$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198025.roa File: AS198025.roa (raw, json) Hash identifier: 8bmdroPgYxA9xBgM4oBJJnb3hmx9v3/oq1qV6lUVdYM= Subject key identifier: 1F:A2:74:08:40:D1:15:DE:D4:67:E5:2D:44:6B:31:BC:F3:30:0C:F3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 24CE20D123199F2FB39543A427AC95FAAEC0A4F9 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198025.roa Signing time: Fri 23 Jun 2023 08:56:03 +0000 ROA not before: Fri 23 Jun 2023 08:51:03 +0000 ROA not after: Fri 21 Jun 2024 08:56:03 +0000 asID: 198025 IP address blocks: 2a05:dfc1:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:ce:20:d1:23:19:9f:2f:b3:95:43:a4:27:ac:95:fa:ae:c0:a4:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 23 08:51:03 2023 GMT Not After : Jun 21 08:56:03 2024 GMT Subject: CN=1FA2740840D115DED467E52D446B31BCF3300CF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:73:c7:b5:4c:f2:d8:4b:f5:ff:81:99:ee:46: 8f:31:f0:bb:25:cb:6b:0c:14:18:1a:67:df:8e:df: 4d:24:03:74:28:9e:8a:76:ca:f3:d4:b4:50:37:7b: 52:63:e5:fa:1e:ff:25:db:27:06:a7:e8:8b:41:68: 4a:73:fc:05:6c:7e:71:65:fe:69:80:8e:10:29:a9: 96:ff:d2:3f:64:10:a4:19:b5:61:7b:0a:67:3b:d9: 84:fc:71:cc:a6:23:d1:c6:2e:66:db:93:7d:46:81: 25:17:33:7f:39:3b:00:57:77:be:74:4f:ed:b3:8b: 6e:ba:d0:6c:a9:2a:23:11:31:81:f2:1e:9f:8d:72: a1:38:b4:7c:e0:18:45:10:88:75:bc:88:2d:cf:94: 05:ba:da:b5:39:c9:66:da:18:bb:cb:33:ca:71:c8: fc:62:8a:df:e2:80:8c:77:93:4d:bf:93:00:b3:46: 82:62:07:9a:65:5e:6e:7f:b6:62:23:11:b2:e8:58: 55:f8:a2:d5:52:68:de:d6:a9:1d:60:a0:8b:f8:29: 60:a1:7e:27:28:4e:ce:c8:4b:cd:37:9e:49:c2:76: e7:96:96:f0:63:29:7e:8e:c7:29:d5:7a:29:ff:bf: 00:e5:d1:9e:b3:48:4b:3e:c7:6b:a8:79:85:57:e3: 98:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A2:74:08:40:D1:15:DE:D4:67:E5:2D:44:6B:31:BC:F3:30:0C:F3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5900::/40 Signature Algorithm: sha256WithRSAEncryption 25:74:51:a5:e5:b5:15:36:0e:09:73:ca:3a:6e:a4:a6:b5:ae: 8b:6f:41:88:6d:e0:59:ac:f9:ff:62:d0:6a:e7:8f:d6:fa:3f: 5f:7e:fb:3f:c5:09:26:02:af:84:d4:40:69:09:93:44:3c:37: 44:bf:95:49:d1:b6:0d:77:56:9c:37:39:d6:c6:8f:47:e9:9f: b7:49:0d:68:d0:a4:f4:7c:65:de:9f:4b:39:73:18:e4:6c:33: 7b:95:38:2f:0a:2d:f3:26:79:65:22:63:00:72:a9:c4:c2:a9: bd:12:d7:c5:26:64:14:85:21:2e:a4:4e:b3:5c:06:98:14:22: 86:df:2a:26:2a:1d:7b:7c:d1:04:46:ec:e1:d9:a7:06:ef:17: 4b:46:54:2c:30:95:70:b0:6f:ff:89:51:a7:5b:8c:ab:53:26: 49:47:9b:f8:6d:f0:27:aa:17:9a:11:0a:71:c5:48:2b:3c:2a: 3f:75:7d:f7:7d:92:65:c5:6e:7d:7a:4a:59:28:06:5f:ad:06: 69:4b:08:cc:18:77:12:f5:10:3e:77:b4:9a:dd:76:f5:f6:26: 70:8d:7f:41:e5:1a:b9:5f:51:66:9b:d7:f3:a4:7d:e7:b7:7d: 63:c5:7a:9d:49:99:4b:50:72:aa:d3:a5:9f:81:2e:bb:05:31: 86:21:e5:70 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJM4g0SMZny+zlUOkJ6yV+q7ApPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA2MjMwODUxMDNaFw0yNDA2MjEwODU2MDNaMDMxMTAvBgNV BAMTKDFGQTI3NDA4NDBEMTE1REVENDY3RTUyRDQ0NkIzMUJDRjMzMDBDRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzc8e1TPLYS/X/gZnuRo8x8Lsl y2sMFBgaZ9+O300kA3Qonop2yvPUtFA3e1Jj5foe/yXbJwan6ItBaEpz/AVsfnFl /mmAjhApqZb/0j9kEKQZtWF7Cmc72YT8ccymI9HGLmbbk31GgSUXM385OwBXd750 T+2zi2660GypKiMRMYHyHp+NcqE4tHzgGEUQiHW8iC3PlAW62rU5yWbaGLvLM8px yPxiit/igIx3k02/kwCzRoJiB5plXm5/tmIjEbLoWFX4otVSaN7WqR1goIv4KWCh ficoTs7IS803nknCdueWlvBjKX6OxynVein/vwDl0Z6zSEs+x2uoeYVX45hxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUH6J0CEDRFd7UZ+UtRGsxvPMwDPMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MDI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVkwDQYJKoZIhvcNAQELBQADggEBACV0 UaXltRU2DglzyjpupKa1rotvQYht4Fms+f9i0Grnj9b6P19++z/FCSYCr4TUQGkJ k0Q8N0S/lUnRtg13Vpw3OdbGj0fpn7dJDWjQpPR8Zd6fSzlzGORsM3uVOC8KLfMm eWUiYwByqcTCqb0S18UmZBSFIS6kTrNcBpgUIobfKiYqHXt80QRG7OHZpwbvF0tG VCwwlXCwb/+JUadbjKtTJklHm/ht8CeqF5oRCnHFSCs8Kj91ffd9kmXFbn16Slko Bl+tBmlLCMwYdxL1ED53tJrddvX2JnCNf0HlGrlfUWab1/Okfee3fWPFep1JmUtQ cqrTpZ+BLrsFMYYh5XA= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org