$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199767.roa File: AS199767.roa (raw, json) Hash identifier: 7gI0aJn3gKe7kw9WJDe43ghWsR1JEK0a6xuXPdI6zJQ= Subject key identifier: F5:57:AB:B7:E5:BB:0C:EB:F0:6C:4D:93:E6:F6:F2:98:12:C1:3B:0C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 254B910AEE33453243BCE49C389038871A0E298A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199767.roa Signing time: Sun 06 Oct 2024 04:45:03 +0000 ROA not before: Sun 06 Oct 2024 04:40:03 +0000 ROA not after: Sun 05 Oct 2025 04:45:03 +0000 asID: 199767 IP address blocks: 2a0a:6040:4f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4b:91:0a:ee:33:45:32:43:bc:e4:9c:38:90:38:87:1a:0e:29:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:03 2024 GMT Not After : Oct 5 04:45:03 2025 GMT Subject: CN=F557ABB7E5BB0CEBF06C4D93E6F6F29812C13B0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:04:b8:77:09:f0:54:4f:89:82:e7:ba:f1:05: 0b:aa:93:7e:15:3c:7a:fd:7c:c0:ba:95:48:ca:16: cd:9c:bb:f6:16:b2:79:e2:35:43:77:d0:57:24:91: c1:b6:4c:b7:7e:b8:cc:e9:c7:b8:18:8e:25:d0:bd: 7d:d5:e6:29:a5:10:8d:80:7c:b7:2c:1c:71:9a:63: 46:45:1a:b2:01:6e:f4:66:92:82:59:c1:5c:94:b2: 1e:ae:6c:0c:2c:71:9e:56:8a:5a:17:17:53:36:1f: 39:ca:ec:d5:7f:ae:c4:96:f3:3c:23:62:ce:2d:6c: 05:c1:01:52:3e:82:87:ff:d8:b3:45:ea:43:c9:e8: 3c:86:71:b8:68:53:7e:71:54:be:44:f1:2c:4c:2a: 3f:1f:c0:16:37:44:71:ca:3a:b8:80:54:14:46:31: ba:88:cd:31:22:f5:2c:72:8e:92:65:10:18:5d:57: 9f:8d:71:b9:a3:d9:2b:eb:af:7e:bb:0b:20:fc:26: d0:a3:b2:a1:a1:b1:db:d6:27:a1:c0:d9:f1:b3:62: d8:1b:db:92:ac:74:ef:ca:87:75:55:e7:fa:13:69: 66:7f:fc:83:4f:0a:19:ae:6a:da:5e:e2:c7:a3:f7: 0e:5d:e9:b1:24:62:69:f0:ba:5b:3b:72:b2:35:7b: ea:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:57:AB:B7:E5:BB:0C:EB:F0:6C:4D:93:E6:F6:F2:98:12:C1:3B:0C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199767.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4f00::/40 Signature Algorithm: sha256WithRSAEncryption 33:2d:c4:3e:6b:4b:a3:cf:ba:d1:28:47:9b:a1:24:8d:83:d5: 9b:fd:21:04:1d:83:59:15:96:47:23:2f:8f:f5:c3:e0:59:6f: 0d:8a:02:4b:2c:55:a6:81:54:7e:a7:f7:a8:c0:9f:86:e6:b5: ee:50:d1:f6:dd:c6:cc:30:3f:8a:0c:34:53:2a:92:1d:8a:d7: 9e:42:14:86:8a:51:b9:27:42:8f:e1:72:ad:fa:0b:d2:f7:5f: 74:e2:e2:ce:ef:66:83:ee:b3:4a:b7:d4:37:1d:f4:81:e3:68: ec:74:03:19:a5:9f:4f:e8:ba:c6:05:2e:2b:09:65:8e:f9:27: 6e:6b:a9:be:87:69:69:f3:c2:da:8d:52:8f:96:9c:52:db:b8: cf:30:ed:af:94:dd:a7:10:9b:84:a9:59:ed:04:5d:91:34:10: ab:95:a1:56:b2:cc:1d:6f:82:52:5a:2f:25:03:1b:4e:21:36: 1d:f8:5b:dc:2c:35:47:b5:f1:60:e8:78:12:2d:d7:05:96:d8: 33:9b:1b:a4:bb:99:76:54:00:d8:ad:b1:bc:0d:07:8d:14:ac: 6a:70:56:79:c3:21:bf:93:5f:c1:72:21:15:a7:90:a1:71:80: 01:67:b1:81:58:bb:60:6c:53:63:3e:8d:b9:bc:3d:a6:11:09: db:45:c5:43 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJUuRCu4zRTJDvOScOJA4hxoOKYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDNaFw0yNTEwMDUwNDQ1MDNaMDMxMTAvBgNV BAMTKEY1NTdBQkI3RTVCQjBDRUJGMDZDNEQ5M0U2RjZGMjk4MTJDMTNCMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDABLh3CfBUT4mC57rxBQuqk34V PHr9fMC6lUjKFs2cu/YWsnniNUN30FckkcG2TLd+uMzpx7gYjiXQvX3V5imlEI2A fLcsHHGaY0ZFGrIBbvRmkoJZwVyUsh6ubAwscZ5WiloXF1M2HznK7NV/rsSW8zwj Ys4tbAXBAVI+gof/2LNF6kPJ6DyGcbhoU35xVL5E8SxMKj8fwBY3RHHKOriAVBRG MbqIzTEi9SxyjpJlEBhdV5+Ncbmj2Svrr367CyD8JtCjsqGhsdvWJ6HA2fGzYtgb 25KsdO/Kh3VV5/oTaWZ//INPChmuatpe4sej9w5d6bEkYmnwuls7crI1e+rZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU9Vert+W7DOvwbE2T5vbymBLBOwwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NzY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQE8wDQYJKoZIhvcNAQELBQADggEBADMt xD5rS6PPutEoR5uhJI2D1Zv9IQQdg1kVlkcjL4/1w+BZbw2KAkssVaaBVH6n96jA n4bmte5Q0fbdxswwP4oMNFMqkh2K155CFIaKUbknQo/hcq36C9L3X3Ti4s7vZoPu s0q31Dcd9IHjaOx0Axmln0/ousYFLisJZY75J25rqb6HaWnzwtqNUo+WnFLbuM8w 7a+U3acQm4SpWe0EXZE0EKuVoVayzB1vglJaLyUDG04hNh34W9wsNUe18WDoeBIt 1wWW2DObG6S7mXZUANitsbwNB40UrGpwVnnDIb+TX8FyIRWnkKFxgAFnsYFYu2Bs U2M+jbm8PaYRCdtFxUM= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org