$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197919.roa File: AS197919.roa (raw, json) Hash identifier: RtVibJ21RGDEe0z5jfcLnLyzVaLnnT54CielxdJZQxI= Subject key identifier: CF:A6:7C:14:AE:BC:75:C1:3A:5F:A1:80:C8:EA:5B:F5:70:1F:DF:9F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1E8A7EE4B44089EEA07BEAE1359554F3FC653F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197919.roa Signing time: Sat 27 Jul 2024 21:52:41 +0000 ROA not before: Sat 27 Jul 2024 21:47:41 +0000 ROA not after: Sat 26 Jul 2025 21:52:41 +0000 asID: 197919 IP address blocks: 2a05:dfc1:6200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:8a:7e:e4:b4:40:89:ee:a0:7b:ea:e1:35:95:54:f3:fc:65:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 27 21:47:41 2024 GMT Not After : Jul 26 21:52:41 2025 GMT Subject: CN=CFA67C14AEBC75C13A5FA180C8EA5BF5701FDF9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:67:3c:98:06:ee:d3:cb:dd:eb:29:a2:53:ca: 0f:d1:61:4d:2f:f5:68:1a:e5:4e:16:9f:10:92:c8: 5c:0e:25:07:24:3e:28:1b:cb:c0:a2:c4:22:82:35: 3c:53:d3:4a:cb:be:85:90:22:80:43:d6:76:7c:d3: ea:5e:97:fd:00:76:d5:a3:d9:37:c0:ea:f0:f2:bd: 5f:84:66:e0:0e:3e:3c:91:10:5f:68:72:bf:f8:18: 71:7a:dc:69:10:76:e8:cb:ed:79:17:33:fc:24:fb: cc:3f:5d:fe:3f:21:57:95:d2:86:5c:11:8d:c3:3c: 3a:d3:f7:0a:9a:8b:76:f5:4e:40:bc:c0:fa:90:e8: 3e:a5:54:5b:60:d1:f9:bd:32:0e:2f:88:23:26:ae: 92:e4:72:8b:17:ea:47:85:e7:99:fd:dd:3d:ff:64: 5f:74:12:c6:25:01:f7:a5:6e:29:fb:82:c1:9c:09: 03:22:5b:35:ee:e8:df:64:23:d4:3f:c5:ac:34:30: 9c:c2:fa:47:f7:26:45:4f:8e:fc:68:77:f1:18:a5: fc:bc:0a:f8:72:2d:c4:97:e3:63:17:53:f3:80:dc: 5c:93:82:ce:29:de:74:85:b3:8b:cd:73:bb:c5:7d: a3:20:cf:7e:65:4c:22:9b:12:06:25:cc:14:d2:59: 8c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:A6:7C:14:AE:BC:75:C1:3A:5F:A1:80:C8:EA:5B:F5:70:1F:DF:9F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197919.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6200::/40 Signature Algorithm: sha256WithRSAEncryption 2f:68:ef:c2:0a:f6:54:c6:92:78:f8:f8:6d:b2:04:fd:e9:67: 64:56:bd:83:cc:d7:c1:4b:5f:4d:f5:96:86:56:ef:65:65:45: 81:76:8b:00:67:25:2b:6f:00:06:50:01:fa:af:46:43:5b:43: bd:5e:04:4b:b8:21:b7:f4:6e:d8:b5:17:47:62:41:83:1e:d1: c9:41:75:b4:91:9d:c1:37:df:e7:c9:13:c5:ac:b8:1d:f2:3b: f7:13:9b:52:99:61:48:09:2d:1a:73:29:69:ed:fb:c9:19:9a: 