$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199825.roa File: AS199825.roa (raw, json) Hash identifier: lMpNhvyWiEt7o/TSNy6HbW3yWv+zaVe/fZAg69Y5ccY= Subject key identifier: 21:2F:E5:99:5E:60:DC:12:4F:67:30:1A:3C:77:FE:30:E8:3B:D7:EF Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3EBD026FCD87B5017532D244A0F723F925C120E4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199825.roa Signing time: Sun 06 Oct 2024 04:45:02 +0000 ROA not before: Sun 06 Oct 2024 04:40:02 +0000 ROA not after: Sun 05 Oct 2025 04:45:02 +0000 asID: 199825 IP address blocks: 2a0a:6040:6700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:bd:02:6f:cd:87:b5:01:75:32:d2:44:a0:f7:23:f9:25:c1:20:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:02 2024 GMT Not After : Oct 5 04:45:02 2025 GMT Subject: CN=212FE5995E60DC124F67301A3C77FE30E83BD7EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:df:4e:34:56:9f:91:89:14:04:5e:6f:b7:d8: ff:50:a4:01:fb:41:67:45:9f:3c:16:44:97:c3:5d: a8:c7:14:bc:ad:55:2b:3e:65:21:1b:79:f4:5c:e7: 5c:86:06:40:79:61:51:9b:ca:0e:74:2c:e9:f5:51: 9d:73:1a:58:43:ff:47:12:9a:94:f8:ba:5f:d8:5d: 7c:4f:e9:89:cc:bd:29:f8:ab:4c:68:85:25:57:8d: c4:cf:a9:5b:b8:b8:1e:0e:5a:15:81:ac:e0:c8:df: 8b:57:aa:f8:fa:38:60:6c:5e:53:24:89:81:50:ba: 6d:97:10:5f:a2:ba:94:d1:b4:31:31:6d:12:1e:9c: 3d:ff:1a:a2:6d:44:e7:7b:96:3c:54:97:24:a7:8c: b5:7b:47:41:6c:9c:c0:27:35:e3:4e:15:7d:1d:8b: 1d:de:14:22:2c:63:b7:7a:be:10:2d:d9:05:c5:7f: 3d:e0:ff:8b:87:c8:ed:fd:da:a8:c8:fa:e6:ce:da: fe:4a:64:0e:1a:b6:69:e5:7a:76:f5:02:a1:8b:23: 7d:d8:cc:16:b7:4b:e3:56:ab:53:87:d9:f8:0d:c2: 39:e1:f5:32:29:dc:15:1d:d7:49:2e:1b:59:8b:2c: af:b3:3a:32:72:25:cd:9a:c4:c4:5f:cb:4f:de:c5: 5e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2F:E5:99:5E:60:DC:12:4F:67:30:1A:3C:77:FE:30:E8:3B:D7:EF X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199825.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6700::/40 Signature Algorithm: sha256WithRSAEncryption 2c:f6:e2:b9:b3:d1:c9:7c:a1:84:70:55:6c:22:45:4a:c5:6d: 54:ab:cf:bf:91:3e:df:34:63:83:b6:bd:49:b2:80:7d:82:c5: f1:fe:09:52:db:61:28:bb:d8:d8:06:b8:e3:d1:77:f0:f0:d5: 11:a4:5e:30:9f:b4:74:38:e0:b0:e8:64:44:44:5c:75:a2:c5: 73:c1:3d:21:e7:28:5c:84:75:24:da:fe:f7:3f:9f:90:2d:71: 9f:21:a2:f8:22:a3:97:f2:7e:ca:20:b8:95:e7:52:5e:64:bd: 2e:7a:fa:e2:18:c0:bc:b9:d6:8a:4c:8f:58:11:c0:c3:13:44: c2:db:1c:bd:31:48:c2:16:a7:d4:fd:f2:a2:ac:51:03:72:11: 03:f5:f2:6d:78:8d:13:28:3e:07:fc:15:3d:44:70:b1:b2:e2: ed:f9:09:80:5a:ad:b6:5f:d0:7e:2f:25:b8:e6:df:01:18:ef: 99:13:57:49:32:65:c6:4d:d2:ef:03:2a:c3:85:a9:e0:03:68: d5:39:f9:12:23:de:85:a5:9d:8c:bc:d1:3c:7c:53:d2:aa:95: 4f:65:1e:4a:32:ae:3f:80:2f:df:e7:c5:8e:40:de:05:36:61: 0a:6f:8f:19:ae:f8:09:04:e2:79:59:0f:95:81:1c:32:3e:84: 53:01:44:92 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPr0Cb82HtQF1MtJEoPcj+SXBIOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDJaFw0yNTEwMDUwNDQ1MDJaMDMxMTAvBgNV BAMTKDIxMkZFNTk5NUU2MERDMTI0RjY3MzAxQTNDNzdGRTMwRTgzQkQ3RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj3040Vp+RiRQEXm+32P9QpAH7 QWdFnzwWRJfDXajHFLytVSs+ZSEbefRc51yGBkB5YVGbyg50LOn1UZ1zGlhD/0cS mpT4ul/YXXxP6YnMvSn4q0xohSVXjcTPqVu4uB4OWhWBrODI34tXqvj6OGBsXlMk iYFQum2XEF+iupTRtDExbRIenD3/GqJtROd7ljxUlySnjLV7R0FsnMAnNeNOFX0d ix3eFCIsY7d6vhAt2QXFfz3g/4uHyO392qjI+ubO2v5KZA4atmnlenb1AqGLI33Y zBa3S+NWq1OH2fgNwjnh9TIp3BUd10kuG1mLLK+zOjJyJc2axMRfy0/exV4jAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIS/lmV5g3BJPZzAaPHf+MOg71+8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5ODI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGcwDQYJKoZIhvcNAQELBQADggEBACz2 4rmz0cl8oYRwVWwiRUrFbVSrz7+RPt80Y4O2vUmygH2CxfH+CVLbYSi72NgGuOPR d/Dw1RGkXjCftHQ44LDoZEREXHWixXPBPSHnKFyEdSTa/vc/n5AtcZ8hovgio5fy fsoguJXnUl5kvS56+uIYwLy51opMj1gRwMMTRMLbHL0xSMIWp9T98qKsUQNyEQP1 8m14jRMoPgf8FT1EcLGy4u35CYBarbZf0H4vJbjm3wEY75kTV0kyZcZN0u8DKsOF qeADaNU5+RIj3oWlnYy80Tx8U9KqlU9lHkoyrj+AL9/nxY5A3gU2YQpvjxmu+AkE 4nlZD5WBHDI+hFMBRJI= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org