$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198872.roa File: AS198872.roa (raw, json) Hash identifier: A1VJzgOKYCglfwFeA//s2N4aoRGi3fRDQiEwopPhp4g= Subject key identifier: 1F:13:BE:BC:8F:D9:16:B8:D6:24:13:62:ED:98:28:0B:F3:A8:E5:4C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2B9B3EE3C54F637FF3EBBBBAA3568F683BF0CA97 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198872.roa Signing time: Tue 07 May 2024 23:59:32 +0000 ROA not before: Tue 07 May 2024 23:54:32 +0000 ROA not after: Tue 06 May 2025 23:59:32 +0000 asID: 198872 IP address blocks: 2a05:dfc1:4f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:9b:3e:e3:c5:4f:63:7f:f3:eb:bb:ba:a3:56:8f:68:3b:f0:ca:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 7 23:54:32 2024 GMT Not After : May 6 23:59:32 2025 GMT Subject: CN=1F13BEBC8FD916B8D6241362ED98280BF3A8E54C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:68:95:4b:3a:1f:7e:bb:c6:ec:1c:f7:02:ab: 94:0f:0b:6c:44:a9:bf:bb:35:52:48:28:9b:53:4d: 34:40:0a:92:1c:f4:86:93:5a:7c:c2:0d:60:44:b0: 7c:b2:bc:03:ce:a8:f9:b2:bc:65:3b:2c:0b:20:ea: b3:c1:8b:ae:1b:20:fa:63:88:7a:84:2f:aa:83:7e: dc:c4:36:94:be:29:3e:23:bf:40:22:b6:fe:bc:09: 9b:fc:96:e6:73:f3:e0:92:b3:bb:ff:7b:4e:1d:7a: f8:c8:74:ad:84:1d:32:4f:01:17:4e:81:00:83:0a: 50:ce:7a:41:ed:22:a7:23:1a:d5:e4:1c:7a:bd:e8: c4:e8:67:d5:c2:4f:65:0d:03:70:24:06:a7:a7:30: f7:40:79:4e:ad:3d:0d:78:a4:7b:ea:e3:d1:a4:9a: 0d:99:b0:a1:6f:dc:50:16:64:bf:c8:d5:ac:ab:98: 77:d9:dc:26:46:a5:fd:be:c5:8b:eb:1e:7f:dd:da: 57:51:93:14:75:f3:44:86:8e:56:da:7c:4b:0f:50: 0f:54:52:60:85:df:28:4a:43:03:bb:56:e2:28:61: 4d:66:00:5c:93:bd:25:4f:2f:18:40:f5:f3:83:df: b8:80:3b:1f:c4:49:75:f5:53:9d:a6:3d:d8:1a:d2: d0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:13:BE:BC:8F:D9:16:B8:D6:24:13:62:ED:98:28:0B:F3:A8:E5:4C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198872.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4f00::/40 Signature Algorithm: sha256WithRSAEncryption 77:f4:75:14:f4:b5:13:88:0c:0c:4d:a0:f7:d7:a1:ea:98:b6: 4b:1d:0c:8e:18:72:e4:33:36:7c:92:d9:21:3b:14:4e:57:dd: 43:b9:34:2c:da:e3:f8:f8:11:85:8b:f2:4c:c9:45:8d:ec:21: ac:d4:ab:87:3c:e1:42:ac:c8:07:e9:46:c3:13:17:20:2f:3e: 7e:1a:23:33:5e:31:2e:28:66:4b:e5:d8:71:b5:b5:a2:c9:82: 63:bb:e0:a9:db:5e:7a:bb:58:07:60:de:3a:c2:db:71:4f:b3: 0d:2f:ed:4b:c6:89:64:9b:fa:f3:75:1e:f6:08:c8:cf:24:4f: 09:a4:c5:26:bd:ef:cc:3d:bd:4e:c1:2d:71:7d:60:a7:a5:fb: b3:7e:72:23:68:35:d0:44:4f:82:e9:fd:b5:73:c5:19:4e:fe: 0c:67:0a:1a:72:b3:e3:cc:eb:0c:3d:4b:e7:01:10:43:7f:78: 22:94:47:24:57:79:ff:3f:f9:d2:e2:48:de:38:52:96:04:2b: 7a:e7:e5:ee:86:52:a2:1f:c6:8f:c2:e5:5c:5a:6e:73:b4:5b: 36:b5:05:fb:c7:15:db:56:5c:a5:b3:c3:21:14:22:35:5b:83: 37:a2:80:3f:d2:e0:02:89:cf:f6:b8:31:8f:04:a2:a8:10:08: 87:8b:17:f8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUK5s+48VPY3/z67u6o1aPaDvwypcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDA1MDcyMzU0MzJaFw0yNTA1MDYyMzU5MzJaMDMxMTAvBgNV BAMTKDFGMTNCRUJDOEZEOTE2QjhENjI0MTM2MkVEOTgyODBCRjNBOEU1NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1aJVLOh9+u8bsHPcCq5QPC2xE qb+7NVJIKJtTTTRACpIc9IaTWnzCDWBEsHyyvAPOqPmyvGU7LAsg6rPBi64bIPpj iHqEL6qDftzENpS+KT4jv0Aitv68CZv8luZz8+CSs7v/e04devjIdK2EHTJPARdO gQCDClDOekHtIqcjGtXkHHq96MToZ9XCT2UNA3AkBqenMPdAeU6tPQ14pHvq49Gk mg2ZsKFv3FAWZL/I1ayrmHfZ3CZGpf2+xYvrHn/d2ldRkxR180SGjlbafEsPUA9U UmCF3yhKQwO7VuIoYU1mAFyTvSVPLxhA9fOD37iAOx/ESXX1U52mPdga0tBdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUHxO+vI/ZFrjWJBNi7ZgoC/Oo5UwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4ODcyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwU8wDQYJKoZIhvcNAQELBQADggEBAHf0 dRT0tROIDAxNoPfXoeqYtksdDI4YcuQzNnyS2SE7FE5X3UO5NCza4/j4EYWL8kzJ RY3sIazUq4c84UKsyAfpRsMTFyAvPn4aIzNeMS4oZkvl2HG1taLJgmO74KnbXnq7 WAdg3jrC23FPsw0v7UvGiWSb+vN1HvYIyM8kTwmkxSa978w9vU7BLXF9YKel+7N+ ciNoNdBET4Lp/bVzxRlO/gxnChpys+PM6ww9S+cBEEN/eCKURyRXef8/+dLiSN44 UpYEK3rn5e6GUqIfxo/C5VxabnO0Wza1BfvHFdtWXKWzwyEUIjVbgzeigD/S4AKJ z/a4MY8EoqgQCIeLF/g= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org