$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198383.roa File: AS198383.roa (raw, json) Hash identifier: 1569R5/+SXcUohXQnG8iiMLEqcYyF9IkpzyQ2d3klOM= Subject key identifier: B0:49:61:9D:31:A3:57:DB:0C:89:BF:3E:4A:90:D6:57:62:84:6F:7A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6852D0EA7C7BBCEA8658D317ED14060297849CE4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198383.roa Signing time: Tue 30 Apr 2024 22:59:27 +0000 ROA not before: Tue 30 Apr 2024 22:54:27 +0000 ROA not after: Tue 29 Apr 2025 22:59:27 +0000 asID: 198383 IP address blocks: 2a05:dfc1:4b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:52:d0:ea:7c:7b:bc:ea:86:58:d3:17:ed:14:06:02:97:84:9c:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 30 22:54:27 2024 GMT Not After : Apr 29 22:59:27 2025 GMT Subject: CN=B049619D31A357DB0C89BF3E4A90D65762846F7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4e:1e:5d:49:a4:32:71:33:85:7c:30:16:1a: f5:40:d1:5e:b1:98:59:5f:0b:4a:51:c2:f0:72:dc: a6:0d:e7:b8:ea:7d:bf:af:27:c7:6e:22:5a:3b:e8: 7e:30:44:4b:08:ca:00:bf:31:0f:b9:c9:6f:87:4c: 1e:d0:a5:a9:c3:e8:95:5e:69:62:af:99:a2:6f:c4: a2:26:43:3e:cf:98:2b:95:c2:a9:4b:85:16:a7:4b: 0c:18:e8:a1:af:b6:9f:0f:66:b0:b4:58:24:fb:2e: 9f:35:9f:c5:66:73:5c:ed:6f:70:ba:92:8b:81:3d: 13:d4:00:f0:c6:49:d8:4a:2f:81:1e:b8:2f:e3:a0: 91:74:68:d5:cd:46:aa:a0:94:b0:71:ea:19:cd:ed: 7e:4a:1b:ed:57:9c:05:bd:4e:91:ce:ec:5e:5d:d1: 1e:f0:04:4a:b3:15:d1:7e:44:1d:f3:2f:83:fb:25: f5:04:d6:8e:2e:2d:0e:66:08:7f:b3:41:43:16:95: f0:9b:b8:fa:44:b5:a1:58:20:1c:bf:ca:0d:d0:13: dd:04:3c:92:e9:e7:74:64:e4:93:f6:14:67:a1:3b: 01:31:4a:aa:e0:c9:f0:26:eb:29:7c:f6:46:d7:66: 87:75:f2:47:3d:37:f1:7d:e0:4f:80:38:ac:59:4c: 4c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:49:61:9D:31:A3:57:DB:0C:89:BF:3E:4A:90:D6:57:62:84:6F:7A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4b00::/40 Signature Algorithm: sha256WithRSAEncryption c2:53:a6:27:e2:4c:91:30:d9:95:11:f4:c8:98:30:95:7b:b6: 06:d2:27:bb:27:b6:8e:b7:ed:87:da:1b:62:f4:5e:3d:2d:f9: cd:21:fc:85:e6:e0:e9:b9:bc:1e:0e:ab:2d:f2:dd:57:8c:2c: 97:22:f1:1e:09:6f:cd:5c:cb:0b:18:41:ca:9c:47:93:43:62: 00:e1:ef:7a:79:1c:44:79:b7:64:4a:8d:67:f4:6e:0d:c2:d3: 58:57:ce:99:7e:a2:85:86:57:04:b9:24:73:bb:b1:a5:00:76: ac:e6:17:49:6a:40:c3:f5:a6:78:e5:79:42:3e:11:a7:c1:17: f9:14:b6:67:1f:bd:d8:62:ae:b7:fa:6e:0c:e1:25:87:da:0b: 58:2e:57:48:d8:3b:35:23:f2:ea:46:98:65:46:be:3c:98:dc: 47:bd:14:b1:25:87:86:d3:d3:2c:45:c9:2d:95:66:55:b3:9d: e8:9f:3d:cf:92:b4:70:27:c8:ea:fa:6b:a9:4d:91:5b:81:b7: ea:58:f3:be:84:e3:9e:80:ae:c1:be:f2:5d:a6:b4:7d:b0:b5: 4b:97:10:e8:54:5b:04:88:08:4e:3e:84:03:a4:f1:56:2a:f1: 98:09:cc:a7:44:84:63:d7:f6:cf:d6:bb:62:80:4d:a0:d3:ce: 10:df:50:aa -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaFLQ6nx7vOqGWNMX7RQGApeEnOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA0MzAyMjU0MjdaFw0yNTA0MjkyMjU5MjdaMDMxMTAvBgNV BAMTKEIwNDk2MTlEMzFBMzU3REIwQzg5QkYzRTRBOTBENjU3NjI4NDZGN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnTh5dSaQycTOFfDAWGvVA0V6x mFlfC0pRwvBy3KYN57jqfb+vJ8duIlo76H4wREsIygC/MQ+5yW+HTB7QpanD6JVe aWKvmaJvxKImQz7PmCuVwqlLhRanSwwY6KGvtp8PZrC0WCT7Lp81n8Vmc1ztb3C6 kouBPRPUAPDGSdhKL4EeuC/joJF0aNXNRqqglLBx6hnN7X5KG+1XnAW9TpHO7F5d 0R7wBEqzFdF+RB3zL4P7JfUE1o4uLQ5mCH+zQUMWlfCbuPpEtaFYIBy/yg3QE90E PJLp53Rk5JP2FGehOwExSqrgyfAm6yl89kbXZod18kc9N/F94E+AOKxZTExrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUsElhnTGjV9sMib8+SpDWV2KEb3owHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MzgzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwUswDQYJKoZIhvcNAQELBQADggEBAMJT pifiTJEw2ZUR9MiYMJV7tgbSJ7snto637YfaG2L0Xj0t+c0h/IXm4Om5vB4Oqy3y 3VeMLJci8R4Jb81cywsYQcqcR5NDYgDh73p5HER5t2RKjWf0bg3C01hXzpl+ooWG VwS5JHO7saUAdqzmF0lqQMP1pnjleUI+EafBF/kUtmcfvdhirrf6bgzhJYfaC1gu V0jYOzUj8upGmGVGvjyY3Ee9FLElh4bT0yxFyS2VZlWzneifPc+StHAnyOr6a6lN kVuBt+pY876E456ArsG+8l2mtH2wtUuXEOhUWwSICE4+hAOk8VYq8ZgJzKdEhGPX 9s/Wu2KATaDTzhDfUKo= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org