$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197622.roa File: AS197622.roa (raw, json) Hash identifier: OLcTPahUGU8EgClWcwIY0+YuDINGMqDuzKn9lqOlXQA= Subject key identifier: C1:24:F9:78:64:E4:7F:5F:0B:31:FD:90:38:94:72:20:FC:A2:22:C9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 272BF93B771BB4587257615BAD0573AA9350942A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197622.roa Signing time: Mon 24 Jun 2024 23:00:23 +0000 ROA not before: Mon 24 Jun 2024 22:55:23 +0000 ROA not after: Mon 23 Jun 2025 23:00:23 +0000 asID: 197622 IP address blocks: 2a05:dfc1:7500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:2b:f9:3b:77:1b:b4:58:72:57:61:5b:ad:05:73:aa:93:50:94:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 24 22:55:23 2024 GMT Not After : Jun 23 23:00:23 2025 GMT Subject: CN=C124F97864E47F5F0B31FD9038947220FCA222C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c6:4e:d6:58:c0:b5:1c:c4:2d:88:ac:3a:ac: 85:85:d3:35:77:cb:8b:20:f0:84:1d:39:a6:7f:75: 17:df:ea:22:e9:cb:db:8d:eb:83:54:80:06:f2:27: d7:42:6a:d0:b8:13:d0:26:a6:41:53:6f:f6:7b:27: 79:95:3f:fb:c9:8e:fa:9e:55:aa:6a:d6:fc:a0:4d: ed:21:c1:63:00:bd:7f:e9:bb:b7:ab:de:f7:e0:8a: b2:ed:81:ea:ae:d0:63:68:97:20:b7:fc:90:24:3f: 27:7e:93:37:6f:68:e3:fc:62:be:fa:47:51:a5:30: b3:3a:6e:ed:7e:1d:2b:55:e6:a5:c6:3d:d6:58:1f: b0:e6:37:9f:60:80:58:18:e4:31:ed:ff:e7:b9:46: b8:ec:d9:91:82:f4:d1:dd:42:c1:a1:92:7d:80:f2: ca:24:2d:ba:fb:9b:f2:02:84:b1:d1:af:d1:8d:c0: 1c:e4:1f:17:8d:66:81:f6:21:29:f2:10:6b:c5:bb: 89:fd:0a:2f:f7:8e:c8:73:32:dc:6c:0a:1f:c0:27: d1:a7:e1:ad:da:5a:d6:72:c4:45:50:72:c7:02:5f: 3c:93:d5:0a:d7:07:98:d6:71:76:e1:a0:0d:b7:95: 0d:53:97:91:d6:e1:69:ff:ad:5c:66:c5:a0:6c:55: 90:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:24:F9:78:64:E4:7F:5F:0B:31:FD:90:38:94:72:20:FC:A2:22:C9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197622.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7500::/40 Signature Algorithm: sha256WithRSAEncryption b8:00:b6:a1:76:2b:03:a6:d7:b3:4e:b3:8f:18:69:da:f9:6e: d8:b9:74:09:85:07:57:c6:82:e6:54:e5:f3:40:02:2b:f8:0d: 80:9e:4b:cd:27:4a:41:25:61:cb:86:4b:41:67:9f:0d:20:20: 18:a8:0d:a3:53:d7:b4:91:83:20:9f:fa:eb:c9:17:48:81:14: d0:f5:58:a2:09:26:e0:f4:a4:5c:7f:74:e5:8f:2f:89:f3:2c: 1f:b6:d2:06:57:da:64:de:54:ab:00:33:52:5e:12:07:c8:70: 7a:f2:8a:1b:1a:af:d2:e7:3c:9c:d2:65:29:c4:7a:fd:ef:3a: 6a:20:24:fa:38:00:9e:45:97:c6:a4:fb:eb:6b:0b:9c:ad:a7: 14:cf:c9:26:1c:5d:0b:44:89:50:9d:dc:b1:1d:96:95:33:93: 89:11:63:a0:30:56:e5:18:1e:76:f1:a1:5a:5d:27:ef:c1:08: a5:ba:52:54:04:53:2f:51:6b:54:2c:64:b6:f7:a4:7e:a2:33: c3:50:63:73:40:b5:a0:8a:95:2e:42:28:86:46:3b:e3:64:7b: 4b:83:6e:dc:b8:06:73:e5:09:2a:8d:ec:37:9e:54:37:a7:dd: 7c:46:48:d3:6d:64:03:78:97:d8:f1:b3:0c:a9:96:09:87:4f: 84:27:b8:c8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJyv5O3cbtFhyV2FbrQVzqpNQlCowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MjQyMjU1MjNaFw0yNTA2MjMyMzAwMjNaMDMxMTAvBgNV BAMTKEMxMjRGOTc4NjRFNDdGNUYwQjMxRkQ5MDM4OTQ3MjIwRkNBMjIyQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyxk7WWMC1HMQtiKw6rIWF0zV3 y4sg8IQdOaZ/dRff6iLpy9uN64NUgAbyJ9dCatC4E9AmpkFTb/Z7J3mVP/vJjvqe Vapq1vygTe0hwWMAvX/pu7er3vfgirLtgequ0GNolyC3/JAkPyd+kzdvaOP8Yr76 R1GlMLM6bu1+HStV5qXGPdZYH7DmN59ggFgY5DHt/+e5Rrjs2ZGC9NHdQsGhkn2A 8sokLbr7m/IChLHRr9GNwBzkHxeNZoH2ISnyEGvFu4n9Ci/3jshzMtxsCh/AJ9Gn 4a3aWtZyxEVQcscCXzyT1QrXB5jWcXbhoA23lQ1Tl5HW4Wn/rVxmxaBsVZAPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUwST5eGTkf18LMf2QOJRyIPyiIskwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NjIyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXUwDQYJKoZIhvcNAQELBQADggEBALgA tqF2KwOm17NOs48Yadr5bti5dAmFB1fGguZU5fNAAiv4DYCeS80nSkElYcuGS0Fn nw0gIBioDaNT17SRgyCf+uvJF0iBFND1WKIJJuD0pFx/dOWPL4nzLB+20gZX2mTe VKsAM1JeEgfIcHryihsar9LnPJzSZSnEev3vOmogJPo4AJ5Fl8ak++trC5ytpxTP ySYcXQtEiVCd3LEdlpUzk4kRY6AwVuUYHnbxoVpdJ+/BCKW6UlQEUy9Ra1QsZLb3 pH6iM8NQY3NAtaCKlS5CKIZGO+Nke0uDbty4BnPlCSqN7DeeVDen3XxGSNNtZAN4 l9jxswyplgmHT4QnuMg= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org