$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197624.roa File: AS197624.roa (raw, json) Hash identifier: se40z0ce5MO6hbE94wSwus1s8URjqNYQQ0wc03Qat7U= Subject key identifier: 1E:5E:49:F8:35:59:D6:E7:3D:56:D6:BE:B2:7E:6F:C7:ED:12:84:9E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 63C1E967DA0146030CDD7E4890B86EF257F62189 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197624.roa Signing time: Mon 24 Jul 2023 22:59:42 +0000 ROA not before: Mon 24 Jul 2023 22:54:42 +0000 ROA not after: Mon 22 Jul 2024 22:59:42 +0000 asID: 197624 IP address blocks: 2a05:dfc1:7300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c1:e9:67:da:01:46:03:0c:dd:7e:48:90:b8:6e:f2:57:f6:21:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 24 22:54:42 2023 GMT Not After : Jul 22 22:59:42 2024 GMT Subject: CN=1E5E49F83559D6E73D56D6BEB27E6FC7ED12849E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:53:0a:89:09:70:b3:a7:fc:f4:2e:d0:7d:cf: 4b:fa:c4:80:49:bd:4e:5f:41:3c:8c:91:d2:a7:6c: 28:30:8e:d3:93:ff:3d:67:9b:7a:91:a9:a1:77:65: 39:09:3f:ae:2a:c7:1a:a6:a8:44:35:84:65:ae:6c: e2:1a:6e:91:89:83:df:b8:0c:ef:1a:76:38:72:46: 0b:75:42:86:67:ae:fc:7c:5d:30:13:9b:29:f5:5e: 6c:e0:70:ec:23:af:41:0a:b0:e7:45:5c:b2:3e:c6: 4a:4c:2c:61:c6:09:66:1b:6b:e7:d4:1f:2c:00:08: 63:32:4a:a5:b2:fc:aa:3f:64:9f:45:ad:6f:ad:84: 19:83:e0:f7:71:ca:d3:eb:a1:79:b3:1a:39:32:7e: 95:22:1d:b4:ca:75:cb:19:8e:43:46:0c:20:11:ff: 21:47:be:8e:da:5c:4a:ca:c8:26:7c:a2:2f:c7:dc: b5:23:9f:42:b0:9a:c5:e6:b7:d2:8b:eb:2b:fe:8d: db:6f:9d:fa:11:e7:23:c9:d8:33:3d:d2:aa:dc:8e: 69:0c:54:1a:3c:ce:17:84:b2:78:d1:07:3f:37:d3: b5:5a:74:d2:f1:c5:2b:cc:17:e7:a9:33:eb:0f:1a: 9f:fb:db:21:41:32:0b:5e:b6:23:f7:24:e3:61:a0: a6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5E:49:F8:35:59:D6:E7:3D:56:D6:BE:B2:7E:6F:C7:ED:12:84:9E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197624.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7300::/40 Signature Algorithm: sha256WithRSAEncryption 82:f7:54:50:77:6f:ca:15:72:53:5c:81:e0:5b:9c:67:5f:d4: 96:20:54:47:5a:eb:ae:cf:80:c1:8e:46:22:aa:a1:63:89:d4: 6b:0b:61:fc:62:6a:18:12:15:43:08:04:de:36:9f:f9:36:00: e4:29:06:5f:58:34:ca:e7:61:f6:45:6b:d4:f6:91:ce:88:30: 34:5f:7f:d3:02:0b:31:40:58:3a:da:3c:d4:49:fe:87:c8:7b: 9f:59:16:48:e4:55:6e:11:8a:31:49:1c:b0:06:25:a0:fd:ce: d2:3e:2a:81:c1:37:7d:fb:56:5f:e1:87:4e:e0:dd:ae:4b:3c: 88:2b:01:c8:b3:38:ae:47:77:f4:21:7b:04:35:87:1d:22:68: 6c:33:51:57:b1:2c:77:73:26:65:b2:3d:06:9a:c2:e9:3a:5b: 1f:81:9e:af:ce:aa:4d:24:50:e0:3f:44:06:e4:c2:90:15:5c: 75:9d:ff:1e:a3:18:83:76:a5:0a:e2:61:05:aa:f7:ef:ba:71: a4:dc:21:4d:c3:73:6e:68:88:b2:3d:1d:90:70:1c:15:9c:3e: 8c:a4:43:3b:1b:81:5f:de:b6:71:2c:7a:fe:bb:bf:40:cf:f2: 58:ad:71:ab:d5:fc:d5:5c:93:f2:fe:9f:2e:db:c7:d9:3a:01: ef:e5:63:32 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUY8HpZ9oBRgMM3X5IkLhu8lf2IYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MjQyMjU0NDJaFw0yNDA3MjIyMjU5NDJaMDMxMTAvBgNV BAMTKDFFNUU0OUY4MzU1OUQ2RTczRDU2RDZCRUIyN0U2RkM3RUQxMjg0OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8UwqJCXCzp/z0LtB9z0v6xIBJ vU5fQTyMkdKnbCgwjtOT/z1nm3qRqaF3ZTkJP64qxxqmqEQ1hGWubOIabpGJg9+4 DO8adjhyRgt1QoZnrvx8XTATmyn1XmzgcOwjr0EKsOdFXLI+xkpMLGHGCWYba+fU HywACGMySqWy/Ko/ZJ9FrW+thBmD4PdxytProXmzGjkyfpUiHbTKdcsZjkNGDCAR /yFHvo7aXErKyCZ8oi/H3LUjn0KwmsXmt9KL6yv+jdtvnfoR5yPJ2DM90qrcjmkM VBo8zheEsnjRBz8307VadNLxxSvMF+epM+sPGp/72yFBMgtetiP3JONhoKZ3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUHl5J+DVZ1uc9Vta+sn5vx+0ShJ4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NjI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXMwDQYJKoZIhvcNAQELBQADggEBAIL3 VFB3b8oVclNcgeBbnGdf1JYgVEda667PgMGORiKqoWOJ1GsLYfxiahgSFUMIBN42 n/k2AOQpBl9YNMrnYfZFa9T2kc6IMDRff9MCCzFAWDraPNRJ/ofIe59ZFkjkVW4R ijFJHLAGJaD9ztI+KoHBN337Vl/hh07g3a5LPIgrAcizOK5Hd/QhewQ1hx0iaGwz UVexLHdzJmWyPQaawuk6Wx+Bnq/Oqk0kUOA/RAbkwpAVXHWd/x6jGIN2pQriYQWq 9++6caTcIU3Dc25oiLI9HZBwHBWcPoykQzsbgV/etnEsev67v0DP8litcavV/NVc k/L+ny7bx9k6Ae/lYzI= -----END CERTIFICATE-----Generated at Thu May 16 11:56:09 2024 by rpki-client on console-fra.rpki-client.org