$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199972.roa File: AS199972.roa (raw, json) Hash identifier: jhU0jd6KGZ1ccwhMKxIxw6RsTjr9PhpplOEoHWbyEuk= Subject key identifier: 99:45:17:16:F5:22:C1:A5:A8:E6:C0:C3:4B:6B:DD:1F:7B:67:F9:46 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 55238635EE83512C55E3C5F544BFEDAFB8DCA356 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199972.roa Signing time: Sun 05 Nov 2023 04:07:06 +0000 ROA not before: Sun 05 Nov 2023 04:02:06 +0000 ROA not after: Sun 03 Nov 2024 04:07:06 +0000 asID: 199972 IP address blocks: 2a0a:6040:5a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:23:86:35:ee:83:51:2c:55:e3:c5:f5:44:bf:ed:af:b8:dc:a3:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:06 2023 GMT Not After : Nov 3 04:07:06 2024 GMT Subject: CN=99451716F522C1A5A8E6C0C34B6BDD1F7B67F946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b8:16:c3:f0:26:4f:21:e7:90:e1:e1:c4:83: f5:b1:a7:8d:6a:76:e7:a6:d2:96:da:86:a8:02:47: 7c:cf:61:e4:ba:e2:d2:32:98:4c:a1:0d:9a:1c:6f: 4f:1c:fb:5b:5b:d3:57:29:1d:1d:aa:4f:ae:d7:f9: 47:9a:30:5f:5f:21:5a:a2:49:45:37:49:40:b8:f1: 0d:c1:86:ab:28:97:28:a5:38:e5:58:7a:8c:a7:79: ff:7f:0a:fa:35:94:7b:10:3a:e7:1a:c9:95:3f:70: de:5f:73:29:b9:3a:74:6e:78:68:e8:0a:58:3d:78: 70:a0:24:25:e1:cd:46:11:c4:ae:e2:ef:3e:9c:43: e6:c3:37:ab:28:97:c6:24:cf:c5:63:84:20:ed:ec: 74:24:88:39:52:1d:bc:48:ac:69:04:46:1c:81:36: 98:02:be:56:fe:87:3a:29:fc:7b:36:45:ec:ab:67: 97:c8:e7:2e:43:85:3e:0c:81:9b:f9:1f:38:96:b5: ec:21:7d:42:c3:ff:76:7c:3b:d8:23:77:4e:26:e8: 65:34:c1:d1:7f:c5:e9:b6:d2:0f:fd:51:dd:15:2c: 75:4d:f2:f7:90:be:be:39:15:ec:a0:44:02:0e:0c: 1e:ab:2c:e7:b0:8d:b3:86:dc:57:da:90:97:76:e4: 9c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:45:17:16:F5:22:C1:A5:A8:E6:C0:C3:4B:6B:DD:1F:7B:67:F9:46 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199972.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5a00::/40 Signature Algorithm: sha256WithRSAEncryption 2e:a8:9c:e2:80:ef:01:1b:81:da:ff:39:ae:90:0e:62:8d:dc: f2:ef:da:6d:92:38:b4:32:df:6f:9d:2a:8e:1e:3e:7c:e6:81: 79:7d:1c:27:39:e6:0a:e9:08:41:0d:f4:88:22:48:90:c1:df: ac:0e:ed:44:17:34:6d:51:47:d6:c8:29:59:52:3b:91:f0:07: 3b:9d:30:e9:13:62:29:d3:a5:53:81:70:61:5a:d5:62:26:60: 12:42:57:d3:ee:02:63:55:a2:55:00:f2:7b:21:fd:4a:36:3d: fc:82:a5:04:e8:d5:b3:a1:fc:42:02:a2:37:8d:f7:80:c6:f7: 3c:6c:26:42:2f:f0:ea:ef:bf:3c:5d:23:09:84:27:bf:6e:92: aa:07:09:96:9c:3c:8e:94:00:b7:fd:02:f8:46:bb:05:ff:8b: 42:e8:46:be:52:23:f2:57:05:df:8e:fb:ce:7d:41:72:ef:6f: 25:4c:f8:b5:85:e8:4a:f9:41:ee:1d:b6:3b:e7:e3:84:c9:15: d7:7e:ac:3d:e6:3b:11:1e:24:91:18:70:c2:7a:40:da:44:4a: 0a:01:f6:07:02:22:9b:c4:09:6a:88:d5:1d:13:37:b7:3a:e9: 7d:e6:4c:f4:6b:3e:32:e1:dc:e5:9e:4c:5a:e7:89:79:92:b8: 7c:8a:ae:34 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVSOGNe6DUSxV48X1RL/tr7jco1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDZaFw0yNDExMDMwNDA3MDZaMDMxMTAvBgNV BAMTKDk5NDUxNzE2RjUyMkMxQTVBOEU2QzBDMzRCNkJERDFGN0I2N0Y5NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSuBbD8CZPIeeQ4eHEg/Wxp41q duem0pbahqgCR3zPYeS64tIymEyhDZocb08c+1tb01cpHR2qT67X+UeaMF9fIVqi SUU3SUC48Q3BhqsolyilOOVYeoynef9/Cvo1lHsQOucayZU/cN5fcym5OnRueGjo Clg9eHCgJCXhzUYRxK7i7z6cQ+bDN6sol8Ykz8VjhCDt7HQkiDlSHbxIrGkERhyB NpgCvlb+hzop/Hs2ReyrZ5fI5y5DhT4MgZv5HziWtewhfULD/3Z8O9gjd04m6GU0 wdF/xem20g/9Ud0VLHVN8veQvr45FeygRAIODB6rLOewjbOG3FfakJd25JzTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmUUXFvUiwaWo5sDDS2vdH3tn+UYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5OTcyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFowDQYJKoZIhvcNAQELBQADggEBAC6o nOKA7wEbgdr/Oa6QDmKN3PLv2m2SOLQy32+dKo4ePnzmgXl9HCc55grpCEEN9Igi SJDB36wO7UQXNG1RR9bIKVlSO5HwBzudMOkTYinTpVOBcGFa1WImYBJCV9PuAmNV olUA8nsh/Uo2PfyCpQTo1bOh/EICojeN94DG9zxsJkIv8OrvvzxdIwmEJ79ukqoH CZacPI6UALf9AvhGuwX/i0LoRr5SI/JXBd+O+859QXLvbyVM+LWF6Er5Qe4dtjvn 44TJFdd+rD3mOxEeJJEYcMJ6QNpESgoB9gcCIpvECWqI1R0TN7c66X3mTPRrPjLh 3OWeTFrniXmSuHyKrjQ= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org