$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199962.roa File: AS199962.roa (raw, json) Hash identifier: uBlbvZhR/VdBLP4nMQ4juhx9lw7MDN/CH2PoW/G+qxk= Subject key identifier: A3:9B:9C:A4:6F:4B:D1:B5:9E:11:BD:EF:A9:9E:42:85:F9:65:2A:42 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 258281DB0C3384F857DB75AD8CC81949B0E84065 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199962.roa Signing time: Thu 15 Aug 2024 12:49:45 +0000 ROA not before: Thu 15 Aug 2024 12:44:45 +0000 ROA not after: Thu 14 Aug 2025 12:49:45 +0000 asID: 199962 IP address blocks: 2a05:dfc1:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:82:81:db:0c:33:84:f8:57:db:75:ad:8c:c8:19:49:b0:e8:40:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 15 12:44:45 2024 GMT Not After : Aug 14 12:49:45 2025 GMT Subject: CN=A39B9CA46F4BD1B59E11BDEFA99E4285F9652A42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8d:58:aa:66:2c:d8:bf:b5:11:d9:40:c9:2f: a0:55:f9:4f:b9:a2:35:1e:db:65:4f:fa:eb:4f:79: e7:82:e1:c0:c1:60:26:8f:71:a0:7f:72:45:5b:b5: 95:26:fe:06:d8:95:28:2d:cd:5c:4d:53:53:12:09: ce:34:4b:12:42:6a:4d:db:7e:f9:37:87:ff:4c:63: 35:20:05:bd:66:64:60:31:23:e8:cc:1c:da:ba:28: 5a:d4:18:93:13:0a:ea:a0:f1:2c:34:94:f3:34:f5: 75:a8:f1:e2:09:b6:1d:da:9e:21:b6:64:a7:ce:fd: 51:80:8e:10:94:35:8d:ad:9b:e9:9d:6c:f4:29:bc: 0a:9e:aa:30:2e:11:3b:70:51:38:fd:54:7a:cb:d2: ca:16:e0:ed:96:69:3e:03:69:31:d1:19:34:43:9c: 9f:c1:b8:83:50:da:7c:d6:c3:d8:1f:9b:4b:3d:0b: 86:41:cd:0b:c4:26:14:70:f7:07:1b:4f:ad:b8:d3: ff:1f:c8:40:99:91:25:df:24:80:b8:15:f7:17:7c: 42:e0:57:69:91:9d:4c:9b:bd:25:b8:f7:24:82:0f: ef:d9:51:e7:d5:9c:f5:45:51:67:53:7c:ed:38:dd: f2:e6:d0:b2:4c:45:71:c2:c3:37:a4:01:e9:9e:bc: d0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:9B:9C:A4:6F:4B:D1:B5:9E:11:BD:EF:A9:9E:42:85:F9:65:2A:42 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199962.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9000::/40 Signature Algorithm: sha256WithRSAEncryption 17:65:e0:db:a1:63:52:c4:ff:eb:bb:fd:56:3b:d9:71:fd:75: 70:ac:db:38:6a:c6:42:dc:73:ca:e8:c4:b7:6f:43:12:be:c4: f4:ca:b5:06:8d:7b:49:79:c9:a5:e2:26:74:01:12:13:bf:ea: cb:4d:30:70:59:08:3b:14:30:8b:59:d7:8b:35:7f:4a:cd:ea: 30:b3:76:ec:08:c6:aa:fb:a2:a0:8b:df:f5:02:dd:ab:2a:23: 3a:0f:ca:41:49:4f:7d:78:e2:b5:97:62:fe:b3:b8:0d:01:42: f5:47:02:71:14:66:ac:fd:57:95:dc:92:a2:8d:d6:7b:67:ea: 0f:b6:28:68:20:51:b3:f1:3b:98:dc:ad:43:64:15:52:78:bb: 2a:a9:27:70:d8:83:a6:b5:f0:3b:8a:de:f0:e3:73:44:52:a8: 07:67:fe:aa:88:e5:b8:16:e5:ff:d4:24:ac:50:47:21:48:e3: 96:7e:19:d9:58:60:67:66:4e:ec:ab:90:13:3a:84:3e:49:ca: 3b:49:12:8a:c7:80:e3:31:46:d6:31:3e:bc:39:26:3b:3c:7b: 7e:51:8f:f0:04:07:19:4f:a3:80:df:db:78:d8:79:84:d5:2b: 90:f1:8d:d0:90:67:da:59:68:3e:12:ea:84:f1:3a:2d:cf:24: b2:a5:8f:89 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJYKB2wwzhPhX23WtjMgZSbDoQGUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MTUxMjQ0NDVaFw0yNTA4MTQxMjQ5NDVaMDMxMTAvBgNV BAMTKEEzOUI5Q0E0NkY0QkQxQjU5RTExQkRFRkE5OUU0Mjg1Rjk2NTJBNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCujViqZizYv7UR2UDJL6BV+U+5 ojUe22VP+utPeeeC4cDBYCaPcaB/ckVbtZUm/gbYlSgtzVxNU1MSCc40SxJCak3b fvk3h/9MYzUgBb1mZGAxI+jMHNq6KFrUGJMTCuqg8Sw0lPM09XWo8eIJth3aniG2 ZKfO/VGAjhCUNY2tm+mdbPQpvAqeqjAuETtwUTj9VHrL0soW4O2WaT4DaTHRGTRD nJ/BuINQ2nzWw9gfm0s9C4ZBzQvEJhRw9wcbT6240/8fyECZkSXfJIC4FfcXfELg V2mRnUybvSW49ySCD+/ZUefVnPVFUWdTfO043fLm0LJMRXHCwzekAemevNDbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUo5ucpG9L0bWeEb3vqZ5ChfllKkIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5OTYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwZAwDQYJKoZIhvcNAQELBQADggEBABdl 4NuhY1LE/+u7/VY72XH9dXCs2zhqxkLcc8roxLdvQxK+xPTKtQaNe0l5yaXiJnQB EhO/6stNMHBZCDsUMItZ14s1f0rN6jCzduwIxqr7oqCL3/UC3asqIzoPykFJT314 4rWXYv6zuA0BQvVHAnEUZqz9V5XckqKN1ntn6g+2KGggUbPxO5jcrUNkFVJ4uyqp J3DYg6a18DuK3vDjc0RSqAdn/qqI5bgW5f/UJKxQRyFI45Z+GdlYYGdmTuyrkBM6 hD5JyjtJEorHgOMxRtYxPrw5Jjs8e35Rj/AEBxlPo4Df23jYeYTVK5DxjdCQZ9pZ aD4S6oTxOi3PJLKlj4k= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org