$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198733.roa File: AS198733.roa (raw, json) Hash identifier: ZwgVRrERYtmScgHNTFDoJnFYZ/kIq97Xh62qDt7LJwo= Subject key identifier: A0:FF:E9:79:A7:9E:07:CB:8B:26:08:0B:0B:90:8A:80:5B:65:A2:9D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 40075514989386569B2A74E83FB8EAE6A8934340 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198733.roa Signing time: Wed 26 Feb 2025 13:45:55 +0000 ROA not before: Wed 26 Feb 2025 13:40:55 +0000 ROA not after: Wed 25 Feb 2026 13:45:55 +0000 asID: 198733 IP address blocks: 2a05:dfc1:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:07:55:14:98:93:86:56:9b:2a:74:e8:3f:b8:ea:e6:a8:93:43:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 26 13:40:55 2025 GMT Not After : Feb 25 13:45:55 2026 GMT Subject: CN=A0FFE979A79E07CB8B26080B0B908A805B65A29D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:94:bc:40:a9:0e:be:f4:ce:46:3a:c8:cb:5d: b5:04:73:e2:99:2d:9e:cc:cf:60:a8:bc:b6:cd:4d: 49:2f:c0:73:10:e0:61:5c:46:b0:eb:b3:d8:d2:bc: ae:ea:d6:b3:80:f7:77:2d:a3:22:53:3c:d2:32:e8: 7e:e8:dd:d5:d7:f2:e3:5b:c3:c8:e8:02:72:36:80: b9:a6:2e:fd:21:30:99:9d:08:c0:e2:cb:b1:a4:8d: 04:8c:4c:76:13:52:61:e3:c5:1c:6a:4e:61:a8:09: bb:24:f1:10:08:37:61:dd:a9:e1:da:c7:6c:9a:8c: 42:77:6e:76:7c:07:17:f8:41:a6:74:9c:06:8d:16: 6c:4e:6a:d6:84:5f:97:80:9f:5f:fc:14:06:09:3d: 46:f7:39:d2:83:07:bd:9e:88:32:c1:7f:49:6f:45: 73:0e:48:8d:52:81:27:a0:4e:21:85:0c:98:a1:84: 8d:21:d8:20:20:69:ef:3d:3e:b3:70:a2:d6:98:66: 49:41:8c:99:17:5b:3d:1a:34:a0:52:04:bd:68:8b: 7b:99:36:3c:55:1c:bc:a3:50:24:81:90:7e:f7:9d: 87:04:d9:e9:46:83:7f:06:d0:c9:b5:3d:4f:d1:b5: 3d:c1:86:99:c2:8d:47:65:87:3d:a3:23:6d:aa:a1: 5b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:FF:E9:79:A7:9E:07:CB:8B:26:08:0B:0B:90:8A:80:5B:65:A2:9D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3400::/40 Signature Algorithm: sha256WithRSAEncryption 19:35:a3:9b:0f:db:9b:1d:e4:e9:6c:51:57:01:32:c4:bd:4a: dd:2a:03:f2:ff:83:d4:e7:1f:5d:c1:32:05:6d:53:5e:f6:e2: 20:c1:77:b2:a5:38:82:f9:92:22:0b:e5:41:6f:26:9f:c8:7c: fb:3a:99:4f:56:9e:00:64:1b:ad:c5:c1:d7:5d:99:3c:c5:e6: 82:6e:97:65:57:ea:f4:0a:9d:d5:60:8a:4c:f8:30:6d:d0:4b: ab:87:ae:32:e1:a3:9e:05:bf:27:09:09:48:df:5b:38:74:26: cb:a4:29:ed:3b:e4:65:dd:0a:c4:70:5f:95:ee:b3:f5:fc:95: 13:0a:6e:e2:45:76:c3:fd:8c:29:57:38:03:e0:49:7c:12:89: 24:db:c7:da:37:72:fe:c3:2d:04:1a:23:25:93:b9:e0:4d:b5: 18:23:be:0b:be:a9:38:3b:14:60:1d:a5:a9:05:79:4c:b9:9e: c4:d0:1c:2a:c4:e5:f5:98:fa:dc:1b:2c:ae:cc:2c:fe:49:3c: cc:22:78:58:c0:f0:6d:df:74:15:cd:78:92:1f:b3:9f:49:ea: 38:e3:91:45:cb:48:37:3e:0c:6a:d9:1a:16:f8:b6:c1:72:61: d4:c1:04:36:c8:f2:a6:2a:7f:f6:e3:35:5a:f1:5a:d4:20:63: 07:d2:56:b6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQAdVFJiThlabKnToP7jq5qiTQ0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAyMjYxMzQwNTVaFw0yNjAyMjUxMzQ1NTVaMDMxMTAvBgNV BAMTKEEwRkZFOTc5QTc5RTA3Q0I4QjI2MDgwQjBCOTA4QTgwNUI2NUEyOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGlLxAqQ6+9M5GOsjLXbUEc+KZ LZ7Mz2CovLbNTUkvwHMQ4GFcRrDrs9jSvK7q1rOA93ctoyJTPNIy6H7o3dXX8uNb w8joAnI2gLmmLv0hMJmdCMDiy7GkjQSMTHYTUmHjxRxqTmGoCbsk8RAIN2HdqeHa x2yajEJ3bnZ8Bxf4QaZ0nAaNFmxOataEX5eAn1/8FAYJPUb3OdKDB72eiDLBf0lv RXMOSI1SgSegTiGFDJihhI0h2CAgae89PrNwotaYZklBjJkXWz0aNKBSBL1oi3uZ NjxVHLyjUCSBkH73nYcE2elGg38G0Mm1PU/RtT3BhpnCjUdlhz2jI22qoVtdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUoP/peaeeB8uLJggLC5CKgFtlop0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4NzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTQwDQYJKoZIhvcNAQELBQADggEBABk1 o5sP25sd5OlsUVcBMsS9St0qA/L/g9TnH13BMgVtU1724iDBd7KlOIL5kiIL5UFv Jp/IfPs6mU9WngBkG63FwdddmTzF5oJul2VX6vQKndVgikz4MG3QS6uHrjLho54F vycJCUjfWzh0JsukKe075GXdCsRwX5Xus/X8lRMKbuJFdsP9jClXOAPgSXwSiSTb x9o3cv7DLQQaIyWTueBNtRgjvgu+qTg7FGAdpakFeUy5nsTQHCrE5fWY+twbLK7M LP5JPMwieFjA8G3fdBXNeJIfs59J6jjjkUXLSDc+DGrZGhb4tsFyYdTBBDbI8qYq f/bjNVrxWtQgYwfSVrY= -----END CERTIFICATE-----Generated at Fri Apr 4 17:02:11 2025 by rpki-client