53:f4:25:4e:84:9f:ca:ce:6d:c5:f5:fa:28:80:d8:9b:ba:1c: b9:c1:83:ac:d1:5a:26:54:73:f7:7e:75:15:50:3a:99:37:cf: a4:47:b3:b7:38:4e:b0:6b:65:9f:3a:c0:e0:dc:14:98:d1:e4: 82:67:4c:91:19:3e:cf:1b:7a:9f:3f:27:46:ad:65:68:43:84: f2:2b:06:26:25:8b:40:ba:7d:eb:86:9e:fc:48:b6:a1:bb:bd: af:77:98:3f:39:63:88:6a:39:59:df:10:38:f4:0d:00:cc:cc: 5f:72:ca:02:e5:4f:95:4c:01:f9:06:dc:a4:46:d8:97:92:05: 5d:13:e5:c0:b1:41:62:03:cb:a8:24:3e:41:5d:d4:9a:56:6c: 00:b3:ac:71 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgITHop+5LRAie6ge+rhNZVU8/xlPzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygwRTM1N0REQTA0QjgxMDc2MjYxMjRGNTJDRkMyNDM5Qjc2 RDg1QUY5MB4XDTI0MDcyNzIxNDc0MVoXDTI1MDcyNjIxNTI0MVowMzExMC8GA1UE AxMoQ0ZBNjdDMTRBRUJDNzVDMTNBNUZBMTgwQzhFQTVCRjU3MDFGREY5RjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMdnPJgG7tPL3espolPKD9FhTS/1 aBrlThafEJLIXA4lByQ+KBvLwKLEIoI1PFPTSsu+hZAigEPWdnzT6l6X/QB21aPZ N8Dq8PK9X4Rm4A4+PJEQX2hyv/gYcXrcaRB26MvteRcz/CT7zD9d/j8hV5XShlwR jcM8OtP3CpqLdvVOQLzA+pDoPqVUW2DR+b0yDi+IIyaukuRyixfqR4Xnmf3dPf9k X3QSxiUB96VuKfuCwZwJAyJbNe7o32Qj1D/FrDQwnML6R/cmRU+O/Gh38Ril/LwK +HItxJfjYxdT84DcXJOCzinedIWzi81zu8V9oyDPfmVMIpsSBiXMFNJZjPECAwEA AaOCAfQwggHwMB0GA1UdDgQWBBTPpnwUrrx1wTpfoYDI6lv1cB/fnzAfBgNVHSME GDAWgBQONX3aBLgQdiYST1LPwkObdtha+TAOBgNVHQ8BAf8EBAMCB4AwbwYDVR0f BGgwZjBkoGKgYIZecnN5bmM6Ly9jbG91ZGllLXJlcG8ucnBraS5hcHAvcmVwby9D TE9VRElFLVJQS0kvMC8wRTM1N0REQTA0QjgxMDc2MjYxMjRGNTJDRkMyNDM5Qjc2 RDg1QUY5LmNybDCBkwYIKwYBBQUHAQEEgYYwgYMwgYAGCCsGAQUFBzAChnRyc3lu YzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYz ZTAxODU3NTVjOTFiZTNmOWQvMi8wRTM1N0REQTA0QjgxMDc2MjYxMjRGNTJDRkMy NDM5Qjc2RDg1QUY5LmNlcjBaBggrBgEFBQcBCwROMEwwSgYIKwYBBQUHMAuGPnJz eW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8vQ0xPVURJRS1SUEtJLzAv QVMxOTc5MTkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BYjANBgkqhkiG9w0BAQsFAAOCAQEAL2jv wgr2VMaSePj4bbIE/elnZFa9g8zXwUtfTfWWhlbvZWVFgXaLAGclK28ABlAB+q9G Q1tDvV4ES7ght/Ru2LUXR2JBgx7RyUF1tJGdwTff58kTxay4HfI79xObUplhSAkt GnMpae37yRmaU/QlToSfys5txfX6KIDYm7ocucGDrNFaJlRz9351FVA6mTfPpEez tzhOsGtlnzrA4NwUmNHkgmdMkRk+zxt6nz8nRq1laEOE8isGJiWLQLp964ae/Ei2 obu9r3eYPzljiGo5Wd8QOPQNAMzMX3LKAuVPlUwB+QbcpEbYl5IFXRPlwLFBYgPL qCQ+QV3UmlZsALOscQ== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org