$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199840.roa File: AS199840.roa (raw, json) Hash identifier: YwpRMjcbJyXMT6U76CzYpBMvOArrfiCbEWgHCgxmmkU= Subject key identifier: 03:2B:95:B9:39:DB:80:D1:6D:D8:40:39:6B:96:B1:9F:01:75:E8:C3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 75BE129D6B231389F246DC66A4E7A118C831333E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199840.roa Signing time: Sun 05 Nov 2023 04:07:07 +0000 ROA not before: Sun 05 Nov 2023 04:02:07 +0000 ROA not after: Sun 03 Nov 2024 04:07:07 +0000 asID: 199840 IP address blocks: 2a0a:6040:6800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:be:12:9d:6b:23:13:89:f2:46:dc:66:a4:e7:a1:18:c8:31:33:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:07 2023 GMT Not After : Nov 3 04:07:07 2024 GMT Subject: CN=032B95B939DB80D16DD840396B96B19F0175E8C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:34:c8:7a:03:b6:33:0b:26:34:63:ac:f3:01: 6a:fe:70:1d:ed:a5:b2:a8:f6:84:f6:11:5d:b3:85: 44:91:68:3f:2e:ce:9e:05:de:33:53:42:9f:d8:f0: 32:0a:02:9e:11:96:b4:50:8d:d8:50:8b:d7:9d:17: 87:2e:64:de:82:bf:20:92:94:66:10:31:bb:21:d8: 14:f7:6c:04:58:5e:61:97:86:75:69:11:6c:5a:d7: 4f:18:87:b3:b8:5a:22:6e:25:90:96:d8:da:73:4c: f5:59:89:f5:38:da:f7:45:f4:eb:01:05:48:54:f4: 22:10:cf:72:80:5e:fc:85:2f:95:e1:46:5e:f1:4c: 6c:19:ae:39:2e:82:aa:1b:b6:3a:fe:aa:21:7a:d5: ce:86:45:d1:5e:a8:98:ae:69:87:70:b7:85:61:6d: 93:51:1f:71:05:a6:39:1f:e7:d7:c2:2b:f7:5c:b1: c7:d4:e7:ad:e7:19:8a:5b:e9:81:52:a7:04:82:90: e2:8d:e1:9d:60:5d:b7:02:84:5f:f8:ce:87:36:e1: 01:74:d2:76:de:5f:8c:13:0d:42:12:50:8f:12:ea: 56:ad:bb:52:64:f7:ad:0f:45:c5:d9:6b:79:67:a3: 89:5b:92:c7:9e:02:6a:1c:6d:33:40:36:ae:e1:b6: 89:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2B:95:B9:39:DB:80:D1:6D:D8:40:39:6B:96:B1:9F:01:75:E8:C3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6800::/40 Signature Algorithm: sha256WithRSAEncryption 10:89:f2:06:e5:af:a6:fe:25:25:d0:72:e0:d6:0a:df:23:d2: 71:11:29:8a:d3:15:aa:12:61:9b:69:0a:df:33:41:34:58:b9: e6:97:fe:c0:35:44:3c:62:5d:5b:05:f9:63:98:95:2b:d7:c0: 36:ca:45:46:cb:5c:ad:13:78:40:d8:85:db:ba:2b:6d:94:34: 21:74:00:f5:f6:47:c8:ac:6b:bd:24:53:89:0e:31:8f:f9:7b: dc:d2:f8:e0:d7:04:9a:1e:48:ab:d0:9e:67:67:89:14:1f:94: 94:10:0f:4b:1a:b7:96:15:80:51:1b:7a:62:0d:fc:f6:60:ff: f1:e9:85:bd:db:60:fd:a0:b0:c4:2a:18:45:e0:64:20:7a:66: b8:de:fb:b8:e0:da:d2:46:92:e9:4e:ef:49:30:6d:45:8c:4c: 66:aa:e1:79:7f:f8:87:54:bb:26:bc:ca:15:2e:a2:aa:59:03: 8d:a7:84:bd:19:6f:ba:b9:9f:68:01:ab:67:2a:7d:c7:be:98: b3:ce:4c:40:aa:5e:ae:fb:97:b3:5d:13:74:97:b9:09:8b:9b: 7a:92:42:6d:2e:c0:4a:75:29:ea:b8:3f:4a:3c:26:6f:f1:10: de:70:6e:a3:e1:f6:2d:3b:89:01:ab:4f:56:c9:2f:16:87:3c: 30:d2:55:bc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdb4SnWsjE4nyRtxmpOehGMgxMz4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDdaFw0yNDExMDMwNDA3MDdaMDMxMTAvBgNV BAMTKDAzMkI5NUI5MzlEQjgwRDE2REQ4NDAzOTZCOTZCMTlGMDE3NUU4QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQNMh6A7YzCyY0Y6zzAWr+cB3t pbKo9oT2EV2zhUSRaD8uzp4F3jNTQp/Y8DIKAp4RlrRQjdhQi9edF4cuZN6CvyCS lGYQMbsh2BT3bARYXmGXhnVpEWxa108Yh7O4WiJuJZCW2NpzTPVZifU42vdF9OsB BUhU9CIQz3KAXvyFL5XhRl7xTGwZrjkugqobtjr+qiF61c6GRdFeqJiuaYdwt4Vh bZNRH3EFpjkf59fCK/dcscfU563nGYpb6YFSpwSCkOKN4Z1gXbcChF/4zoc24QF0 0nbeX4wTDUISUI8S6latu1Jk960PRcXZa3lno4lbkseeAmocbTNANq7htonJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUAyuVuTnbgNFt2EA5a5axnwF16MMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5ODQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGgwDQYJKoZIhvcNAQELBQADggEBABCJ 8gblr6b+JSXQcuDWCt8j0nERKYrTFaoSYZtpCt8zQTRYueaX/sA1RDxiXVsF+WOY lSvXwDbKRUbLXK0TeEDYhdu6K22UNCF0APX2R8isa70kU4kOMY/5e9zS+ODXBJoe SKvQnmdniRQflJQQD0sat5YVgFEbemIN/PZg//Hphb3bYP2gsMQqGEXgZCB6Zrje +7jg2tJGkulO70kwbUWMTGaq4Xl/+IdUuya8yhUuoqpZA42nhL0Zb7q5n2gBq2cq fce+mLPOTECqXq77l7NdE3SXuQmLm3qSQm0uwEp1Keq4P0o8Jm/xEN5wbqPh9i07 iQGrT1bJLxaHPDDSVbw= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org