$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199766.roa File: AS199766.roa (raw, json) Hash identifier: ZWmtdaYaEYRanCCxmu+W685pmR/EXUj3J/GYjyk+rYs= Subject key identifier: 66:67:1C:A7:66:46:2D:75:3F:35:69:C6:7E:2E:82:E6:3A:DC:E5:A9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 73D94CABACF0C109A228119A4D6D660BD1BED08F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199766.roa Signing time: Wed 06 Sep 2023 06:01:15 +0000 ROA not before: Wed 06 Sep 2023 05:56:15 +0000 ROA not after: Wed 04 Sep 2024 06:01:15 +0000 asID: 199766 IP address blocks: 2a05:dfc1:8900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:d9:4c:ab:ac:f0:c1:09:a2:28:11:9a:4d:6d:66:0b:d1:be:d0:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 6 05:56:15 2023 GMT Not After : Sep 4 06:01:15 2024 GMT Subject: CN=66671CA766462D753F3569C67E2E82E63ADCE5A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:07:57:29:d0:60:6d:31:99:f3:14:64:51:80: 56:fa:6a:da:75:6f:d3:a6:3f:6c:ff:dd:97:83:4d: 7a:0d:94:bb:b8:35:c7:2f:9d:a6:12:f7:03:99:0a: 22:a4:78:d2:4b:42:00:7b:6b:ea:23:61:c7:a4:02: ba:f5:5f:d7:c9:b4:d8:b7:f7:64:eb:85:46:a3:27: 32:9a:96:f6:dc:81:7d:2c:eb:30:26:6c:b1:b3:35: 53:bf:d5:4d:86:40:ec:66:b6:fc:4f:ab:93:bb:00: f9:34:bf:2d:cd:5f:84:d5:d8:b4:5f:fb:ee:9a:9c: b0:7b:5a:fc:8a:a2:9f:3f:0e:7c:ad:55:7f:ab:e8: c8:9f:d7:10:81:b6:67:10:f5:a6:40:b7:7f:54:7e: 51:c5:5d:68:b5:6a:5b:cc:c0:b7:71:77:fe:18:d0: 43:dd:0d:24:06:57:af:4a:98:78:4f:d5:17:a0:02: 69:18:1b:93:6d:51:35:03:84:43:03:4a:3d:6c:0f: 9e:0c:56:8d:dc:bb:38:a8:a7:7c:fc:3d:cd:d8:26: 99:fe:35:5c:66:6f:6b:8e:3a:28:86:57:61:3b:48: b4:0e:53:57:b2:52:97:57:dd:46:2b:90:51:69:fd: e6:30:36:93:1d:2c:71:f3:8a:95:2f:ed:94:ec:d7: 2d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:67:1C:A7:66:46:2D:75:3F:35:69:C6:7E:2E:82:E6:3A:DC:E5:A9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199766.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8900::/40 Signature Algorithm: sha256WithRSAEncryption 4c:47:e1:60:a4:b8:f2:b4:0c:25:95:1d:cc:1b:5f:09:cf:9b: 4e:35:64:1a:97:6c:6e:30:e7:0d:4b:1b:43:4f:7f:a6:4b:7a: 9a:2b:f7:80:58:ab:bc:38:f2:31:67:0b:19:68:60:de:27:cb: c1:ee:40:8b:55:64:67:35:35:58:c4:0d:7a:a6:65:13:e2:28: bc:fc:b7:a3:d5:23:af:d4:57:df:9a:15:3c:5e:72:0e:69:22: f7:29:4d:ce:05:b3:b0:e1:87:82:42:34:4f:80:b4:c5:26:ea: 14:8e:b6:6d:af:77:0d:07:8b:97:82:26:c3:c4:a1:e5:c9:7c: 72:ba:b0:24:a6:3e:ac:05:bb:d0:e0:d1:6d:61:b4:6e:85:94: 05:ae:bc:e9:8d:4b:e4:8a:31:7c:66:4f:f3:46:9a:36:81:fa: e3:c9:f1:d6:7b:48:82:4b:de:b5:39:66:a8:ab:15:ac:74:72: 48:42:cf:6a:db:0d:ad:f5:75:e8:3c:67:41:e8:e6:9e:e1:7a: fc:d1:81:b7:0f:65:a7:49:76:52:09:f4:77:02:db:e8:f4:05: 03:e0:60:18:8b:c2:a6:69:7e:aa:e5:d8:7a:8b:b4:e6:5c:a9: 01:25:1b:17:fc:7c:40:8a:11:d5:b1:e7:16:25:bf:39:ec:17: a3:32:eb:84 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUc9lMq6zwwQmiKBGaTW1mC9G+0I8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA5MDYwNTU2MTVaFw0yNDA5MDQwNjAxMTVaMDMxMTAvBgNV BAMTKDY2NjcxQ0E3NjY0NjJENzUzRjM1NjlDNjdFMkU4MkU2M0FEQ0U1QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4B1cp0GBtMZnzFGRRgFb6atp1 b9OmP2z/3ZeDTXoNlLu4NccvnaYS9wOZCiKkeNJLQgB7a+ojYcekArr1X9fJtNi3 92TrhUajJzKalvbcgX0s6zAmbLGzNVO/1U2GQOxmtvxPq5O7APk0vy3NX4TV2LRf ++6anLB7WvyKop8/DnytVX+r6Mif1xCBtmcQ9aZAt39UflHFXWi1alvMwLdxd/4Y 0EPdDSQGV69KmHhP1RegAmkYG5NtUTUDhEMDSj1sD54MVo3cuziop3z8Pc3YJpn+ NVxmb2uOOiiGV2E7SLQOU1eyUpdX3UYrkFFp/eYwNpMdLHHzipUv7ZTs1y3/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZmccp2ZGLXU/NWnGfi6C5jrc5akwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NzY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYkwDQYJKoZIhvcNAQELBQADggEBAExH 4WCkuPK0DCWVHcwbXwnPm041ZBqXbG4w5w1LG0NPf6ZLepor94BYq7w48jFnCxlo YN4ny8HuQItVZGc1NVjEDXqmZRPiKLz8t6PVI6/UV9+aFTxecg5pIvcpTc4Fs7Dh h4JCNE+AtMUm6hSOtm2vdw0Hi5eCJsPEoeXJfHK6sCSmPqwFu9Dg0W1htG6FlAWu vOmNS+SKMXxmT/NGmjaB+uPJ8dZ7SIJL3rU5ZqirFax0ckhCz2rbDa31deg8Z0Ho 5p7hevzRgbcPZadJdlIJ9HcC2+j0BQPgYBiLwqZpfqrl2HqLtOZcqQElGxf8fECK EdWx5xYlvznsF6My64Q= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org