$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198209.roa File: AS198209.roa (raw, json) Hash identifier: lS+IUiTq+P7POPevdtf4nlfKQuze9urqQKs9VN8Dntg= Subject key identifier: 2F:93:DF:D4:8A:DB:5F:78:37:2C:51:2D:4F:ED:51:0F:45:71:F2:2A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 307A7B822E6925FF304727A87C595B1BA4A3277E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198209.roa Signing time: Fri 10 May 2024 00:59:33 +0000 ROA not before: Fri 10 May 2024 00:54:33 +0000 ROA not after: Fri 09 May 2025 00:59:33 +0000 asID: 198209 IP address blocks: 2a05:dfc1:5600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7a:7b:82:2e:69:25:ff:30:47:27:a8:7c:59:5b:1b:a4:a3:27:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 10 00:54:33 2024 GMT Not After : May 9 00:59:33 2025 GMT Subject: CN=2F93DFD48ADB5F78372C512D4FED510F4571F22A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:89:ea:3a:9f:41:8f:67:ab:23:33:7e:f5:fd: eb:8b:c1:47:c0:4e:21:f2:ed:cb:c7:a7:e9:c4:1d: 40:8c:82:b9:8b:ed:f7:8a:3e:f9:ea:b0:28:8e:35: 75:aa:23:c9:a6:99:49:cd:94:2c:5e:39:f0:7f:a5: 7b:c7:69:7f:83:51:bc:14:5e:a2:d3:ff:18:bc:b1: cf:ba:52:8f:3c:57:d2:68:f8:35:56:6c:bd:0f:c6: 36:1d:a1:02:0a:1f:e4:49:36:7c:51:b9:8d:29:60: be:67:42:c6:9d:4f:01:97:9d:42:25:52:5a:1d:be: 93:90:84:38:8a:3e:ce:b1:ce:8d:85:cf:28:2b:1e: c0:cc:1e:24:66:48:30:83:bc:32:59:e6:bc:bd:06: 66:0f:46:13:4c:24:b1:4e:11:22:4e:9d:5a:03:70: 0d:7e:01:28:7a:c5:09:23:aa:47:cb:00:db:75:92: 9a:01:cd:e9:91:4d:90:c7:70:0a:e2:3f:1d:e1:23: 2d:c8:47:d1:0e:df:5a:a0:69:ab:8a:21:33:17:86: a8:68:d3:17:77:d9:95:4d:c6:76:fd:b3:a3:e1:30: d2:9f:d1:37:8c:53:1f:d2:59:32:97:cf:32:f9:13: a9:90:50:86:15:8e:26:f0:f8:ed:11:08:fa:87:16: b8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:93:DF:D4:8A:DB:5F:78:37:2C:51:2D:4F:ED:51:0F:45:71:F2:2A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198209.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5600::/40 Signature Algorithm: sha256WithRSAEncryption 14:28:6d:ec:ba:52:ac:48:71:21:97:7a:78:ed:1d:64:9e:ed: c1:ef:4c:f2:ab:e9:fe:e9:94:1e:b9:d5:5e:a7:73:41:ea:dd: a6:47:90:ac:a5:fb:29:e5:d5:ab:22:3f:3f:97:9c:30:40:66: 1b:b5:39:c9:aa:05:0b:19:df:07:9e:97:71:68:b4:a8:4c:f1: e8:d0:fb:22:2c:a0:d4:8f:82:de:30:fc:ea:bb:c6:70:0f:3c: 73:d2:2a:f3:78:4f:c2:10:3b:99:95:c1:88:31:87:08:32:51: 20:6b:e5:14:a2:f7:92:ab:ef:18:ca:05:78:a4:88:07:6d:99: 6f:13:0e:4f:03:dd:97:77:6b:09:ba:09:88:c1:aa:fe:9d:67: 11:b6:fd:43:39:2a:e8:6b:19:8d:07:af:d2:0e:9b:7f:16:11: 4f:ac:41:3c:2e:2a:f2:d3:cf:5d:f6:f8:7c:72:92:2e:1f:5f: 0a:46:00:f5:75:95:c5:25:89:e6:09:1a:61:c9:50:f9:33:a8: 28:0a:96:46:39:88:5c:41:4c:41:6a:76:db:6d:26:96:16:3f: b7:f4:f3:d1:e5:f6:a0:1e:77:7a:a9:17:f2:3e:e8:08:59:98: 9b:0d:d5:8f:ea:1b:2b:49:85:38:65:19:04:76:cb:c0:33:cd: bd:b1:ef:39 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMHp7gi5pJf8wRyeofFlbG6SjJ34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MTAwMDU0MzNaFw0yNTA1MDkwMDU5MzNaMDMxMTAvBgNV BAMTKDJGOTNERkQ0OEFEQjVGNzgzNzJDNTEyRDRGRUQ1MTBGNDU3MUYyMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDieo6n0GPZ6sjM371/euLwUfA TiHy7cvHp+nEHUCMgrmL7feKPvnqsCiONXWqI8mmmUnNlCxeOfB/pXvHaX+DUbwU XqLT/xi8sc+6Uo88V9Jo+DVWbL0PxjYdoQIKH+RJNnxRuY0pYL5nQsadTwGXnUIl UlodvpOQhDiKPs6xzo2FzygrHsDMHiRmSDCDvDJZ5ry9BmYPRhNMJLFOESJOnVoD cA1+ASh6xQkjqkfLANt1kpoBzemRTZDHcAriPx3hIy3IR9EO31qgaauKITMXhqho 0xd32ZVNxnb9s6PhMNKf0TeMUx/SWTKXzzL5E6mQUIYVjibw+O0RCPqHFrivAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUL5Pf1IrbX3g3LFEtT+1RD0Vx8iowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MjA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVYwDQYJKoZIhvcNAQELBQADggEBABQo bey6UqxIcSGXenjtHWSe7cHvTPKr6f7plB651V6nc0Hq3aZHkKyl+ynl1asiPz+X nDBAZhu1OcmqBQsZ3weel3FotKhM8ejQ+yIsoNSPgt4w/Oq7xnAPPHPSKvN4T8IQ O5mVwYgxhwgyUSBr5RSi95Kr7xjKBXikiAdtmW8TDk8D3Zd3awm6CYjBqv6dZxG2 /UM5KuhrGY0Hr9IOm38WEU+sQTwuKvLTz132+Hxyki4fXwpGAPV1lcUlieYJGmHJ UPkzqCgKlkY5iFxBTEFqdtttJpYWP7f089Hl9qAed3qpF/I+6AhZmJsN1Y/qGytJ hThlGQR2y8Azzb2x7zk= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org