$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199766.roa File: AS199766.roa (raw, json) Hash identifier: T1Rd9lmo9IM2EUfJMpZY3espc/41G2dF3xv+hBk1K1A= Subject key identifier: E5:3B:14:8F:60:09:AA:B9:BE:7E:4B:52:EE:8D:E5:CA:31:29:11:53 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0FED46C389FE4BA7C7698E688A1C0D91E3F8937C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199766.roa Signing time: Wed 07 Aug 2024 06:49:44 +0000 ROA not before: Wed 07 Aug 2024 06:44:44 +0000 ROA not after: Wed 06 Aug 2025 06:49:44 +0000 asID: 199766 IP address blocks: 2a05:dfc1:8900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ed:46:c3:89:fe:4b:a7:c7:69:8e:68:8a:1c:0d:91:e3:f8:93:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 7 06:44:44 2024 GMT Not After : Aug 6 06:49:44 2025 GMT Subject: CN=E53B148F6009AAB9BE7E4B52EE8DE5CA31291153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9b:c3:d1:63:7f:11:1e:79:5d:ea:d7:12:bc: 9c:55:b5:13:67:33:ad:92:13:b9:0f:3a:aa:da:d1: af:d3:25:24:ea:1c:c9:c3:b1:31:58:b2:e5:93:65: 90:a5:cd:57:b3:5b:9a:ef:39:5a:d7:44:70:8f:48: 9f:d7:fb:27:19:0e:87:b7:7e:7c:07:ef:03:e1:db: f5:86:75:96:9b:fc:9f:5a:60:e5:29:7c:08:59:86: 06:8b:ae:58:41:c8:8e:1b:d5:67:d7:bf:d5:4c:78: bf:9d:3f:d7:ac:c2:97:a6:01:04:7a:3c:6d:9e:f0: dc:98:a8:6b:16:09:d6:9a:b9:34:6a:c8:48:84:42: f2:6e:89:de:1b:ad:b3:99:97:a6:c7:8e:a7:a9:7b: 31:89:be:54:57:c8:93:49:26:9b:fc:97:ef:f9:b0: fe:16:06:ca:1d:d5:33:a7:ed:4a:06:10:3e:23:61: da:70:31:95:6e:a8:02:06:04:74:b7:94:df:cb:56: 75:b5:00:f1:05:a2:17:69:c2:81:87:fa:f4:0b:15: 09:5b:26:f8:7d:c7:32:32:23:52:1a:08:ae:e3:20: 4f:db:aa:47:e8:d7:af:39:47:ce:7f:7a:ed:59:8f: 74:e9:21:f6:d3:8b:ad:fa:16:56:e9:75:2d:cc:a4: 08:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3B:14:8F:60:09:AA:B9:BE:7E:4B:52:EE:8D:E5:CA:31:29:11:53 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199766.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8900::/40 Signature Algorithm: sha256WithRSAEncryption 03:24:80:a0:24:00:26:4a:fb:c8:a1:68:d6:8a:75:2c:3a:3e: 60:a5:92:f1:b4:a5:2c:73:5b:56:70:f7:21:14:86:05:6a:bf: 0d:8c:32:5a:5d:83:95:f1:0e:75:1f:5b:f8:ab:44:22:03:67: ac:bd:05:9e:6c:b9:fa:5b:42:c5:88:5a:7b:6e:6f:43:ba:73: 79:1e:cb:5a:af:2c:0a:a7:63:2e:00:3b:73:1f:7a:e5:75:19: 23:4f:c7:8d:ec:11:af:73:b0:ca:f4:e3:1d:54:64:9d:33:6f: 0a:0e:8c:c7:a2:b2:11:21:0e:72:ad:27:29:18:cd:f2:af:4f: 4c:10:6f:17:75:34:64:7e:46:b7:77:fe:df:5a:27:a2:39:3b: b6:bc:5b:bf:95:4e:d1:08:ce:41:d9:0e:7c:73:00:3b:76:0f: 34:dc:08:e6:e0:f1:3b:de:18:e8:cb:a5:32:31:7c:91:52:45: d3:22:bd:ce:4b:49:a7:a5:d3:07:d1:dd:ea:73:ff:f9:60:eb: f7:65:50:eb:ae:96:96:8b:62:47:e9:b5:0c:f0:ab:e7:7a:ba: f0:d3:8d:8d:33:5b:26:dd:44:5f:5a:ef:31:6b:87:8b:1b:43: 01:2e:96:64:66:0b:b0:94:51:c5:81:5c:b0:ba:a9:73:6c:a7: 45:2b:46:e2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUD+1Gw4n+S6fHaY5oihwNkeP4k3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MDcwNjQ0NDRaFw0yNTA4MDYwNjQ5NDRaMDMxMTAvBgNV BAMTKEU1M0IxNDhGNjAwOUFBQjlCRTdFNEI1MkVFOERFNUNBMzEyOTExNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCm8PRY38RHnld6tcSvJxVtRNn M62SE7kPOqra0a/TJSTqHMnDsTFYsuWTZZClzVezW5rvOVrXRHCPSJ/X+ycZDoe3 fnwH7wPh2/WGdZab/J9aYOUpfAhZhgaLrlhByI4b1WfXv9VMeL+dP9eswpemAQR6 PG2e8NyYqGsWCdaauTRqyEiEQvJuid4brbOZl6bHjqepezGJvlRXyJNJJpv8l+/5 sP4WBsod1TOn7UoGED4jYdpwMZVuqAIGBHS3lN/LVnW1APEFohdpwoGH+vQLFQlb Jvh9xzIyI1IaCK7jIE/bqkfo1685R85/eu1Zj3TpIfbTi636FlbpdS3MpAjfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU5TsUj2AJqrm+fktS7o3lyjEpEVMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NzY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYkwDQYJKoZIhvcNAQELBQADggEBAAMk gKAkACZK+8ihaNaKdSw6PmClkvG0pSxzW1Zw9yEUhgVqvw2MMlpdg5XxDnUfW/ir RCIDZ6y9BZ5sufpbQsWIWntub0O6c3key1qvLAqnYy4AO3MfeuV1GSNPx43sEa9z sMr04x1UZJ0zbwoOjMeishEhDnKtJykYzfKvT0wQbxd1NGR+Rrd3/t9aJ6I5O7a8 W7+VTtEIzkHZDnxzADt2DzTcCObg8TveGOjLpTIxfJFSRdMivc5LSael0wfR3epz //lg6/dlUOuulpaLYkfptQzwq+d6uvDTjY0zWybdRF9a7zFrh4sbQwEulmRmC7CU UcWBXLC6qXNsp0UrRuI= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org