$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199840.roa File: AS199840.roa (raw, json) Hash identifier: hgKzT442zdmWMo2Ajh5YyJtVkvwVwa+ds5CTpWvbeaI= Subject key identifier: F9:75:6C:9A:05:B9:27:C4:D0:89:52:51:89:FC:2A:73:9F:11:2C:A7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4A7236D0D3B4F011BB48DD0F7A2E11724DC7EEE8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199840.roa Signing time: Sun 06 Oct 2024 04:45:20 +0000 ROA not before: Sun 06 Oct 2024 04:40:20 +0000 ROA not after: Sun 05 Oct 2025 04:45:20 +0000 asID: 199840 IP address blocks: 2a0a:6040:6800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:72:36:d0:d3:b4:f0:11:bb:48:dd:0f:7a:2e:11:72:4d:c7:ee:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:20 2024 GMT Not After : Oct 5 04:45:20 2025 GMT Subject: CN=F9756C9A05B927C4D089525189FC2A739F112CA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f0:7d:92:1b:ad:50:dc:58:4d:de:11:51:bd: 0a:e6:38:bf:62:18:a1:9e:2a:78:1b:d9:ff:bc:a3: f1:64:e7:61:ae:f8:5c:e9:5f:85:f6:f2:eb:07:e0: fc:36:59:55:50:de:2d:33:ce:66:8b:8b:b5:c9:9b: 16:c3:f1:7c:e6:b6:4f:48:50:6b:36:82:fd:30:3a: 0f:bd:5b:24:01:46:fd:24:ec:11:b5:d2:3f:fa:76: fb:83:6c:6e:6a:93:bc:4a:cf:12:55:9d:5f:ed:7e: 11:55:b2:74:cd:8d:b4:b0:4c:f3:d4:be:c8:32:08: b1:6f:4f:2b:3f:de:6e:c0:a5:9c:ea:00:4f:05:a5: a8:1f:7f:9e:2c:04:06:57:f6:f9:e8:b1:ff:6f:d9: 4e:3e:88:96:ce:39:bf:ab:56:61:45:ba:9a:a3:66: 23:45:23:74:9f:1d:2c:b8:ff:26:5a:63:f3:d5:71: 22:6e:2f:61:ec:e2:1d:e1:7d:4b:13:5b:3c:66:b4: 22:f0:8e:da:d6:39:95:38:6d:ef:b3:94:08:58:ee: 53:cb:ec:f1:7c:98:f0:ab:4b:15:47:71:97:cf:a7: 20:09:18:3e:a9:13:b8:bb:a5:88:52:99:e3:f6:e4: 2e:1c:3d:c2:58:c6:bb:dc:43:fc:f2:4d:22:ab:d7: 9e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:75:6C:9A:05:B9:27:C4:D0:89:52:51:89:FC:2A:73:9F:11:2C:A7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6800::/40 Signature Algorithm: sha256WithRSAEncryption 7b:98:75:79:f4:29:e0:a9:3b:1c:48:25:67:dc:fc:33:7d:9a: 26:cd:88:35:b0:12:1c:6a:d6:6d:2e:06:f3:99:6a:bb:7c:d6: e8:a6:a6:b7:50:dd:6e:51:4c:3b:28:c0:0c:91:1b:4d:44:ac: 8b:79:07:96:90:07:21:2a:42:f1:86:2b:8f:f8:55:36:9f:fb: 3d:9a:b5:40:85:d6:ee:a6:b4:eb:41:7a:50:80:f9:9a:c8:4d: ed:ad:d6:94:db:f6:21:d9:ed:a4:5f:76:d8:12:8d:71:0d:f5: c1:6f:1c:c5:22:35:13:39:7d:5a:96:c3:0c:d6:be:39:82:50: a3:b7:48:20:32:e0:47:85:fd:2a:05:09:c3:91:ab:b5:5d:1f: e4:4a:cb:c8:a6:6b:94:f3:05:37:dd:5a:6e:5d:e4:03:f0:37: 31:a2:81:cd:c6:ce:b8:10:6d:3b:64:8a:03:b8:fd:f0:73:8f: eb:d0:d7:e5:ee:00:43:cb:18:d9:c0:c5:9c:b1:74:62:96:69: dd:fb:1e:d1:ce:8e:15:35:cf:46:93:68:39:ca:4f:cc:cc:b7: 85:96:3f:7f:c9:6a:82:18:b3:94:b1:49:08:2a:36:af:cc:74: 52:16:17:14:98:3a:e8:84:f5:c1:3b:20:04:97:28:33:d4:7c: 1e:cf:ff:56 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSnI20NO08BG7SN0Pei4Rck3H7ugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMjBaFw0yNTEwMDUwNDQ1MjBaMDMxMTAvBgNV BAMTKEY5NzU2QzlBMDVCOTI3QzREMDg5NTI1MTg5RkMyQTczOUYxMTJDQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC8H2SG61Q3FhN3hFRvQrmOL9i GKGeKngb2f+8o/Fk52Gu+FzpX4X28usH4Pw2WVVQ3i0zzmaLi7XJmxbD8Xzmtk9I UGs2gv0wOg+9WyQBRv0k7BG10j/6dvuDbG5qk7xKzxJVnV/tfhFVsnTNjbSwTPPU vsgyCLFvTys/3m7ApZzqAE8Fpagff54sBAZX9vnosf9v2U4+iJbOOb+rVmFFupqj ZiNFI3SfHSy4/yZaY/PVcSJuL2Hs4h3hfUsTWzxmtCLwjtrWOZU4be+zlAhY7lPL 7PF8mPCrSxVHcZfPpyAJGD6pE7i7pYhSmeP25C4cPcJYxrvcQ/zyTSKr1545AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+XVsmgW5J8TQiVJRifwqc58RLKcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5ODQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGgwDQYJKoZIhvcNAQELBQADggEBAHuY dXn0KeCpOxxIJWfc/DN9mibNiDWwEhxq1m0uBvOZart81uimprdQ3W5RTDsowAyR G01ErIt5B5aQByEqQvGGK4/4VTaf+z2atUCF1u6mtOtBelCA+ZrITe2t1pTb9iHZ 7aRfdtgSjXEN9cFvHMUiNRM5fVqWwwzWvjmCUKO3SCAy4EeF/SoFCcORq7VdH+RK y8ima5TzBTfdWm5d5APwNzGigc3GzrgQbTtkigO4/fBzj+vQ1+XuAEPLGNnAxZyx dGKWad37HtHOjhU1z0aTaDnKT8zMt4WWP3/JaoIYs5SxSQgqNq/MdFIWFxSYOuiE 9cE7IASXKDPUfB7P/1Y= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org