$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198714.roa File: AS198714.roa (raw, json) Hash identifier: HT3ic8r4e/u1ANrZjnKUZ5Qn8BcBgIOrJPkOLlzHVsg= Subject key identifier: 19:73:5D:95:7E:FE:9F:12:80:98:39:24:C0:00:0A:AC:F6:DB:41:7A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 09874E0EF11DC3884580DB238A18E9BDE64FDC9A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198714.roa Signing time: Wed 26 Feb 2025 13:45:55 +0000 ROA not before: Wed 26 Feb 2025 13:40:55 +0000 ROA not after: Wed 25 Feb 2026 13:45:55 +0000 asID: 198714 IP address blocks: 2a05:dfc1:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:87:4e:0e:f1:1d:c3:88:45:80:db:23:8a:18:e9:bd:e6:4f:dc:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 26 13:40:55 2025 GMT Not After : Feb 25 13:45:55 2026 GMT Subject: CN=19735D957EFE9F1280983924C0000AACF6DB417A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0a:48:b0:79:4f:32:2b:b3:ac:48:55:26:96: 9b:c1:1f:72:fa:1c:1a:bf:fe:fe:5d:cb:03:9e:57: fc:28:7b:3e:67:e8:8a:ec:d8:65:35:9e:f3:17:55: ce:cb:ac:83:63:17:71:80:6f:f7:60:02:27:ec:b9: 76:01:ee:1a:52:d5:5f:e3:de:68:6f:03:19:58:a3: b5:57:83:9c:59:9c:92:0f:a1:8f:05:bf:09:8f:81: 85:8c:f6:14:51:83:c3:ac:c4:b6:d3:8a:ce:0f:99: 08:e5:ac:13:8f:55:e0:d4:07:c5:e2:1b:3e:93:84: ed:4f:20:44:ae:cc:80:c0:62:db:2e:ea:a5:c3:bf: a5:f1:c2:9f:60:62:82:44:69:7b:90:e1:14:46:76: 3a:fa:1f:43:6c:1e:5f:28:af:5d:1a:db:6d:69:2d: 46:50:06:d7:e2:fa:a2:5a:75:c2:0c:cc:53:42:74: 28:e9:65:7d:09:79:d1:bb:77:16:0e:5b:64:cf:7a: 19:15:24:8c:cf:1a:e2:2b:64:0f:ba:91:d7:09:31: 51:cf:17:75:d9:79:a9:43:02:65:70:ee:b0:98:24: 0f:aa:6e:1c:4a:7d:18:3b:fe:dc:09:d9:ba:d0:bc: 6d:9f:fc:83:3d:66:ba:d7:2b:3e:d2:54:c2:1f:53: 63:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:73:5D:95:7E:FE:9F:12:80:98:39:24:C0:00:0A:AC:F6:DB:41:7A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198714.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3800::/40 Signature Algorithm: sha256WithRSAEncryption 6e:eb:c6:e6:1d:f1:13:c0:4a:e7:37:be:9d:40:a4:de:97:50: 13:3d:c7:7f:85:f1:43:49:41:5a:1f:93:21:31:8c:fe:d7:1b: aa:da:53:11:9e:3f:2e:3c:2d:15:bb:ca:b8:26:17:f0:a6:cb: 0b:c7:6f:fa:f8:e0:71:50:3d:3d:e4:1c:3c:61:85:dc:7b:48: d0:5a:07:0c:46:59:f6:c1:fb:9e:ea:36:dc:80:ac:e2:62:03: d9:89:47:ee:a8:4e:df:75:d2:5d:5b:4a:26:7f:40:79:5a:cb: 42:8c:e0:a9:c6:9a:d2:3d:e1:9b:06:18:11:11:79:f4:e9:ae: 1c:b6:77:b9:43:9f:ef:0e:b1:3b:8b:af:b0:d5:c4:7d:0f:87: d1:76:2c:54:3f:b3:e2:77:a4:9f:96:9b:c3:48:2d:98:3b:9f: a7:4f:b3:ce:99:49:61:c2:73:78:cb:2b:9b:1f:31:ea:dd:64: 2e:f1:9b:c3:dc:de:9b:67:d6:f0:8a:b9:45:71:70:33:fa:00: 49:de:ba:08:87:4f:65:1d:df:d0:09:e1:7c:c3:e9:be:4f:7c: 2b:6c:b9:82:fc:30:30:7e:a3:d7:37:57:ca:78:6e:b6:a9:8d: ec:23:4f:c2:6e:4b:7a:6f:ab:81:e6:c7:1c:45:f2:c7:77:c2: 86:57:6a:8a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCYdODvEdw4hFgNsjihjpveZP3JowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAyMjYxMzQwNTVaFw0yNjAyMjUxMzQ1NTVaMDMxMTAvBgNV BAMTKDE5NzM1RDk1N0VGRTlGMTI4MDk4MzkyNEMwMDAwQUFDRjZEQjQxN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDACkiweU8yK7OsSFUmlpvBH3L6 HBq//v5dywOeV/woez5n6Irs2GU1nvMXVc7LrINjF3GAb/dgAifsuXYB7hpS1V/j 3mhvAxlYo7VXg5xZnJIPoY8FvwmPgYWM9hRRg8OsxLbTis4PmQjlrBOPVeDUB8Xi Gz6ThO1PIESuzIDAYtsu6qXDv6Xxwp9gYoJEaXuQ4RRGdjr6H0NsHl8or10a221p LUZQBtfi+qJadcIMzFNCdCjpZX0JedG7dxYOW2TPehkVJIzPGuIrZA+6kdcJMVHP F3XZealDAmVw7rCYJA+qbhxKfRg7/twJ2brQvG2f/IM9ZrrXKz7SVMIfU2OxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUGXNdlX7+nxKAmDkkwAAKrPbbQXowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4NzE0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTgwDQYJKoZIhvcNAQELBQADggEBAG7r xuYd8RPASuc3vp1ApN6XUBM9x3+F8UNJQVofkyExjP7XG6raUxGePy48LRW7yrgm F/CmywvHb/r44HFQPT3kHDxhhdx7SNBaBwxGWfbB+57qNtyArOJiA9mJR+6oTt91 0l1bSiZ/QHlay0KM4KnGmtI94ZsGGBERefTprhy2d7lDn+8OsTuLr7DVxH0Ph9F2 LFQ/s+J3pJ+Wm8NILZg7n6dPs86ZSWHCc3jLK5sfMerdZC7xm8Pc3ptn1vCKuUVx cDP6AEneugiHT2Ud39AJ4XzD6b5PfCtsuYL8MDB+o9c3V8p4brapjewjT8JuS3pv q4HmxxxF8sd3woZXaoo= -----END CERTIFICATE-----Generated at Fri Apr 4 16:59:58 2025 by rpki-client