$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198308.roa File: AS198308.roa (raw, json) Hash identifier: 6Do7qb/ZwohS/aesS3NY+9ATqEEidFiFm7Qs7YEGCNk= Subject key identifier: 49:A8:97:DF:E3:15:DA:10:31:0A:9C:29:44:60:F9:DA:E5:8B:47:BE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7C467D4F8C49190EAA6BE90BFE03C8531A738077 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198308.roa Signing time: Thu 02 May 2024 22:59:30 +0000 ROA not before: Thu 02 May 2024 22:54:30 +0000 ROA not after: Thu 01 May 2025 22:59:30 +0000 asID: 198308 IP address blocks: 2a05:dfc1:4d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:46:7d:4f:8c:49:19:0e:aa:6b:e9:0b:fe:03:c8:53:1a:73:80:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 2 22:54:30 2024 GMT Not After : May 1 22:59:30 2025 GMT Subject: CN=49A897DFE315DA10310A9C294460F9DAE58B47BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ce:b1:f2:50:f1:d6:ac:68:61:19:e2:9b:44: ec:04:49:1a:02:c7:16:b7:e8:a0:5d:4d:f8:7e:6a: 28:da:8a:94:83:2c:3c:4c:f4:77:60:91:0e:98:4a: bc:fd:e1:ff:f3:0b:03:f4:35:5e:3c:09:11:0b:ee: 6a:64:e7:90:18:de:1a:17:4b:fc:41:47:b3:9a:ea: 55:52:99:61:b8:cc:4d:26:d4:f4:9c:04:28:d8:fc: 95:1b:0c:09:6f:12:4d:4a:c2:67:a3:3e:13:5e:14: aa:c3:9f:27:e8:2f:f7:1b:bc:eb:d4:ae:7e:c8:41: 75:a6:8d:b8:44:ea:43:bf:8e:4f:f9:44:aa:bb:97: 81:86:15:58:44:a5:29:0c:3f:5f:c7:b5:04:c5:07: db:8a:ce:95:8a:ee:e1:1a:ce:7b:6e:43:a2:d7:bf: 44:76:bc:cb:4e:cd:dd:10:cc:69:b8:c5:0a:b5:d7: 66:dc:45:4e:cc:af:79:3f:7a:4f:7f:8d:af:66:f0: 18:e0:88:e3:46:ad:04:4c:d8:f7:e4:f7:2f:92:04: c3:d8:97:63:55:70:13:6b:38:9e:0d:0b:33:a4:8a: 6a:c7:fa:72:76:bd:10:2f:b8:ba:05:9b:2f:43:d5: e9:4e:2b:87:f9:2c:73:1a:90:e8:38:28:12:a4:af: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A8:97:DF:E3:15:DA:10:31:0A:9C:29:44:60:F9:DA:E5:8B:47:BE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198308.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4d00::/40 Signature Algorithm: sha256WithRSAEncryption 05:82:68:65:5d:47:cf:d6:fd:ec:e5:8e:56:d1:72:0a:39:02: 71:18:86:5b:08:a9:a9:fa:2e:f9:51:b4:a7:bf:ed:42:1d:ca: 73:7d:4e:60:4b:60:2f:e2:89:47:90:88:21:fe:44:61:e0:65: 1e:ee:eb:e9:14:fb:30:b8:c3:b5:ac:2e:a8:cc:5d:32:15:e1: 2c:7a:60:b5:cd:56:c1:16:89:53:f2:8c:33:4f:24:c8:a4:8f: a9:00:cf:69:7d:da:d5:4f:20:51:d5:27:d2:bd:6f:f7:b1:76: 6e:94:8f:2c:36:92:9a:3f:c8:c5:ec:a3:e1:30:23:ac:11:18: e1:45:05:ae:57:bf:4e:c6:46:be:ad:e6:4c:ef:bc:25:1e:aa: 77:5d:72:a2:f6:78:c2:d1:5c:57:ba:cb:2f:9f:29:69:f4:b5: 2d:52:db:9d:f9:c6:a8:c9:00:32:f7:7f:35:d4:d3:66:d3:7b: c7:1a:fb:f8:4c:5d:eb:1c:4f:9a:fc:dd:ae:80:14:16:1d:dc: 19:75:f4:bc:2f:be:27:a5:43:4a:77:16:57:72:80:0b:ba:90: 1e:b5:1d:a3:30:7e:5d:d9:42:68:51:65:ed:1d:b9:ba:d5:13: f5:28:07:da:d9:7e:a5:3f:5e:b8:4e:58:0f:3e:6e:60:77:10: 48:d5:6b:d6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUfEZ9T4xJGQ6qa+kL/gPIUxpzgHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MDIyMjU0MzBaFw0yNTA1MDEyMjU5MzBaMDMxMTAvBgNV BAMTKDQ5QTg5N0RGRTMxNURBMTAzMTBBOUMyOTQ0NjBGOURBRTU4QjQ3QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmzrHyUPHWrGhhGeKbROwESRoC xxa36KBdTfh+aijaipSDLDxM9HdgkQ6YSrz94f/zCwP0NV48CREL7mpk55AY3hoX S/xBR7Oa6lVSmWG4zE0m1PScBCjY/JUbDAlvEk1KwmejPhNeFKrDnyfoL/cbvOvU rn7IQXWmjbhE6kO/jk/5RKq7l4GGFVhEpSkMP1/HtQTFB9uKzpWK7uEazntuQ6LX v0R2vMtOzd0QzGm4xQq112bcRU7Mr3k/ek9/ja9m8BjgiONGrQRM2Pfk9y+SBMPY l2NVcBNrOJ4NCzOkimrH+nJ2vRAvuLoFmy9D1elOK4f5LHMakOg4KBKkr7ITAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUSaiX3+MV2hAxCpwpRGD52uWLR74wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MzA4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwU0wDQYJKoZIhvcNAQELBQADggEBAAWC aGVdR8/W/ezljlbRcgo5AnEYhlsIqan6LvlRtKe/7UIdynN9TmBLYC/iiUeQiCH+ RGHgZR7u6+kU+zC4w7WsLqjMXTIV4Sx6YLXNVsEWiVPyjDNPJMikj6kAz2l92tVP IFHVJ9K9b/exdm6Ujyw2kpo/yMXso+EwI6wRGOFFBa5Xv07GRr6t5kzvvCUeqndd cqL2eMLRXFe6yy+fKWn0tS1S2535xqjJADL3fzXU02bTe8ca+/hMXescT5r83a6A FBYd3Bl19LwvvielQ0p3FldygAu6kB61HaMwfl3ZQmhRZe0dubrVE/UoB9rZfqU/ XrhOWA8+bmB3EEjVa9Y= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org