$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198714.roa File: AS198714.roa (raw, json) Hash identifier: YBP3t3R64Wzu6FdxybjvU7yOTDyavSXyanrWJtQ5qP4= Subject key identifier: 8B:C8:7F:15:CB:F4:79:F5:35:78:B1:91:46:37:17:E2:80:D4:27:10 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0559D9A0F9095ED017A9594CEBE02191060961C6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198714.roa Signing time: Wed 27 Mar 2024 12:58:28 +0000 ROA not before: Wed 27 Mar 2024 12:53:28 +0000 ROA not after: Wed 26 Mar 2025 12:58:28 +0000 asID: 198714 IP address blocks: 2a05:dfc1:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:59:d9:a0:f9:09:5e:d0:17:a9:59:4c:eb:e0:21:91:06:09:61:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 27 12:53:28 2024 GMT Not After : Mar 26 12:58:28 2025 GMT Subject: CN=8BC87F15CBF479F53578B191463717E280D42710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ad:bc:57:72:9a:ef:6e:b0:45:78:18:1b:16: 4e:2f:20:7d:42:b4:8d:d2:fa:d1:dc:c3:20:94:05: 15:17:1e:1b:54:d8:dd:9b:c6:70:9d:12:05:f0:78: f7:cc:91:35:ed:dc:1f:a3:e8:74:df:b1:0f:4e:18: 3b:42:07:5a:6a:8e:ff:2e:19:7f:0a:00:20:91:42: 6b:41:63:8e:d8:85:b7:88:ac:4a:0b:f6:51:d3:84: 1a:1d:bd:47:49:d7:1f:3a:36:1d:d0:30:74:bc:0b: 9f:63:0f:57:a4:1b:fd:5e:ef:21:dd:6e:21:e6:9c: aa:1e:15:6c:38:b7:d9:b2:0e:78:7b:b5:40:51:b5: d4:ff:c0:17:42:18:b7:9f:bf:1b:5b:f5:37:02:f7: f1:8c:2d:7e:fc:db:14:ce:7b:b6:ed:48:06:4d:c2: 73:66:26:39:6e:0d:73:7a:79:f7:92:42:5b:e3:11: eb:a3:2d:16:67:e8:a8:e0:d5:04:ca:ec:09:f3:29: 9f:cf:a5:c4:c4:d5:1e:ef:15:44:02:34:37:bf:2f: fc:e5:10:f5:9d:64:35:19:47:b1:10:e8:fa:de:95: 45:f6:5f:9d:b3:d9:7d:4f:6f:b3:cf:1a:01:76:77: f3:14:42:bd:c4:ec:22:f0:a9:25:4f:29:03:a3:bc: 69:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C8:7F:15:CB:F4:79:F5:35:78:B1:91:46:37:17:E2:80:D4:27:10 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198714.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3800::/40 Signature Algorithm: sha256WithRSAEncryption 0a:6c:12:5e:14:c4:a8:f5:b1:4d:76:d4:14:9c:d7:55:3e:cd: cb:4c:81:e3:6e:6f:44:0e:ae:b4:a8:77:03:21:53:83:be:80: 58:9e:fb:8d:11:74:6c:74:87:25:1d:f6:ad:92:5b:22:98:07: bd:ea:c5:5e:49:80:fd:4a:0f:85:75:c0:94:d0:95:4f:c0:50: f5:9e:ed:72:b4:ee:c1:50:ed:a0:38:c8:01:75:e8:43:f1:ff: 80:e5:d6:f7:1d:13:f0:d0:b0:60:f4:fb:ab:b4:82:fc:98:5c: de:ba:bc:58:06:bf:c1:6d:1e:28:26:26:c0:33:99:ad:30:15: 51:7a:5f:f6:17:d8:51:6d:91:94:85:ae:da:6a:e9:74:39:d3: 07:08:45:35:e7:29:71:5a:22:a6:96:78:14:db:df:b4:d3:24: d8:fd:d0:0c:36:0e:ac:20:de:42:7d:d5:27:af:4e:c9:ff:e0: 32:8a:cc:9e:11:86:49:ec:ef:8b:72:e7:b6:40:80:62:0d:b7: c1:c8:ae:31:10:f1:e4:83:8c:ab:2c:0c:cc:ee:c2:bd:0e:c4: 4e:7f:c3:5d:c7:c4:40:44:b7:64:07:00:8b:3a:e6:51:d3:7d: b3:81:7d:69:ab:9e:8d:65:5a:5f:b9:38:4f:33:c0:7d:a4:7d: 65:7c:73:05 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBVnZoPkJXtAXqVlM6+AhkQYJYcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMjcxMjUzMjhaFw0yNTAzMjYxMjU4MjhaMDMxMTAvBgNV BAMTKDhCQzg3RjE1Q0JGNDc5RjUzNTc4QjE5MTQ2MzcxN0UyODBENDI3MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0rbxXcprvbrBFeBgbFk4vIH1C tI3S+tHcwyCUBRUXHhtU2N2bxnCdEgXwePfMkTXt3B+j6HTfsQ9OGDtCB1pqjv8u GX8KACCRQmtBY47YhbeIrEoL9lHThBodvUdJ1x86Nh3QMHS8C59jD1ekG/1e7yHd biHmnKoeFWw4t9myDnh7tUBRtdT/wBdCGLefvxtb9TcC9/GMLX782xTOe7btSAZN wnNmJjluDXN6efeSQlvjEeujLRZn6Kjg1QTK7AnzKZ/PpcTE1R7vFUQCNDe/L/zl EPWdZDUZR7EQ6PrelUX2X52z2X1Pb7PPGgF2d/MUQr3E7CLwqSVPKQOjvGlNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUi8h/Fcv0efU1eLGRRjcX4oDUJxAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4NzE0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTgwDQYJKoZIhvcNAQELBQADggEBAAps El4UxKj1sU121BSc11U+zctMgeNub0QOrrSodwMhU4O+gFie+40RdGx0hyUd9q2S WyKYB73qxV5JgP1KD4V1wJTQlU/AUPWe7XK07sFQ7aA4yAF16EPx/4Dl1vcdE/DQ sGD0+6u0gvyYXN66vFgGv8FtHigmJsAzma0wFVF6X/YX2FFtkZSFrtpq6XQ50wcI RTXnKXFaIqaWeBTb37TTJNj90Aw2Dqwg3kJ91SevTsn/4DKKzJ4Rhkns74ty57ZA gGINt8HIrjEQ8eSDjKssDMzuwr0OxE5/w13HxEBEt2QHAIs65lHTfbOBfWmrno1l Wl+5OE8zwH2kfWV8cwU= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org