$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197867.roa File: AS197867.roa (raw, json) Hash identifier: TcUdnxJNF4qjk/urO93ZbYwl6b8WA5xWCJIOtC+k+cI= Subject key identifier: C9:C1:43:E0:6B:2D:F6:AF:AD:30:DB:DD:BE:93:5B:4B:7A:FF:03:0E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0D9AD2F0F826D893A3405BD86E4B09237F1C82C5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197867.roa Signing time: Fri 07 Jul 2023 09:17:41 +0000 ROA not before: Fri 07 Jul 2023 09:12:41 +0000 ROA not after: Fri 05 Jul 2024 09:17:41 +0000 asID: 197867 IP address blocks: 2a05:dfc1:5d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:9a:d2:f0:f8:26:d8:93:a3:40:5b:d8:6e:4b:09:23:7f:1c:82:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 7 09:12:41 2023 GMT Not After : Jul 5 09:17:41 2024 GMT Subject: CN=C9C143E06B2DF6AFAD30DBDDBE935B4B7AFF030E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:89:3a:14:22:e9:a3:40:20:fe:6c:c8:a7:8b: 89:ed:6a:c5:b1:db:f2:dd:6c:ee:0c:2a:c6:f5:2f: 8b:26:7e:96:9a:7b:1b:64:89:07:ce:68:b6:0f:64: fc:d5:06:be:99:e7:26:dd:06:61:ba:e6:b3:44:84: 6a:17:97:d5:f2:9c:44:cd:08:1d:6e:31:99:48:d9: ad:60:ee:1c:33:35:1a:91:28:d5:d4:19:b3:12:35: 81:41:8f:5e:9e:66:15:b0:75:96:6a:40:d0:f9:41: eb:4b:25:a3:ba:5e:3e:83:bd:ed:12:ea:29:52:83: da:f2:0f:51:49:b8:bc:ff:99:b7:f8:e9:86:ea:bf: 6b:d3:f0:2b:09:0a:76:ab:80:7d:48:9d:78:1a:b3: 51:2b:f4:99:7f:be:cc:2e:74:e8:af:88:0d:3a:8e: f2:10:c5:b7:0a:b8:03:69:e2:a0:92:f8:2c:e1:c6: 47:ea:55:02:43:8a:9a:18:54:6b:0b:67:63:46:ac: 09:fe:ea:14:41:36:0d:45:89:e4:1d:8e:f0:c1:e2: 07:c2:e4:b2:7f:28:76:66:97:3e:8b:c7:6f:e3:5c: 10:03:71:82:0a:37:9b:56:12:a1:75:03:59:e7:60: d3:81:26:ff:f5:e4:b5:f6:eb:f6:4e:05:ff:ab:3e: f6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C1:43:E0:6B:2D:F6:AF:AD:30:DB:DD:BE:93:5B:4B:7A:FF:03:0E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197867.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5d00::/40 Signature Algorithm: sha256WithRSAEncryption 17:e7:30:db:fc:80:d9:ca:fa:be:5c:c6:90:7f:dd:64:ba:20: 0f:62:31:ec:24:23:cf:23:f4:0f:d4:c0:63:c3:f9:8a:3a:ee: d0:18:40:9f:87:1a:e0:27:95:a2:cd:02:47:83:54:61:fa:1f: d0:f4:2a:c0:c8:cd:49:f2:a1:60:c2:62:87:72:d7:f9:9d:57: 94:f3:27:ce:20:52:48:3d:d5:e1:ee:cc:39:c8:35:5a:0c:cd: 05:76:bf:f5:1d:d4:b3:ff:19:ff:8f:c0:df:19:28:4c:ae:14: bc:d4:6f:56:16:05:ce:0e:a2:0e:b9:41:d9:a8:a2:19:55:4c: 2e:b3:c6:d2:ef:17:9d:e5:0a:a0:e2:05:bf:d2:b2:3b:5c:05: dd:28:83:d6:b9:26:eb:18:8a:c7:0d:01:42:80:29:be:84:c2: de:de:71:2d:e4:04:93:92:bd:b8:c5:16:29:10:ec:d6:37:00: ae:91:d6:db:ff:60:dc:19:2d:e6:7f:c8:a9:c0:0f:22:4c:5e: eb:d6:7d:bf:0f:e2:14:85:e1:a1:c5:4a:85:eb:39:e1:45:91: f2:2d:72:8c:b6:19:77:17:0c:ab:cd:40:38:78:3d:d4:35:6f: a7:6f:08:37:39:88:40:7c:fa:f5:9b:96:fd:40:d9:50:46:74: 8e:c8:18:bc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDZrS8Pgm2JOjQFvYbksJI38cgsUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MDcwOTEyNDFaFw0yNDA3MDUwOTE3NDFaMDMxMTAvBgNV BAMTKEM5QzE0M0UwNkIyREY2QUZBRDMwREJEREJFOTM1QjRCN0FGRjAzMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbiToUIumjQCD+bMini4ntasWx 2/LdbO4MKsb1L4smfpaaextkiQfOaLYPZPzVBr6Z5ybdBmG65rNEhGoXl9XynETN CB1uMZlI2a1g7hwzNRqRKNXUGbMSNYFBj16eZhWwdZZqQND5QetLJaO6Xj6Dve0S 6ilSg9ryD1FJuLz/mbf46Ybqv2vT8CsJCnargH1InXgas1Er9Jl/vswudOiviA06 jvIQxbcKuANp4qCS+CzhxkfqVQJDipoYVGsLZ2NGrAn+6hRBNg1FieQdjvDB4gfC 5LJ/KHZmlz6Lx2/jXBADcYIKN5tWEqF1A1nnYNOBJv/15LX26/ZOBf+rPva1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUycFD4Gst9q+tMNvdvpNbS3r/Aw4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwV0wDQYJKoZIhvcNAQELBQADggEBABfn MNv8gNnK+r5cxpB/3WS6IA9iMewkI88j9A/UwGPD+Yo67tAYQJ+HGuAnlaLNAkeD VGH6H9D0KsDIzUnyoWDCYody1/mdV5TzJ84gUkg91eHuzDnINVoMzQV2v/Ud1LP/ Gf+PwN8ZKEyuFLzUb1YWBc4Oog65QdmoohlVTC6zxtLvF53lCqDiBb/SsjtcBd0o g9a5JusYiscNAUKAKb6Ewt7ecS3kBJOSvbjFFikQ7NY3AK6R1tv/YNwZLeZ/yKnA DyJMXuvWfb8P4hSF4aHFSoXrOeFFkfItcoy2GXcXDKvNQDh4PdQ1b6dvCDc5iEB8 +vWblv1A2VBGdI7IGLw= -----END CERTIFICATE-----Generated at Thu May 16 13:03:37 2024 by rpki-client on console-ams.rpki-client.org