$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198376.roa File: AS198376.roa (raw, json) Hash identifier: JGzbbX3/n0mUyV+rgBaYjtbs5MPKGtzD5aRZR5Oko5Y= Subject key identifier: B3:93:61:42:F1:29:37:03:D7:BF:6B:BE:9C:F8:45:92:6F:71:39:2A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3DFE8D699896469DE2718BAF8E6D515763F0DD60 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198376.roa Signing time: Wed 01 May 2024 10:59:28 +0000 ROA not before: Wed 01 May 2024 10:54:28 +0000 ROA not after: Wed 30 Apr 2025 10:59:28 +0000 asID: 198376 IP address blocks: 2a05:dfc1:4a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:fe:8d:69:98:96:46:9d:e2:71:8b:af:8e:6d:51:57:63:f0:dd:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 1 10:54:28 2024 GMT Not After : Apr 30 10:59:28 2025 GMT Subject: CN=B3936142F1293703D7BF6BBE9CF845926F71392A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:49:9b:da:c7:34:88:1e:39:93:e2:e3:a4:82: 9b:fa:c9:2e:a1:21:58:b2:b5:fe:49:14:84:da:e3: fa:0a:55:bc:e9:b6:b1:d5:f9:78:57:cf:7e:e4:b0: 83:87:33:68:bd:f0:83:26:0b:9d:28:7e:38:38:77: 80:74:06:21:88:a9:dd:43:23:89:2d:5a:ad:65:c6: 8a:1b:fb:17:a9:91:2e:72:63:94:08:e9:94:95:e4: 67:6c:43:85:39:69:de:7d:5b:8f:0c:23:d5:cc:ea: a5:7f:b6:c8:1d:1b:2c:c2:8c:45:20:09:49:b1:1e: 0d:6d:77:2b:06:88:98:09:b6:0c:fb:7b:08:a6:47: a3:10:d9:9c:82:d1:2a:98:64:54:3d:52:d2:af:56: d2:11:d7:02:19:0e:8e:cd:0b:63:f6:6f:f1:d7:7c: f9:98:46:d7:30:ca:be:14:3c:50:f3:0c:db:77:76: d8:62:fb:47:a8:ba:f7:44:13:4c:6a:d3:cf:90:4e: f9:77:db:e4:c3:5e:08:e4:3e:d1:65:f1:1a:b0:cf: 34:d6:55:fc:c1:7f:2a:d4:65:c2:52:d0:06:d6:53: fa:04:54:66:22:06:e1:87:a0:70:e4:26:54:36:76: cd:bf:e8:66:cd:18:fe:66:31:a8:5f:e3:7c:82:58: b7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:93:61:42:F1:29:37:03:D7:BF:6B:BE:9C:F8:45:92:6F:71:39:2A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198376.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4a00::/40 Signature Algorithm: sha256WithRSAEncryption 04:3a:87:79:33:69:3a:aa:31:2e:70:0d:f6:bf:7e:92:2d:2c: 4b:11:9c:ee:3a:e9:5c:f6:e7:7c:c5:a5:68:89:c8:76:ec:aa: 65:d7:61:51:5d:34:bd:d4:88:0d:0a:09:43:1a:8a:d4:3e:20: a3:8e:14:f9:f8:02:d7:a5:04:10:1b:4d:3d:c8:62:53:16:59: de:ce:b3:55:23:dd:44:72:3a:26:ca:c6:da:ea:dc:54:e5:05: 1a:3f:33:4a:5f:00:71:b7:24:48:cb:48:64:b8:19:68:06:c7: bc:4b:7c:23:c1:ef:16:fe:95:d6:45:6e:ac:7f:15:e1:3f:e8: 6a:ca:2d:e2:00:ef:4e:85:fb:71:89:1c:4b:02:c6:f4:e6:b1: fc:2a:a2:39:3e:86:8c:3d:50:e2:94:d9:a2:f2:59:4b:cd:4f: 5e:5a:d3:b2:be:24:b0:d4:40:7e:2e:33:77:f4:b3:a1:66:a6: 27:b5:fc:46:10:61:fe:fe:79:82:78:a7:d5:79:bc:ab:f7:cc: 8e:73:89:db:c6:f2:c8:00:fb:63:67:c2:63:05:58:47:4f:27: 50:86:2f:66:36:be:6a:5b:d3:d1:19:2c:9f:70:e5:1d:a6:9c: 45:2e:d8:60:65:cd:05:4e:96:1f:ce:75:16:0d:2a:9b:3b:be: de:e9:b4:6a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPf6NaZiWRp3icYuvjm1RV2Pw3WAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MDExMDU0MjhaFw0yNTA0MzAxMDU5MjhaMDMxMTAvBgNV BAMTKEIzOTM2MTQyRjEyOTM3MDNEN0JGNkJCRTlDRjg0NTkyNkY3MTM5MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgSZvaxzSIHjmT4uOkgpv6yS6h IViytf5JFITa4/oKVbzptrHV+XhXz37ksIOHM2i98IMmC50ofjg4d4B0BiGIqd1D I4ktWq1lxoob+xepkS5yY5QI6ZSV5GdsQ4U5ad59W48MI9XM6qV/tsgdGyzCjEUg CUmxHg1tdysGiJgJtgz7ewimR6MQ2ZyC0SqYZFQ9UtKvVtIR1wIZDo7NC2P2b/HX fPmYRtcwyr4UPFDzDNt3dthi+0eouvdEE0xq08+QTvl32+TDXgjkPtFl8RqwzzTW VfzBfyrUZcJS0AbWU/oEVGYiBuGHoHDkJlQ2ds2/6GbNGP5mMahf43yCWLd1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUs5NhQvEpNwPXv2u+nPhFkm9xOSowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4Mzc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwUowDQYJKoZIhvcNAQELBQADggEBAAQ6 h3kzaTqqMS5wDfa/fpItLEsRnO466Vz253zFpWiJyHbsqmXXYVFdNL3UiA0KCUMa itQ+IKOOFPn4AtelBBAbTT3IYlMWWd7Os1Uj3URyOibKxtrq3FTlBRo/M0pfAHG3 JEjLSGS4GWgGx7xLfCPB7xb+ldZFbqx/FeE/6GrKLeIA706F+3GJHEsCxvTmsfwq ojk+how9UOKU2aLyWUvNT15a07K+JLDUQH4uM3f0s6Fmpie1/EYQYf7+eYJ4p9V5 vKv3zI5zidvG8sgA+2NnwmMFWEdPJ1CGL2Y2vmpb09EZLJ9w5R2mnEUu2GBlzQVO lh/OdRYNKps7vt7ptGo= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org