$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197434.roa File: AS197434.roa (raw, json) Hash identifier: 93T+jfFTvejogA3C9iOwy7VpstCivc2FikcnzNqrIyc= Subject key identifier: 3A:93:00:0B:84:90:2A:29:4E:48:FE:A0:CF:DA:A7:F7:F0:E0:4C:3F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0C182F62A58D7BC34572F4739D23550A7B350828 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197434.roa Signing time: Tue 02 Jul 2024 13:00:27 +0000 ROA not before: Tue 02 Jul 2024 12:55:27 +0000 ROA not after: Tue 01 Jul 2025 13:00:27 +0000 asID: 197434 IP address blocks: 2a05:dfc1:7900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:18:2f:62:a5:8d:7b:c3:45:72:f4:73:9d:23:55:0a:7b:35:08:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 2 12:55:27 2024 GMT Not After : Jul 1 13:00:27 2025 GMT Subject: CN=3A93000B84902A294E48FEA0CFDAA7F7F0E04C3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ac:af:38:bc:78:03:a7:36:ed:15:5a:33:8c: 01:e3:f5:53:99:26:e8:5a:bd:a5:e1:11:62:2f:22: a1:88:4f:fe:5a:3e:01:72:fd:52:34:64:22:05:14: bb:2b:73:e4:61:7a:f7:c9:52:af:23:ff:cd:2e:9c: 97:57:e2:97:c1:e9:85:ec:8c:9a:17:41:c4:70:aa: 59:c6:74:30:52:2f:9e:c7:1f:c4:1c:5b:b9:53:ff: 30:f6:9e:b7:2e:02:98:ca:dc:79:1e:6e:2e:a7:23: 20:c6:79:6c:11:88:0b:f2:51:93:3a:90:b8:c8:4e: ec:3e:59:f6:1c:b1:5f:2d:ae:93:df:b1:ef:32:95: ed:79:95:3f:75:61:18:e6:45:cc:0b:97:8a:02:97: 6d:c9:f6:94:e6:3d:0c:56:93:0e:01:27:e8:d6:7c: 10:b2:6f:0d:b9:71:1b:cb:67:ca:90:2f:01:df:1d: 36:c0:57:ce:4d:f3:bc:e0:b2:d4:70:82:8e:c0:19: b3:08:40:62:5a:0c:36:6d:5b:33:43:00:17:92:b3: 6e:83:94:4f:2e:c4:95:c3:08:8d:05:68:87:01:e2: c9:83:5b:d8:5d:7c:f0:cb:41:f9:58:e6:9c:67:6a: d0:cd:dc:a5:1f:eb:11:34:01:ee:e1:6b:a0:a2:48: c2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:93:00:0B:84:90:2A:29:4E:48:FE:A0:CF:DA:A7:F7:F0:E0:4C:3F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7900::/40 Signature Algorithm: sha256WithRSAEncryption 84:79:a4:e6:82:ae:e6:af:bf:fc:50:a9:34:1b:c0:3d:8a:a5: f2:c6:21:1b:8e:3f:f6:1d:bb:9d:67:e1:54:2f:ff:8b:fc:ca: e8:d7:0a:32:3e:ba:d9:3b:53:bd:39:45:72:8c:90:94:fb:bd: df:28:0a:97:41:ad:d6:79:64:35:ba:c3:37:5f:de:22:ec:ee: b5:be:4e:6d:22:6c:e9:a9:29:70:f9:a4:8d:83:65:fc:0e:3c: a5:b9:d9:1b:96:02:85:19:75:a5:1c:66:49:8f:ac:ae:99:23: 0e:6d:9e:b3:88:f7:79:11:9d:f6:89:8d:fd:88:57:0a:c7:39: 16:bd:cd:a3:b6:28:fc:7c:09:16:2f:37:f9:41:51:8a:08:06: 78:4d:6e:99:6f:55:0e:cc:8e:dd:f4:b4:ae:a5:a7:76:39:fe: 00:b9:06:7d:07:92:ce:3c:81:ee:fc:b7:49:ee:97:78:cb:4a: 3b:16:9e:59:b3:9f:ca:79:40:38:a7:70:d5:84:fd:13:2e:a5: 59:a6:4e:64:d7:6a:7a:9a:ac:9e:09:44:2d:6b:99:32:0c:08: db:65:9e:37:35:68:a4:e9:8d:54:fa:38:52:e1:1b:ab:71:34: 4f:ad:83:57:7f:23:38:a8:5b:09:fd:67:ab:14:a4:ba:9e:f3: 2c:9d:98:d1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDBgvYqWNe8NFcvRznSNVCns1CCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA3MDIxMjU1MjdaFw0yNTA3MDExMzAwMjdaMDMxMTAvBgNV BAMTKDNBOTMwMDBCODQ5MDJBMjk0RTQ4RkVBMENGREFBN0Y3RjBFMDRDM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDurK84vHgDpzbtFVozjAHj9VOZ JuhavaXhEWIvIqGIT/5aPgFy/VI0ZCIFFLsrc+RhevfJUq8j/80unJdX4pfB6YXs jJoXQcRwqlnGdDBSL57HH8QcW7lT/zD2nrcuApjK3Hkebi6nIyDGeWwRiAvyUZM6 kLjITuw+WfYcsV8trpPfse8yle15lT91YRjmRcwLl4oCl23J9pTmPQxWkw4BJ+jW fBCybw25cRvLZ8qQLwHfHTbAV85N87zgstRwgo7AGbMIQGJaDDZtWzNDABeSs26D lE8uxJXDCI0FaIcB4smDW9hdfPDLQflY5pxnatDN3KUf6xE0Ae7ha6CiSML/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUOpMAC4SQKilOSP6gz9qn9/DgTD8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXkwDQYJKoZIhvcNAQELBQADggEBAIR5 pOaCruavv/xQqTQbwD2KpfLGIRuOP/Ydu51n4VQv/4v8yujXCjI+utk7U705RXKM kJT7vd8oCpdBrdZ5ZDW6wzdf3iLs7rW+Tm0ibOmpKXD5pI2DZfwOPKW52RuWAoUZ daUcZkmPrK6ZIw5tnrOI93kRnfaJjf2IVwrHORa9zaO2KPx8CRYvN/lBUYoIBnhN bplvVQ7Mjt30tK6lp3Y5/gC5Bn0Hks48ge78t0nul3jLSjsWnlmzn8p5QDincNWE /RMupVmmTmTXanqarJ4JRC1rmTIMCNtlnjc1aKTpjVT6OFLhG6txNE+tg1d/Izio Wwn9Z6sUpLqe8yydmNE= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org