$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198889.roa File: AS198889.roa (raw, json) Hash identifier: h9wSiJkot2+iCl8y/b8/gZR9VXkywTSD++2Ui9hFImw= Subject key identifier: 6F:48:FB:20:D4:2F:06:3A:5D:CF:97:B2:6A:9B:70:8E:BC:C0:72:75 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3977CD8126A831BE2E0193DDF33B74786B14DFF6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198889.roa Signing time: Wed 27 Mar 2024 05:58:26 +0000 ROA not before: Wed 27 Mar 2024 05:53:26 +0000 ROA not after: Wed 26 Mar 2025 05:58:26 +0000 asID: 198889 IP address blocks: 2a05:dfc1:3c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:77:cd:81:26:a8:31:be:2e:01:93:dd:f3:3b:74:78:6b:14:df:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 27 05:53:26 2024 GMT Not After : Mar 26 05:58:26 2025 GMT Subject: CN=6F48FB20D42F063A5DCF97B26A9B708EBCC07275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d6:75:f2:5d:9b:ed:88:49:91:a2:29:df:7f: 8e:d5:60:91:4f:d1:b5:61:83:a5:a7:36:97:b3:d6: 66:1d:4d:33:91:40:4f:6d:5f:9c:6a:fa:d2:b0:8b: 07:26:7a:b5:8b:1f:a2:be:72:f3:91:31:ad:d9:3f: 8c:8a:c5:e6:8d:b1:d8:b1:0f:1f:92:4f:ab:2f:4d: e6:f0:ed:ce:16:88:80:89:f0:d5:2c:6e:fb:9e:3f: 0d:c7:f5:ea:ce:f0:cb:62:09:97:15:78:b9:6e:dc: b0:e6:f4:a6:da:03:76:d6:63:67:d2:52:58:11:a1: 5a:05:f2:b7:79:b5:be:ef:54:d3:7a:8d:75:89:40: 0e:6f:ad:79:ca:1d:71:5c:76:7f:d8:e0:7f:b4:d1: c3:4a:b4:de:48:5b:d0:95:89:65:4e:06:6b:23:2d: a6:89:2f:68:41:a0:cc:73:b8:d6:0f:05:b4:28:ff: 4f:5b:29:4e:fb:a1:3a:03:28:07:62:88:a9:b6:77: 1d:9d:3a:da:27:69:a5:c5:11:34:b2:a4:de:a1:51: 0a:20:fe:f4:87:55:ca:79:fb:6a:6a:4b:4d:81:37: c6:64:e7:b4:25:52:ed:a1:a9:49:ed:2a:ff:f3:21: 5b:b2:99:3b:b1:3c:8b:0c:7a:84:7c:90:e8:03:f3: e0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:48:FB:20:D4:2F:06:3A:5D:CF:97:B2:6A:9B:70:8E:BC:C0:72:75 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198889.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3c00::/40 Signature Algorithm: sha256WithRSAEncryption 08:f4:00:f8:14:78:c8:19:e0:25:53:05:2d:89:61:db:36:ba: 2b:e1:e0:56:be:29:67:70:45:1e:5e:36:d2:57:65:5a:8a:83: ec:36:1a:02:21:13:c6:ba:31:35:03:3f:02:0a:53:e3:30:3a: 22:44:f0:ca:45:4c:59:aa:4d:9c:96:05:5d:69:7d:c2:2a:5c: 40:cb:72:d2:2d:c0:9d:60:0e:80:95:0f:a3:bc:6f:8d:f4:d1: 8f:09:e5:1b:01:4e:7c:b0:08:de:ea:98:ca:f8:84:42:86:3e: d2:b9:4e:52:99:b2:bb:23:29:91:9a:97:bb:e0:fa:52:67:95: 04:6e:8a:13:61:10:98:af:42:5d:4b:37:f4:da:6c:ed:4b:2e: 02:7c:16:47:01:fd:de:cd:61:c0:79:cb:dc:60:17:7a:1d:3f: be:c6:58:f0:85:59:d5:cc:b2:eb:61:86:b2:78:6a:50:db:11: 3a:16:51:7d:4a:f6:61:45:3b:6c:9a:cb:53:1d:46:fb:aa:88: 60:8a:4f:fc:64:11:30:c8:ed:b8:fb:4f:9b:89:ee:ab:9f:29: a6:4a:6b:46:74:df:57:3b:e1:9f:8c:de:4f:38:71:94:b9:f1: 27:99:af:d7:bd:f9:4c:49:59:2a:eb:08:f2:de:83:ad:5d:96: fd:d0:fa:d9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOXfNgSaoMb4uAZPd8zt0eGsU3/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMjcwNTUzMjZaFw0yNTAzMjYwNTU4MjZaMDMxMTAvBgNV BAMTKDZGNDhGQjIwRDQyRjA2M0E1RENGOTdCMjZBOUI3MDhFQkNDMDcyNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa1nXyXZvtiEmRoinff47VYJFP 0bVhg6WnNpez1mYdTTORQE9tX5xq+tKwiwcmerWLH6K+cvORMa3ZP4yKxeaNsdix Dx+ST6svTebw7c4WiICJ8NUsbvuePw3H9erO8MtiCZcVeLlu3LDm9KbaA3bWY2fS UlgRoVoF8rd5tb7vVNN6jXWJQA5vrXnKHXFcdn/Y4H+00cNKtN5IW9CViWVOBmsj LaaJL2hBoMxzuNYPBbQo/09bKU77oToDKAdiiKm2dx2dOtonaaXFETSypN6hUQog /vSHVcp5+2pqS02BN8Zk57QlUu2hqUntKv/zIVuymTuxPIsMeoR8kOgD8+DrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUb0j7INQvBjpdz5eyaptwjrzAcnUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4ODg5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTwwDQYJKoZIhvcNAQELBQADggEBAAj0 APgUeMgZ4CVTBS2JYds2uivh4Fa+KWdwRR5eNtJXZVqKg+w2GgIhE8a6MTUDPwIK U+MwOiJE8MpFTFmqTZyWBV1pfcIqXEDLctItwJ1gDoCVD6O8b4300Y8J5RsBTnyw CN7qmMr4hEKGPtK5TlKZsrsjKZGal7vg+lJnlQRuihNhEJivQl1LN/TabO1LLgJ8 FkcB/d7NYcB5y9xgF3odP77GWPCFWdXMsuthhrJ4alDbEToWUX1K9mFFO2yay1Md RvuqiGCKT/xkETDI7bj7T5uJ7qufKaZKa0Z031c74Z+M3k84cZS58SeZr9e9+UxJ WSrrCPLeg61dlv3Q+tk= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org