$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197723.roa File: AS197723.roa (raw, json) Hash identifier: LKCNtIVJ04tw7N+NJR7tAcNXv4y0NdJeWjlNApZOGxI= Subject key identifier: EE:F7:45:A3:BD:BB:D1:F8:4F:EB:41:38:0A:C4:76:CA:E1:4D:61:0C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 19746441F37DF708698DC556991C7F83CAD82ADA Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197723.roa Signing time: Wed 19 Jun 2024 00:00:14 +0000 ROA not before: Tue 18 Jun 2024 23:55:14 +0000 ROA not after: Wed 18 Jun 2025 00:00:14 +0000 asID: 197723 IP address blocks: 2a05:dfc1:6a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:74:64:41:f3:7d:f7:08:69:8d:c5:56:99:1c:7f:83:ca:d8:2a:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 18 23:55:14 2024 GMT Not After : Jun 18 00:00:14 2025 GMT Subject: CN=EEF745A3BDBBD1F84FEB41380AC476CAE14D610C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:f0:66:e3:6d:20:44:66:ac:77:c1:2c:5a: f6:d4:f3:71:cb:d4:89:7f:7d:d3:8e:a2:4f:6d:c2: 77:fc:fb:2a:66:93:35:6a:4b:ac:60:3d:ba:0f:02: 00:ef:dd:d2:d4:72:30:e8:23:c5:a1:1a:94:76:85: c9:a4:10:6b:a3:b8:62:1f:06:e9:8a:17:76:f8:03: 9a:11:ab:3c:57:0e:82:cb:55:f8:fc:e4:cc:83:a9: 43:82:77:92:f7:ef:5e:6b:3f:eb:35:b0:c1:82:48: 97:e6:d9:d7:d8:83:6b:37:09:3b:ba:fb:88:df:72: dd:6f:25:0c:b4:90:1a:b4:56:be:bb:b8:10:45:13: 77:3a:a1:bd:7d:52:18:e1:89:f3:c1:3c:8a:19:fa: 2a:bb:37:8a:02:d9:6f:f3:f7:62:50:e8:a0:b6:ab: 4c:d9:b0:e0:c6:2b:6e:0c:cc:9c:a9:cd:86:af:a0: 68:7c:eb:09:ce:bb:c2:9f:a0:86:8f:79:7e:76:73: fb:26:c5:9c:86:e6:8b:78:6d:cf:89:49:de:6e:c0: ce:86:ca:07:a0:ac:59:a6:c3:d2:a5:49:ae:5b:74: ac:30:55:61:4f:d3:7c:35:cf:ae:86:16:f2:8d:bf: 26:e8:9f:1f:ce:f0:5a:39:45:b5:f9:ff:0b:b1:c4: 76:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F7:45:A3:BD:BB:D1:F8:4F:EB:41:38:0A:C4:76:CA:E1:4D:61:0C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197723.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6a00::/40 Signature Algorithm: sha256WithRSAEncryption 48:96:4b:64:42:ea:bf:96:6f:ee:ad:8e:fb:1b:b0:44:5d:68: 1c:79:ab:44:de:6d:f2:14:2b:bd:14:5d:ae:b0:bb:ed:cc:e3: 77:dc:5f:66:8c:25:0c:68:c8:c2:5c:4e:7e:cb:3c:5c:20:69: 2e:63:75:96:f0:d1:23:4e:67:3a:08:7a:0a:ae:d5:50:25:89: 0e:9c:65:53:85:03:06:83:d5:8b:71:ae:ed:07:ba:16:b9:5e: 27:37:8c:54:01:58:52:63:b9:86:c4:dc:e2:10:b4:6f:05:f9: be:16:ce:9a:46:c1:9f:fa:e8:43:13:ed:96:ce:67:ec:25:9e: 7a:e0:79:79:dd:7e:b1:5b:53:63:33:ab:5b:2e:86:6a:06:aa: a7:17:ad:56:43:dd:9e:37:93:ec:bb:17:6a:a9:e6:b6:6f:a9: 90:fd:9f:d4:3a:97:4d:e1:40:3d:40:c3:7f:06:fa:98:d3:04: 0a:6b:96:8a:e8:ed:9a:77:f5:76:0a:b7:d6:14:be:2d:83:62: d7:c5:5e:fe:f9:ee:6e:ce:58:04:33:e9:67:ad:6e:05:ee:e1: 8a:bf:d6:ce:b1:9c:7a:8e:65:f3:b2:50:aa:7c:d9:9a:ff:f0: 7a:fd:e4:e9:01:fa:dc:e5:0a:8c:e8:be:0f:6d:46:60:de:9d: 4c:73:0b:37 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGXRkQfN99whpjcVWmRx/g8rYKtowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MTgyMzU1MTRaFw0yNTA2MTgwMDAwMTRaMDMxMTAvBgNV BAMTKEVFRjc0NUEzQkRCQkQxRjg0RkVCNDEzODBBQzQ3NkNBRTE0RDYxMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW9vBm420gRGasd8EsWvbU83HL 1Il/fdOOok9twnf8+ypmkzVqS6xgPboPAgDv3dLUcjDoI8WhGpR2hcmkEGujuGIf BumKF3b4A5oRqzxXDoLLVfj85MyDqUOCd5L3715rP+s1sMGCSJfm2dfYg2s3CTu6 +4jfct1vJQy0kBq0Vr67uBBFE3c6ob19UhjhifPBPIoZ+iq7N4oC2W/z92JQ6KC2 q0zZsODGK24MzJypzYavoGh86wnOu8KfoIaPeX52c/smxZyG5ot4bc+JSd5uwM6G ygegrFmmw9KlSa5bdKwwVWFP03w1z66GFvKNvybonx/O8Fo5RbX5/wuxxHbHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7vdFo7270fhP60E4CsR2yuFNYQwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NzIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWowDQYJKoZIhvcNAQELBQADggEBAEiW S2RC6r+Wb+6tjvsbsERdaBx5q0TebfIUK70UXa6wu+3M43fcX2aMJQxoyMJcTn7L PFwgaS5jdZbw0SNOZzoIegqu1VAliQ6cZVOFAwaD1Ytxru0Huha5Xic3jFQBWFJj uYbE3OIQtG8F+b4WzppGwZ/66EMT7ZbOZ+wlnnrgeXndfrFbU2Mzq1suhmoGqqcX rVZD3Z43k+y7F2qp5rZvqZD9n9Q6l03hQD1Aw38G+pjTBAprloro7Zp39XYKt9YU vi2DYtfFXv757m7OWAQz6WetbgXu4Yq/1s6xnHqOZfOyUKp82Zr/8Hr95OkB+tzl Cozovg9tRmDenUxzCzc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org