRDY5RTg0RDBBQjQ1MkQ5NzBEQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDplecuSM2EThy2bApLQUf8ONl4 5GRLfdBSSQpY5V9j2TswftKuT2T53YoVUHkJmlvTibo8vD0hwhGcHff+n9Ge5ja0 6ri6T3a0c5kX+nqI9aBqwOWpWfzhfIhol5QhPbiCLh0mzhpOuqnzJtPlRVmN2e22 s5XixzXuaEDxp/IkJv+1Pe/7H7tqbP8lHWb5ZVKPkjrpw8E4tlbuPXwQVP6aBT6+ 91T+2N/OJWnFR9KydkEUEcpmb2UdIeO025tbw7PTAGaiH5PEV8/pbKq7vh4fUcgA 1GnYUMniIYjptvOv/dZLCu26zUbnSLbRYYuXxL2s5PYJZK8CyNch050YVca7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUpUBFzL4acOBbbNaehNCrRS2XDb4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NzYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDAwDQYJKoZIhvcNAQELBQADggEBAMMc ubm1yUpbSrVXb/VQ1tMgJJttEl/WX+4VtPEdN3c20iOtiUnhSWBOOoe+HDNHTw2T kyRyBwTBSbyyjh33MSZOJYALDs6JVeYPywtjZLpkdzdJxFI+OQsYWQFFqwUgQaDb UaZHZ+S+7JvgbC8GOX6dYm9kZeuRWmCCRCpL4pxGoRrR3eIowb/FjIwpJK96FwiV NoJXkzR+GEQ/bASsM0lOxUMX6r8AjTfs8cv64cEWP3Z8zA3jF0xu0NwqTlx+uy5e TzW/bBJkrm08SErn4VqtmxIxQT/VxUF8w63b6+sb92hYnQcFQnlFg3qePbVHstwz +OKXmDj6BIACEZmO8K4= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org