$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197622.roa File: AS197622.roa (raw, json) Hash identifier: ml9jwhcdvRsoT2r5+bmPsVqh4xl786Vd2qv99H4lebo= Subject key identifier: D1:C9:4A:13:B1:9F:73:51:BD:8E:D6:CE:71:BF:A8:AD:17:CC:59:DD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4467D0CED0EF5E0915EDBD119E61277351D2CC1C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197622.roa Signing time: Mon 24 Jul 2023 22:59:31 +0000 ROA not before: Mon 24 Jul 2023 22:54:31 +0000 ROA not after: Mon 22 Jul 2024 22:59:31 +0000 asID: 197622 IP address blocks: 2a05:dfc1:7500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:67:d0:ce:d0:ef:5e:09:15:ed:bd:11:9e:61:27:73:51:d2:cc:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 24 22:54:31 2023 GMT Not After : Jul 22 22:59:31 2024 GMT Subject: CN=D1C94A13B19F7351BD8ED6CE71BFA8AD17CC59DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bf:5d:a8:e0:bf:71:28:7e:9b:db:3a:f2:17: 1e:f1:a2:97:1c:26:f9:db:78:cd:78:95:5a:6f:7e: fe:d6:05:9d:b0:2f:d9:81:99:4f:5c:f9:b4:7c:79: 97:a9:79:da:0c:8f:f7:26:20:74:96:c3:af:d5:14: d0:cc:bd:12:93:a4:fd:7f:f6:9c:8b:c5:a2:af:e4: cf:28:3f:77:17:e7:cf:55:85:55:d0:12:38:9f:47: 07:1d:59:c6:c3:a2:1a:fa:1e:46:26:5f:86:63:ab: e1:05:49:dd:62:41:0d:75:17:6d:ea:c8:bd:37:7d: 7b:a8:b3:cc:25:69:55:72:c6:4c:6d:62:14:1e:6c: 8a:88:c7:4d:f2:d5:c6:45:63:f1:f8:1e:f8:b9:30: 3a:ab:a8:8e:78:76:8f:28:9b:9b:19:90:fc:69:cf: 9a:08:6a:f0:38:e5:92:91:52:97:12:5d:3c:9a:69: 5b:96:37:e0:58:3e:a3:ce:55:cd:66:af:28:ca:47: bb:99:25:90:e0:b8:63:88:de:fe:d6:63:8d:23:32: b4:fb:03:e4:cb:57:ff:1d:9c:d2:0f:d0:bf:d4:dc: 12:a6:21:1d:01:27:28:49:6c:ab:c0:e4:20:9e:28: e3:e8:a9:5c:52:87:33:2d:0e:71:08:03:f5:08:d0: a6:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C9:4A:13:B1:9F:73:51:BD:8E:D6:CE:71:BF:A8:AD:17:CC:59:DD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197622.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7500::/40 Signature Algorithm: sha256WithRSAEncryption 9e:73:d8:fa:20:0e:d7:fe:2d:16:90:23:dc:82:d8:51:3e:bd: fd:c6:89:f8:ba:c5:b7:b9:ee:e6:8b:70:be:92:79:f9:b2:ac: 5e:3b:9b:9d:fe:ed:9b:4c:5e:29:30:81:46:42:ac:ad:c9:80: e6:3c:cc:4b:4e:29:6c:7b:0e:5e:19:29:89:c2:96:72:c6:23: 21:a2:85:0a:76:3a:3a:24:03:bc:fc:f5:a9:9d:b7:68:39:f1: a5:36:ed:2f:7c:d7:f8:5c:61:c3:d9:88:af:70:0d:68:49:ed: fd:c5:02:e4:7a:ec:f2:64:8f:6e:c4:8b:38:84:46:43:fe:b8: 74:ba:7e:fe:5f:8a:0d:44:4f:5e:dd:61:f7:80:c1:00:97:66: 59:de:50:0d:a7:8d:6f:0a:22:d5:22:e9:b4:7e:c2:2d:2f:e3: 89:15:2e:ed:8d:14:5f:f1:67:a8:5d:5b:a5:8b:57:2e:77:12: d3:79:c7:9d:0a:73:d5:7c:68:1d:93:e5:28:5e:1c:06:7c:e0: d0:a9:df:57:9f:78:87:c9:20:16:a7:e1:06:fd:1c:3a:dc:1d: 57:e0:05:08:6e:53:7a:c4:a7:98:76:39:7d:0c:fa:de:87:e9: f4:2c:99:4a:12:19:fc:e4:32:73:a3:32:6b:81:68:48:ef:ec: 3e:be:f2:87 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURGfQztDvXgkV7b0RnmEnc1HSzBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MjQyMjU0MzFaFw0yNDA3MjIyMjU5MzFaMDMxMTAvBgNV BAMTKEQxQzk0QTEzQjE5RjczNTFCRDhFRDZDRTcxQkZBOEFEMTdDQzU5REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzv12o4L9xKH6b2zryFx7xopcc JvnbeM14lVpvfv7WBZ2wL9mBmU9c+bR8eZepedoMj/cmIHSWw6/VFNDMvRKTpP1/ 9pyLxaKv5M8oP3cX589VhVXQEjifRwcdWcbDohr6HkYmX4Zjq+EFSd1iQQ11F23q yL03fXuos8wlaVVyxkxtYhQebIqIx03y1cZFY/H4Hvi5MDqrqI54do8om5sZkPxp z5oIavA45ZKRUpcSXTyaaVuWN+BYPqPOVc1mryjKR7uZJZDguGOI3v7WY40jMrT7 A+TLV/8dnNIP0L/U3BKmIR0BJyhJbKvA5CCeKOPoqVxShzMtDnEIA/UI0KZPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU0clKE7Gfc1G9jtbOcb+orRfMWd0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NjIyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXUwDQYJKoZIhvcNAQELBQADggEBAJ5z 2PogDtf+LRaQI9yC2FE+vf3Gifi6xbe57uaLcL6SefmyrF47m53+7ZtMXikwgUZC rK3JgOY8zEtOKWx7Dl4ZKYnClnLGIyGihQp2OjokA7z89amdt2g58aU27S981/hc YcPZiK9wDWhJ7f3FAuR67PJkj27EiziERkP+uHS6fv5fig1ET17dYfeAwQCXZlne UA2njW8KItUi6bR+wi0v44kVLu2NFF/xZ6hdW6WLVy53EtN5x50Kc9V8aB2T5She HAZ84NCp31efeIfJIBan4Qb9HDrcHVfgBQhuU3rEp5h2OX0M+t6H6fQsmUoSGfzk MnOjMmuBaEjv7D6+8oc= -----END CERTIFICATE-----Generated at Tue May 21 05:34:01 2024 by rpki-client on console-ams.rpki-client.org