$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198025.roa File: AS198025.roa (raw, json) Hash identifier: aOct9k2O3wwBtYNHwuzKCVRtmDNEkjfaSQ5FRSX+Z8k= Subject key identifier: 98:00:92:01:B6:06:FB:55:4E:1D:12:50:43:D1:B4:2F:57:58:0E:DB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 47A0DF4FB9D8D07EC0D9FC33CFAFED6B7CFF6583 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198025.roa Signing time: Fri 24 May 2024 08:59:42 +0000 ROA not before: Fri 24 May 2024 08:54:42 +0000 ROA not after: Fri 23 May 2025 08:59:42 +0000 asID: 198025 IP address blocks: 2a05:dfc1:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:a0:df:4f:b9:d8:d0:7e:c0:d9:fc:33:cf:af:ed:6b:7c:ff:65:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 24 08:54:42 2024 GMT Not After : May 23 08:59:42 2025 GMT Subject: CN=98009201B606FB554E1D125043D1B42F57580EDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:33:92:0a:d1:af:d1:25:8b:e5:b8:4d:4e:f0: 9e:9e:fd:d5:95:91:3f:6a:ff:bb:dc:e2:ed:35:ff: 17:13:02:b9:d0:9c:97:77:49:9e:9f:06:83:6e:1a: 9e:76:5f:99:84:99:ca:16:27:ac:87:80:1c:7f:4d: 25:4c:a3:6d:aa:8d:ec:28:7c:a1:06:f7:06:34:13: 40:e8:f7:cc:a3:7c:8a:1b:40:34:f5:ae:fe:a8:c6: f9:3c:a8:e5:c3:c2:08:e7:fe:8f:83:08:c4:23:85: 3c:b0:64:ef:9f:18:69:89:36:a5:4d:d6:51:f8:5b: 53:b5:1e:68:56:ae:c8:00:c1:40:bc:66:3e:ea:87: ca:e5:c8:e6:fe:12:7e:a2:d1:63:7b:53:14:3c:2d: 2b:99:44:f2:28:98:45:3d:db:c2:30:7a:85:5b:21: 84:73:51:4e:cf:08:fb:a0:93:a2:cd:ec:cb:39:cd: 8a:f3:12:56:8e:5a:a7:74:7e:c3:7c:4a:d7:d5:ca: ae:67:29:8d:b3:98:6e:58:48:6e:ca:0c:0e:44:0b: 3f:39:b1:2f:d2:f3:83:99:85:1f:35:29:15:22:be: 7e:fe:da:c3:61:2f:73:4e:75:7e:49:22:06:31:9e: cd:6f:47:69:64:b9:9c:de:39:30:df:f0:04:29:b8: e8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:00:92:01:B6:06:FB:55:4E:1D:12:50:43:D1:B4:2F:57:58:0E:DB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5900::/40 Signature Algorithm: sha256WithRSAEncryption 05:74:7d:a6:8a:fa:1f:95:17:f3:df:3e:40:ab:a4:41:38:99: 35:78:36:3a:32:17:0c:c9:c5:01:79:9c:94:a3:42:bb:f0:b7: 4a:29:0b:97:c9:ab:5a:40:a4:4b:c4:bd:bc:35:c0:24:4f:6d: 2a:71:7d:80:64:2a:50:22:46:50:78:2a:4f:b3:7d:9c:e7:9e: f2:e3:30:25:80:a1:78:2d:4a:d3:96:68:ee:c8:1f:84:a5:8f: cd:1d:04:79:bf:bf:e4:8d:de:cf:7f:82:10:22:86:2c:3e:91: 73:eb:e1:36:44:0f:dd:1d:10:c5:03:ee:b0:c2:93:ff:40:40: 1b:86:e5:c8:01:56:2a:d5:f7:ba:01:2e:4b:98:1a:26:a7:c8: 00:03:dc:1c:e4:b9:f3:7a:11:c9:5f:9b:6f:89:e8:62:e8:46: 15:59:9f:a3:8f:09:0f:8f:e4:df:b6:16:62:39:b8:7f:72:13: 85:5c:04:01:b7:c4:5c:c0:5c:49:42:b0:5b:91:bd:f3:43:ca: d7:92:1c:8b:f1:70:82:83:14:e0:43:be:43:d3:a8:9c:98:10: ea:50:2c:3b:25:0e:8c:79:16:03:f8:2f:82:c1:33:34:7d:20: ef:c7:89:c1:26:05:18:b0:ce:28:8f:06:ff:1b:a2:8b:2e:6b: aa:36:bf:5e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUR6DfT7nY0H7A2fwzz6/ta3z/ZYMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MjQwODU0NDJaFw0yNTA1MjMwODU5NDJaMDMxMTAvBgNV BAMTKDk4MDA5MjAxQjYwNkZCNTU0RTFEMTI1MDQzRDFCNDJGNTc1ODBFREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIM5IK0a/RJYvluE1O8J6e/dWV kT9q/7vc4u01/xcTArnQnJd3SZ6fBoNuGp52X5mEmcoWJ6yHgBx/TSVMo22qjewo fKEG9wY0E0Do98yjfIobQDT1rv6oxvk8qOXDwgjn/o+DCMQjhTywZO+fGGmJNqVN 1lH4W1O1HmhWrsgAwUC8Zj7qh8rlyOb+En6i0WN7UxQ8LSuZRPIomEU928IweoVb IYRzUU7PCPugk6LN7Ms5zYrzElaOWqd0fsN8StfVyq5nKY2zmG5YSG7KDA5ECz85 sS/S84OZhR81KRUivn7+2sNhL3NOdX5JIgYxns1vR2lkuZzeOTDf8AQpuOiDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmACSAbYG+1VOHRJQQ9G0L1dYDtswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MDI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVkwDQYJKoZIhvcNAQELBQADggEBAAV0 faaK+h+VF/PfPkCrpEE4mTV4NjoyFwzJxQF5nJSjQrvwt0opC5fJq1pApEvEvbw1 wCRPbSpxfYBkKlAiRlB4Kk+zfZznnvLjMCWAoXgtStOWaO7IH4Slj80dBHm/v+SN 3s9/ghAihiw+kXPr4TZED90dEMUD7rDCk/9AQBuG5cgBVirV97oBLkuYGianyAAD 3BzkufN6Eclfm2+J6GLoRhVZn6OPCQ+P5N+2FmI5uH9yE4VcBAG3xFzAXElCsFuR vfNDyteSHIvxcIKDFOBDvkPTqJyYEOpQLDslDox5FgP4L4LBMzR9IO/HicEmBRiw ziiPBv8boosua6o2v14= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org