$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197624.roa File: AS197624.roa (raw, json) Hash identifier: afumc8fa6Agq3LypU+2CPfMhFALZNTHfCRPyRn/iZ08= Subject key identifier: F9:B4:3B:D2:CD:12:F6:04:E7:50:39:73:19:06:0B:1C:EA:4B:83:05 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 45646052D23DB5851BB5884E63F3089EA6AEBB11 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197624.roa Signing time: Mon 24 Jun 2024 23:00:23 +0000 ROA not before: Mon 24 Jun 2024 22:55:23 +0000 ROA not after: Mon 23 Jun 2025 23:00:23 +0000 asID: 197624 IP address blocks: 2a05:dfc1:7300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:64:60:52:d2:3d:b5:85:1b:b5:88:4e:63:f3:08:9e:a6:ae:bb:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 24 22:55:23 2024 GMT Not After : Jun 23 23:00:23 2025 GMT Subject: CN=F9B43BD2CD12F604E750397319060B1CEA4B8305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6f:7a:89:97:4b:7f:8b:77:f7:5e:a2:8f:a5: 81:a8:90:62:be:be:11:a9:e1:5b:57:26:24:4e:17: 16:3a:b7:01:2c:cf:32:38:1d:0e:cb:7f:3b:29:c9: a2:11:67:26:e8:10:9f:f2:53:07:56:57:18:c3:09: 74:75:94:b9:11:56:8c:3c:b5:45:d6:d1:f1:3a:7a: 71:3c:c2:56:80:91:66:b7:c2:4f:49:5f:e9:a7:9f: 04:9e:73:e5:eb:e1:e3:37:f4:52:0b:15:72:6a:47: cf:39:10:c8:57:1a:f8:02:a1:a8:c0:65:a5:72:73: 08:ea:9a:a1:00:4e:ad:21:f0:52:e0:ca:89:21:ed: d0:44:94:da:ed:16:45:28:00:ac:ef:0a:56:8d:97: e6:af:8b:5e:a1:3b:3e:28:be:e0:e6:94:e2:41:4e: 8a:dd:af:29:1e:cb:11:d1:dc:73:da:33:95:3d:2c: 2f:b4:59:dc:59:95:79:1a:13:cd:a3:dc:27:0d:9e: b6:6a:5f:3c:3f:35:dd:d4:fa:72:08:ce:ec:a6:27: c2:f5:d8:95:fc:00:3e:e4:8b:32:da:72:6f:4a:9c: ca:92:14:1d:b4:a5:44:2e:c3:2d:98:c0:34:23:0e: 6a:40:98:63:c6:b9:a7:52:03:46:9c:d7:53:5f:27: 35:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B4:3B:D2:CD:12:F6:04:E7:50:39:73:19:06:0B:1C:EA:4B:83:05 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197624.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7300::/40 Signature Algorithm: sha256WithRSAEncryption 37:31:a5:a2:9d:a8:63:a5:99:ce:a7:8b:f9:8f:10:f7:8e:b1: 4e:4c:ab:25:50:ca:c3:70:81:2d:aa:66:d4:54:d3:fa:82:27: a3:ea:8e:fb:f4:46:0e:44:e0:0d:9d:90:cb:aa:db:1b:8a:40: 5c:98:92:90:f0:48:2d:b5:1c:3a:70:f3:61:68:c3:e3:ba:1c: 78:35:8b:4c:81:9f:f4:c5:6b:20:10:50:d9:7c:e9:b7:3a:bb: b5:22:68:21:b4:4f:ae:68:84:db:89:f8:0c:cc:e8:62:a8:0a: e2:f9:5d:b2:ae:aa:dd:81:de:6b:84:79:93:78:c7:16:94:d6: 9d:45:4b:0b:52:17:21:9d:a8:0a:0f:fc:e5:37:1b:4f:6a:87: b9:28:e1:ea:4c:d9:2a:a0:c5:3d:05:e8:91:80:3a:66:75:da: d7:6d:93:7e:da:3a:b6:60:f0:af:d1:4e:75:ae:da:46:28:39: 44:95:8e:3b:12:f8:69:b2:f6:7c:6d:59:ce:b6:a8:6f:c1:f5: 66:17:29:c3:41:44:d2:fc:80:6c:3a:0d:30:18:72:29:67:96: 6c:2e:01:82:ec:92:d8:ee:44:d6:4a:1e:6a:40:f4:62:ed:70: a2:96:b8:dd:52:1a:90:05:6f:bb:b3:b4:02:af:ce:ec:de:4e: 16:b2:8d:ab -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURWRgUtI9tYUbtYhOY/MInqauuxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MjQyMjU1MjNaFw0yNTA2MjMyMzAwMjNaMDMxMTAvBgNV BAMTKEY5QjQzQkQyQ0QxMkY2MDRFNzUwMzk3MzE5MDYwQjFDRUE0QjgzMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzb3qJl0t/i3f3XqKPpYGokGK+ vhGp4VtXJiROFxY6twEszzI4HQ7LfzspyaIRZyboEJ/yUwdWVxjDCXR1lLkRVow8 tUXW0fE6enE8wlaAkWa3wk9JX+mnnwSec+Xr4eM39FILFXJqR885EMhXGvgCoajA ZaVycwjqmqEATq0h8FLgyokh7dBElNrtFkUoAKzvClaNl+avi16hOz4ovuDmlOJB TordrykeyxHR3HPaM5U9LC+0WdxZlXkaE82j3CcNnrZqXzw/Nd3U+nIIzuymJ8L1 2JX8AD7kizLacm9KnMqSFB20pUQuwy2YwDQjDmpAmGPGuadSA0ac11NfJzV1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+bQ70s0S9gTnUDlzGQYLHOpLgwUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NjI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXMwDQYJKoZIhvcNAQELBQADggEBADcx paKdqGOlmc6ni/mPEPeOsU5MqyVQysNwgS2qZtRU0/qCJ6Pqjvv0Rg5E4A2dkMuq 2xuKQFyYkpDwSC21HDpw82Fow+O6HHg1i0yBn/TFayAQUNl86bc6u7UiaCG0T65o hNuJ+AzM6GKoCuL5XbKuqt2B3muEeZN4xxaU1p1FSwtSFyGdqAoP/OU3G09qh7ko 4epM2SqgxT0F6JGAOmZ12tdtk37aOrZg8K/RTnWu2kYoOUSVjjsS+Gmy9nxtWc62 qG/B9WYXKcNBRNL8gGw6DTAYcilnlmwuAYLsktjuRNZKHmpA9GLtcKKWuN1SGpAF b7uztAKvzuzeThayjas= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org