$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197737.roa File: AS197737.roa (raw, json) Hash identifier: QlpfqbhJWb4bd/wZOmS7P2c2qYdpu/vYEGw9rdUIbZc= Subject key identifier: 48:88:7A:E1:A4:B2:20:1D:AD:DC:91:02:11:64:CF:1D:88:B1:62:1A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 738988907273CBF4F3AC462A7D4EC9FFA224A543 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197737.roa Signing time: Tue 18 Jul 2023 11:54:00 +0000 ROA not before: Tue 18 Jul 2023 11:49:00 +0000 ROA not after: Tue 16 Jul 2024 11:54:00 +0000 asID: 197737 IP address blocks: 2a05:dfc1:6e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:89:88:90:72:73:cb:f4:f3:ac:46:2a:7d:4e:c9:ff:a2:24:a5:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 18 11:49:00 2023 GMT Not After : Jul 16 11:54:00 2024 GMT Subject: CN=48887AE1A4B2201DADDC91021164CF1D88B1621A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:22:5d:fb:01:51:37:0c:4d:38:ca:c4:4c:26: 52:22:41:f2:22:f1:8f:ba:45:fe:db:b8:9c:b5:22: 0a:81:cf:32:7a:55:4a:0d:49:db:16:f1:11:b9:a6: 5a:52:8c:d8:8c:c2:07:85:c8:68:90:01:a1:12:5d: 15:be:28:f0:5d:c3:13:19:4d:3f:21:89:11:57:53: c1:33:ae:7d:17:05:dc:49:e3:22:59:65:c2:9c:15: 44:95:73:55:21:d9:04:03:ea:31:74:96:a9:b2:62: 76:c8:cf:4f:98:81:c0:f0:f7:a3:f9:2f:5d:c3:b0: 5e:f9:f3:a2:fa:72:86:d5:3e:fb:52:a8:63:67:f6: 5c:66:d2:69:7c:dd:ec:31:99:c9:aa:5c:4c:1c:e0: 52:da:ba:7b:31:d3:48:24:7d:c8:59:1b:b4:ba:eb: 7f:65:d4:46:3b:1b:7b:16:44:cf:85:dc:11:4a:5d: 0b:50:fa:95:e0:78:1d:77:d1:2f:ec:82:49:53:13: c1:c5:46:19:db:44:69:e4:ef:7b:2c:26:57:c0:0a: f0:bc:f2:c0:46:e4:d0:da:72:27:d1:9f:90:57:48: 2f:bf:0c:e3:76:1b:2b:6a:2e:25:ef:6b:d1:06:25: 52:95:2d:b9:39:03:40:01:87:a4:1f:f8:b6:f3:e6: 04:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:88:7A:E1:A4:B2:20:1D:AD:DC:91:02:11:64:CF:1D:88:B1:62:1A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6e00::/40 Signature Algorithm: sha256WithRSAEncryption b3:bb:a8:c0:7c:84:f1:68:4d:26:cc:da:75:6a:10:81:fc:c9: d8:2f:3f:e7:74:00:d4:1f:cc:1e:e8:64:1f:f6:b5:b5:79:9a: 42:e6:28:86:45:ce:5c:5c:a0:eb:3a:ae:a5:88:fb:84:bd:61: f0:5a:2d:f1:e5:6e:51:7c:f3:ae:14:dc:c9:8f:ca:c5:ab:b4: f2:2a:a0:54:2b:63:8d:90:03:3b:9c:80:54:bf:73:4a:a7:b7: db:e9:7f:92:f4:36:45:ff:68:af:3c:5e:1d:a0:b7:b3:09:63: b9:67:01:4b:20:c9:c0:58:72:f8:12:aa:cf:42:da:65:0f:1c: 25:a3:48:ce:c5:da:88:b2:ea:ed:c9:56:3c:65:75:70:63:43: 9e:ce:3c:65:e0:0d:47:a0:d1:4c:48:ae:63:8c:af:b5:05:3c: 56:fe:da:8b:05:95:49:71:8d:47:74:8c:2f:47:14:5a:d3:fa: 97:73:97:74:80:91:26:5d:70:2c:1c:03:e0:72:a6:f3:46:e4: a9:66:5c:f2:6a:3d:78:8c:60:82:c9:76:2b:2f:49:f0:77:65: 9a:9d:72:41:74:54:1b:5c:47:ba:44:4b:44:c7:06:f9:ae:c9: 40:fb:c5:91:cd:a6:b0:9f:ee:c2:ff:71:b7:01:8f:9a:8c:92: 89:a5:3f:43 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUc4mIkHJzy/TzrEYqfU7J/6IkpUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MTgxMTQ5MDBaFw0yNDA3MTYxMTU0MDBaMDMxMTAvBgNV BAMTKDQ4ODg3QUUxQTRCMjIwMURBRERDOTEwMjExNjRDRjFEODhCMTYyMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Il37AVE3DE04ysRMJlIiQfIi 8Y+6Rf7buJy1IgqBzzJ6VUoNSdsW8RG5plpSjNiMwgeFyGiQAaESXRW+KPBdwxMZ TT8hiRFXU8Ezrn0XBdxJ4yJZZcKcFUSVc1Uh2QQD6jF0lqmyYnbIz0+YgcDw96P5 L13DsF7586L6cobVPvtSqGNn9lxm0ml83ewxmcmqXEwc4FLaunsx00gkfchZG7S6 639l1EY7G3sWRM+F3BFKXQtQ+pXgeB130S/sgklTE8HFRhnbRGnk73ssJlfACvC8 8sBG5NDacifRn5BXSC+/DON2GytqLiXva9EGJVKVLbk5A0ABh6Qf+Lbz5gTZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUSIh64aSyIB2t3JECEWTPHYixYhowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NzM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwW4wDQYJKoZIhvcNAQELBQADggEBALO7 qMB8hPFoTSbM2nVqEIH8ydgvP+d0ANQfzB7oZB/2tbV5mkLmKIZFzlxcoOs6rqWI +4S9YfBaLfHlblF8864U3MmPysWrtPIqoFQrY42QAzucgFS/c0qnt9vpf5L0NkX/ aK88Xh2gt7MJY7lnAUsgycBYcvgSqs9C2mUPHCWjSM7F2oiy6u3JVjxldXBjQ57O PGXgDUeg0UxIrmOMr7UFPFb+2osFlUlxjUd0jC9HFFrT+pdzl3SAkSZdcCwcA+By pvNG5KlmXPJqPXiMYILJdisvSfB3ZZqdckF0VBtcR7pES0THBvmuyUD7xZHNprCf 7sL/cbcBj5qMkomlP0M= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org