$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198057.roa File: AS198057.roa (raw, json) Hash identifier: RcXizYpHwQ4ILuYbZ2DnkiMIJjqkgPZGOZHGnw7iOeg= Subject key identifier: 8F:22:49:AD:A5:E2:AE:A8:FD:50:74:59:AA:3A:65:A0:C2:85:C1:8B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7786A3EE764AAAB4B918B6BD54A33AEA29BFAFFB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198057.roa Signing time: Mon 24 Jun 2024 23:00:23 +0000 ROA not before: Mon 24 Jun 2024 22:55:23 +0000 ROA not after: Mon 23 Jun 2025 23:00:23 +0000 asID: 198057 IP address blocks: 2a05:dfc1:7800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:86:a3:ee:76:4a:aa:b4:b9:18:b6:bd:54:a3:3a:ea:29:bf:af:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 24 22:55:23 2024 GMT Not After : Jun 23 23:00:23 2025 GMT Subject: CN=8F2249ADA5E2AEA8FD507459AA3A65A0C285C18B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:0e:dc:4f:0c:7c:23:8e:5b:8e:e4:17:26:b1: 66:cb:db:18:80:27:9a:ce:3b:05:81:cc:65:20:12: 58:98:0b:a3:02:d3:a2:98:f9:82:b0:ad:32:12:87: 29:de:81:c8:be:39:0a:4a:19:da:9d:26:f7:b9:37: 9d:cd:f9:d9:9c:f9:62:37:10:fc:78:e8:94:62:91: 0d:06:94:1c:68:06:2a:eb:72:72:9d:ed:61:64:4b: 9e:8a:17:e2:90:af:47:97:ad:69:2e:99:7c:6d:48: e0:a1:c0:fe:ce:83:ca:34:69:b7:c9:b8:f9:92:07: 39:fe:8f:62:60:29:10:c1:8c:99:cb:c2:42:dd:aa: 32:78:53:8c:ec:54:af:e5:a8:21:b3:db:b4:79:80: 7a:19:2f:b7:03:9c:3a:30:cc:81:18:f0:66:15:ca: 03:3d:46:19:73:d4:67:b8:3f:23:58:65:99:1a:19: 40:b3:43:89:f5:fc:15:14:f9:a2:f1:89:5a:1d:f9: 31:b3:3f:f7:a5:4d:07:a4:ad:46:3c:97:f3:51:07: 25:37:37:e4:9f:81:06:e4:f4:9d:1f:d5:03:96:a7: a4:52:21:fb:c3:69:9f:98:82:42:80:36:95:65:75: 2b:85:b0:be:e9:31:39:44:8d:4a:46:6d:e9:57:f1: ba:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:22:49:AD:A5:E2:AE:A8:FD:50:74:59:AA:3A:65:A0:C2:85:C1:8B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7800::/40 Signature Algorithm: sha256WithRSAEncryption bc:b4:07:09:97:d8:73:a1:6f:89:cb:93:88:86:70:43:ae:58: b6:e2:b6:ad:16:92:48:e9:67:72:4d:62:e2:db:4a:d1:d8:b5: 4c:1c:07:86:34:a1:b3:72:ac:8c:0c:e3:30:90:9a:82:7e:13: 26:9b:73:b9:ac:d5:cf:26:1b:ee:8f:2f:83:ab:78:07:f9:c6: f6:be:6e:0f:9c:f4:fe:48:95:4e:f7:64:2f:8a:18:8c:dc:f2: 25:1c:6a:fc:ed:fd:d1:a1:1b:ad:46:bb:e2:6d:9b:6a:e5:4b: 8f:1d:d2:b1:2b:c7:b0:78:fa:e9:08:f0:d4:88:49:96:f8:6c: 44:9f:db:94:c8:a6:76:dd:41:1c:cb:e4:dc:7c:04:a1:76:e1: fc:90:14:16:7d:82:ce:02:6b:67:1d:ee:86:65:1d:46:4d:c6: d8:8c:af:59:38:b9:ee:69:6e:3b:e4:02:63:fb:4c:b4:56:f8: 68:25:75:a9:ba:cb:45:72:53:d8:75:ef:07:62:a7:91:44:04: 2e:91:87:62:07:7f:75:da:57:8e:68:ba:35:a3:86:68:48:8f: 1c:45:67:d5:52:3d:ea:c4:5f:dd:9a:c2:1f:c0:de:d5:6a:55: 89:24:fe:b5:ee:1b:bb:db:2e:90:42:55:19:1b:d9:98:38:34: 86:7d:2b:82 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd4aj7nZKqrS5GLa9VKM66im/r/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA2MjQyMjU1MjNaFw0yNTA2MjMyMzAwMjNaMDMxMTAvBgNV BAMTKDhGMjI0OUFEQTVFMkFFQThGRDUwNzQ1OUFBM0E2NUEwQzI4NUMxOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwDtxPDHwjjluO5BcmsWbL2xiA J5rOOwWBzGUgEliYC6MC06KY+YKwrTIShynegci+OQpKGdqdJve5N53N+dmc+WI3 EPx46JRikQ0GlBxoBirrcnKd7WFkS56KF+KQr0eXrWkumXxtSOChwP7Og8o0abfJ uPmSBzn+j2JgKRDBjJnLwkLdqjJ4U4zsVK/lqCGz27R5gHoZL7cDnDowzIEY8GYV ygM9Rhlz1Ge4PyNYZZkaGUCzQ4n1/BUU+aLxiVod+TGzP/elTQekrUY8l/NRByU3 N+SfgQbk9J0f1QOWp6RSIfvDaZ+YgkKANpVldSuFsL7pMTlEjUpGbelX8bqPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUjyJJraXirqj9UHRZqjploMKFwYswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MDU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXgwDQYJKoZIhvcNAQELBQADggEBALy0 BwmX2HOhb4nLk4iGcEOuWLbitq0WkkjpZ3JNYuLbStHYtUwcB4Y0obNyrIwM4zCQ moJ+Eyabc7ms1c8mG+6PL4OreAf5xva+bg+c9P5IlU73ZC+KGIzc8iUcavzt/dGh G61Gu+Jtm2rlS48d0rErx7B4+ukI8NSISZb4bESf25TIpnbdQRzL5Nx8BKF24fyQ FBZ9gs4Ca2cd7oZlHUZNxtiMr1k4ue5pbjvkAmP7TLRW+Ggldam6y0VyU9h17wdi p5FEBC6Rh2IHf3XaV45oujWjhmhIjxxFZ9VSPerEX92awh/A3tVqVYkk/rXuG7vb LpBCVRkb2Zg4NIZ9K4I= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org