$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198942.roa File: AS198942.roa (raw, json) Hash identifier: LnmZaeQ5a7ZnTdqDyLzQceneDql5Cu63Ns3UYRY/x9M= Subject key identifier: 10:6A:CA:CE:15:7E:46:D1:6E:F7:00:5F:BE:70:6D:82:13:09:EC:DC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 596B5C21BB8F9BDF7828DB0F49B2F48DCBE54D23 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198942.roa Signing time: Thu 13 Feb 2025 10:45:51 +0000 ROA not before: Thu 13 Feb 2025 10:40:51 +0000 ROA not after: Thu 12 Feb 2026 10:45:51 +0000 asID: 198942 IP address blocks: 2a05:dfc1:2c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:6b:5c:21:bb:8f:9b:df:78:28:db:0f:49:b2:f4:8d:cb:e5:4d:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Feb 13 10:40:51 2025 GMT Not After : Feb 12 10:45:51 2026 GMT Subject: CN=106ACACE157E46D16EF7005FBE706D821309ECDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:34:b2:d0:a5:65:ce:1d:79:c1:c6:2e:54:af: 2f:5c:e1:33:9e:72:84:33:0a:9d:ad:c4:5b:d5:81: 64:c4:e0:5c:6c:db:ea:21:6a:d4:d5:b3:f1:4c:d6: 96:f0:ff:2e:4a:aa:67:bc:16:e9:94:bd:e5:41:c0: 97:91:f0:d8:1d:8d:aa:29:76:aa:b1:cf:77:2c:27: e5:ce:8b:6b:f3:7b:73:6e:c5:83:5a:7d:56:de:6a: 18:61:ab:4a:aa:f0:f8:3e:ef:60:a4:44:25:22:59: 31:cc:fb:4d:87:a6:84:ac:f4:91:9b:37:e1:1b:40: 29:79:10:c3:79:e0:0e:db:8f:c3:2e:43:c0:9c:51: 12:03:a9:60:98:c5:10:b6:49:5b:67:60:d9:bc:7b: 54:a1:3d:53:7d:84:92:ad:5b:f0:59:e3:fe:77:05: 6e:15:d0:cb:a1:f2:66:2f:49:0c:fd:90:47:8e:73: da:43:8c:f1:b0:22:4b:26:e8:7b:2c:37:3e:dc:5c: 2d:da:9f:5e:ec:36:24:27:15:cb:14:3d:f6:17:0a: 1a:61:da:13:fc:af:77:08:a0:86:c0:34:8b:90:3b: 07:03:d0:d8:99:46:32:d6:18:33:dc:81:63:35:b8: 1a:b6:2c:2d:aa:27:b8:e7:f8:42:c8:46:ae:06:dd: 3d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6A:CA:CE:15:7E:46:D1:6E:F7:00:5F:BE:70:6D:82:13:09:EC:DC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198942.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2c00::/40 Signature Algorithm: sha256WithRSAEncryption 95:66:06:81:25:03:02:e6:77:72:ea:2f:13:50:02:02:d4:60: f8:a4:0e:2e:10:36:5d:f8:6c:0d:ae:85:65:af:d8:dd:67:d9: ef:58:04:78:56:11:2a:5a:d9:b0:96:aa:da:6a:93:3b:4e:aa: 05:84:4c:33:8b:91:81:3f:67:f6:a0:bb:24:b1:88:94:55:62: 66:b2:24:bf:8f:9f:e6:62:eb:6d:0e:9c:49:93:6f:e0:3a:2b: ce:30:c0:51:34:14:e0:a9:e4:96:de:15:90:74:04:cc:2c:32: 5e:4a:66:fd:fc:10:cc:be:9b:33:6e:d9:da:ca:df:24:5f:f1: a0:78:cd:59:7c:8a:1d:a3:e4:d5:44:d7:36:48:32:ff:5a:87: a1:5a:5b:a6:fe:01:56:90:d6:50:ba:a6:39:54:24:86:bd:84: 5c:35:32:af:1b:55:7f:67:92:ba:39:0a:ed:af:dd:40:a4:bc: 76:4b:f5:de:69:ed:24:dd:de:d4:46:3b:62:6a:d3:fe:3a:8e: 9b:7e:24:ae:03:a2:74:aa:60:76:42:e9:99:ba:6e:2e:51:29: 10:79:df:55:80:db:fd:f3:1b:e2:87:91:87:c6:8c:9c:41:01: 5e:89:83:d5:65:bb:ca:e1:71:d3:b2:2b:65:ca:7c:67:65:21: 11:54:d3:a5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWWtcIbuPm994KNsPSbL0jcvlTSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAyMTMxMDQwNTFaFw0yNjAyMTIxMDQ1NTFaMDMxMTAvBgNV BAMTKDEwNkFDQUNFMTU3RTQ2RDE2RUY3MDA1RkJFNzA2RDgyMTMwOUVDREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfNLLQpWXOHXnBxi5Ury9c4TOe coQzCp2txFvVgWTE4Fxs2+ohatTVs/FM1pbw/y5Kqme8FumUveVBwJeR8Ngdjaop dqqxz3csJ+XOi2vze3NuxYNafVbeahhhq0qq8Pg+72CkRCUiWTHM+02HpoSs9JGb N+EbQCl5EMN54A7bj8MuQ8CcURIDqWCYxRC2SVtnYNm8e1ShPVN9hJKtW/BZ4/53 BW4V0Muh8mYvSQz9kEeOc9pDjPGwIksm6HssNz7cXC3an17sNiQnFcsUPfYXChph 2hP8r3cIoIbANIuQOwcD0NiZRjLWGDPcgWM1uBq2LC2qJ7jn+ELIRq4G3T3JAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEGrKzhV+RtFu9wBfvnBtghMJ7NwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4OTQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwSwwDQYJKoZIhvcNAQELBQADggEBAJVm BoElAwLmd3LqLxNQAgLUYPikDi4QNl34bA2uhWWv2N1n2e9YBHhWESpa2bCWqtpq kztOqgWETDOLkYE/Z/aguySxiJRVYmayJL+Pn+Zi620OnEmTb+A6K84wwFE0FOCp 5JbeFZB0BMwsMl5KZv38EMy+mzNu2drK3yRf8aB4zVl8ih2j5NVE1zZIMv9ah6Fa W6b+AVaQ1lC6pjlUJIa9hFw1Mq8bVX9nkro5Cu2v3UCkvHZL9d5p7STd3tRGO2Jq 0/46jpt+JK4DonSqYHZC6Zm6bi5RKRB531WA2/3zG+KHkYfGjJxBAV6Jg9Vlu8rh cdOyK2XKfGdlIRFU06U= -----END CERTIFICATE-----Generated at Fri Apr 4 17:02:05 2025 by rpki-client