$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199767.roa File: AS199767.roa (raw, json) Hash identifier: QszrwpjL9dUXyupT/wwuOJwnS0N+jjq5uwcLFwQAk7Q= Subject key identifier: 7C:B7:0D:D8:F6:E5:8A:E9:89:B8:E2:63:A1:80:90:D7:BE:22:72:28 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 556EA97E30BC00F307047B8FDDD5D4384E12DF0B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199767.roa Signing time: Sun 05 Nov 2023 04:07:18 +0000 ROA not before: Sun 05 Nov 2023 04:02:18 +0000 ROA not after: Sun 03 Nov 2024 04:07:18 +0000 asID: 199767 IP address blocks: 2a0a:6040:4f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:6e:a9:7e:30:bc:00:f3:07:04:7b:8f:dd:d5:d4:38:4e:12:df:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:18 2023 GMT Not After : Nov 3 04:07:18 2024 GMT Subject: CN=7CB70DD8F6E58AE989B8E263A18090D7BE227228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b9:1d:70:76:26:9b:04:ee:de:09:e6:06:ee: 42:fc:95:52:df:69:c1:f0:e3:28:71:d1:34:9c:2c: c5:5d:3b:89:9b:34:58:73:7d:d7:40:3c:5c:2e:4d: 56:06:c4:89:cd:53:f2:87:57:ab:3a:86:be:92:a4: 95:53:a8:7c:35:0c:bd:2d:57:92:bf:8e:1a:21:73: 31:ea:09:fa:0f:2f:83:e6:39:f3:cb:2c:49:55:0c: ea:48:67:f4:47:70:38:a1:80:27:5c:17:85:ca:03: 6f:c9:ce:d0:1a:78:14:0f:39:3e:a1:f2:3e:7b:f6: a2:df:86:d5:e1:86:c8:1b:a6:31:29:2f:99:00:f0: 59:29:84:0e:6c:e8:d5:41:07:cc:ac:e8:81:42:d9: 62:a3:fb:d1:a7:3a:f6:65:48:b8:7d:7a:be:8b:5f: 88:33:52:9c:d1:7d:e4:98:04:53:36:ea:9d:61:7c: a4:60:c6:0f:cb:c7:1f:54:3b:8a:34:70:49:24:2d: 9b:19:cc:0f:8a:a6:73:35:3a:f1:11:fb:16:b7:48: 15:15:e6:93:15:1e:93:6b:e7:f9:2c:81:70:07:57: 81:d8:ec:50:79:9f:50:ec:62:1b:10:59:de:e8:85: 78:59:45:bc:10:db:59:a2:db:43:17:fc:e3:11:02: 99:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:B7:0D:D8:F6:E5:8A:E9:89:B8:E2:63:A1:80:90:D7:BE:22:72:28 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199767.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4f00::/40 Signature Algorithm: sha256WithRSAEncryption 6a:f4:6b:07:26:fa:5a:c1:50:d3:b1:6d:35:05:8f:e1:1b:56: e8:67:09:68:9c:e1:fb:a2:d3:76:77:61:dc:48:5a:42:68:d6: e6:b3:e5:a1:f1:cd:e4:ad:c6:f7:d7:28:dd:20:77:79:21:2e: c0:0e:2b:c2:bc:c0:3b:ee:d7:f5:73:a9:97:40:f0:83:47:1d: a1:c6:0e:a7:87:98:f3:9d:23:4e:59:f9:db:e0:0e:8d:c2:bd: 48:b8:85:f8:c4:b0:b2:3b:33:c0:20:98:bf:76:da:ba:e3:6f: 72:a6:fc:fb:0c:b7:0c:d4:97:08:1a:01:40:f9:9b:2c:38:ff: 8c:c5:de:d7:62:c6:26:a4:eb:a4:aa:ef:cc:be:1e:26:29:46: 70:fe:a1:a5:82:01:a4:03:ff:90:ac:6c:26:21:71:d4:05:ff: 57:14:7a:1e:a2:2f:5a:3f:82:fc:3b:1e:94:7e:74:9e:29:5a: 70:a9:2c:93:f8:00:a3:33:7e:f4:d0:5a:e6:f1:9e:e0:8d:85: 94:2c:43:70:9a:26:0b:f3:86:4c:96:f8:06:ec:3d:20:71:6c: 87:32:20:83:15:d5:92:f2:15:f1:55:05:4b:24:b6:28:d8:18: 9d:96:7a:e8:b0:30:55:2d:c7:09:29:76:5e:04:07:b0:16:f2: ed:7f:96:b1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVW6pfjC8APMHBHuP3dXUOE4S3wswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMThaFw0yNDExMDMwNDA3MThaMDMxMTAvBgNV BAMTKDdDQjcwREQ4RjZFNThBRTk4OUI4RTI2M0ExODA5MEQ3QkUyMjcyMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5uR1wdiabBO7eCeYG7kL8lVLf acHw4yhx0TScLMVdO4mbNFhzfddAPFwuTVYGxInNU/KHV6s6hr6SpJVTqHw1DL0t V5K/jhohczHqCfoPL4PmOfPLLElVDOpIZ/RHcDihgCdcF4XKA2/JztAaeBQPOT6h 8j579qLfhtXhhsgbpjEpL5kA8FkphA5s6NVBB8ys6IFC2WKj+9GnOvZlSLh9er6L X4gzUpzRfeSYBFM26p1hfKRgxg/Lxx9UO4o0cEkkLZsZzA+KpnM1OvER+xa3SBUV 5pMVHpNr5/ksgXAHV4HY7FB5n1DsYhsQWd7ohXhZRbwQ21mi20MX/OMRAplJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUfLcN2PbliumJuOJjoYCQ174icigwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5NzY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQE8wDQYJKoZIhvcNAQELBQADggEBAGr0 awcm+lrBUNOxbTUFj+EbVuhnCWic4fui03Z3YdxIWkJo1uaz5aHxzeStxvfXKN0g d3khLsAOK8K8wDvu1/VzqZdA8INHHaHGDqeHmPOdI05Z+dvgDo3CvUi4hfjEsLI7 M8AgmL922rrjb3Km/PsMtwzUlwgaAUD5myw4/4zF3tdixiak66Sq78y+HiYpRnD+ oaWCAaQD/5CsbCYhcdQF/1cUeh6iL1o/gvw7HpR+dJ4pWnCpLJP4AKMzfvTQWubx nuCNhZQsQ3CaJgvzhkyW+AbsPSBxbIcyIIMV1ZLyFfFVBUsktijYGJ2WeuiwMFUt xwkpdl4EB7AW8u1/lrE= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org