$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198786.roa File: AS198786.roa (raw, json) Hash identifier: ESKSECqB55sm5JccOMsdDv9hcyXEIzT9oWR3SxGp0sM= Subject key identifier: AD:2B:C0:3D:08:73:01:A5:1D:11:C3:E0:6C:8A:7B:F0:3A:B8:7E:06 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 15537DB5EBABCB691282124BB995BE716C56E30E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198786.roa Signing time: Fri 22 Mar 2024 11:58:24 +0000 ROA not before: Fri 22 Mar 2024 11:53:24 +0000 ROA not after: Fri 21 Mar 2025 11:58:24 +0000 asID: 198786 IP address blocks: 2a05:dfc1:3500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:53:7d:b5:eb:ab:cb:69:12:82:12:4b:b9:95:be:71:6c:56:e3:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 22 11:53:24 2024 GMT Not After : Mar 21 11:58:24 2025 GMT Subject: CN=AD2BC03D087301A51D11C3E06C8A7BF03AB87E06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:63:90:19:85:ae:73:f5:16:09:d5:e8:83:70: a7:c3:c9:04:6f:cc:d2:ec:78:bd:bf:78:42:da:e7: 2b:e1:9f:0e:27:ef:bb:61:0d:b7:2d:67:65:4c:a5: c6:5a:5a:df:54:0b:07:27:c3:e9:33:85:bd:d4:d1: cc:0d:e5:c2:72:23:75:3e:5e:68:48:fb:b9:ed:f1: fb:94:67:43:e6:af:ff:c5:83:c1:3b:cb:e2:2a:41: de:55:f1:4a:47:1b:96:83:04:75:a3:e8:5f:7d:7f: ec:3c:58:b5:c4:01:df:cb:b1:ae:d4:30:59:4d:a8: 71:a9:af:e0:89:ef:bf:f1:4c:72:60:af:30:96:87: db:55:91:7c:6e:76:7f:10:75:85:da:e2:be:f9:60: 98:ee:0f:0f:66:21:d2:57:f5:e2:a9:c4:73:ec:a4: a1:99:00:ac:2a:e2:22:2c:ae:ae:35:04:e3:64:37: f4:79:d2:8d:34:48:ad:4a:e8:11:a9:19:1f:c4:b4: 29:0b:ae:52:a6:b6:a3:59:d0:7b:31:67:f6:d0:0b: c4:dd:2a:a5:10:0a:4d:56:c7:9b:6f:dc:e5:95:f2: 74:4f:2b:f8:80:92:78:4b:b1:3c:c9:bb:32:b0:60: 91:27:cf:f0:55:69:7d:41:04:03:28:05:54:7b:7d: 32:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:2B:C0:3D:08:73:01:A5:1D:11:C3:E0:6C:8A:7B:F0:3A:B8:7E:06 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198786.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3500::/40 Signature Algorithm: sha256WithRSAEncryption 97:44:9f:66:ac:f1:21:cb:fe:7b:b7:f5:fa:3f:f2:51:1a:ac: a4:39:3c:49:06:27:80:16:e6:e4:82:4d:8c:32:88:c9:9e:ad: b3:07:92:f2:1e:08:53:97:95:c8:bf:cc:26:80:7a:3b:b8:d3: 53:a8:9b:bd:c9:8e:f8:92:1c:09:15:86:27:31:1d:8b:5b:7e: 88:66:4d:83:9e:98:bc:36:44:e0:73:58:44:0b:a2:43:37:ac: 80:01:c2:48:33:5b:7a:f5:78:b7:f1:95:53:83:a5:b0:b4:22: 01:00:3d:04:af:9c:c8:2e:f2:8b:e4:64:de:3a:fa:f6:d2:76: f5:b4:0f:41:bb:97:5d:18:59:cd:04:9d:cd:52:d4:c3:9b:92: 9b:de:28:05:cc:1c:80:d5:41:4b:77:1b:18:0e:87:4b:f0:c2: a8:27:57:a6:01:68:ff:ba:3e:eb:cd:9e:8d:55:61:43:b8:0d: 96:e7:8c:d6:97:31:23:3a:06:00:8c:40:fc:14:20:07:42:a4: 60:53:11:d9:0e:c5:85:8b:fd:9a:34:b8:48:75:df:e6:bd:e3: 4b:d5:81:4f:c7:38:de:ec:37:de:97:93:3e:97:c7:77:d7:ac: b8:80:7c:b6:26:25:ab:9c:25:ea:91:8a:a9:81:e1:14:73:0d: f7:e0:33:b3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFVN9teury2kSghJLuZW+cWxW4w4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMjIxMTUzMjRaFw0yNTAzMjExMTU4MjRaMDMxMTAvBgNV BAMTKEFEMkJDMDNEMDg3MzAxQTUxRDExQzNFMDZDOEE3QkYwM0FCODdFMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClY5AZha5z9RYJ1eiDcKfDyQRv zNLseL2/eELa5yvhnw4n77thDbctZ2VMpcZaWt9UCwcnw+kzhb3U0cwN5cJyI3U+ XmhI+7nt8fuUZ0Pmr//Fg8E7y+IqQd5V8UpHG5aDBHWj6F99f+w8WLXEAd/Lsa7U MFlNqHGpr+CJ77/xTHJgrzCWh9tVkXxudn8QdYXa4r75YJjuDw9mIdJX9eKpxHPs pKGZAKwq4iIsrq41BONkN/R50o00SK1K6BGpGR/EtCkLrlKmtqNZ0HsxZ/bQC8Td KqUQCk1Wx5tv3OWV8nRPK/iAknhLsTzJuzKwYJEnz/BVaX1BBAMoBVR7fTJZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUrSvAPQhzAaUdEcPgbIp78Dq4fgYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4Nzg2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTUwDQYJKoZIhvcNAQELBQADggEBAJdE n2as8SHL/nu39fo/8lEarKQ5PEkGJ4AW5uSCTYwyiMmerbMHkvIeCFOXlci/zCaA eju401Oom73JjviSHAkVhicxHYtbfohmTYOemLw2ROBzWEQLokM3rIABwkgzW3r1 eLfxlVODpbC0IgEAPQSvnMgu8ovkZN46+vbSdvW0D0G7l10YWc0Enc1S1MObkpve KAXMHIDVQUt3GxgOh0vwwqgnV6YBaP+6PuvNno1VYUO4DZbnjNaXMSM6BgCMQPwU IAdCpGBTEdkOxYWL/Zo0uEh13+a940vVgU/HON7sN96Xkz6Xx3fXrLiAfLYmJauc JeqRiqmB4RRzDffgM7M= -----END CERTIFICATE-----Generated at Thu May 16 11:56:09 2024 by rpki-client on console-fra.rpki-client.org