$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198231.roa File: AS198231.roa (raw, json) Hash identifier: rWRylfwZB2+QWgtxFglD0gmoupEF2s6VcreUm7kqhJw= Subject key identifier: 0C:09:1C:97:FD:B4:59:C5:6C:A0:0B:3A:58:C3:FF:CC:D6:05:07:87 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 08B4EA6B395585D8AC03F7E40CA51608DE920A4B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198231.roa Signing time: Thu 01 Aug 2024 11:21:07 +0000 ROA not before: Thu 01 Aug 2024 11:16:07 +0000 ROA not after: Thu 31 Jul 2025 11:21:07 +0000 asID: 198231 IP address blocks: 2a06:9f81:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:b4:ea:6b:39:55:85:d8:ac:03:f7:e4:0c:a5:16:08:de:92:0a:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Aug 1 11:16:07 2024 GMT Not After : Jul 31 11:21:07 2025 GMT Subject: CN=0C091C97FDB459C56CA00B3A58C3FFCCD6050787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e6:af:a8:84:aa:1f:0e:2a:e1:45:44:c8:cb: 08:c7:5b:f3:42:63:e5:3c:0b:f6:e9:d7:b9:eb:d7: 9f:dd:d9:61:cb:c2:61:a9:f1:a3:bf:92:50:c2:5d: d4:88:6d:81:f8:a7:22:7b:7e:53:c2:7c:c7:fa:c2: bd:53:23:95:57:08:15:7b:21:09:2c:dc:ff:27:d1: 5f:ba:db:2a:98:ae:28:56:43:f2:80:cc:0b:c4:08: 5d:76:81:ec:6e:19:db:5b:f5:3f:34:69:8a:02:47: 1c:d5:68:18:3c:a1:6a:51:aa:cb:47:6d:74:d6:32: 90:82:f9:e3:6a:74:81:20:2a:aa:19:e4:fd:64:ae: 19:72:f2:57:8d:95:ba:74:31:23:36:ca:a8:17:0f: 69:86:37:c6:6d:15:c2:6c:2d:dc:68:52:63:ca:df: f1:99:31:dc:f8:ec:5e:64:79:95:aa:e3:4a:bb:cf: 55:2e:4d:05:e5:ef:84:52:d9:86:36:d7:f6:ef:c1: 5b:54:28:74:fa:9a:f5:cc:0a:19:0b:da:e9:1a:7a: 6d:b7:6c:d2:8e:0a:af:99:66:69:f4:66:56:1b:6c: 47:9c:a7:c0:b2:48:af:20:74:a6:a1:c6:a6:6d:c9: c5:3b:f8:0e:63:01:9c:68:00:b1:98:d6:96:0d:6a: 73:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:09:1C:97:FD:B4:59:C5:6C:A0:0B:3A:58:C3:FF:CC:D6:05:07:87 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1100::/40 Signature Algorithm: sha256WithRSAEncryption 22:7c:5f:51:6a:95:e0:60:bd:69:80:90:e8:a5:ac:93:a0:e9: 36:8e:ad:7e:6c:09:06:cc:ec:3e:1b:67:15:7b:5c:3d:84:44: 00:9c:2b:4b:5a:62:64:72:6b:be:0c:8d:75:39:99:85:3f:96: bc:d4:5d:31:e5:82:c2:d5:2a:1f:d0:8e:5f:a5:f5:c7:d0:a1: b0:70:78:6f:77:a2:cf:ac:1b:e4:d0:d0:31:96:f6:7f:3f:65: af:1a:11:0a:05:48:58:79:ea:cb:cb:5c:b9:f2:06:bd:b0:8e: e4:58:c5:c2:b5:c5:f4:06:8b:c6:9b:46:1d:d9:f5:cf:66:1f: 00:bd:2e:e0:7d:b9:02:79:b4:a3:77:50:ac:ae:e7:8f:46:7a: 6b:95:74:e1:9c:0d:f5:01:ac:6b:14:eb:9b:d0:6a:2b:db:d6: 7c:a7:d6:33:ca:1b:f5:de:94:a5:4e:b4:23:20:fa:03:69:6d: 99:69:0c:da:49:6c:d5:5a:24:4f:bc:12:f4:87:fe:8a:75:a0: d7:0f:bb:4c:47:78:4d:6a:33:35:c0:b5:9e:c0:80:13:58:71: c0:18:c6:e8:05:54:76:d8:6d:53:da:6b:b9:da:20:6e:fe:10: 4d:e0:66:f0:1e:a3:fd:a5:46:86:a9:d9:eb:e3:70:cc:00:91: f6:2a:60:cc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCLTqazlVhdisA/fkDKUWCN6SCkswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA4MDExMTE2MDdaFw0yNTA3MzExMTIxMDdaMDMxMTAvBgNV BAMTKDBDMDkxQzk3RkRCNDU5QzU2Q0EwMEIzQTU4QzNGRkNDRDYwNTA3ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC05q+ohKofDirhRUTIywjHW/NC Y+U8C/bp17nr15/d2WHLwmGp8aO/klDCXdSIbYH4pyJ7flPCfMf6wr1TI5VXCBV7 IQks3P8n0V+62yqYrihWQ/KAzAvECF12gexuGdtb9T80aYoCRxzVaBg8oWpRqstH bXTWMpCC+eNqdIEgKqoZ5P1krhly8leNlbp0MSM2yqgXD2mGN8ZtFcJsLdxoUmPK 3/GZMdz47F5keZWq40q7z1UuTQXl74RS2YY21/bvwVtUKHT6mvXMChkL2ukaem23 bNKOCq+ZZmn0ZlYbbEecp8CySK8gdKahxqZtycU7+A5jAZxoALGY1pYNanPfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUDAkcl/20WcVsoAs6WMP/zNYFB4cwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgREwDQYJKoZIhvcNAQELBQADggEBACJ8 X1FqleBgvWmAkOilrJOg6TaOrX5sCQbM7D4bZxV7XD2ERACcK0taYmRya74MjXU5 mYU/lrzUXTHlgsLVKh/Qjl+l9cfQobBweG93os+sG+TQ0DGW9n8/Za8aEQoFSFh5 6svLXLnyBr2wjuRYxcK1xfQGi8abRh3Z9c9mHwC9LuB9uQJ5tKN3UKyu549GemuV dOGcDfUBrGsU65vQaivb1nyn1jPKG/XelKVOtCMg+gNpbZlpDNpJbNVaJE+8EvSH /op1oNcPu0xHeE1qMzXAtZ7AgBNYccAYxugFVHbYbVPaa7naIG7+EE3gZvAeo/2l Roap2evjcMwAkfYqYMw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org