$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197736.roa File: AS197736.roa (raw, json) Hash identifier: YPLph0ox1GZnkZmOKudFYnjnLLUWA3bKLFj3XXukYqg= Subject key identifier: 70:81:F4:7C:ED:13:F2:BC:CF:4E:AD:6D:A9:42:D6:36:24:3B:E0:DF Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1C83162D1FBA4EF9706A6D8B4863B78D1A653615 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197736.roa Signing time: Tue 18 Jul 2023 12:18:20 +0000 ROA not before: Tue 18 Jul 2023 12:13:20 +0000 ROA not after: Tue 16 Jul 2024 12:18:20 +0000 asID: 197736 IP address blocks: 2a05:dfc1:6c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:83:16:2d:1f:ba:4e:f9:70:6a:6d:8b:48:63:b7:8d:1a:65:36:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 18 12:13:20 2023 GMT Not After : Jul 16 12:18:20 2024 GMT Subject: CN=7081F47CED13F2BCCF4EAD6DA942D636243BE0DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:18:af:88:39:70:c6:e3:4e:aa:26:47:83:ff: 3b:2f:36:dc:58:9d:e7:49:77:4d:f0:21:19:14:1b: 28:e5:d9:06:cf:aa:4e:da:ca:f9:9d:e9:e5:5f:c7: 28:be:e7:66:2b:9c:6e:a2:e9:18:6d:9b:4f:85:fd: 14:e3:af:c8:5f:46:9b:e5:cf:1a:93:87:57:04:62: 83:4f:e5:7c:68:90:6b:da:98:e2:29:4f:ee:fd:63: 36:df:dd:91:dc:8a:4f:2d:1b:33:2a:9a:07:5f:ae: 70:4d:af:4d:43:9c:a8:7e:92:19:ff:e4:48:a9:ee: 4b:5d:ad:0c:15:01:94:e0:9c:b5:69:83:d9:d4:df: 18:4b:2d:75:a1:f8:a4:bc:da:d5:34:25:f0:43:e6: 45:7f:cb:65:12:87:19:f2:d7:44:f4:33:a6:7f:0b: 05:60:16:a4:aa:0e:da:cd:15:38:17:5b:73:d9:98: 91:5e:e5:91:02:f1:d4:b3:d1:8d:e5:1e:a1:75:27: 73:1d:4e:21:0a:f5:bc:1e:3f:1f:42:3e:7d:58:85: 42:5b:38:d3:a2:fc:2c:14:bf:04:55:a9:34:2e:ad: 74:16:36:9f:a5:d9:2b:e2:7e:f9:48:c9:c6:56:67: 12:dd:1b:bc:62:b6:c7:e7:5c:fe:c9:20:97:6e:62: 65:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:81:F4:7C:ED:13:F2:BC:CF:4E:AD:6D:A9:42:D6:36:24:3B:E0:DF X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6c00::/40 Signature Algorithm: sha256WithRSAEncryption 54:3e:5f:3f:6c:2d:8a:50:d0:ed:fa:5f:65:70:11:b6:af:38: 65:a9:85:25:a2:0a:e4:90:d0:e0:dc:74:de:dc:bc:a6:c4:b3: 1c:d1:04:df:5e:91:77:ec:1b:27:90:60:10:8a:49:8a:99:e3: 89:bf:41:22:fb:f6:9f:e8:44:44:12:55:87:f8:15:e0:0f:2b: 3e:e2:2c:97:05:ee:49:d0:0f:95:d1:e8:8d:55:e6:0c:ca:59: 75:59:0b:74:07:b1:3f:de:2b:91:a9:ee:ff:14:59:89:0e:d2: 35:5a:86:c4:92:99:19:0d:65:d3:67:0f:89:44:ae:71:ab:3e: ad:4b:24:fe:39:e4:01:6a:5c:d7:c4:d0:6d:33:13:dc:a3:da: e0:86:7d:e3:d6:39:c1:d7:3e:e9:c6:e7:e0:19:a7:4a:5f:1d: 10:ba:1f:d3:25:42:da:92:df:ea:b7:ef:73:38:9a:dc:6c:e5: 85:fc:e3:e9:62:54:e6:1b:42:66:49:8a:52:1d:db:bd:44:41: 6c:d0:9b:40:40:26:9e:9b:8a:23:b9:73:90:47:35:13:7a:d3: 63:79:5b:41:ab:69:87:3f:89:54:19:20:03:fb:fe:fe:c7:8b: 75:85:2a:18:68:dc:2a:6d:5b:b3:52:43:ae:02:d9:22:b7:45: cc:6b:bc:e5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHIMWLR+6Tvlwam2LSGO3jRplNhUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MTgxMjEzMjBaFw0yNDA3MTYxMjE4MjBaMDMxMTAvBgNV BAMTKDcwODFGNDdDRUQxM0YyQkNDRjRFQUQ2REE5NDJENjM2MjQzQkUwREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsGK+IOXDG406qJkeD/zsvNtxY nedJd03wIRkUGyjl2QbPqk7ayvmd6eVfxyi+52YrnG6i6Rhtm0+F/RTjr8hfRpvl zxqTh1cEYoNP5XxokGvamOIpT+79Yzbf3ZHcik8tGzMqmgdfrnBNr01DnKh+khn/ 5Eip7ktdrQwVAZTgnLVpg9nU3xhLLXWh+KS82tU0JfBD5kV/y2UShxny10T0M6Z/ CwVgFqSqDtrNFTgXW3PZmJFe5ZEC8dSz0Y3lHqF1J3MdTiEK9bwePx9CPn1YhUJb ONOi/CwUvwRVqTQurXQWNp+l2SvifvlIycZWZxLdG7xitsfnXP7JIJduYmXHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUcIH0fO0T8rzPTq1tqULWNiQ74N8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWwwDQYJKoZIhvcNAQELBQADggEBAFQ+ Xz9sLYpQ0O36X2VwEbavOGWphSWiCuSQ0ODcdN7cvKbEsxzRBN9ekXfsGyeQYBCK SYqZ44m/QSL79p/oREQSVYf4FeAPKz7iLJcF7knQD5XR6I1V5gzKWXVZC3QHsT/e K5Gp7v8UWYkO0jVahsSSmRkNZdNnD4lErnGrPq1LJP455AFqXNfE0G0zE9yj2uCG fePWOcHXPunG5+AZp0pfHRC6H9MlQtqS3+q373M4mtxs5YX84+liVOYbQmZJilId 271EQWzQm0BAJp6biiO5c5BHNRN602N5W0GraYc/iVQZIAP7/v7Hi3WFKhho3Cpt W7NSQ64C2SK3RcxrvOU= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org