$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197532.roa File: AS197532.roa (raw, json) Hash identifier: Zv9sYPyUJmQfEZ3ZAcP+j9eV0GnrgN8U2PpFxSa6kqw= Subject key identifier: A7:51:81:6E:F2:4A:73:A1:EC:3D:C2:07:32:6D:D8:82:52:D7:97:65 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 039D5CA7E261B5E8AA76EDDE954E01FDCFDA8DFA Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197532.roa Signing time: Sat 17 Aug 2024 13:49:46 +0000 ROA not before: Sat 17 Aug 2024 13:44:46 +0000 ROA not after: Sat 16 Aug 2025 13:49:46 +0000 asID: 197532 IP address blocks: 2a05:dfc1:7200::/40 maxlen: 48 2a05:dfc1:9400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:9d:5c:a7:e2:61:b5:e8:aa:76:ed:de:95:4e:01:fd:cf:da:8d:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 17 13:44:46 2024 GMT Not After : Aug 16 13:49:46 2025 GMT Subject: CN=A751816EF24A73A1EC3DC207326DD88252D79765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d3:33:14:cb:78:1a:6d:c1:12:bc:b9:c9:38: 51:68:df:22:d9:83:4f:6b:19:4d:7f:23:f4:d9:43: e2:c5:2d:2d:b0:e0:88:e8:cd:81:e5:2e:7b:a6:fa: b3:fc:43:36:b1:f2:1d:4f:5f:db:93:41:35:61:28: 83:4b:78:b4:07:f5:e7:e0:b5:62:4d:0f:8b:f3:1e: d9:33:df:f4:d2:88:c0:79:2c:ce:af:14:1f:8c:bd: 65:fe:1d:dd:b4:1e:12:6f:87:b8:16:c5:1c:90:69: f6:d0:e9:8f:a0:04:de:b6:e4:5c:45:55:91:31:2e: 3f:62:cd:dc:5e:3c:87:22:65:aa:05:0b:77:74:5c: 67:cf:36:e1:c9:83:65:e7:d6:a9:d4:f8:29:0a:c8: 53:ee:e1:c2:46:a8:27:50:e7:44:80:d9:10:89:88: 1e:af:43:03:47:5a:74:74:23:29:c2:a8:1b:e5:35: 75:b6:42:39:72:70:95:50:7a:40:5a:be:8b:ad:c2: 1f:e9:b7:68:6c:1e:5d:e6:8d:f5:e0:f9:46:ae:d7: 48:24:dd:3b:0c:04:ef:6e:53:28:77:cc:eb:d8:db: 5e:cb:68:68:b4:01:3d:3a:65:40:8f:b1:51:1b:c4: 4f:9b:97:0d:64:da:6f:a3:67:9d:37:b2:12:be:e7: 00:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:51:81:6E:F2:4A:73:A1:EC:3D:C2:07:32:6D:D8:82:52:D7:97:65 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7200::/40 2a05:dfc1:9400::/40 Signature Algorithm: sha256WithRSAEncryption b7:e2:30:63:e9:82:64:9c:0c:95:fa:ac:dc:94:f3:5d:87:f4: da:dd:d3:8d:e0:b7:e7:3f:d3:7f:1f:6b:d7:7c:04:29:a1:3b: 6e:59:83:e7:98:0e:69:7f:b0:c4:05:c4:64:fc:40:e6:eb:8b: af:87:84:7e:30:98:0f:a4:f3:1a:91:23:29:63:bc:47:0c:0f: 9c:18:33:d4:0f:7f:e5:4f:d4:b2:fb:cd:a6:23:69:ce:da:b8: 5c:fd:27:da:9e:f2:60:ce:7b:b5:40:be:b7:f4:e9:f5:26:bb: a3:12:f4:33:4c:eb:5e:40:40:98:91:b2:c0:49:93:58:7b:6d: eb:3b:28:c8:47:75:4b:2b:2c:08:b8:a3:d7:a8:3c:a7:bf:2c: 62:a9:0a:51:f2:4d:a6:8a:53:54:c8:07:c0:6b:ce:86:36:f8: 8a:12:66:bc:ef:0d:bc:d0:fe:11:7d:76:39:63:ab:d3:a0:6e: 51:8e:e5:f0:df:ab:ac:5c:db:31:90:11:aa:80:12:1d:1d:f1: 63:ce:fd:f9:2a:7a:93:f0:5a:b4:64:6a:b6:dd:3c:5d:5d:a4: 00:69:83:04:e1:fd:ea:ff:79:1c:19:15:11:11:04:85:16:01: 54:08:22:34:31:4f:2d:6c:d8:39:92:4a:08:e5:cd:89:95:73: b0:a0:83:e8 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUA51cp+Jhteiqdu3elU4B/c/ajfowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MTcxMzQ0NDZaFw0yNTA4MTYxMzQ5NDZaMDMxMTAvBgNV BAMTKEE3NTE4MTZFRjI0QTczQTFFQzNEQzIwNzMyNkREODgyNTJENzk3NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd0zMUy3gabcESvLnJOFFo3yLZ g09rGU1/I/TZQ+LFLS2w4IjozYHlLnum+rP8Qzax8h1PX9uTQTVhKINLeLQH9efg tWJND4vzHtkz3/TSiMB5LM6vFB+MvWX+Hd20HhJvh7gWxRyQafbQ6Y+gBN625FxF VZExLj9izdxePIciZaoFC3d0XGfPNuHJg2Xn1qnU+CkKyFPu4cJGqCdQ50SA2RCJ iB6vQwNHWnR0IynCqBvlNXW2QjlycJVQekBavoutwh/pt2hsHl3mjfXg+Uau10gk 3TsMBO9uUyh3zOvY217LaGi0AT06ZUCPsVEbxE+blw1k2m+jZ503shK+5wArAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUp1GBbvJKc6HsPcIHMm3YglLXl2UwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgXfwXIDBgAqBd/BlDANBgkqhkiG9w0BAQsF AAOCAQEAt+IwY+mCZJwMlfqs3JTzXYf02t3TjeC35z/Tfx9r13wEKaE7blmD55gO aX+wxAXEZPxA5uuLr4eEfjCYD6TzGpEjKWO8RwwPnBgz1A9/5U/UsvvNpiNpztq4 XP0n2p7yYM57tUC+t/Tp9Sa7oxL0M0zrXkBAmJGywEmTWHtt6zsoyEd1SyssCLij 16g8p78sYqkKUfJNpopTVMgHwGvOhjb4ihJmvO8NvND+EX12OWOr06BuUY7l8N+r rFzbMZARqoASHR3xY879+Sp6k/BatGRqtt08XV2kAGmDBOH96v95HBkVEREEhRYB VAgiNDFPLWzYOZJKCOXNiZVzsKCD6A== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org