$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197815.roa File: AS197815.roa (raw, json) Hash identifier: 7EmLDhNrjkd9Qkovx3WyBJ0sxtgTjVX/+4+ZZrsWd1E= Subject key identifier: EB:14:95:D1:E5:A5:1C:7C:83:32:AE:67:E6:F2:07:95:D7:95:90:CE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5201F7B67D26C5E32CBD1F746E0F3AA197186827 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197815.roa Signing time: Tue 11 Jun 2024 15:00:12 +0000 ROA not before: Tue 11 Jun 2024 14:55:12 +0000 ROA not after: Tue 10 Jun 2025 15:00:12 +0000 asID: 197815 IP address blocks: 2a05:dfc1:6800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:01:f7:b6:7d:26:c5:e3:2c:bd:1f:74:6e:0f:3a:a1:97:18:68:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 11 14:55:12 2024 GMT Not After : Jun 10 15:00:12 2025 GMT Subject: CN=EB1495D1E5A51C7C8332AE67E6F20795D79590CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6a:4c:6d:0c:18:de:19:9d:a0:fd:5d:04:0c: c5:42:8a:14:08:c7:a2:67:9b:e8:fc:15:77:b7:bc: 57:bb:99:46:49:e2:0a:8e:db:42:53:57:ec:ca:c2: 50:b6:14:b6:3a:ad:b7:2e:48:21:d6:fc:64:b8:02: 28:21:cd:c2:62:dc:48:49:ae:b0:91:43:be:d2:3a: 4b:c7:fd:56:1b:31:8f:6f:d3:7d:ed:dd:b5:49:a4: 17:09:f7:ed:5a:43:e4:7b:9a:d8:bf:d2:62:f5:35: 43:2e:92:af:fe:78:5c:69:d8:7a:55:89:ad:44:63: 41:46:af:e4:b5:90:57:3d:9e:30:6d:0a:09:93:99: 42:b3:b9:2e:4c:e9:9b:97:d4:f0:aa:83:36:32:90: 77:cc:0e:89:80:96:01:b7:7a:6a:2e:7d:dc:0e:6a: 77:b7:9d:33:93:55:4b:34:9d:cb:3a:5f:c9:6c:04: 0a:76:58:55:f5:32:0f:0e:41:55:12:4b:8d:ca:e6: 65:b7:8b:fc:f7:6f:37:a3:af:31:c5:89:c5:c4:e4: 89:00:bc:fd:7e:92:d6:8d:31:6f:1a:58:4d:f4:4e: 08:2d:79:d7:6a:fc:06:db:fa:df:2a:3e:78:f3:9e: 9b:13:22:19:c6:c2:00:d1:3e:f2:4f:21:e0:66:ba: e1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:14:95:D1:E5:A5:1C:7C:83:32:AE:67:E6:F2:07:95:D7:95:90:CE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197815.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6800::/40 Signature Algorithm: sha256WithRSAEncryption b3:71:91:d7:04:54:41:a6:ab:c2:29:a6:4f:98:b6:6f:fa:35: 2f:ae:c7:1f:6a:ef:f3:86:e7:ba:d8:ef:13:6e:b0:ec:70:54: db:d7:49:50:30:09:f2:52:64:7c:86:0d:11:ee:1a:8c:42:86: 52:11:76:77:8c:e9:22:24:71:6c:40:e9:c7:b9:59:99:79:3c: 95:16:b3:2a:74:1a:b2:e1:63:a1:69:51:75:3e:34:5c:2e:ea: 39:86:5b:29:fd:67:d6:16:02:f1:7f:e4:3f:47:ff:a4:ee:e6: 70:80:3f:1d:66:e3:ca:83:2b:d3:94:ad:be:da:62:b4:dc:15: a4:33:20:89:93:9b:02:82:21:20:e8:98:b2:2a:32:54:6a:92: 9d:98:42:44:78:e1:a6:4c:dc:d7:a7:9b:da:40:de:d1:56:ad: fb:95:87:83:38:52:29:b4:b8:83:c4:61:df:f2:9e:86:0b:8d: 5c:47:bf:8a:f1:40:9c:3d:ed:31:38:3d:89:00:c1:1e:d2:67: 0c:46:2a:2d:09:53:8e:90:39:8c:88:ed:7a:43:82:ed:0d:6c: 6d:e0:1a:9d:ff:05:e6:ae:02:e7:0c:2a:70:7b:21:17:ab:b1: f0:b8:4f:6f:c7:12:22:ea:4e:08:84:6c:9f:13:30:13:f8:43: 5c:f3:45:32 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUgH3tn0mxeMsvR90bg86oZcYaCcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MTExNDU1MTJaFw0yNTA2MTAxNTAwMTJaMDMxMTAvBgNV BAMTKEVCMTQ5NUQxRTVBNTFDN0M4MzMyQUU2N0U2RjIwNzk1RDc5NTkwQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUakxtDBjeGZ2g/V0EDMVCihQI x6Jnm+j8FXe3vFe7mUZJ4gqO20JTV+zKwlC2FLY6rbcuSCHW/GS4AighzcJi3EhJ rrCRQ77SOkvH/VYbMY9v033t3bVJpBcJ9+1aQ+R7mti/0mL1NUMukq/+eFxp2HpV ia1EY0FGr+S1kFc9njBtCgmTmUKzuS5M6ZuX1PCqgzYykHfMDomAlgG3emoufdwO ane3nTOTVUs0ncs6X8lsBAp2WFX1Mg8OQVUSS43K5mW3i/z3bzejrzHFicXE5IkA vP1+ktaNMW8aWE30Tggteddq/Abb+t8qPnjznpsTIhnGwgDRPvJPIeBmuuGpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU6xSV0eWlHHyDMq5n5vIHldeVkM4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODE1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWgwDQYJKoZIhvcNAQELBQADggEBALNx kdcEVEGmq8Ippk+Ytm/6NS+uxx9q7/OG57rY7xNusOxwVNvXSVAwCfJSZHyGDRHu GoxChlIRdneM6SIkcWxA6ce5WZl5PJUWsyp0GrLhY6FpUXU+NFwu6jmGWyn9Z9YW AvF/5D9H/6Tu5nCAPx1m48qDK9OUrb7aYrTcFaQzIImTmwKCISDomLIqMlRqkp2Y QkR44aZM3Nenm9pA3tFWrfuVh4M4Uim0uIPEYd/ynoYLjVxHv4rxQJw97TE4PYkA wR7SZwxGKi0JU46QOYyI7XpDgu0NbG3gGp3/BeauAucMKnB7IRersfC4T2/HEiLq TgiEbJ8TMBP4Q1zzRTI= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org