$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198733.roa File: AS198733.roa (raw, json) Hash identifier: Oc/6oB0QNqnEBRKvVayCENO2OFs8H43spcpP/BOg4DQ= Subject key identifier: 86:28:F6:E4:08:EC:81:40:B1:57:2D:AE:47:99:67:86:4C:99:3F:21 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 617241D2E0D72403E1AAD03422E1CF31CACFD31C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198733.roa Signing time: Wed 27 Mar 2024 12:58:28 +0000 ROA not before: Wed 27 Mar 2024 12:53:28 +0000 ROA not after: Wed 26 Mar 2025 12:58:28 +0000 asID: 198733 IP address blocks: 2a05:dfc1:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:72:41:d2:e0:d7:24:03:e1:aa:d0:34:22:e1:cf:31:ca:cf:d3:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 27 12:53:28 2024 GMT Not After : Mar 26 12:58:28 2025 GMT Subject: CN=8628F6E408EC8140B1572DAE479967864C993F21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3e:2d:f7:8f:30:a4:0f:92:0a:1c:42:a5:0e: 6e:01:c0:88:b4:42:f6:1d:3a:a0:63:36:ef:38:de: 42:a2:76:84:32:2d:67:04:41:d3:7a:18:13:88:1d: 5f:35:3d:a2:c6:1a:df:1f:14:9d:cb:10:fd:44:65: bf:78:a0:5d:28:4e:17:3b:e4:42:87:b1:ed:ba:fc: 64:cd:1a:de:a6:c8:64:f6:f5:b3:83:ca:92:d2:b1: 76:6a:ab:af:c1:99:47:a5:70:73:6f:fa:62:91:aa: dc:23:29:8a:b9:60:b7:ab:a3:72:40:f5:92:49:66: f2:a1:4c:16:76:f6:c9:a5:d9:83:96:8d:a1:c3:7d: 12:4e:34:5f:41:8a:10:ce:c4:0e:09:b1:35:ec:bd: 54:5c:1e:bd:ed:a8:47:4e:e2:70:e1:90:cd:df:78: d3:b7:0c:e4:14:62:f4:fc:82:75:5a:72:d6:24:55: 79:fc:4b:67:dd:cb:01:dd:69:7a:8c:68:af:fd:2f: 26:6a:63:56:6a:94:65:27:a7:ed:2b:91:27:28:ce: 4d:e8:4f:07:b9:6c:f9:6e:39:62:06:40:ae:1a:49: fa:2a:63:48:92:8e:0a:25:cf:8e:9f:b7:dc:e6:fc: 77:0a:e9:48:ae:18:e9:ef:b6:36:2e:6c:92:24:f1: 3f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:28:F6:E4:08:EC:81:40:B1:57:2D:AE:47:99:67:86:4C:99:3F:21 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3400::/40 Signature Algorithm: sha256WithRSAEncryption 92:b0:ef:76:b9:79:5e:ed:a8:a5:36:db:2a:6a:8a:06:87:f0: be:6a:4b:a5:09:0c:ac:53:29:92:32:58:cd:06:db:5f:8d:2f: a3:f8:de:7f:da:87:ae:52:72:f1:2f:11:af:ec:d1:77:58:c1: dc:94:4c:fa:2d:0c:15:32:00:2d:af:f0:27:25:c9:22:91:1d: 4b:cd:50:97:51:29:c3:79:d7:3e:d2:1c:37:3a:23:ee:b9:e2: 29:49:2a:08:4a:be:ea:29:e6:bf:00:35:f6:34:ff:c1:92:f4: 36:9b:fe:57:9a:b9:25:44:54:08:68:92:3f:27:48:53:8d:2b: d2:b7:31:0d:ef:9c:eb:d1:41:d1:b2:b7:c1:8c:35:07:50:81: 3d:a1:13:18:a2:69:db:77:6c:ae:33:14:33:ee:eb:e0:e5:df: 7d:f1:df:30:0a:96:3c:10:7d:ca:f4:a3:fe:cd:ac:bc:fb:62: d3:51:f5:6a:1d:6b:c0:ae:1c:1b:6c:ab:be:f2:20:7c:53:20: 9c:80:d4:7f:7d:bc:92:18:e1:50:c4:a7:08:f7:65:5b:02:db: 44:df:9a:3b:6b:af:b4:8f:d9:e5:2e:60:6c:5d:4d:3e:6d:02: 3d:fd:46:9c:38:30:53:2b:6d:66:d0:97:79:51:b2:9e:fa:70: b2:0c:0c:5e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYXJB0uDXJAPhqtA0IuHPMcrP0xwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMjcxMjUzMjhaFw0yNTAzMjYxMjU4MjhaMDMxMTAvBgNV BAMTKDg2MjhGNkU0MDhFQzgxNDBCMTU3MkRBRTQ3OTk2Nzg2NEM5OTNGMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjPi33jzCkD5IKHEKlDm4BwIi0 QvYdOqBjNu843kKidoQyLWcEQdN6GBOIHV81PaLGGt8fFJ3LEP1EZb94oF0oThc7 5EKHse26/GTNGt6myGT29bODypLSsXZqq6/BmUelcHNv+mKRqtwjKYq5YLero3JA 9ZJJZvKhTBZ29sml2YOWjaHDfRJONF9BihDOxA4JsTXsvVRcHr3tqEdO4nDhkM3f eNO3DOQUYvT8gnVactYkVXn8S2fdywHdaXqMaK/9LyZqY1ZqlGUnp+0rkScozk3o Twe5bPluOWIGQK4aSfoqY0iSjgolz46ft9zm/HcK6UiuGOnvtjYubJIk8T+nAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhij25AjsgUCxVy2uR5lnhkyZPyEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4NzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTQwDQYJKoZIhvcNAQELBQADggEBAJKw 73a5eV7tqKU22ypqigaH8L5qS6UJDKxTKZIyWM0G21+NL6P43n/ah65ScvEvEa/s 0XdYwdyUTPotDBUyAC2v8CclySKRHUvNUJdRKcN51z7SHDc6I+654ilJKghKvuop 5r8ANfY0/8GS9Dab/leauSVEVAhokj8nSFONK9K3MQ3vnOvRQdGyt8GMNQdQgT2h Exiiadt3bK4zFDPu6+Dl333x3zAKljwQfcr0o/7NrLz7YtNR9Woda8CuHBtsq77y IHxTIJyA1H99vJIY4VDEpwj3ZVsC20Tfmjtrr7SP2eUuYGxdTT5tAj39Rpw4MFMr bWbQl3lRsp76cLIMDF4= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org