$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197867.roa File: AS197867.roa (raw, json) Hash identifier: ZYj9JwUSChmBCVfGrJJ19n4V5AS9EVoo5ZRzx26XZK8= Subject key identifier: 93:35:F6:AD:39:F7:81:42:8F:B3:AD:57:94:BC:0E:1C:DE:9B:82:02 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 73F1B4A53BCD53B3456AB7EE321518DF3C69CDE8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197867.roa Signing time: Fri 07 Jun 2024 09:59:50 +0000 ROA not before: Fri 07 Jun 2024 09:54:50 +0000 ROA not after: Fri 06 Jun 2025 09:59:50 +0000 asID: 197867 IP address blocks: 2a05:dfc1:5d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:f1:b4:a5:3b:cd:53:b3:45:6a:b7:ee:32:15:18:df:3c:69:cd:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 7 09:54:50 2024 GMT Not After : Jun 6 09:59:50 2025 GMT Subject: CN=9335F6AD39F781428FB3AD5794BC0E1CDE9B8202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6b:57:27:73:ba:f5:d0:70:dd:4c:22:65:20: 66:5e:20:3c:62:6d:c4:75:54:91:4a:2c:7a:8f:8d: 4d:83:8b:36:5f:a9:b1:37:ce:ea:84:9f:7c:dd:25: ad:cd:65:d9:ba:d7:db:8d:f4:00:ba:70:c2:d8:fe: a4:98:e2:eb:cc:c7:33:08:0c:62:ab:a7:56:ce:66: 13:56:05:33:86:12:8f:68:c4:d0:5f:fb:bf:cc:a9: 3b:f1:43:5c:07:5d:5a:3a:0b:25:33:c3:46:ba:d4: b7:c1:b5:72:fd:cc:1a:dd:ae:04:0c:42:a3:de:2c: b6:60:f2:d4:5b:b0:f6:d9:b9:98:af:62:c7:33:ff: 57:6a:97:c6:20:51:d5:18:32:f9:22:ab:76:22:c2: 2a:4b:1c:88:e9:1e:d9:16:77:41:19:7f:01:7d:62: 4a:51:c9:41:f5:6f:c7:bc:7a:8d:ff:44:48:c1:05: 82:47:29:d6:9a:95:60:79:58:87:9e:95:c9:07:d2: f4:c8:d6:71:ed:a7:4e:12:ca:d4:29:73:e8:9d:99: f7:bb:f9:a3:cf:d7:ac:49:d4:50:8b:d2:f5:34:78: 45:e3:60:e1:cd:d6:03:1f:40:bd:db:8e:4b:29:31: df:51:e9:7c:d4:29:17:86:4e:14:9d:89:11:b3:dd: 58:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:35:F6:AD:39:F7:81:42:8F:B3:AD:57:94:BC:0E:1C:DE:9B:82:02 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197867.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5d00::/40 Signature Algorithm: sha256WithRSAEncryption b6:20:34:f2:f6:67:8a:d4:b1:ee:59:6b:87:eb:48:8f:2c:61: 98:0c:47:23:1b:bd:72:74:a5:ed:52:e7:44:ff:d0:a3:7d:6f: ad:f9:32:5d:c5:fa:f0:f7:6f:96:cc:47:de:4c:d0:b2:a3:87: c4:86:ef:ad:42:6e:bf:0f:63:fe:5e:92:fd:90:ed:6a:d6:7a: ce:90:ec:4b:49:1e:c4:76:94:8c:3e:8d:c4:ee:48:9e:d7:b1: 37:a2:d2:de:bd:34:54:21:c3:8f:4c:32:55:58:2c:fb:b7:b2: 1e:5b:42:9c:2f:e3:0f:7c:36:c1:2c:fc:43:2e:69:dd:ab:e1: 5e:48:04:50:79:6a:ba:e2:66:39:90:da:cb:b2:76:7d:3f:95: 5e:42:f4:3b:75:ee:06:97:b3:56:f7:8a:ec:78:fc:3c:07:73: ee:21:43:84:97:b6:a4:57:5c:d4:c7:bf:bf:bb:3c:f7:61:3d: 9d:a8:22:47:d7:a9:18:e4:ba:7e:bd:31:c0:0c:89:f1:6c:69: 88:98:66:7e:a0:ab:a5:e1:79:88:0c:a6:41:bc:cb:36:65:47: 2f:f2:8b:b3:00:6c:fc:09:93:97:89:b4:74:a8:1b:6f:d9:e6: 57:ca:94:f2:38:9c:2d:b1:7e:2a:4a:6f:e0:c7:97:00:be:36: a3:cf:3c:3c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUc/G0pTvNU7NFarfuMhUY3zxpzegwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MDcwOTU0NTBaFw0yNTA2MDYwOTU5NTBaMDMxMTAvBgNV BAMTKDkzMzVGNkFEMzlGNzgxNDI4RkIzQUQ1Nzk0QkMwRTFDREU5QjgyMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6a1cnc7r10HDdTCJlIGZeIDxi bcR1VJFKLHqPjU2DizZfqbE3zuqEn3zdJa3NZdm619uN9AC6cMLY/qSY4uvMxzMI DGKrp1bOZhNWBTOGEo9oxNBf+7/MqTvxQ1wHXVo6CyUzw0a61LfBtXL9zBrdrgQM QqPeLLZg8tRbsPbZuZivYscz/1dql8YgUdUYMvkiq3YiwipLHIjpHtkWd0EZfwF9 YkpRyUH1b8e8eo3/REjBBYJHKdaalWB5WIeelckH0vTI1nHtp04SytQpc+idmfe7 +aPP16xJ1FCL0vU0eEXjYOHN1gMfQL3bjkspMd9R6XzUKReGThSdiRGz3VhLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUkzX2rTn3gUKPs61XlLwOHN6bggIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwV0wDQYJKoZIhvcNAQELBQADggEBALYg NPL2Z4rUse5Za4frSI8sYZgMRyMbvXJ0pe1S50T/0KN9b635Ml3F+vD3b5bMR95M 0LKjh8SG761Cbr8PY/5ekv2Q7WrWes6Q7EtJHsR2lIw+jcTuSJ7XsTei0t69NFQh w49MMlVYLPu3sh5bQpwv4w98NsEs/EMuad2r4V5IBFB5arriZjmQ2suydn0/lV5C 9Dt17gaXs1b3iux4/DwHc+4hQ4SXtqRXXNTHv7+7PPdhPZ2oIkfXqRjkun69McAM ifFsaYiYZn6gq6XheYgMpkG8yzZlRy/yi7MAbPwJk5eJtHSoG2/Z5lfKlPI4nC2x fipKb+DHlwC+NqPPPDw= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org