$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197866.roa File: AS197866.roa (raw, json) Hash identifier: aC36AYXxxmwQYLylqOem9mBv4IgMwiZD4jhugwtLlZs= Subject key identifier: 52:AC:26:DA:AE:A4:FA:EC:31:57:73:24:4E:5F:F5:1D:7D:5C:F4:04 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 605EE6E96628F3A7BEDCA79B76A4B0DF366B04E2 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197866.roa Signing time: Fri 07 Jul 2023 11:03:19 +0000 ROA not before: Fri 07 Jul 2023 10:58:19 +0000 ROA not after: Fri 05 Jul 2024 11:03:19 +0000 asID: 197866 IP address blocks: 2a05:dfc1:6600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:5e:e6:e9:66:28:f3:a7:be:dc:a7:9b:76:a4:b0:df:36:6b:04:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 7 10:58:19 2023 GMT Not After : Jul 5 11:03:19 2024 GMT Subject: CN=52AC26DAAEA4FAEC315773244E5FF51D7D5CF404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:c6:5d:ee:2e:9e:f1:e0:25:d4:46:e5:31: 54:80:f3:ab:65:80:e1:e5:29:b8:c8:60:68:b0:ea: 6e:ed:62:71:c3:53:fb:e4:e9:70:e8:11:b1:b9:a4: 7a:df:8b:30:14:a8:14:3a:b9:7f:74:8b:7b:0b:71: 86:50:ef:20:7c:0f:97:12:ea:b7:03:e5:80:f2:9c: ab:d2:e6:65:09:17:7e:1a:89:24:9d:74:37:af:04: d1:46:25:55:71:68:fe:f2:db:35:a9:30:6e:0f:02: df:80:fe:78:b2:17:64:fe:09:87:42:d4:07:8f:37: db:da:3c:cb:26:67:ee:ab:8a:13:d1:a1:67:de:5a: 6e:6c:8d:b0:47:03:e8:e7:56:aa:c5:34:61:c7:bd: 98:b4:dd:60:ea:96:62:04:5c:21:9b:5a:fd:39:02: d3:73:4b:c1:7e:26:9d:20:3f:8a:03:92:fa:c2:11: f2:88:38:6d:a3:15:ca:9f:e4:5f:9d:fb:7d:ae:a6: b5:9b:f5:d4:57:1c:c5:d4:58:87:13:f7:41:76:be: 99:38:f6:ae:d0:dd:d2:29:2c:9e:35:13:5a:a8:ea: a3:a5:44:d2:34:a7:aa:f3:9b:66:bf:3e:6b:d8:bc: 7b:12:a6:dc:cc:6b:fd:10:10:96:2d:6e:8a:11:81: ca:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AC:26:DA:AE:A4:FA:EC:31:57:73:24:4E:5F:F5:1D:7D:5C:F4:04 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197866.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6600::/40 Signature Algorithm: sha256WithRSAEncryption 81:79:be:73:92:c7:2b:01:e6:07:ac:4c:b9:77:87:22:9c:c3: c6:20:c7:c5:64:a8:33:df:1f:bd:72:89:1c:2d:68:73:dd:79: eb:3d:ca:87:2a:62:b6:96:7e:07:78:0f:8a:86:b5:28:14:c6: 16:b2:f5:29:61:dc:2f:c2:82:df:b6:c3:2b:89:28:4a:e8:1c: 0e:ce:50:65:b2:89:16:36:cd:28:e8:af:6a:93:3c:da:bf:c8: 33:35:e7:f7:43:98:19:c7:aa:79:2c:89:36:18:03:77:98:d7: 23:63:b3:b8:35:ba:a6:2e:73:0d:75:b3:88:21:e5:4a:84:98: 13:a2:9c:ec:b2:93:bf:db:44:e1:81:6e:12:46:88:31:df:89: 22:5c:e6:9b:8f:d4:1d:d4:96:11:74:ef:4d:03:74:72:8c:40: 39:b2:3a:ed:f5:7f:9b:fe:0b:49:1d:17:35:12:68:1f:6b:e8: ec:e9:4f:2b:b7:1d:1c:a2:14:69:c4:fd:bd:54:1d:c7:e1:5b: 81:a6:95:fb:df:a7:f9:f7:16:e3:4f:96:27:db:65:f5:44:9d: 9a:38:bd:a9:65:37:04:67:cc:ea:c3:ce:da:07:b3:b4:64:30: cb:59:80:02:be:17:54:0d:92:c0:98:05:58:e6:53:59:c7:7f: 36:4f:28:76 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYF7m6WYo86e+3KebdqSw3zZrBOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MDcxMDU4MTlaFw0yNDA3MDUxMTAzMTlaMDMxMTAvBgNV BAMTKDUyQUMyNkRBQUVBNEZBRUMzMTU3NzMyNDRFNUZGNTFEN0Q1Q0Y0MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJrsZd7i6e8eAl1EblMVSA86tl gOHlKbjIYGiw6m7tYnHDU/vk6XDoEbG5pHrfizAUqBQ6uX90i3sLcYZQ7yB8D5cS 6rcD5YDynKvS5mUJF34aiSSddDevBNFGJVVxaP7y2zWpMG4PAt+A/niyF2T+CYdC 1AePN9vaPMsmZ+6rihPRoWfeWm5sjbBHA+jnVqrFNGHHvZi03WDqlmIEXCGbWv05 AtNzS8F+Jp0gP4oDkvrCEfKIOG2jFcqf5F+d+32uprWb9dRXHMXUWIcT90F2vpk4 9q7Q3dIpLJ41E1qo6qOlRNI0p6rzm2a/PmvYvHsSptzMa/0QEJYtbooRgcolAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUqwm2q6k+uwxV3MkTl/1HX1c9AQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWYwDQYJKoZIhvcNAQELBQADggEBAIF5 vnOSxysB5gesTLl3hyKcw8Ygx8VkqDPfH71yiRwtaHPdees9yocqYraWfgd4D4qG tSgUxhay9Slh3C/Cgt+2wyuJKEroHA7OUGWyiRY2zSjor2qTPNq/yDM15/dDmBnH qnksiTYYA3eY1yNjs7g1uqYucw11s4gh5UqEmBOinOyyk7/bROGBbhJGiDHfiSJc 5puP1B3UlhF0700DdHKMQDmyOu31f5v+C0kdFzUSaB9r6OzpTyu3HRyiFGnE/b1U HcfhW4Gmlfvfp/n3FuNPlifbZfVEnZo4vallNwRnzOrDztoHs7RkMMtZgAK+F1QN ksCYBVjmU1nHfzZPKHY= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org