$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198942.roa File: AS198942.roa (raw, json) Hash identifier: IqVF7LyNsRoSIiXCZ3vV8sJtyK/WPB5yNCoOCKbaaKI= Subject key identifier: 1F:DF:98:61:FA:7C:68:A5:C3:78:AC:8F:54:32:26:A9:01:09:0C:F3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 29963839D5EB4E7CD38646BC8D182405BB362B96 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198942.roa Signing time: Thu 14 Mar 2024 09:58:20 +0000 ROA not before: Thu 14 Mar 2024 09:53:20 +0000 ROA not after: Thu 13 Mar 2025 09:58:20 +0000 asID: 198942 IP address blocks: 2a05:dfc1:2c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:96:38:39:d5:eb:4e:7c:d3:86:46:bc:8d:18:24:05:bb:36:2b:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 14 09:53:20 2024 GMT Not After : Mar 13 09:58:20 2025 GMT Subject: CN=1FDF9861FA7C68A5C378AC8F543226A901090CF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:91:43:79:3d:ac:b0:88:f3:7d:29:47:ef:97: dc:ad:c2:b3:a3:d3:8b:d5:f9:ea:a0:47:68:7d:22: 39:d4:63:6a:40:90:61:6c:b8:31:50:c0:8c:04:33: cf:86:2d:c3:a4:93:72:60:4a:a7:f6:01:59:9e:4c: 23:0c:fd:46:d3:eb:0b:db:5f:03:f6:47:22:e4:44: 89:64:22:9c:65:a7:f9:bc:65:47:6c:e9:7d:17:37: f1:47:ca:95:49:25:45:cb:8b:61:0d:f5:93:2a:26: 77:44:83:72:3a:48:fe:e9:1c:a9:21:2f:67:b5:b6: 41:e8:a6:69:0e:c5:a1:a0:1d:1a:fe:2a:a5:77:b3: 37:88:1c:50:23:2c:9c:72:ab:bc:f2:aa:3b:80:63: ab:b8:c3:0f:2d:e4:9b:f4:4a:4f:25:44:98:70:7c: e2:e1:ec:41:d5:c5:93:f4:e4:2e:97:f2:6b:2c:41: 75:4e:5e:57:69:6b:93:ca:c0:e6:86:75:7f:e6:2b: 64:05:56:16:27:9d:ca:99:89:0e:59:86:83:09:3e: 3b:3c:25:46:6e:53:d3:92:ed:92:ae:cf:4d:e4:3d: d5:3b:a5:e0:9d:fb:b4:f4:2d:69:60:97:43:36:00: be:f3:e7:01:dc:17:45:6d:84:15:46:a9:7f:89:2d: 0d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:DF:98:61:FA:7C:68:A5:C3:78:AC:8F:54:32:26:A9:01:09:0C:F3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198942.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2c00::/40 Signature Algorithm: sha256WithRSAEncryption 0b:9c:4d:7d:9a:f3:c5:18:2e:4a:ee:e3:e4:05:96:16:a6:a7: bd:3f:5b:ff:14:7e:6d:15:ad:d5:47:df:06:b5:1b:f8:eb:48: d6:bb:46:c4:44:10:18:e9:2a:a8:ff:fe:8d:bc:e4:43:55:db: 7f:92:d2:6c:5d:37:35:fe:bb:2e:b1:e3:50:84:3e:73:2e:81: cb:10:5a:5e:e0:a4:ed:08:85:3b:4e:9f:49:46:ae:11:0f:5a: 20:86:01:3b:cb:b7:be:ec:2b:03:c8:5a:a4:e9:ee:af:16:68: 87:b9:73:68:c3:5b:c8:20:76:bb:12:80:40:2f:b7:33:4c:b1: db:b5:8f:10:e9:14:1c:45:5b:2d:2c:88:9f:10:c7:96:e1:8b: 0a:f2:e0:eb:94:1d:47:91:3c:20:74:81:1d:06:f2:b5:29:f5: 0b:51:94:e1:ce:28:d2:a1:00:95:85:ff:a0:17:b2:c7:06:22: 06:4d:7f:0a:4b:42:14:be:d9:6e:55:bd:bf:c2:25:97:0e:89: 91:7d:23:5d:32:49:a4:99:12:ef:7d:6a:64:41:a5:6a:5c:a2: c3:1e:c8:17:a9:5d:07:58:40:c6:b2:63:68:cd:4e:68:11:9c: e7:23:f3:f3:a5:3a:3e:79:5c:70:8f:9e:30:1b:ca:54:10:8d: 3b:dd:7f:3c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKZY4OdXrTnzThka8jRgkBbs2K5YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMTQwOTUzMjBaFw0yNTAzMTMwOTU4MjBaMDMxMTAvBgNV BAMTKDFGREY5ODYxRkE3QzY4QTVDMzc4QUM4RjU0MzIyNkE5MDEwOTBDRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDikUN5PaywiPN9KUfvl9ytwrOj 04vV+eqgR2h9IjnUY2pAkGFsuDFQwIwEM8+GLcOkk3JgSqf2AVmeTCMM/UbT6wvb XwP2RyLkRIlkIpxlp/m8ZUds6X0XN/FHypVJJUXLi2EN9ZMqJndEg3I6SP7pHKkh L2e1tkHopmkOxaGgHRr+KqV3szeIHFAjLJxyq7zyqjuAY6u4ww8t5Jv0Sk8lRJhw fOLh7EHVxZP05C6X8mssQXVOXldpa5PKwOaGdX/mK2QFVhYnncqZiQ5ZhoMJPjs8 JUZuU9OS7ZKuz03kPdU7peCd+7T0LWlgl0M2AL7z5wHcF0VthBVGqX+JLQ0pAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUH9+YYfp8aKXDeKyPVDImqQEJDPMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4OTQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwSwwDQYJKoZIhvcNAQELBQADggEBAAuc TX2a88UYLkru4+QFlhamp70/W/8Ufm0VrdVH3wa1G/jrSNa7RsREEBjpKqj//o28 5ENV23+S0mxdNzX+uy6x41CEPnMugcsQWl7gpO0IhTtOn0lGrhEPWiCGATvLt77s KwPIWqTp7q8WaIe5c2jDW8ggdrsSgEAvtzNMsdu1jxDpFBxFWy0siJ8Qx5bhiwry 4OuUHUeRPCB0gR0G8rUp9QtRlOHOKNKhAJWF/6AXsscGIgZNfwpLQhS+2W5Vvb/C JZcOiZF9I10ySaSZEu99amRBpWpcosMeyBepXQdYQMayY2jNTmgRnOcj8/OlOj55 XHCPnjAbylQQjTvdfzw= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org