$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198923.roa File: AS198923.roa (raw, json) Hash identifier: yuZgbCL6VBQlhKcZDvyRbbQhOD4l2I8Eat7/a+iITK8= Subject key identifier: 87:F3:CA:A7:AD:59:14:A6:84:F0:FB:10:81:71:4A:BB:5F:8E:BC:6F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0271E959F75642E796759B2E08BDA4CD7AD599B0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198923.roa Signing time: Thu 24 Oct 2024 02:06:20 +0000 ROA not before: Thu 24 Oct 2024 02:01:20 +0000 ROA not after: Thu 23 Oct 2025 02:06:20 +0000 asID: 198923 IP address blocks: 2a06:9f81:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:71:e9:59:f7:56:42:e7:96:75:9b:2e:08:bd:a4:cd:7a:d5:99:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 24 02:01:20 2024 GMT Not After : Oct 23 02:06:20 2025 GMT Subject: CN=87F3CAA7AD5914A684F0FB1081714ABB5F8EBC6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:66:f3:e3:d3:5e:e5:34:c8:80:52:6b:2c:30: d2:5e:7c:fa:b9:fe:08:83:4f:89:e1:a3:f1:09:23: 76:fc:f9:3e:70:b7:00:34:8c:8b:95:32:c8:b1:f3: 1b:b0:d0:5f:c3:16:8c:e7:83:fe:57:a9:d3:95:af: f4:2a:e1:73:c9:d5:2f:0b:bd:11:5f:b9:30:31:4d: d5:df:04:b8:5f:9e:ee:41:ed:48:23:af:90:74:e7: 5f:43:2c:0d:6f:ed:37:01:28:67:a5:c4:af:73:9f: 39:63:fc:f8:61:80:dd:49:9c:36:13:82:60:b2:b8: 5b:f8:5f:22:31:6f:5f:ff:cc:bc:e4:bb:ad:d0:15: 4a:87:e8:12:58:2b:31:86:e9:c8:e7:00:e3:19:f2: a7:7d:6f:36:b5:94:f2:8b:fd:43:9d:e1:8b:a3:f9: 68:37:e2:05:40:9b:f6:9b:64:18:fc:4f:8f:e0:d7: b0:7e:f5:1e:40:65:29:d3:18:b1:aa:37:7e:0a:f4: e3:96:c7:38:ea:27:63:91:a6:13:94:2d:81:64:d2: 65:4f:b9:92:85:67:76:01:6d:c1:5d:f9:d1:8f:f9: 70:39:7a:e5:6d:f2:78:c6:29:47:48:2f:dd:5c:46: d2:bf:8b:48:5d:de:c3:7a:fa:eb:6a:07:69:0c:13: 10:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F3:CA:A7:AD:59:14:A6:84:F0:FB:10:81:71:4A:BB:5F:8E:BC:6F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198923.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:6500::/40 Signature Algorithm: sha256WithRSAEncryption 22:cd:13:82:78:22:ae:dc:bc:ac:94:33:8a:c6:43:cf:60:ee: 9c:3f:97:8c:05:e7:19:ba:d7:a3:71:c3:73:08:5d:36:7b:e3: 86:4d:45:9b:27:e3:5c:73:77:a2:cb:62:13:14:a0:03:8a:be: 56:f1:53:75:39:cb:57:08:ed:0f:9e:17:ad:e1:2b:f8:b0:e3: 3d:f1:5b:2c:bc:a8:6c:91:cd:80:c6:d2:71:63:aa:97:22:8b: fe:00:b1:b4:56:5f:8d:ba:27:82:83:29:50:52:11:b6:ad:8f: 23:6d:b5:b7:8d:ff:90:57:01:15:c4:41:fe:77:9d:54:fb:c0: 45:c4:cf:b7:84:4e:6d:5a:80:e6:e1:42:4c:1d:03:14:55:db: ff:78:df:36:91:54:b6:2e:eb:d1:16:2a:ac:a5:23:af:15:71: 5b:f8:da:06:80:7f:27:21:a8:61:60:77:8f:df:84:60:45:50: 52:93:fc:e4:ea:b3:18:82:23:f9:37:f4:37:9a:ff:88:1b:66: 01:7c:b1:61:b3:ec:32:a4:6b:08:62:28:fa:84:46:a0:f2:75: 22:40:25:d1:f2:6f:cf:8b:97:6d:3f:67:76:0d:34:8c:0a:27: 7d:db:a9:be:4d:21:50:6f:20:3a:77:52:92:42:83:81:5f:23: 8b:0b:98:3e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAnHpWfdWQueWdZsuCL2kzXrVmbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMjQwMjAxMjBaFw0yNTEwMjMwMjA2MjBaMDMxMTAvBgNV BAMTKDg3RjNDQUE3QUQ1OTE0QTY4NEYwRkIxMDgxNzE0QUJCNUY4RUJDNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmZvPj017lNMiAUmssMNJefPq5 /giDT4nho/EJI3b8+T5wtwA0jIuVMsix8xuw0F/DFozng/5XqdOVr/Qq4XPJ1S8L vRFfuTAxTdXfBLhfnu5B7Ugjr5B0519DLA1v7TcBKGelxK9znzlj/PhhgN1JnDYT gmCyuFv4XyIxb1//zLzku63QFUqH6BJYKzGG6cjnAOMZ8qd9bza1lPKL/UOd4Yuj +Wg34gVAm/abZBj8T4/g17B+9R5AZSnTGLGqN34K9OOWxzjqJ2ORphOULYFk0mVP uZKFZ3YBbcFd+dGP+XA5euVt8njGKUdIL91cRtK/i0hd3sN6+utqB2kMExCRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUh/PKp61ZFKaE8PsQgXFKu1+OvG8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4OTIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgWUwDQYJKoZIhvcNAQELBQADggEBACLN E4J4Iq7cvKyUM4rGQ89g7pw/l4wF5xm616Nxw3MIXTZ744ZNRZsn41xzd6LLYhMU oAOKvlbxU3U5y1cI7Q+eF63hK/iw4z3xWyy8qGyRzYDG0nFjqpcii/4AsbRWX426 J4KDKVBSEbatjyNttbeN/5BXARXEQf53nVT7wEXEz7eETm1agObhQkwdAxRV2/94 3zaRVLYu69EWKqylI68VcVv42gaAfychqGFgd4/fhGBFUFKT/OTqsxiCI/k39Dea /4gbZgF8sWGz7DKkawhiKPqERqDydSJAJdHyb8+Ll20/Z3YNNIwKJ33bqb5NIVBv IDp3UpJCg4FfI4sLmD4= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org