$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197737.roa File: AS197737.roa (raw, json) Hash identifier: M8txAn+/kliVTcYKNzljpWMChYwzizuFJwBjG5q4iQc= Subject key identifier: 7F:60:C3:B1:84:E7:EC:F1:22:C4:C3:01:84:78:EA:7C:A4:D6:BD:60 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5AA566440BCA4434EFDCED9A04B8A3CF8F3E8694 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197737.roa Signing time: Tue 18 Jun 2024 12:00:13 +0000 ROA not before: Tue 18 Jun 2024 11:55:13 +0000 ROA not after: Tue 17 Jun 2025 12:00:13 +0000 asID: 197737 IP address blocks: 2a05:dfc1:6e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:a5:66:44:0b:ca:44:34:ef:dc:ed:9a:04:b8:a3:cf:8f:3e:86:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 18 11:55:13 2024 GMT Not After : Jun 17 12:00:13 2025 GMT Subject: CN=7F60C3B184E7ECF122C4C3018478EA7CA4D6BD60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f5:97:b8:45:bf:a4:d8:85:98:10:f4:99:6f: de:d4:54:79:87:c3:d1:48:be:e2:10:54:0f:c0:d5: ca:0d:df:4c:b7:ca:f6:ba:c4:fa:b7:8d:05:31:c3: 75:a2:4a:35:5a:3e:8b:c2:d5:4d:dc:db:6d:02:19: 57:6d:ab:ee:0e:0f:6d:69:51:4e:f7:72:ff:76:fe: 52:25:81:47:28:37:90:e4:cd:9e:51:33:b0:13:6b: 6c:bb:dd:70:bc:7b:e2:70:93:b4:c6:38:20:ed:f3: 8b:59:33:4a:d7:1f:8c:9a:17:9f:69:f9:97:42:58: a1:a5:ce:51:7c:63:ce:93:68:fa:b0:11:62:83:07: c5:20:8d:2f:ff:74:40:ab:05:c7:96:9b:21:65:ec: f4:d5:c9:61:30:eb:d6:00:b4:ff:c5:ce:18:c2:ab: e9:45:50:1a:69:6d:70:88:e5:83:64:20:6f:f2:cd: 1d:67:a3:35:81:32:c2:dc:83:78:11:fe:26:69:98: d3:41:7d:56:51:39:2d:46:2b:a6:24:01:10:ea:85: ad:0c:ef:60:13:97:b4:59:bd:c7:91:3d:83:d2:dc: cb:42:a1:a0:73:c4:7c:bf:18:8a:b2:cf:bb:d2:49: 46:8b:b6:b0:a3:69:b9:76:c3:6b:64:68:7a:e7:07: 2c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:60:C3:B1:84:E7:EC:F1:22:C4:C3:01:84:78:EA:7C:A4:D6:BD:60 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6e00::/40 Signature Algorithm: sha256WithRSAEncryption 71:a6:03:04:13:e1:be:3b:e6:71:ca:6e:7d:4b:be:ae:d0:6b: 9a:b1:c3:3c:c0:8a:ef:b1:f2:37:0b:48:93:a9:78:d4:58:75: aa:51:8b:f6:f9:d6:3d:f1:6a:d3:8c:57:e8:02:43:15:e8:ab: df:d8:03:dd:ed:93:56:2c:d7:6a:e2:75:e1:ee:ea:45:76:b9: 70:fe:f7:e3:e4:b3:5e:e2:1b:6c:82:b7:05:75:f7:53:21:b9: 05:cf:d9:b3:e9:3a:59:20:51:d4:25:ac:ef:95:8e:71:f1:7e: cb:40:60:7e:ee:4c:7d:e6:25:08:f8:62:41:a3:e1:7d:fc:47: 5d:51:61:4e:10:34:63:61:cc:1b:67:07:e9:79:f1:d2:29:9a: 25:f2:06:ea:2b:9d:35:17:6b:c8:cb:bb:0b:59:34:5d:0b:82: 51:83:8b:74:92:fe:23:b2:50:8b:aa:12:71:ef:4b:e1:b3:51: 78:f4:ad:bf:a6:b4:38:15:9d:54:8e:89:f9:b8:9c:57:01:17: 47:51:b1:b7:f3:ac:ef:d8:c5:b4:15:0b:79:2c:11:b4:e3:46: fd:a8:ff:5c:6b:4a:ca:b8:c6:a0:3f:bd:11:f9:7c:86:ab:e0: 45:9f:28:60:f8:fa:13:8e:fc:dd:eb:8d:6e:b0:02:cb:f6:28: 70:f6:92:ba -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWqVmRAvKRDTv3O2aBLijz48+hpQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MTgxMTU1MTNaFw0yNTA2MTcxMjAwMTNaMDMxMTAvBgNV BAMTKDdGNjBDM0IxODRFN0VDRjEyMkM0QzMwMTg0NzhFQTdDQTRENkJENjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX9Ze4Rb+k2IWYEPSZb97UVHmH w9FIvuIQVA/A1coN30y3yva6xPq3jQUxw3WiSjVaPovC1U3c220CGVdtq+4OD21p UU73cv92/lIlgUcoN5DkzZ5RM7ATa2y73XC8e+Jwk7TGOCDt84tZM0rXH4yaF59p +ZdCWKGlzlF8Y86TaPqwEWKDB8UgjS//dECrBceWmyFl7PTVyWEw69YAtP/FzhjC q+lFUBppbXCI5YNkIG/yzR1nozWBMsLcg3gR/iZpmNNBfVZROS1GK6YkARDqha0M 72ATl7RZvceRPYPS3MtCoaBzxHy/GIqyz7vSSUaLtrCjabl2w2tkaHrnByybAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUf2DDsYTn7PEixMMBhHjqfKTWvWAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NzM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwW4wDQYJKoZIhvcNAQELBQADggEBAHGm AwQT4b475nHKbn1Lvq7Qa5qxwzzAiu+x8jcLSJOpeNRYdapRi/b51j3xatOMV+gC QxXoq9/YA93tk1Ys12rideHu6kV2uXD+9+Pks17iG2yCtwV191MhuQXP2bPpOlkg UdQlrO+VjnHxfstAYH7uTH3mJQj4YkGj4X38R11RYU4QNGNhzBtnB+l58dIpmiXy BuornTUXa8jLuwtZNF0LglGDi3SS/iOyUIuqEnHvS+GzUXj0rb+mtDgVnVSOifm4 nFcBF0dRsbfzrO/YxbQVC3ksEbTjRv2o/1xrSsq4xqA/vRH5fIar4EWfKGD4+hOO /N3rjW6wAsv2KHD2kro= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org