$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199825.roa File: AS199825.roa (raw, json) Hash identifier: CYVSBDgFhOnmb3pOML0mkLfZ76ZJaBB5HSijrONz/xE= Subject key identifier: CD:43:26:46:F0:4D:72:21:2B:FC:34:25:57:A4:EE:22:2B:BF:89:C7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4237EFF3640C54BCD1ED00FFAC9AB9E1C50A0F9F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199825.roa Signing time: Sun 05 Nov 2023 04:07:13 +0000 ROA not before: Sun 05 Nov 2023 04:02:13 +0000 ROA not after: Sun 03 Nov 2024 04:07:13 +0000 asID: 199825 IP address blocks: 2a0a:6040:6700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:37:ef:f3:64:0c:54:bc:d1:ed:00:ff:ac:9a:b9:e1:c5:0a:0f:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:13 2023 GMT Not After : Nov 3 04:07:13 2024 GMT Subject: CN=CD432646F04D72212BFC342557A4EE222BBF89C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:9b:f7:13:7d:80:e3:de:ca:4f:e4:49:59: c0:ac:9e:45:0f:b6:a1:ca:5f:05:5c:21:1b:6c:91: d1:f6:72:e8:d4:6c:e2:45:47:cc:95:70:77:fd:81: 46:1b:09:ec:17:1c:10:08:1d:ca:ec:42:3d:c3:92: 9f:7f:44:f5:a7:47:e1:5c:34:2d:a1:67:c7:8b:d2: a0:2c:97:58:c6:b4:61:92:77:01:a9:00:75:3f:2c: 49:52:cc:a7:0d:40:01:01:6c:fa:f0:53:92:18:00: cd:1f:84:c4:b3:97:23:93:8c:47:c4:54:eb:96:85: b6:9a:f3:f5:b6:96:78:fc:d4:5b:88:07:fe:b9:e2: 54:b6:67:75:0e:be:4a:60:1d:b3:8b:2e:24:6c:86: ea:e1:f2:39:72:72:8f:59:89:cd:8a:61:61:89:58: 3c:71:de:54:c0:85:ce:3e:3f:0b:3b:b0:f4:af:8b: 01:b9:d0:dd:43:3f:4c:63:d6:59:07:df:b4:1e:83: 11:ac:13:a6:e2:2b:d5:3e:56:37:88:0f:53:f4:ff: 24:1f:70:e6:ed:b9:70:c5:96:7f:79:ea:54:14:28: e8:9b:b2:cd:11:09:82:5a:d2:35:54:38:82:44:44: 3c:cf:2a:33:7c:70:5f:ae:63:11:dc:2c:1b:01:b3: ac:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:43:26:46:F0:4D:72:21:2B:FC:34:25:57:A4:EE:22:2B:BF:89:C7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199825.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6700::/40 Signature Algorithm: sha256WithRSAEncryption 12:68:35:ab:77:4e:af:d0:12:60:b9:8a:3f:91:a3:6b:b5:f8: 19:2f:2e:25:8d:ad:af:09:49:36:a6:a5:16:99:d4:40:c4:fb: 1e:be:32:29:51:f2:85:eb:cb:5f:7f:15:2d:86:6e:2a:18:47: 94:88:ab:d7:5c:c7:5a:24:0e:f7:11:6f:95:e9:99:34:24:f8: e2:76:7c:ae:a0:1c:8b:a8:c8:12:3d:d0:11:05:2e:fd:2e:c1: de:48:2f:c0:1e:31:ec:77:f1:1a:4e:2a:df:23:48:98:b9:c6: fe:5a:c1:69:dd:27:62:28:21:d0:64:fd:ff:6a:f8:0d:84:75: f5:c8:ee:0c:e7:84:89:33:db:22:54:ec:c9:13:d2:fe:8a:a5: ae:1b:21:5f:29:3c:eb:7d:5d:de:a4:86:e8:5b:b0:27:e6:d6: 28:f9:b6:8c:db:25:30:8e:bc:2c:7a:53:c3:96:a7:9b:c5:44: db:17:58:17:85:8c:ce:3b:70:e4:8d:36:27:7c:12:58:e3:1d: 95:da:de:98:8d:ec:7c:44:e4:f0:16:cd:5d:7f:e3:8c:65:e7: 72:e9:e3:41:37:f2:46:55:31:5a:79:3d:61:c1:56:70:6c:3b: aa:7d:b5:ee:23:d5:ed:b1:7e:04:a9:31:4e:1d:86:a8:cb:28: 19:7e:76:d9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQjfv82QMVLzR7QD/rJq54cUKD58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTNaFw0yNDExMDMwNDA3MTNaMDMxMTAvBgNV BAMTKENENDMyNjQ2RjA0RDcyMjEyQkZDMzQyNTU3QTRFRTIyMkJCRjg5QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvgZv3E32A497KT+RJWcCsnkUP tqHKXwVcIRtskdH2cujUbOJFR8yVcHf9gUYbCewXHBAIHcrsQj3Dkp9/RPWnR+Fc NC2hZ8eL0qAsl1jGtGGSdwGpAHU/LElSzKcNQAEBbPrwU5IYAM0fhMSzlyOTjEfE VOuWhbaa8/W2lnj81FuIB/654lS2Z3UOvkpgHbOLLiRshurh8jlyco9Zic2KYWGJ WDxx3lTAhc4+Pws7sPSviwG50N1DP0xj1lkH37QegxGsE6biK9U+VjeID1P0/yQf cObtuXDFln956lQUKOibss0RCYJa0jVUOIJERDzPKjN8cF+uYxHcLBsBs6yXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUzUMmRvBNciEr/DQlV6TuIiu/iccwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5ODI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGcwDQYJKoZIhvcNAQELBQADggEBABJo Nat3Tq/QEmC5ij+Ro2u1+BkvLiWNra8JSTampRaZ1EDE+x6+MilR8oXry19/FS2G bioYR5SIq9dcx1okDvcRb5XpmTQk+OJ2fK6gHIuoyBI90BEFLv0uwd5IL8AeMex3 8RpOKt8jSJi5xv5awWndJ2IoIdBk/f9q+A2EdfXI7gznhIkz2yJU7MkT0v6Kpa4b IV8pPOt9Xd6khuhbsCfm1ij5tozbJTCOvCx6U8OWp5vFRNsXWBeFjM47cOSNNid8 EljjHZXa3piN7HxE5PAWzV1/44xl53Lp40E38kZVMVp5PWHBVnBsO6p9te4j1e2x fgSpMU4dhqjLKBl+dtk= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org