$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198057.roa File: AS198057.roa (raw, json) Hash identifier: CkTfhlNqOXcCFL74USXDDbtpk5At4ARCogZwd1m3Mo0= Subject key identifier: 09:EF:9E:6E:A9:CF:D0:A4:EF:DA:FB:24:C7:1A:08:AD:F2:A8:43:DF Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3B007BE54BE050F262908299357B314CDCD31837 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198057.roa Signing time: Mon 24 Jul 2023 22:59:18 +0000 ROA not before: Mon 24 Jul 2023 22:54:18 +0000 ROA not after: Mon 22 Jul 2024 22:59:18 +0000 asID: 198057 IP address blocks: 2a05:dfc1:7800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:00:7b:e5:4b:e0:50:f2:62:90:82:99:35:7b:31:4c:dc:d3:18:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jul 24 22:54:18 2023 GMT Not After : Jul 22 22:59:18 2024 GMT Subject: CN=09EF9E6EA9CFD0A4EFDAFB24C71A08ADF2A843DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2f:fa:0c:50:67:aa:eb:a4:37:c0:b2:d1:23: 26:b7:18:bd:82:43:d5:0a:ee:9f:18:6e:ef:c5:c8: f5:df:18:b5:f2:0f:b3:31:9d:2d:fd:b2:2d:e9:92: 5a:21:d4:b0:ab:6b:43:33:ad:91:80:94:62:3f:c8: e6:ab:6d:83:db:3f:7c:17:8b:f2:9b:3a:12:d8:0f: f1:a8:c5:38:15:1a:70:ef:22:00:b4:ee:07:79:6d: 12:1a:7e:99:8b:16:b9:b1:69:1a:2e:2c:94:74:19: 1f:73:ae:4e:c0:21:4c:6b:4f:4f:f6:ea:7e:78:ba: a6:54:e2:f0:c1:fa:01:a6:90:5d:d7:4d:bc:62:ea: 89:c5:5d:ff:64:a4:c4:44:ab:b3:da:d0:76:e4:b0: 5a:15:01:09:3e:98:3c:c3:59:37:1f:12:7d:14:f0: fd:93:b5:e5:ed:55:db:c4:61:5f:e0:78:51:fd:76: bd:58:e9:06:26:20:0b:0d:ac:f5:49:1e:6e:45:38: c5:5b:27:13:a3:98:57:9e:8a:a0:41:96:33:df:a0: d5:72:25:c7:cb:89:4f:98:2d:dc:97:03:d3:a9:be: 1e:ba:6b:96:66:c8:58:22:67:1e:9c:b6:6d:63:69: ab:d5:02:31:7e:00:77:5e:ca:76:d8:b5:9a:91:db: 51:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:EF:9E:6E:A9:CF:D0:A4:EF:DA:FB:24:C7:1A:08:AD:F2:A8:43:DF X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7800::/40 Signature Algorithm: sha256WithRSAEncryption 97:ca:25:17:62:70:fe:3e:75:c2:85:9a:60:44:53:e5:e6:dc: 32:39:52:a0:91:4f:b6:0d:75:af:e5:69:75:2e:0c:aa:f4:b7: 61:d1:a1:53:e0:04:8e:62:26:da:40:4e:9c:23:12:6b:da:b3: 80:af:dc:3d:d3:98:a2:bc:2b:ca:ec:20:f8:24:5b:8d:0e:86: 65:ae:9f:d4:6c:90:ca:aa:f6:0e:39:75:9c:c4:25:79:73:06: 94:47:1f:62:78:3c:1d:0d:56:94:99:9c:c6:71:4f:94:8e:82: 91:4a:68:77:09:74:c6:11:49:1d:de:8a:95:1c:66:db:c2:30: 16:8a:4f:7e:4d:44:80:02:a2:29:19:43:3b:2e:55:b1:54:b6: f5:a9:13:f6:a5:0e:d9:fe:6d:b9:14:94:f1:ab:34:aa:e6:1f: 92:38:06:68:b1:cd:4c:51:8e:e5:d4:fa:98:30:81:22:5a:25: 22:11:d9:8f:30:9b:45:8d:5d:1f:48:d0:7a:83:df:fe:f2:40: ef:62:cc:c8:b2:aa:03:17:6f:83:be:bf:0f:66:fb:ec:fb:24: b4:36:d9:ce:cb:81:50:8b:2a:c4:58:d7:2d:24:5e:51:47:71: 2f:86:bd:69:53:aa:60:56:f3:9a:0c:ed:bf:5d:26:2e:7b:0f: 2a:67:72:20 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOwB75UvgUPJikIKZNXsxTNzTGDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA3MjQyMjU0MThaFw0yNDA3MjIyMjU5MThaMDMxMTAvBgNV BAMTKDA5RUY5RTZFQTlDRkQwQTRFRkRBRkIyNEM3MUEwOEFERjJBODQzREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIL/oMUGeq66Q3wLLRIya3GL2C Q9UK7p8Ybu/FyPXfGLXyD7MxnS39si3pkloh1LCra0MzrZGAlGI/yOarbYPbP3wX i/KbOhLYD/GoxTgVGnDvIgC07gd5bRIafpmLFrmxaRouLJR0GR9zrk7AIUxrT0/2 6n54uqZU4vDB+gGmkF3XTbxi6onFXf9kpMREq7Pa0HbksFoVAQk+mDzDWTcfEn0U 8P2TteXtVdvEYV/geFH9dr1Y6QYmIAsNrPVJHm5FOMVbJxOjmFeeiqBBljPfoNVy JcfLiU+YLdyXA9Opvh66a5ZmyFgiZx6ctm1jaavVAjF+AHdeynbYtZqR21FdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCe+ebqnP0KTv2vskxxoIrfKoQ98wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MDU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXgwDQYJKoZIhvcNAQELBQADggEBAJfK JRdicP4+dcKFmmBEU+Xm3DI5UqCRT7YNda/laXUuDKr0t2HRoVPgBI5iJtpATpwj Emvas4Cv3D3TmKK8K8rsIPgkW40OhmWun9RskMqq9g45dZzEJXlzBpRHH2J4PB0N VpSZnMZxT5SOgpFKaHcJdMYRSR3eipUcZtvCMBaKT35NRIACoikZQzsuVbFUtvWp E/alDtn+bbkUlPGrNKrmH5I4BmixzUxRjuXU+pgwgSJaJSIR2Y8wm0WNXR9I0HqD 3/7yQO9izMiyqgMXb4O+vw9m++z7JLQ22c7LgVCLKsRY1y0kXlFHcS+GvWlTqmBW 85oM7b9dJi57DypnciA= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org