$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198125.roa File: AS198125.roa (raw, json) Hash identifier: 1DpdExXrOhyCMjNuVRCJu1p33BMZnYSIGP4o7WQ5uaM= Subject key identifier: 81:27:5F:A1:71:62:92:D1:A8:8E:D8:38:1D:4F:14:3A:AB:96:21:60 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5B3C634C3D40882E71789901384D82965D79119C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198125.roa Signing time: Wed 15 May 2024 08:59:36 +0000 ROA not before: Wed 15 May 2024 08:54:36 +0000 ROA not after: Wed 14 May 2025 08:59:36 +0000 asID: 198125 IP address blocks: 2a05:dfc1:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:3c:63:4c:3d:40:88:2e:71:78:99:01:38:4d:82:96:5d:79:11:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 15 08:54:36 2024 GMT Not After : May 14 08:59:36 2025 GMT Subject: CN=81275FA1716292D1A88ED8381D4F143AAB962160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:61:9d:e9:25:bf:27:1b:da:6a:31:f3:01:00: d0:73:3a:61:67:92:46:7f:4a:7b:8e:7e:53:ba:9d: ab:06:87:f1:76:cc:94:65:e3:39:1a:85:6b:1d:4d: 4e:9e:8d:29:20:1e:ec:b8:4d:fc:c2:af:df:46:c2: 56:8b:3d:4d:d9:4a:b3:d1:f4:0e:7e:0f:39:ba:72: cb:94:aa:f7:6b:86:48:d8:4c:b1:1e:4e:56:6d:e6: 1a:72:e6:ea:74:50:50:6f:c4:ca:b3:94:e8:18:44: 94:01:19:c4:74:ce:39:67:e2:6a:45:7e:99:0e:31: 15:15:f2:2d:24:08:77:97:8e:55:9e:70:89:6f:c5: 2e:e3:5c:c6:ff:d5:66:75:c6:d6:a5:13:99:3c:b5: a6:7a:d3:06:27:5e:ef:7d:a5:81:8f:56:db:bc:1e: 6c:d0:35:03:d2:9c:01:50:15:27:a0:aa:32:5a:80: 49:2c:bb:38:14:cb:73:3f:cb:8f:8f:7e:62:2d:6e: 48:21:b4:61:67:eb:4e:dd:8a:77:ac:e4:2c:a8:72: 81:bf:31:a7:f5:11:e6:cb:8e:a4:ab:48:cf:f4:0d: ad:f9:e3:28:5a:f7:39:63:f5:8b:85:ba:87:70:fb: 0c:e1:e9:6e:db:b2:a3:1b:22:16:ec:5b:df:22:53: 46:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:27:5F:A1:71:62:92:D1:A8:8E:D8:38:1D:4F:14:3A:AB:96:21:60 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198125.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5400::/40 Signature Algorithm: sha256WithRSAEncryption 3b:57:da:eb:2c:ff:63:fe:a7:4f:9c:87:be:65:6f:e1:ff:77: 09:03:28:11:7c:c0:6e:b0:ee:2b:fd:93:a4:27:29:8c:fc:27: 43:54:33:58:65:6b:5a:3e:2c:f0:d3:3d:db:bc:d1:80:2c:e3: 71:7c:5b:3e:ae:d1:1d:07:da:90:c5:3e:9d:e1:7d:c3:46:77: d0:11:2b:11:f9:fd:0f:e9:d0:5a:e3:3d:35:b0:d5:ef:47:e8: 48:59:fe:2b:3b:d9:15:57:c6:b1:5d:0b:cb:c9:92:0d:98:a1: 8d:fc:4e:dd:c6:c9:50:fc:67:25:3e:af:b3:ae:fd:1f:10:46: 0d:ee:f4:17:c9:1d:ca:af:0e:4c:4c:12:bc:28:ea:12:02:14: 4a:17:a6:37:a3:8d:b0:1b:93:51:7d:06:c8:e7:be:43:a6:ff: 87:4d:0d:a4:85:26:5b:b4:f0:84:87:a2:10:b7:f5:c2:13:f7: e8:05:4f:4b:ed:95:53:9a:20:98:d2:98:f5:d9:94:40:01:41: 32:9b:fa:75:a7:41:ee:b9:92:74:9a:85:13:24:9d:f6:95:1b: 5f:10:2d:40:f9:3c:26:66:6d:8f:fc:06:92:5c:28:45:cd:96: ff:9e:fc:4d:f8:1d:4e:89:63:14:7f:9a:22:7a:6b:72:cd:91: 2b:a5:be:f5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWzxjTD1AiC5xeJkBOE2Cll15EZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MTUwODU0MzZaFw0yNTA1MTQwODU5MzZaMDMxMTAvBgNV BAMTKDgxMjc1RkExNzE2MjkyRDFBODhFRDgzODFENEYxNDNBQUI5NjIxNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUYZ3pJb8nG9pqMfMBANBzOmFn kkZ/SnuOflO6nasGh/F2zJRl4zkahWsdTU6ejSkgHuy4TfzCr99GwlaLPU3ZSrPR 9A5+Dzm6csuUqvdrhkjYTLEeTlZt5hpy5up0UFBvxMqzlOgYRJQBGcR0zjln4mpF fpkOMRUV8i0kCHeXjlWecIlvxS7jXMb/1WZ1xtalE5k8taZ60wYnXu99pYGPVtu8 HmzQNQPSnAFQFSegqjJagEksuzgUy3M/y4+PfmItbkghtGFn607dines5CyocoG/ Maf1EebLjqSrSM/0Da354yha9zlj9YuFuodw+wzh6W7bsqMbIhbsW98iU0aRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUgSdfoXFiktGojtg4HU8UOquWIWAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MTI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVQwDQYJKoZIhvcNAQELBQADggEBADtX 2uss/2P+p0+ch75lb+H/dwkDKBF8wG6w7iv9k6QnKYz8J0NUM1hla1o+LPDTPdu8 0YAs43F8Wz6u0R0H2pDFPp3hfcNGd9ARKxH5/Q/p0FrjPTWw1e9H6EhZ/is72RVX xrFdC8vJkg2YoY38Tt3GyVD8ZyU+r7Ou/R8QRg3u9BfJHcqvDkxMErwo6hICFEoX pjejjbAbk1F9BsjnvkOm/4dNDaSFJlu08ISHohC39cIT9+gFT0vtlVOaIJjSmPXZ lEABQTKb+nWnQe65knSahRMknfaVG18QLUD5PCZmbY/8BpJcKEXNlv+e/E34HU6J YxR/miJ6a3LNkSulvvU= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org