$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199929.roa File: AS199929.roa (raw, json) Hash identifier: 6vEVdeX5g6SYIK8zShXM4I+pDvuIZGaxCLyXeMOAYbg= Subject key identifier: 81:09:B3:E3:65:0F:1F:C6:D8:35:AD:A4:AA:A3:FE:D7:01:76:AC:70 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2B5D351DBA68E11B79DC9D21E1AC9573637875E6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199929.roa Signing time: Sun 05 Nov 2023 04:07:06 +0000 ROA not before: Sun 05 Nov 2023 04:02:06 +0000 ROA not after: Sun 03 Nov 2024 04:07:06 +0000 asID: 199929 IP address blocks: 2a0a:6040:5c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:5d:35:1d:ba:68:e1:1b:79:dc:9d:21:e1:ac:95:73:63:78:75:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:06 2023 GMT Not After : Nov 3 04:07:06 2024 GMT Subject: CN=8109B3E3650F1FC6D835ADA4AAA3FED70176AC70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:44:1b:d8:bd:ff:2f:b5:07:30:c2:7c:7d:aa: 88:e9:9c:f3:81:56:c8:d9:ff:01:24:d3:6c:b2:3f: 73:9e:9e:5d:84:52:0d:61:88:6b:7f:21:4e:36:74: 4c:8b:2e:b6:27:66:79:3d:b9:45:0d:5d:bf:2a:aa: 47:31:29:de:16:59:6b:6c:45:e7:b2:bf:c2:54:84: b2:29:07:43:7c:fe:96:00:22:49:3f:f8:33:3d:22: 24:c1:3a:77:ce:d7:a7:82:20:07:d9:7b:07:de:b8: 9c:db:0e:21:33:e8:76:04:6e:ca:65:79:5c:bd:33: 90:98:10:b8:da:47:f8:76:8c:44:1a:3e:19:63:98: c5:7a:bf:4b:bf:6e:e0:ca:df:fe:c8:af:06:a1:64: b9:58:18:3c:e0:a0:a6:f5:ce:b1:f5:e2:82:6f:95: fe:ae:ad:6c:d4:a2:6f:f0:6d:7f:95:65:c4:78:16: 79:27:46:fb:67:3b:00:66:f5:bc:ff:f1:e6:21:2b: 3d:0a:18:35:f2:f3:54:ab:ae:e1:d0:07:09:13:b8: 5a:90:99:e7:29:dd:88:eb:35:83:28:f6:31:b7:6c: 43:8c:89:32:30:68:18:60:df:96:66:e2:9f:91:a0: 20:37:54:ee:7a:4d:8e:f8:bd:2c:30:6a:b6:05:4f: 79:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:09:B3:E3:65:0F:1F:C6:D8:35:AD:A4:AA:A3:FE:D7:01:76:AC:70 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199929.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5c00::/40 Signature Algorithm: sha256WithRSAEncryption 1f:ac:27:84:de:fb:50:c5:63:7b:78:5b:dd:a1:b9:c3:92:b1: 4f:77:f0:3c:4d:d1:a2:a8:43:19:cd:10:1f:f2:0d:a4:bf:a3: c4:ea:01:72:b5:95:2d:38:c6:7f:f7:83:41:13:95:ff:f6:9f: 3c:e0:2b:4d:ed:58:52:fc:f6:0b:51:ef:35:87:ca:5c:61:dc: 4a:69:01:8e:63:da:2e:56:52:bb:54:e0:45:ba:87:0c:4c:cb: 8d:08:98:38:2e:4d:71:92:fe:af:25:3a:f6:eb:61:87:6d:04: c5:43:39:ed:45:83:94:8a:70:78:c0:08:ef:33:34:21:fb:6d: f0:70:42:2f:33:a9:25:43:b6:ce:c5:e6:ef:ff:ed:b2:78:fb: e2:51:14:7a:79:ff:fc:7a:52:57:ac:06:68:99:e8:fe:ef:25: 04:43:91:69:4e:a8:82:6d:af:f4:54:cc:57:33:79:ed:23:f0: 62:69:2f:16:2d:a8:df:ab:32:f1:b4:27:b8:dc:fb:d7:85:a0: 24:b2:1a:97:86:86:c1:40:a7:9e:36:05:c5:4d:95:4b:cd:ee: 41:44:e2:81:5d:65:73:5f:b9:4c:8f:78:d1:c4:d9:1d:f1:f9: 77:c7:73:71:01:a9:f1:3e:87:a5:8f:e2:97:8e:a9:c4:89:a1: 12:f5:f4:03 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUK101Hbpo4Rt53J0h4ayVc2N4deYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDZaFw0yNDExMDMwNDA3MDZaMDMxMTAvBgNV BAMTKDgxMDlCM0UzNjUwRjFGQzZEODM1QURBNEFBQTNGRUQ3MDE3NkFDNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaRBvYvf8vtQcwwnx9qojpnPOB VsjZ/wEk02yyP3Oenl2EUg1hiGt/IU42dEyLLrYnZnk9uUUNXb8qqkcxKd4WWWts Reeyv8JUhLIpB0N8/pYAIkk/+DM9IiTBOnfO16eCIAfZewfeuJzbDiEz6HYEbspl eVy9M5CYELjaR/h2jEQaPhljmMV6v0u/buDK3/7IrwahZLlYGDzgoKb1zrH14oJv lf6urWzUom/wbX+VZcR4FnknRvtnOwBm9bz/8eYhKz0KGDXy81SrruHQBwkTuFqQ mecp3YjrNYMo9jG3bEOMiTIwaBhg35Zm4p+RoCA3VO56TY74vSwwarYFT3lLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUgQmz42UPH8bYNa2kqqP+1wF2rHAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5OTI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFwwDQYJKoZIhvcNAQELBQADggEBAB+s J4Te+1DFY3t4W92hucOSsU938DxN0aKoQxnNEB/yDaS/o8TqAXK1lS04xn/3g0ET lf/2nzzgK03tWFL89gtR7zWHylxh3EppAY5j2i5WUrtU4EW6hwxMy40ImDguTXGS /q8lOvbrYYdtBMVDOe1Fg5SKcHjACO8zNCH7bfBwQi8zqSVDts7F5u//7bJ4++JR FHp5//x6UlesBmiZ6P7vJQRDkWlOqIJtr/RUzFczee0j8GJpLxYtqN+rMvG0J7jc +9eFoCSyGpeGhsFAp542BcVNlUvN7kFE4oFdZXNfuUyPeNHE2R3x+XfHc3EBqfE+ h6WP4peOqcSJoRL19AM= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org