$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197815.roa File: AS197815.roa (raw, json) Hash identifier: qSf0lQFwqQHfbUPPNUnQz1VB+G0tHzYv58NOOt45r7w= Subject key identifier: 5C:94:60:44:5C:E3:D4:85:E4:91:00:14:D3:30:39:26:F1:8E:BF:7A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4103C1A499F7690FD984A2AEAC7E3FDA66199188 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197815.roa Signing time: Tue 11 Jul 2023 14:19:52 +0000 ROA not before: Tue 11 Jul 2023 14:14:52 +0000 ROA not after: Tue 09 Jul 2024 14:19:52 +0000 asID: 197815 IP address blocks: 2a05:dfc1:6800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:03:c1:a4:99:f7:69:0f:d9:84:a2:ae:ac:7e:3f:da:66:19:91:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 11 14:14:52 2023 GMT Not After : Jul 9 14:19:52 2024 GMT Subject: CN=5C9460445CE3D485E4910014D3303926F18EBF7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c0:87:d0:c3:8b:d6:46:15:3e:c1:b6:3c:8b: 36:c6:13:34:ba:a5:ab:bb:5d:e7:2d:02:db:c0:36: ab:c7:ff:a3:ae:15:f9:a1:58:44:33:64:1f:c2:11: 2f:a2:98:41:58:55:a4:c2:16:94:5a:0f:f2:3c:b2: cb:14:c9:67:21:0b:5f:58:91:4b:37:7f:a8:c0:45: 29:34:be:fd:31:b2:13:1d:c1:c9:10:d8:48:ea:69: b6:df:0d:fe:1a:55:15:72:2b:57:71:ab:6b:be:39: d4:54:f2:be:81:8c:bc:32:c8:7f:95:5f:c5:dc:ba: da:cf:a2:26:76:a2:67:fe:2d:6f:51:a7:5c:92:c4: 96:bd:fd:2f:f3:20:47:34:e5:fa:88:96:be:18:7d: 9f:98:72:cc:62:a0:fd:f4:c6:cb:92:a9:43:15:91: cc:35:df:21:90:47:2b:83:37:56:20:d6:f9:74:2c: c7:71:66:48:a3:f7:4b:bd:3a:c7:c8:da:6d:5e:96: 99:3c:e4:c9:20:6c:04:a2:1f:6c:8b:83:6c:49:f9: c2:9d:35:1d:8c:b6:97:12:12:27:4a:15:d6:c6:d1: 5e:49:14:1a:16:af:1a:40:f6:a7:88:93:f6:92:6c: 65:db:b6:c1:1e:68:b4:5c:0b:3d:15:bd:8e:5d:90: f8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:94:60:44:5C:E3:D4:85:E4:91:00:14:D3:30:39:26:F1:8E:BF:7A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197815.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6800::/40 Signature Algorithm: sha256WithRSAEncryption 21:28:c7:40:2c:54:98:f6:95:d6:51:5e:54:ce:55:11:54:78: 9f:da:0f:f9:5f:d8:3f:19:99:f5:cf:1a:05:4e:5a:d2:84:9e: 1d:a6:20:09:4b:a8:dc:41:57:50:9d:09:b2:16:9e:36:cc:f1: 83:0d:c2:a0:3c:1e:4f:03:f9:3d:0a:29:52:52:c3:47:75:26: 95:38:8b:c9:96:ff:93:af:ab:b9:94:b5:ee:d0:b1:5a:43:59: 0c:dc:c3:e4:82:43:f0:11:47:63:c8:f0:56:8f:77:b3:f6:18: e8:7d:d2:0a:a8:bf:b2:14:97:bb:65:3c:e3:be:31:43:8f:bf: b3:7b:4e:fc:c7:95:d3:1f:61:cb:16:84:20:67:e4:a4:00:f3: 7f:e9:14:e3:01:e8:20:09:f2:e3:59:6e:51:2b:97:5d:c8:ae: b3:40:c0:45:1e:9c:69:78:d4:8e:c6:eb:d7:cc:21:e6:76:f0: 21:d7:64:8c:f3:b3:4a:93:92:0c:41:3a:ea:67:c5:14:01:0a: 89:ea:75:67:e8:1f:de:03:b0:c9:cf:53:8d:6b:cb:dc:c0:58: cf:2b:7e:41:2f:b2:fb:f1:68:ac:26:c8:f3:b4:9c:34:de:6f: 7e:ca:c0:bc:82:e8:18:df:fe:e6:58:2d:dd:08:f1:d7:1e:80: ef:07:f4:ca -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQQPBpJn3aQ/ZhKKurH4/2mYZkYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MTExNDE0NTJaFw0yNDA3MDkxNDE5NTJaMDMxMTAvBgNV BAMTKDVDOTQ2MDQ0NUNFM0Q0ODVFNDkxMDAxNEQzMzAzOTI2RjE4RUJGN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCowIfQw4vWRhU+wbY8izbGEzS6 pau7XectAtvANqvH/6OuFfmhWEQzZB/CES+imEFYVaTCFpRaD/I8sssUyWchC19Y kUs3f6jARSk0vv0xshMdwckQ2EjqabbfDf4aVRVyK1dxq2u+OdRU8r6BjLwyyH+V X8XcutrPoiZ2omf+LW9Rp1ySxJa9/S/zIEc05fqIlr4YfZ+YcsxioP30xsuSqUMV kcw13yGQRyuDN1Yg1vl0LMdxZkij90u9OsfI2m1elpk85MkgbASiH2yLg2xJ+cKd NR2MtpcSEidKFdbG0V5JFBoWrxpA9qeIk/aSbGXbtsEeaLRcCz0VvY5dkPgPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXJRgRFzj1IXkkQAU0zA5JvGOv3owHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODE1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWgwDQYJKoZIhvcNAQELBQADggEBACEo x0AsVJj2ldZRXlTOVRFUeJ/aD/lf2D8ZmfXPGgVOWtKEnh2mIAlLqNxBV1CdCbIW njbM8YMNwqA8Hk8D+T0KKVJSw0d1JpU4i8mW/5Ovq7mUte7QsVpDWQzcw+SCQ/AR R2PI8FaPd7P2GOh90gqov7IUl7tlPOO+MUOPv7N7TvzHldMfYcsWhCBn5KQA83/p FOMB6CAJ8uNZblErl13IrrNAwEUenGl41I7G69fMIeZ28CHXZIzzs0qTkgxBOupn xRQBConqdWfoH94DsMnPU41ry9zAWM8rfkEvsvvxaKwmyPO0nDTeb37KwLyC6Bjf /uZYLd0I8dcegO8H9Mo= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org