$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197817.roa File: AS197817.roa (raw, json) Hash identifier: E3xPvMgs8dwauw9GYzq1KMZpm1kMA1qoTaKmghJ4pPY= Subject key identifier: FF:28:43:3C:FF:C7:47:84:8A:7A:1F:96:55:CA:1A:01:F7:84:60:CA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 62C5D539CDD100CCB410049007C151B6997BEAE8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197817.roa Signing time: Tue 11 Jun 2024 15:00:12 +0000 ROA not before: Tue 11 Jun 2024 14:55:12 +0000 ROA not after: Tue 10 Jun 2025 15:00:12 +0000 asID: 197817 IP address blocks: 2a05:dfc1:6900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:c5:d5:39:cd:d1:00:cc:b4:10:04:90:07:c1:51:b6:99:7b:ea:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 11 14:55:12 2024 GMT Not After : Jun 10 15:00:12 2025 GMT Subject: CN=FF28433CFFC747848A7A1F9655CA1A01F78460CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c8:b6:1f:05:4d:a2:a2:5a:e1:ac:6f:c6:aa: e3:c7:08:68:ff:6c:a6:67:a1:3b:eb:8a:59:b0:a8: 0c:f6:74:98:39:22:df:c1:74:97:4c:67:e9:7c:39: 63:4d:a2:96:a4:bc:33:1b:f2:03:2c:e5:0b:56:b2: a4:a5:56:65:c1:e0:31:52:ea:d4:70:c8:63:8f:69: e8:00:b8:95:f2:65:8a:4a:4c:82:c1:78:02:02:30: 5e:00:6b:c8:14:48:2d:85:53:bf:f9:74:13:20:17: de:6d:36:83:5a:dc:00:5d:0d:58:b8:90:8a:6f:a4: c7:19:fb:d6:4e:83:bc:72:70:48:36:44:37:f3:58: cd:49:cc:6f:e1:03:0a:e1:a0:dd:64:05:7f:d5:f4: 3f:0b:f9:fe:d4:5d:46:f1:13:e2:32:c0:83:db:e4: 33:ea:f7:9b:11:a1:63:96:2f:e4:68:07:a2:a1:28: 22:49:1a:7d:64:c3:0e:37:f4:f8:b5:4c:ad:06:fb: fe:b9:46:ac:3e:59:66:04:0f:ba:b5:83:8a:7f:c0: 0a:f9:a3:47:12:54:e8:3a:83:83:ca:86:4b:d6:14: 55:8a:ae:6a:bf:2c:72:32:e2:aa:57:97:10:83:a1: c9:74:4f:fb:79:a7:e8:69:3d:9b:5a:db:ea:02:ec: 9a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:28:43:3C:FF:C7:47:84:8A:7A:1F:96:55:CA:1A:01:F7:84:60:CA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197817.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6900::/40 Signature Algorithm: sha256WithRSAEncryption 20:38:4e:49:39:3b:2b:83:b1:ff:b7:6e:25:cb:13:64:64:3f: 88:8a:35:59:69:8c:79:0b:8a:b0:fd:6a:c9:1f:c8:a3:cd:ce: 68:b3:20:9e:4f:55:e3:33:95:1b:1c:d3:08:5f:4e:3c:14:57: 5a:72:fd:9e:8a:c8:a7:f5:f5:1b:57:6f:b3:3c:b9:e7:de:5d: 4f:75:6b:b9:70:fb:d3:f7:1b:ca:71:06:8e:82:ff:21:a7:26: 51:c0:15:5c:ae:83:51:2a:e9:02:30:a3:ab:61:8d:7f:c7:50: 0b:ef:02:20:51:37:c8:6d:8f:cd:52:1c:5d:6b:d6:68:27:0c: 29:eb:97:bf:4e:12:34:61:10:1f:9b:ff:10:33:9d:47:3a:d7: 27:13:a2:26:d5:60:63:4f:7d:2a:dd:00:1d:50:fb:30:82:d4: 87:82:02:97:ea:e5:99:f1:68:b6:df:4a:53:b4:7d:b7:55:18: e0:44:fa:37:b5:89:69:14:bf:b3:47:58:4d:72:01:e0:fd:12: c4:ba:9b:8c:fd:cf:eb:ad:c8:3e:fa:4c:13:53:8e:2b:72:bc: 8c:d2:02:f0:02:57:4c:6a:bc:1e:36:d2:6b:22:8b:83:ab:c4: 15:27:be:11:54:49:90:14:de:88:53:ff:4c:45:2d:72:f9:0c: e2:be:70:f9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYsXVOc3RAMy0EASQB8FRtpl76ugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MTExNDU1MTJaFw0yNTA2MTAxNTAwMTJaMDMxMTAvBgNV BAMTKEZGMjg0MzNDRkZDNzQ3ODQ4QTdBMUY5NjU1Q0ExQTAxRjc4NDYwQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyyLYfBU2iolrhrG/GquPHCGj/ bKZnoTvrilmwqAz2dJg5It/BdJdMZ+l8OWNNopakvDMb8gMs5QtWsqSlVmXB4DFS 6tRwyGOPaegAuJXyZYpKTILBeAICMF4Aa8gUSC2FU7/5dBMgF95tNoNa3ABdDVi4 kIpvpMcZ+9ZOg7xycEg2RDfzWM1JzG/hAwrhoN1kBX/V9D8L+f7UXUbxE+IywIPb 5DPq95sRoWOWL+RoB6KhKCJJGn1kww439Pi1TK0G+/65Rqw+WWYED7q1g4p/wAr5 o0cSVOg6g4PKhkvWFFWKrmq/LHIy4qpXlxCDocl0T/t5p+hpPZta2+oC7Jq/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/yhDPP/HR4SKeh+WVcoaAfeEYMowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWkwDQYJKoZIhvcNAQELBQADggEBACA4 Tkk5OyuDsf+3biXLE2RkP4iKNVlpjHkLirD9askfyKPNzmizIJ5PVeMzlRsc0whf TjwUV1py/Z6KyKf19RtXb7M8uefeXU91a7lw+9P3G8pxBo6C/yGnJlHAFVyug1Eq 6QIwo6thjX/HUAvvAiBRN8htj81SHF1r1mgnDCnrl79OEjRhEB+b/xAznUc61ycT oibVYGNPfSrdAB1Q+zCC1IeCApfq5ZnxaLbfSlO0fbdVGOBE+je1iWkUv7NHWE1y AeD9EsS6m4z9z+utyD76TBNTjityvIzSAvACV0xqvB420msii4OrxBUnvhFUSZAU 3ohT/0xFLXL5DOK+cPk= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org