$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197434.roa File: AS197434.roa (raw, json) Hash identifier: BYAjeL4Og9/pYDZSUYrlEgx9c9+I+Hy6+VOwmsKpK/c= Subject key identifier: 15:4E:99:F2:00:9C:19:22:CD:BD:03:37:96:91:DB:0C:7A:3B:1A:CE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1F0A870858356232D77527A23C3FC07D9B0D11E6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197434.roa Signing time: Tue 01 Aug 2023 12:14:52 +0000 ROA not before: Tue 01 Aug 2023 12:09:52 +0000 ROA not after: Tue 30 Jul 2024 12:14:52 +0000 asID: 197434 IP address blocks: 2a05:dfc1:7900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:0a:87:08:58:35:62:32:d7:75:27:a2:3c:3f:c0:7d:9b:0d:11:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 1 12:09:52 2023 GMT Not After : Jul 30 12:14:52 2024 GMT Subject: CN=154E99F2009C1922CDBD03379691DB0C7A3B1ACE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:34:82:5f:86:04:4e:57:33:09:cb:87:af:3c: 7c:dc:12:77:d1:94:21:eb:2a:a1:b8:14:5a:68:e1: 77:84:38:48:a5:77:4b:ec:64:44:17:98:8a:e5:65: d4:62:09:f7:97:b0:e6:e7:fc:6c:cb:c2:12:f5:17: 87:6c:91:c6:b6:96:9a:a4:20:cf:1e:e0:8b:9e:50: 41:77:6c:e3:1f:b9:6d:7d:f2:87:76:f7:9a:36:3e: 81:51:7d:15:86:b6:85:e8:2d:92:d7:8b:eb:3c:00: a3:07:42:05:a7:d9:e8:88:ea:7e:b8:17:ad:94:0e: fc:2e:9c:98:d5:60:31:73:a6:ff:04:e3:13:9e:22: db:29:db:9b:89:21:e7:2c:f2:b3:da:66:70:c0:b2: 7a:f4:40:83:ce:0e:6a:de:b4:5b:f7:1a:af:fb:12: 81:67:35:29:4f:1c:c1:fd:32:b0:7b:96:21:b7:22: fc:d5:a8:2d:15:64:5b:52:28:8e:df:cf:ac:96:96: 28:76:72:c5:ff:06:6e:a8:f0:16:80:12:03:9e:e1: 0f:3e:f2:dc:b0:42:8d:3b:1f:89:04:a5:f6:58:1e: 12:62:6a:95:af:b0:d7:8d:94:31:f4:08:3c:6f:e6: b7:d3:b0:bc:98:0e:b5:8c:d9:1c:06:4f:a1:2f:b4: 32:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4E:99:F2:00:9C:19:22:CD:BD:03:37:96:91:DB:0C:7A:3B:1A:CE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7900::/40 Signature Algorithm: sha256WithRSAEncryption 1f:2c:a8:2a:e9:7e:5d:07:00:82:34:66:56:40:22:76:33:27: 60:d1:82:4d:b7:08:f8:fc:ca:49:9d:98:d0:92:65:a5:bb:07: ff:63:42:67:dc:17:14:13:a6:50:52:a2:50:d0:62:4e:07:d1: 8b:02:80:7c:81:ed:b2:ff:7f:aa:52:6c:66:7b:76:91:c6:c0: 64:49:c5:bb:15:12:82:ff:1c:b8:3e:95:16:4a:74:4a:ce:e4: 8f:73:a1:82:8f:48:6f:fd:37:cc:61:fc:cb:aa:b5:87:9c:92: cb:91:46:49:6b:f9:c6:ef:df:4c:6c:ad:da:d4:09:6f:08:8c: 6e:c1:dd:0e:7d:5f:d6:db:7b:40:2b:dc:9c:75:8f:98:66:75: fc:a8:ef:dd:f4:28:be:ed:a1:9c:21:a6:d8:f4:06:35:ab:18: 50:52:44:27:54:f8:df:3d:1f:b2:1b:43:d3:73:ab:9f:8f:85: cf:e3:52:f6:a7:26:a7:61:07:84:5e:26:05:02:f2:92:e6:d8: 64:0a:3b:83:97:9f:2f:f0:cd:93:b4:c7:f8:42:7d:12:2f:bd: 53:68:e7:a8:02:18:bd:6a:ef:73:b8:98:ed:a3:c9:73:0d:01: f0:be:e5:6c:7b:f5:e1:00:98:9c:b7:4f:e0:dd:ee:20:b5:34: 52:4d:13:68 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHwqHCFg1YjLXdSeiPD/AfZsNEeYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA4MDExMjA5NTJaFw0yNDA3MzAxMjE0NTJaMDMxMTAvBgNV BAMTKDE1NEU5OUYyMDA5QzE5MjJDREJEMDMzNzk2OTFEQjBDN0EzQjFBQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6NIJfhgROVzMJy4evPHzcEnfR lCHrKqG4FFpo4XeEOEild0vsZEQXmIrlZdRiCfeXsObn/GzLwhL1F4dskca2lpqk IM8e4IueUEF3bOMfuW198od295o2PoFRfRWGtoXoLZLXi+s8AKMHQgWn2eiI6n64 F62UDvwunJjVYDFzpv8E4xOeItsp25uJIecs8rPaZnDAsnr0QIPODmretFv3Gq/7 EoFnNSlPHMH9MrB7liG3IvzVqC0VZFtSKI7fz6yWlih2csX/Bm6o8BaAEgOe4Q8+ 8tywQo07H4kEpfZYHhJiapWvsNeNlDH0CDxv5rfTsLyYDrWM2RwGT6EvtDI5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFU6Z8gCcGSLNvQM3lpHbDHo7Gs4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXkwDQYJKoZIhvcNAQELBQADggEBAB8s qCrpfl0HAII0ZlZAInYzJ2DRgk23CPj8ykmdmNCSZaW7B/9jQmfcFxQTplBSolDQ Yk4H0YsCgHyB7bL/f6pSbGZ7dpHGwGRJxbsVEoL/HLg+lRZKdErO5I9zoYKPSG/9 N8xh/MuqtYecksuRRklr+cbv30xsrdrUCW8IjG7B3Q59X9bbe0Ar3Jx1j5hmdfyo 7930KL7toZwhptj0BjWrGFBSRCdU+N89H7IbQ9Nzq5+Phc/jUvanJqdhB4ReJgUC 8pLm2GQKO4OXny/wzZO0x/hCfRIvvVNo56gCGL1q73O4mO2jyXMNAfC+5Wx79eEA mJy3T+Dd7iC1NFJNE2g= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org