$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199925.roa File: AS199925.roa (raw, json) Hash identifier: NzH+EBbVUr7h1mqYpnxJLYFwNJh3stXMDj8nqYCD0TE= Subject key identifier: 7E:D9:97:A9:D2:A4:D5:72:D5:D1:28:37:19:56:FF:E1:21:EF:70:82 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 61146EDF82A27143FA32FAA8ED4C7C0D6BABDE36 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199925.roa Signing time: Sun 05 Nov 2023 04:07:10 +0000 ROA not before: Sun 05 Nov 2023 04:02:10 +0000 ROA not after: Sun 03 Nov 2024 04:07:10 +0000 asID: 199925 IP address blocks: 2a05:dfc1:100::/40 maxlen: 48 2a05:dfc1:3700::/40 maxlen: 48 2a05:dfc1:3d00::/40 maxlen: 48 2a05:dfc1:5100::/40 maxlen: 48 2a05:dfc1:5200::/40 maxlen: 48 2a05:dfc1:5c00::/40 maxlen: 48 2a05:dfc1:9900::/40 maxlen: 48 2a0a:6040:8f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:14:6e:df:82:a2:71:43:fa:32:fa:a8:ed:4c:7c:0d:6b:ab:de:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:10 2023 GMT Not After : Nov 3 04:07:10 2024 GMT Subject: CN=7ED997A9D2A4D572D5D128371956FFE121EF7082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4c:e5:9e:73:91:aa:ab:ce:8a:d1:d1:c6:e4: 2e:e6:86:70:75:eb:a8:3e:c1:db:e3:28:af:52:ff: 4f:2d:15:91:08:37:14:a8:be:f2:d6:a2:21:40:34: a2:fa:ed:bd:a3:4b:31:1c:5a:2f:bd:70:34:81:64: d9:38:86:0b:a4:42:10:7b:60:d5:be:f7:d8:f2:20: 90:d0:d5:da:61:a1:fc:f1:97:77:da:7c:6e:2d:e9: da:b9:10:c1:88:6e:28:19:5f:3a:54:28:6c:bf:78: ba:10:98:a0:fa:ea:4d:e0:38:98:79:2f:59:d3:0a: 2d:1f:47:2e:d4:67:31:30:ec:d5:5c:66:78:df:db: 55:e5:10:7a:fc:af:3c:49:d4:3c:40:a7:a7:36:6c: de:97:de:21:d0:60:83:8b:1b:03:2d:02:1c:3b:a8: 45:ab:d3:d2:aa:20:18:a3:38:45:d4:a2:8a:4f:b4: 22:75:eb:07:b9:59:e7:41:7e:b0:af:c5:db:6a:4d: a6:40:de:56:97:10:fd:95:c7:5f:4d:45:ee:f2:01: 1f:b1:c3:45:b0:33:73:53:21:90:1d:f3:bf:2b:34: 74:ac:4b:33:15:41:d7:93:33:99:c9:0b:59:88:3c: ee:a1:46:31:ca:bf:b2:90:d5:3e:d0:bc:fd:d4:b5: 17:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:D9:97:A9:D2:A4:D5:72:D5:D1:28:37:19:56:FF:E1:21:EF:70:82 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199925.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:100::/40 2a05:dfc1:3700::/40 2a05:dfc1:3d00::/40 2a05:dfc1:5100::-2a05:dfc1:52ff:ffff:ffff:ffff:ffff:ffff 2a05:dfc1:5c00::/40 2a05:dfc1:9900::/40 2a0a:6040:8f00::/40 Signature Algorithm: sha256WithRSAEncryption 8e:04:cc:6d:7a:38:7a:fd:2c:1d:f6:3b:61:82:17:d3:4f:2a: 8f:10:f2:9b:9f:57:0e:a7:73:10:4a:df:f9:94:4e:6f:f1:5d: de:48:01:0b:85:41:f2:f2:61:54:fc:85:2f:ba:e1:60:60:88: 9c:12:9b:05:15:1c:c6:52:f7:e2:f2:f1:f0:c2:74:19:e8:9a: 26:42:f6:9b:bc:4c:05:3c:19:28:bb:3c:f7:6a:28:3c:1d:49: 95:07:9c:f9:9a:10:2b:c8:ff:76:c2:88:4e:e5:d5:b4:f8:9d: 0c:b7:44:54:ab:02:cd:1f:f1:d7:0e:6f:c6:97:28:93:48:81: 05:e7:0d:49:00:f2:09:e9:e9:7b:53:11:a8:d5:b9:95:17:e9: e9:c6:48:29:6e:d1:e8:5a:82:2e:88:49:df:d9:0c:b6:f1:bb: 6d:0f:42:94:1e:c1:24:b2:a1:38:17:37:3a:94:6b:17:0c:a4: 8e:61:f0:71:5d:ba:3e:5e:62:bf:59:6d:fe:cd:ce:6c:e4:14: fb:a1:db:c4:25:1d:e6:70:2f:3f:9d:9f:26:18:f8:e8:93:83: 54:d6:78:5e:25:a6:75:b0:79:d2:d1:63:95:07:db:37:50:4c: b1:79:c3:1c:15:42:27:ec:61:38:47:34:2c:92:08:87:c2:5e: e6:bb:ce:ab -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUYRRu34KicUP6Mvqo7Ux8DWur3jYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTBaFw0yNDExMDMwNDA3MTBaMDMxMTAvBgNV BAMTKDdFRDk5N0E5RDJBNEQ1NzJENUQxMjgzNzE5NTZGRkUxMjFFRjcwODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkTOWec5Gqq86K0dHG5C7mhnB1 66g+wdvjKK9S/08tFZEINxSovvLWoiFANKL67b2jSzEcWi+9cDSBZNk4hgukQhB7 YNW+99jyIJDQ1dphofzxl3fafG4t6dq5EMGIbigZXzpUKGy/eLoQmKD66k3gOJh5 L1nTCi0fRy7UZzEw7NVcZnjf21XlEHr8rzxJ1DxAp6c2bN6X3iHQYIOLGwMtAhw7 qEWr09KqIBijOEXUoopPtCJ16we5WedBfrCvxdtqTaZA3laXEP2Vx19NRe7yAR+x w0WwM3NTIZAd878rNHSsSzMVQdeTM5nJC1mIPO6hRjHKv7KQ1T7QvP3UtRfxAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUftmXqdKk1XLV0Sg3GVb/4SHvcIIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5OTI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGCCsGAQUF BwEHAQH/BEwwSjBIBAIAAjBCAwYAKgXfwQEDBgAqBd/BNwMGACoF38E9MBADBgAq Bd/BUQMGACoF38FSAwYAKgXfwVwDBgAqBd/BmQMGACoKYECPMA0GCSqGSIb3DQEB CwUAA4IBAQCOBMxtejh6/Swd9jthghfTTyqPEPKbn1cOp3MQSt/5lE5v8V3eSAEL hUHy8mFU/IUvuuFgYIicEpsFFRzGUvfi8vHwwnQZ6JomQvabvEwFPBkouzz3aig8 HUmVB5z5mhAryP92wohO5dW0+J0Mt0RUqwLNH/HXDm/GlyiTSIEF5w1JAPIJ6el7 UxGo1bmVF+npxkgpbtHoWoIuiEnf2Qy28bttD0KUHsEksqE4Fzc6lGsXDKSOYfBx Xbo+XmK/WW3+zc5s5BT7odvEJR3mcC8/nZ8mGPjok4NU1nheJaZ1sHnS0WOVB9s3 UEyxecMcFUIn7GE4RzQskgiHwl7mu86r -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org