$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197817.roa File: AS197817.roa (raw, json) Hash identifier: ++Nq2dYO7JXkPfJW6+z5Y/Rtn66C+6NSp27uVHsOgWk= Subject key identifier: 57:41:B3:3F:5E:EC:90:C6:D5:5F:02:9A:F2:AC:06:44:6C:5E:8E:B0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 302852D39BD9794B8CCC3862B0159895FB1EE539 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197817.roa Signing time: Tue 11 Jul 2023 14:17:12 +0000 ROA not before: Tue 11 Jul 2023 14:12:12 +0000 ROA not after: Tue 09 Jul 2024 14:17:12 +0000 asID: 197817 IP address blocks: 2a05:dfc1:6900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:28:52:d3:9b:d9:79:4b:8c:cc:38:62:b0:15:98:95:fb:1e:e5:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 11 14:12:12 2023 GMT Not After : Jul 9 14:17:12 2024 GMT Subject: CN=5741B33F5EEC90C6D55F029AF2AC06446C5E8EB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e4:7a:9b:98:3e:67:a9:ea:4e:16:db:93:f4: ef:22:ce:2a:a9:a4:c3:6e:69:e4:c8:42:bc:a0:1c: 11:49:9c:d3:cd:06:68:f5:7c:a2:60:e2:23:e4:26: 6b:58:9d:c5:30:34:0c:91:d1:cf:7b:4b:68:65:9b: 5d:85:7c:cc:5e:e2:22:5d:50:83:4b:26:79:31:99: ef:a2:e4:d0:5b:d5:44:22:33:cc:3b:2e:48:9a:70: 97:2e:2d:2b:be:50:29:20:83:cb:73:7b:9f:29:50: 95:56:fe:d9:0e:1b:58:06:1d:ae:49:b2:42:e6:2b: a4:ba:57:68:f7:66:54:0e:b3:a1:24:b8:77:a5:33: 33:2c:bc:1a:d9:00:28:a2:f0:37:eb:db:3e:d0:ab: d7:83:82:07:51:fc:af:96:0b:d0:25:3a:17:4a:24: 7f:69:75:e9:94:6b:7a:1c:07:b5:86:25:97:b9:d6: d1:84:95:65:ee:84:0b:cb:da:e5:2f:fb:4e:35:8a: 19:c4:89:75:f4:33:ef:c5:46:33:d8:d6:6f:89:4b: 64:a8:1c:05:ce:dc:11:96:ca:2e:c2:55:c4:f3:7c: 3b:0a:02:a9:bf:8e:e6:a4:82:50:da:a6:d0:e5:a5: f4:a3:c4:03:c2:ca:a3:eb:d0:ac:24:aa:0b:cd:52: ba:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:41:B3:3F:5E:EC:90:C6:D5:5F:02:9A:F2:AC:06:44:6C:5E:8E:B0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197817.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6900::/40 Signature Algorithm: sha256WithRSAEncryption 03:db:be:d0:60:dc:29:34:45:92:f3:34:93:c8:f6:50:a3:52: c0:bd:2d:24:a0:99:85:40:d2:7e:91:df:2f:81:00:82:b7:63: fc:74:c3:59:99:9f:dd:5f:4b:a4:dd:17:4b:93:45:60:07:94: e4:04:5f:9b:e7:bd:ad:4f:96:37:24:30:9a:81:5c:af:82:95: 1e:d3:a4:92:ec:2c:ae:1e:74:db:fc:ad:88:cd:f7:5e:78:ac: 24:87:53:81:e9:bb:e9:fd:09:9e:b6:bd:8c:35:7d:97:73:2b: 5c:77:ec:8e:ed:44:35:37:af:a2:94:aa:8f:c9:67:7c:3d:06: d1:15:22:40:ce:5f:8a:94:19:9b:15:3f:5c:fa:6c:6f:a8:9d: a7:44:9d:9a:33:41:78:a1:6f:0d:1c:92:13:44:4a:6f:78:ad: 97:b9:cc:46:85:af:18:c9:0c:3f:5f:ed:d0:76:f3:65:04:cb: de:ac:94:37:fd:63:1f:1d:c9:06:8d:22:97:26:97:a9:41:01: 79:91:97:06:2f:0d:29:9c:ae:e8:a8:03:a5:62:47:bc:2d:6e: 93:89:c4:a0:fe:5a:bb:35:55:42:a1:2c:bc:31:34:9f:d0:5e: 0a:e0:54:8f:bb:89:7c:87:4a:b9:ef:b0:95:32:2a:05:0f:ab: e4:94:c7:36 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMChS05vZeUuMzDhisBWYlfse5TkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MTExNDEyMTJaFw0yNDA3MDkxNDE3MTJaMDMxMTAvBgNV BAMTKDU3NDFCMzNGNUVFQzkwQzZENTVGMDI5QUYyQUMwNjQ0NkM1RThFQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC45HqbmD5nqepOFtuT9O8iziqp pMNuaeTIQrygHBFJnNPNBmj1fKJg4iPkJmtYncUwNAyR0c97S2hlm12FfMxe4iJd UINLJnkxme+i5NBb1UQiM8w7LkiacJcuLSu+UCkgg8tze58pUJVW/tkOG1gGHa5J skLmK6S6V2j3ZlQOs6EkuHelMzMsvBrZACii8Dfr2z7Qq9eDggdR/K+WC9AlOhdK JH9pdemUa3ocB7WGJZe51tGElWXuhAvL2uUv+041ihnEiXX0M+/FRjPY1m+JS2So HAXO3BGWyi7CVcTzfDsKAqm/juakglDaptDlpfSjxAPCyqPr0KwkqgvNUrrrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUV0GzP17skMbVXwKa8qwGRGxejrAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWkwDQYJKoZIhvcNAQELBQADggEBAAPb vtBg3Ck0RZLzNJPI9lCjUsC9LSSgmYVA0n6R3y+BAIK3Y/x0w1mZn91fS6TdF0uT RWAHlOQEX5vnva1PljckMJqBXK+ClR7TpJLsLK4edNv8rYjN9154rCSHU4Hpu+n9 CZ62vYw1fZdzK1x37I7tRDU3r6KUqo/JZ3w9BtEVIkDOX4qUGZsVP1z6bG+onadE nZozQXihbw0ckhNESm94rZe5zEaFrxjJDD9f7dB282UEy96slDf9Yx8dyQaNIpcm l6lBAXmRlwYvDSmcruioA6ViR7wtbpOJxKD+Wrs1VUKhLLwxNJ/QXgrgVI+7iXyH SrnvsJUyKgUPq+SUxzY= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org