$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198663.roa File: AS198663.roa (raw, json) Hash identifier: kRPTylP4GwtvMX8tt9Bd/Khc0PXlr+EtGF0dqrS7ELA= Subject key identifier: 98:42:BF:E4:A7:56:F9:31:4A:A1:A7:AE:13:A3:C4:F9:59:1E:9D:B1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 752CE772596FD01BF6FAD1B496EB564048422B73 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198663.roa Signing time: Mon 01 Apr 2024 23:58:29 +0000 ROA not before: Mon 01 Apr 2024 23:53:29 +0000 ROA not after: Mon 31 Mar 2025 23:58:29 +0000 asID: 198663 IP address blocks: 2a05:dfc1:2f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:2c:e7:72:59:6f:d0:1b:f6:fa:d1:b4:96:eb:56:40:48:42:2b:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 1 23:53:29 2024 GMT Not After : Mar 31 23:58:29 2025 GMT Subject: CN=9842BFE4A756F9314AA1A7AE13A3C4F9591E9DB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1c:b3:9c:a5:39:5b:5d:7f:00:b3:16:de:9f: 9e:b9:64:2d:6f:92:fd:6d:02:38:84:82:30:ab:8c: 5b:5b:e4:7c:cb:17:e5:28:05:02:8f:9b:e3:45:ba: 2a:59:d8:fc:7c:6f:8e:cf:e7:17:d0:ed:ea:00:87: 2b:66:16:e4:d2:15:4d:21:32:ed:f0:6d:65:5d:b7: 14:02:1d:5d:18:52:9d:28:06:41:23:f1:1f:be:de: bd:51:8f:68:0d:d2:cb:45:10:c8:48:ce:16:a9:94: e0:de:bf:c0:8c:a7:9d:70:24:47:52:71:6c:8c:fe: d6:ab:67:35:9b:35:74:bd:71:45:ae:a5:cf:cd:0b: f0:3b:92:46:97:71:03:22:5c:46:51:c1:f2:48:fc: c0:ec:dc:15:e7:6a:05:cc:f7:20:47:52:9e:91:8f: 9f:8f:48:1a:83:f6:e6:71:e6:41:e5:59:a4:ff:4d: fb:d5:c8:19:87:05:50:0c:4a:4f:95:42:2a:32:82: fc:bf:27:70:52:41:cf:f9:15:78:33:28:5f:3e:66: 3b:00:5a:a8:76:6d:9b:d3:86:4f:a3:c3:ad:e9:5e: 2b:4a:9f:0c:09:7b:8a:fc:02:fd:7f:2d:a9:5c:65: 7d:10:10:49:22:dd:21:43:49:f2:16:a1:af:f1:de: 9c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:42:BF:E4:A7:56:F9:31:4A:A1:A7:AE:13:A3:C4:F9:59:1E:9D:B1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198663.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2f00::/40 Signature Algorithm: sha256WithRSAEncryption 4d:6e:17:a7:ee:85:45:16:0f:11:66:61:eb:01:8f:bf:c8:a3: a1:3e:8f:96:53:b3:5d:f2:60:bc:7b:7b:24:ba:72:64:67:7e: bf:fc:dc:52:44:03:1a:da:97:7f:52:de:cb:25:81:2d:19:38: 50:66:69:0b:d3:ed:4d:01:68:e3:79:72:b2:1a:e8:7c:20:c8: 77:82:20:84:ab:96:f4:12:26:5d:e6:df:fd:47:e8:eb:9e:99: b8:ac:29:5c:aa:a7:ed:fa:e4:71:ca:28:05:35:f8:7c:85:70: 9a:68:53:18:71:40:63:29:98:43:42:5e:06:89:2f:35:68:c8: 9e:f7:74:d4:57:1e:c2:b4:20:03:31:24:23:6b:11:04:d6:70: 39:8d:c9:04:69:cd:3c:cb:aa:d1:86:df:b5:f1:af:7e:a4:04: d8:eb:f9:8d:32:36:a8:f5:f8:28:45:59:66:71:1f:2a:7e:a2: 01:1f:3b:a4:1f:21:aa:72:e7:17:57:c2:34:47:82:c8:af:3f: ce:ab:2c:dc:d3:65:f6:89:59:68:08:97:ce:c9:d2:42:b6:f4: e0:f8:10:b9:4e:f4:5c:3b:1b:9d:13:5b:06:be:d9:69:ac:79: ee:86:00:75:67:ba:3a:81:ae:47:8f:ed:e1:37:06:21:61:d7: a9:a3:85:f3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdSzncllv0Bv2+tG0lutWQEhCK3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA0MDEyMzUzMjlaFw0yNTAzMzEyMzU4MjlaMDMxMTAvBgNV BAMTKDk4NDJCRkU0QTc1NkY5MzE0QUExQTdBRTEzQTNDNEY5NTkxRTlEQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/HLOcpTlbXX8Asxben565ZC1v kv1tAjiEgjCrjFtb5HzLF+UoBQKPm+NFuipZ2Px8b47P5xfQ7eoAhytmFuTSFU0h Mu3wbWVdtxQCHV0YUp0oBkEj8R++3r1Rj2gN0stFEMhIzhaplODev8CMp51wJEdS cWyM/tarZzWbNXS9cUWupc/NC/A7kkaXcQMiXEZRwfJI/MDs3BXnagXM9yBHUp6R j5+PSBqD9uZx5kHlWaT/TfvVyBmHBVAMSk+VQioygvy/J3BSQc/5FXgzKF8+ZjsA Wqh2bZvThk+jw63pXitKnwwJe4r8Av1/LalcZX0QEEki3SFDSfIWoa/x3px9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmEK/5KdW+TFKoaeuE6PE+VkenbEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4NjYzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwS8wDQYJKoZIhvcNAQELBQADggEBAE1u F6fuhUUWDxFmYesBj7/Io6E+j5ZTs13yYLx7eyS6cmRnfr/83FJEAxral39S3ssl gS0ZOFBmaQvT7U0BaON5crIa6HwgyHeCIISrlvQSJl3m3/1H6OuembisKVyqp+36 5HHKKAU1+HyFcJpoUxhxQGMpmENCXgaJLzVoyJ73dNRXHsK0IAMxJCNrEQTWcDmN yQRpzTzLqtGG37Xxr36kBNjr+Y0yNqj1+ChFWWZxHyp+ogEfO6QfIapy5xdXwjRH gsivP86rLNzTZfaJWWgIl87J0kK29OD4ELlO9Fw7G50TWwa+2Wmsee6GAHVnujqB rkeP7eE3BiFh16mjhfM= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org