$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197510.roa File: AS197510.roa (raw, json) Hash identifier: OGejdN4NTeM0ztPMa12V7T+mErQDUbwVsSCP5iSGrgU= Subject key identifier: F6:5E:C0:FF:4F:8D:F0:CF:5D:89:C1:EF:A2:50:EA:4D:E3:CF:4D:47 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 33FFCCAAA0F780EB83ED88408AF85C9391F7A548 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197510.roa Signing time: Fri 28 Jun 2024 07:00:26 +0000 ROA not before: Fri 28 Jun 2024 06:55:26 +0000 ROA not after: Fri 27 Jun 2025 07:00:26 +0000 asID: 197510 IP address blocks: 2a05:dfc1:7600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ff:cc:aa:a0:f7:80:eb:83:ed:88:40:8a:f8:5c:93:91:f7:a5:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 28 06:55:26 2024 GMT Not After : Jun 27 07:00:26 2025 GMT Subject: CN=F65EC0FF4F8DF0CF5D89C1EFA250EA4DE3CF4D47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8d:1e:8d:7c:1d:c7:85:a2:37:f9:99:c8:1e: a8:f7:18:09:0d:50:0b:22:81:0d:6a:dd:94:3a:93: 89:79:ad:e1:58:00:ec:64:7f:9d:f2:5f:cc:c7:28: 95:82:5f:91:dd:26:28:9b:a6:6b:c2:d9:3f:26:96: 45:e0:c9:f3:24:cc:9f:1d:c6:09:69:ff:7a:8b:7a: e9:81:4f:73:1c:26:d5:e7:1e:18:a7:29:42:33:db: 71:05:d5:49:30:47:01:d6:c4:ba:ad:0a:bd:3b:92: 3b:98:ac:88:11:7a:ad:17:aa:3d:d4:1e:10:ce:47: 88:00:0b:bb:63:bd:d0:39:b0:7c:cf:56:13:56:0a: f3:46:cf:4c:b2:37:93:9f:ff:ba:59:22:3d:f1:af: a5:42:6a:53:3b:b3:1a:c4:66:f2:b0:80:6e:7d:ef: 0c:4e:f8:b7:e2:23:eb:c8:8e:29:a4:40:6f:7d:d9: b9:6b:e5:f0:f7:b7:a9:29:6c:9c:f3:46:1a:d7:fe: 3c:03:66:58:99:91:00:0b:a1:bc:35:4a:10:08:92: 35:a5:2d:37:3f:6a:f2:a1:ef:90:66:62:b9:2e:68: 99:6e:07:06:7a:13:b4:ab:fb:16:67:32:35:bb:8e: a2:0e:62:db:95:94:ce:e6:42:2d:8a:cf:6f:76:6b: 67:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:5E:C0:FF:4F:8D:F0:CF:5D:89:C1:EF:A2:50:EA:4D:E3:CF:4D:47 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197510.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7600::/40 Signature Algorithm: sha256WithRSAEncryption 7b:70:23:a9:d3:d7:f3:82:78:17:d4:dc:df:80:fa:30:1e:50: ef:75:56:b1:37:bf:37:6c:c8:07:b3:96:b7:b6:04:e4:9a:94: 69:22:15:13:d8:62:75:1c:2e:ce:74:ba:a2:fb:6a:6b:c4:15: fc:83:aa:9c:88:58:61:3c:04:ab:67:eb:6a:9f:6b:be:de:09: ed:b8:b2:4d:b1:75:fc:e9:15:8c:8a:2f:69:4f:2c:07:3a:b2: 48:55:41:ab:4d:77:cf:83:3d:bf:ba:0e:75:39:92:c9:c8:00: 81:bd:b1:d6:38:e6:b7:f8:9d:52:c0:86:64:60:7c:b8:90:44: 12:51:95:83:38:2f:36:09:b7:ab:dd:94:95:f8:75:86:eb:e3: 6f:98:6f:48:4d:65:36:b0:a8:5b:15:81:b5:be:44:fe:ed:01: f1:f6:8c:3f:c5:31:12:e8:14:9e:12:73:08:e7:25:75:c4:f0: 3e:b6:8e:99:77:4e:1e:79:e0:ef:1a:75:1f:48:d5:a0:a9:70: 41:d9:fa:8e:80:dd:0b:b1:1c:73:11:f7:cf:79:be:02:fb:ac: a0:6d:cc:0e:46:80:e0:bf:6a:ce:e7:a8:68:a2:87:c0:8e:83: 48:09:62:13:17:a8:8e:a8:39:2b:52:77:97:41:43:93:1a:21: cd:88:70:89 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUM//MqqD3gOuD7YhAivhck5H3pUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MjgwNjU1MjZaFw0yNTA2MjcwNzAwMjZaMDMxMTAvBgNV BAMTKEY2NUVDMEZGNEY4REYwQ0Y1RDg5QzFFRkEyNTBFQTRERTNDRjRENDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmjR6NfB3HhaI3+ZnIHqj3GAkN UAsigQ1q3ZQ6k4l5reFYAOxkf53yX8zHKJWCX5HdJiibpmvC2T8mlkXgyfMkzJ8d xglp/3qLeumBT3McJtXnHhinKUIz23EF1UkwRwHWxLqtCr07kjuYrIgReq0Xqj3U HhDOR4gAC7tjvdA5sHzPVhNWCvNGz0yyN5Of/7pZIj3xr6VCalM7sxrEZvKwgG59 7wxO+LfiI+vIjimkQG992blr5fD3t6kpbJzzRhrX/jwDZliZkQALobw1ShAIkjWl LTc/avKh75BmYrkuaJluBwZ6E7Sr+xZnMjW7jqIOYtuVlM7mQi2Kz292a2dpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU9l7A/0+N8M9dicHvolDqTePPTUcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NTEwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXYwDQYJKoZIhvcNAQELBQADggEBAHtw I6nT1/OCeBfU3N+A+jAeUO91VrE3vzdsyAezlre2BOSalGkiFRPYYnUcLs50uqL7 amvEFfyDqpyIWGE8BKtn62qfa77eCe24sk2xdfzpFYyKL2lPLAc6skhVQatNd8+D Pb+6DnU5ksnIAIG9sdY45rf4nVLAhmRgfLiQRBJRlYM4LzYJt6vdlJX4dYbr42+Y b0hNZTawqFsVgbW+RP7tAfH2jD/FMRLoFJ4ScwjnJXXE8D62jpl3Th554O8adR9I 1aCpcEHZ+o6A3QuxHHMR9895vgL7rKBtzA5GgOC/as7nqGiih8COg0gJYhMXqI6o OStSd5dBQ5MaIc2IcIk= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org