$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197866.roa File: AS197866.roa (raw, json) Hash identifier: QP82BcI0g8E97h6SkuZBTtcbmRbRk70kc74Q4dGiAgg= Subject key identifier: 8A:20:15:A8:AD:3B:AC:55:46:30:DB:6A:1A:DC:8C:85:81:1B:E7:6B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 296FB16067FA7F1522139711375CA440CA1CC6D7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197866.roa Signing time: Fri 07 Jun 2024 11:59:51 +0000 ROA not before: Fri 07 Jun 2024 11:54:51 +0000 ROA not after: Fri 06 Jun 2025 11:59:51 +0000 asID: 197866 IP address blocks: 2a05:dfc1:6600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:6f:b1:60:67:fa:7f:15:22:13:97:11:37:5c:a4:40:ca:1c:c6:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 7 11:54:51 2024 GMT Not After : Jun 6 11:59:51 2025 GMT Subject: CN=8A2015A8AD3BAC554630DB6A1ADC8C85811BE76B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b6:2c:d2:8b:bc:2f:d8:13:3e:ea:4f:61:61: 64:5b:66:e1:e3:76:d6:fe:55:da:e6:c8:ff:15:17: cd:7c:6a:7a:d1:a8:d5:1c:c4:08:77:33:7d:0f:17: 38:6c:4a:d4:d6:ed:bf:4d:41:e2:49:95:70:7d:f1: 4c:a4:a9:48:c5:bd:97:58:1e:9e:d9:00:2c:99:f7: 4c:62:26:39:d4:4e:41:14:bd:c2:a6:78:53:0e:47: 54:0d:88:f1:85:d8:4c:ae:4e:45:ac:ae:26:89:03: 47:c3:32:97:fb:ed:24:81:ac:ed:49:2a:b9:37:b8: 44:2a:17:79:86:38:62:58:2e:e1:7d:3b:99:09:e3: f7:62:52:4e:cf:f3:ba:53:3e:85:a8:57:1b:8b:d5: 8f:ad:94:99:c7:3e:0a:ac:ac:83:bf:53:1b:a5:1b: 1a:53:5e:cf:3d:e7:66:c2:fb:d2:47:f3:fd:a6:60: a0:a4:be:43:a8:33:f8:a8:c1:6e:01:af:22:50:9d: c7:18:ac:55:3e:a5:fb:c5:3a:cd:da:b0:f2:9c:21: 63:00:ef:2d:dd:4d:30:e2:ca:cc:49:8a:d6:c4:da: 35:19:ea:ab:f8:63:cf:b1:42:17:70:d8:66:cd:a8: 54:a8:06:cf:ae:5d:ad:ff:46:e1:37:cd:c9:fb:be: 1c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:20:15:A8:AD:3B:AC:55:46:30:DB:6A:1A:DC:8C:85:81:1B:E7:6B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197866.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6600::/40 Signature Algorithm: sha256WithRSAEncryption 75:48:59:b4:76:19:6f:0f:f9:90:76:67:d8:a2:4d:46:a7:62: ef:2e:11:e1:66:3c:98:2f:42:34:52:e9:39:92:6a:ab:d7:01: 2f:d5:cd:c7:6c:22:94:34:08:30:c4:2b:40:d5:e6:18:4d:b5: a7:be:f9:be:37:22:f7:44:5c:81:b3:db:ee:ad:9d:19:f4:bd: a2:3e:18:35:b7:ed:20:74:f0:fa:c2:91:72:c5:20:2c:ef:c1: b3:7a:f8:ae:9d:e6:a0:ca:cb:ea:66:d0:52:d8:3c:7b:16:7f: c5:af:0c:b8:da:0d:9d:2b:01:fe:df:49:71:88:d4:53:12:95: ee:fa:33:65:e9:61:3d:69:b0:1e:de:3d:25:21:8c:33:24:0c: e7:98:48:cb:0b:ca:3f:cb:85:ee:66:43:28:cc:34:bc:87:89: a5:a2:eb:f7:66:2e:4e:94:dd:1c:89:b0:19:b2:bc:9f:c8:2d: 2e:ca:7e:1b:9b:0b:d1:fb:12:8c:fe:50:c2:56:73:43:07:c4: 19:b8:94:8e:d1:c9:a0:8b:38:90:aa:53:a3:65:b0:b4:39:57: 0d:39:3e:0f:db:a6:60:9f:38:9f:a5:8d:03:d7:56:fe:f7:0f: c3:0b:48:67:ba:8c:9a:a2:b8:eb:28:a9:8b:f7:16:be:8e:38: 3a:d5:3d:5a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKW+xYGf6fxUiE5cRN1ykQMocxtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MDcxMTU0NTFaFw0yNTA2MDYxMTU5NTFaMDMxMTAvBgNV BAMTKDhBMjAxNUE4QUQzQkFDNTU0NjMwREI2QTFBREM4Qzg1ODExQkU3NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1tizSi7wv2BM+6k9hYWRbZuHj dtb+VdrmyP8VF818anrRqNUcxAh3M30PFzhsStTW7b9NQeJJlXB98UykqUjFvZdY Hp7ZACyZ90xiJjnUTkEUvcKmeFMOR1QNiPGF2EyuTkWsriaJA0fDMpf77SSBrO1J Krk3uEQqF3mGOGJYLuF9O5kJ4/diUk7P87pTPoWoVxuL1Y+tlJnHPgqsrIO/Uxul GxpTXs8952bC+9JH8/2mYKCkvkOoM/iowW4BryJQnccYrFU+pfvFOs3asPKcIWMA 7y3dTTDiysxJitbE2jUZ6qv4Y8+xQhdw2GbNqFSoBs+uXa3/RuE3zcn7vhwHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiiAVqK07rFVGMNtqGtyMhYEb52swHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWYwDQYJKoZIhvcNAQELBQADggEBAHVI WbR2GW8P+ZB2Z9iiTUanYu8uEeFmPJgvQjRS6TmSaqvXAS/VzcdsIpQ0CDDEK0DV 5hhNtae++b43IvdEXIGz2+6tnRn0vaI+GDW37SB08PrCkXLFICzvwbN6+K6d5qDK y+pm0FLYPHsWf8WvDLjaDZ0rAf7fSXGI1FMSle76M2XpYT1psB7ePSUhjDMkDOeY SMsLyj/Lhe5mQyjMNLyHiaWi6/dmLk6U3RyJsBmyvJ/ILS7KfhubC9H7Eoz+UMJW c0MHxBm4lI7RyaCLOJCqU6NlsLQ5Vw05Pg/bpmCfOJ+ljQPXVv73D8MLSGe6jJqi uOsoqYv3Fr6OODrVPVo= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org