$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198308.roa File: AS198308.roa (raw, json) Hash identifier: 7TImXP9Z3GoTC6beMSEMZbf3Bo9S7zPxAFWrP+yl+iU= Subject key identifier: 4A:63:15:A2:5C:2E:C0:E9:A0:BD:A2:64:7B:52:5D:EF:8F:95:61:E7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3DAEC281FCCF31207C6A9698DB0C9A23C89F437C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198308.roa Signing time: Thu 03 Apr 2025 23:45:58 +0000 ROA not before: Thu 03 Apr 2025 23:40:58 +0000 ROA not after: Thu 02 Apr 2026 23:45:58 +0000 asID: 198308 IP address blocks: 2a05:dfc1:4d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ae:c2:81:fc:cf:31:20:7c:6a:96:98:db:0c:9a:23:c8:9f:43:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 3 23:40:58 2025 GMT Not After : Apr 2 23:45:58 2026 GMT Subject: CN=4A6315A25C2EC0E9A0BDA2647B525DEF8F9561E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:76:f4:38:55:f3:92:94:78:c4:37:6d:c1:e8: 41:06:6c:b3:53:65:1b:8b:62:6f:7c:61:ca:e8:1b: 92:c6:40:85:ef:0c:70:1f:09:be:36:0a:2c:f3:f7: ab:53:4c:58:ba:dc:6e:d2:6f:f6:b9:15:64:06:9b: 60:e5:fd:96:91:de:5d:b2:3d:62:48:57:c4:a0:b6: 22:ef:a2:58:2c:b5:1b:d5:1a:db:ee:c6:49:f3:28: 99:88:b7:f7:50:1e:fd:42:35:e3:3e:8d:2b:c3:d9: 0e:9f:c3:df:c3:59:fc:7f:38:fb:79:5d:db:ab:83: e4:18:1b:ce:06:b5:f1:b5:bd:75:ee:42:3d:f6:11: 54:e0:e3:3b:06:15:a7:31:09:c5:7c:49:be:12:0e: fb:36:17:ac:9b:b4:14:86:80:b4:4d:b1:f7:c6:71: 77:14:61:49:d4:14:1c:eb:d8:6b:32:ba:37:09:2d: ae:bd:a0:b5:95:8a:7c:45:ce:46:f1:1b:b2:97:dc: 52:14:86:12:1f:8c:fd:7c:d1:eb:86:8d:1d:7b:2c: 6d:2e:c4:c1:f2:ad:0e:6a:4c:23:b6:d8:9f:ee:86: d2:9f:bd:c8:b8:d9:78:f2:6a:e2:b8:97:19:ea:44: 8b:53:f8:c0:7d:60:24:ff:cd:30:f0:37:bc:e6:89: 36:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:63:15:A2:5C:2E:C0:E9:A0:BD:A2:64:7B:52:5D:EF:8F:95:61:E7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198308.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4d00::/40 Signature Algorithm: sha256WithRSAEncryption 22:00:28:5d:5b:3a:20:45:54:9e:e7:03:6e:ff:5c:23:dd:bf: d0:8e:6f:13:c8:08:29:13:2d:5f:4e:d2:34:38:fc:89:32:6d: 54:35:25:e1:18:d9:2b:c8:be:61:95:6b:4a:91:cc:9e:35:4a: f7:1c:b0:67:b7:b7:9b:4a:10:57:7b:fa:8e:4f:1a:76:06:2d: 3e:aa:1a:3a:43:04:33:11:da:d5:f1:30:c8:5c:1d:6f:5f:40: 65:c1:a1:69:d1:ab:d4:87:c4:c0:3b:e7:a1:58:c1:66:b5:8a: df:16:eb:4d:5f:14:4b:ba:97:11:d9:32:5a:88:cf:43:5c:f9: 2b:f3:0d:a4:57:1e:cb:3c:22:b6:c0:2f:02:a8:a7:d7:ed:99: 1c:42:ff:32:db:7f:61:cf:f4:eb:a9:b5:1c:95:c9:f0:db:01: ea:30:f7:1c:30:60:02:ac:9f:42:0f:b5:c3:b7:94:da:10:44: 95:2d:04:a1:91:39:1e:6c:56:73:10:a2:0a:e7:44:bc:60:2f: 4f:74:f5:53:68:83:3d:47:af:ae:ef:0f:b4:17:41:79:2c:aa: 55:57:17:88:2c:d5:56:ed:d5:6e:5d:f6:96:23:3c:25:af:88: 9b:c0:79:d0:4d:2b:be:24:23:ca:da:14:0f:94:98:40:58:d1: 5e:05:f4:5a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPa7CgfzPMSB8apaY2wyaI8ifQ3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA0MDMyMzQwNThaFw0yNjA0MDIyMzQ1NThaMDMxMTAvBgNV BAMTKDRBNjMxNUEyNUMyRUMwRTlBMEJEQTI2NDdCNTI1REVGOEY5NTYxRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtdvQ4VfOSlHjEN23B6EEGbLNT ZRuLYm98YcroG5LGQIXvDHAfCb42Cizz96tTTFi63G7Sb/a5FWQGm2Dl/ZaR3l2y PWJIV8SgtiLvolgstRvVGtvuxknzKJmIt/dQHv1CNeM+jSvD2Q6fw9/DWfx/OPt5 Xdurg+QYG84GtfG1vXXuQj32EVTg4zsGFacxCcV8Sb4SDvs2F6ybtBSGgLRNsffG cXcUYUnUFBzr2GsyujcJLa69oLWVinxFzkbxG7KX3FIUhhIfjP180euGjR17LG0u xMHyrQ5qTCO22J/uhtKfvci42XjyauK4lxnqRItT+MB9YCT/zTDwN7zmiTaZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUSmMVolwuwOmgvaJke1Jd74+VYecwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MzA4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwU0wDQYJKoZIhvcNAQELBQADggEBACIA KF1bOiBFVJ7nA27/XCPdv9CObxPICCkTLV9O0jQ4/IkybVQ1JeEY2SvIvmGVa0qR zJ41SvccsGe3t5tKEFd7+o5PGnYGLT6qGjpDBDMR2tXxMMhcHW9fQGXBoWnRq9SH xMA756FYwWa1it8W601fFEu6lxHZMlqIz0Nc+SvzDaRXHss8IrbALwKop9ftmRxC /zLbf2HP9OuptRyVyfDbAeow9xwwYAKsn0IPtcO3lNoQRJUtBKGROR5sVnMQogrn RLxgL0909VNogz1Hr67vD7QXQXksqlVXF4gs1Vbt1W5d9pYjPCWviJvAedBNK74k I8raFA+UmEBY0V4F9Fo= -----END CERTIFICATE-----Generated at Fri Apr 4 17:03:26 2025 by rpki-client