$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199962.roa File: AS199962.roa (raw, json) Hash identifier: +b1re9AImg+zLgpBGQ707NFCnsppCp9z9lBgX91DfFA= Subject key identifier: 71:95:01:09:89:97:CE:98:9B:4B:02:6E:37:DD:E0:C4:62:3A:01:86 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1FE3E2F2117D2DAE8ABC0AE707F8F9484EAC3D60 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199962.roa Signing time: Thu 14 Sep 2023 11:59:10 +0000 ROA not before: Thu 14 Sep 2023 11:54:10 +0000 ROA not after: Thu 12 Sep 2024 11:59:10 +0000 asID: 199962 IP address blocks: 2a05:dfc1:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:e3:e2:f2:11:7d:2d:ae:8a:bc:0a:e7:07:f8:f9:48:4e:ac:3d:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 14 11:54:10 2023 GMT Not After : Sep 12 11:59:10 2024 GMT Subject: CN=719501098997CE989B4B026E37DDE0C4623A0186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:3c:cc:22:be:d9:01:dd:91:e2:c8:b8:96:6b: aa:e4:af:7b:9c:a2:df:ff:a6:fd:1e:25:8f:04:a9: 38:c5:42:f8:4e:44:7c:ee:c3:d9:08:c3:26:6e:d8: 46:32:21:8c:5f:ae:bf:de:20:bb:66:17:d8:09:a0: de:05:aa:89:e3:6c:60:fa:21:10:9b:45:61:e6:8a: 0a:e9:ae:94:3c:60:4c:d1:a6:fb:77:e8:8e:29:e8: 75:53:fb:03:7c:eb:aa:27:15:0c:28:9d:5a:d1:4a: 5d:2d:c7:b9:ed:9c:de:07:76:18:35:26:89:50:fa: 35:24:01:83:33:24:40:dd:44:e0:fa:72:11:0f:b5: 09:47:4d:f7:0c:55:d4:7d:ee:9a:5a:a6:c6:af:ab: d4:fb:37:a0:98:2f:99:14:cc:cc:5e:14:01:87:22: 7e:c5:e9:46:f5:82:9d:61:53:6f:2b:7c:c4:a9:3f: 58:9b:9c:80:c8:c0:db:fc:d0:76:8a:de:6d:01:aa: 58:30:99:98:97:25:b5:cc:17:6d:af:a5:f2:e4:4d: d2:1e:4d:55:85:6d:67:ba:80:f7:94:60:ad:3d:36: 2f:57:e2:61:13:bf:f7:5d:cf:84:c3:30:37:9e:77: ae:66:7b:5c:3b:1a:b4:b2:d2:69:63:09:29:08:da: fa:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:95:01:09:89:97:CE:98:9B:4B:02:6E:37:DD:E0:C4:62:3A:01:86 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199962.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9000::/40 Signature Algorithm: sha256WithRSAEncryption 90:9d:76:4e:4c:ed:83:12:94:7b:73:95:fd:48:93:45:39:8f: d6:23:97:1b:9a:31:52:79:11:17:b5:2a:df:8b:a9:3f:7b:1c: 1a:1b:36:72:b0:0b:f7:cb:24:4a:f2:bd:00:b1:63:36:ea:d3: 77:1a:cd:c1:a3:d5:b8:21:47:ba:2d:af:16:c1:01:a3:71:fc: 72:da:12:b8:7b:45:42:20:73:6d:be:4d:c5:14:1d:2c:e1:9d: ed:4a:ed:47:41:e9:9b:28:64:c4:26:61:18:97:11:b5:59:10: 54:a9:02:ea:b2:c4:fc:7c:00:52:a5:cd:6e:08:96:87:fe:75: 1e:a6:3d:c7:56:ec:a2:e3:14:fd:fd:59:c7:82:ed:95:1f:b7: 86:c3:6d:e4:01:be:d5:41:20:89:59:6a:82:0e:a0:7c:74:1a: 6c:a5:61:5b:51:b1:aa:84:94:15:57:0a:d3:97:fd:05:2b:45: 4c:fd:a5:33:ef:7f:b5:65:79:4a:71:07:97:8c:c8:8e:06:b9: 8e:92:c4:9f:79:02:06:df:b9:13:d0:0c:eb:e6:93:da:bb:44: bc:3e:75:51:d4:75:a5:a9:b0:97:d3:ad:1b:cb:13:65:74:25: 3a:c3:8d:5e:41:03:c9:0f:eb:7b:4f:ed:6c:46:e0:ac:ff:25: 1b:48:b2:17 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUH+Pi8hF9La6KvArnB/j5SE6sPWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA5MTQxMTU0MTBaFw0yNDA5MTIxMTU5MTBaMDMxMTAvBgNV BAMTKDcxOTUwMTA5ODk5N0NFOTg5QjRCMDI2RTM3RERFMEM0NjIzQTAxODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5PMwivtkB3ZHiyLiWa6rkr3uc ot//pv0eJY8EqTjFQvhORHzuw9kIwyZu2EYyIYxfrr/eILtmF9gJoN4FqonjbGD6 IRCbRWHmigrprpQ8YEzRpvt36I4p6HVT+wN866onFQwonVrRSl0tx7ntnN4Hdhg1 JolQ+jUkAYMzJEDdROD6chEPtQlHTfcMVdR97ppapsavq9T7N6CYL5kUzMxeFAGH In7F6Ub1gp1hU28rfMSpP1ibnIDIwNv80HaK3m0BqlgwmZiXJbXMF22vpfLkTdIe TVWFbWe6gPeUYK09Ni9X4mETv/ddz4TDMDeed65me1w7GrSy0mljCSkI2vq5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUcZUBCYmXzpibSwJuN93gxGI6AYYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5OTYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwZAwDQYJKoZIhvcNAQELBQADggEBAJCd dk5M7YMSlHtzlf1Ik0U5j9YjlxuaMVJ5ERe1Kt+LqT97HBobNnKwC/fLJEryvQCx Yzbq03cazcGj1bghR7otrxbBAaNx/HLaErh7RUIgc22+TcUUHSzhne1K7UdB6Zso ZMQmYRiXEbVZEFSpAuqyxPx8AFKlzW4Ilof+dR6mPcdW7KLjFP39WceC7ZUft4bD beQBvtVBIIlZaoIOoHx0GmylYVtRsaqElBVXCtOX/QUrRUz9pTPvf7VleUpxB5eM yI4GuY6SxJ95AgbfuRPQDOvmk9q7RLw+dVHUdaWpsJfTrRvLE2V0JTrDjV5BA8kP 63tP7WxG4Kz/JRtIshc= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org