$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198946.roa File: AS198946.roa (raw, json) Hash identifier: eHUALPW9ZOD50vA/garOFBHTDF/zcvKW8w6OgkBhUGo= Subject key identifier: 40:71:2B:51:94:4D:29:15:38:E4:6A:3F:78:7C:28:7D:15:F5:34:54 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6EF95E63EED1A3E2FE785C0A2C183E0C5EEB46DA Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198946.roa Signing time: Thu 14 Mar 2024 09:58:20 +0000 ROA not before: Thu 14 Mar 2024 09:53:20 +0000 ROA not after: Thu 13 Mar 2025 09:58:20 +0000 asID: 198946 IP address blocks: 2a05:dfc1:3300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:f9:5e:63:ee:d1:a3:e2:fe:78:5c:0a:2c:18:3e:0c:5e:eb:46:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 14 09:53:20 2024 GMT Not After : Mar 13 09:58:20 2025 GMT Subject: CN=40712B51944D291538E46A3F787C287D15F53454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:57:6f:1e:e6:bd:d1:d6:80:a1:34:3f:eb:80: 47:18:ef:f2:e2:eb:0e:11:a5:bc:d0:e2:4a:5f:3e: 2d:96:3a:2c:a4:eb:3d:da:ae:e8:25:65:f9:95:10: d5:49:d7:50:79:4f:83:6b:9b:9f:52:87:4d:6a:d3: ec:a7:7e:6c:11:df:8e:0f:04:13:b9:06:f1:0b:9b: 1f:94:91:e7:ab:bf:70:88:d2:77:3c:7d:2d:a0:0a: 38:51:52:0b:bf:a4:22:39:9f:67:47:35:7b:0b:d0: dc:4a:fa:28:47:d8:4f:05:67:0c:c9:a5:81:54:b9: 27:d1:a3:d6:87:42:58:1b:fa:ed:0f:78:68:6a:33: 49:3f:86:52:46:9c:70:34:20:d8:85:3a:f1:e5:4d: fb:39:4c:fe:ec:0e:0d:0a:c3:1e:6a:86:de:f9:68: ea:2e:85:d8:7a:6e:9b:20:fa:da:0b:da:c4:f2:d5: 8b:bf:f2:da:2c:46:01:ce:f6:a7:49:3b:d6:30:38: cd:59:03:42:e1:5b:f2:ff:64:33:58:f2:8c:ae:81: 8c:78:a1:da:52:2c:65:04:9f:7d:74:05:b0:9c:bf: 0f:1c:a9:9f:75:82:49:53:1a:7d:f4:68:b5:78:1c: 39:1d:4a:8a:cf:3f:5d:93:c4:28:24:1f:b8:0c:9b: 34:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:71:2B:51:94:4D:29:15:38:E4:6A:3F:78:7C:28:7D:15:F5:34:54 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198946.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3300::/40 Signature Algorithm: sha256WithRSAEncryption 15:9e:66:b7:3b:cb:7a:da:71:8a:f8:f9:37:5b:b0:47:2f:c5: aa:de:49:aa:3b:3e:df:8a:de:06:94:45:22:3e:46:37:82:b5: ff:f9:1b:a6:8f:a9:aa:5d:65:54:34:1e:72:d9:26:af:51:50: ba:66:aa:22:f8:55:0d:0f:57:68:75:87:79:46:81:37:3d:60: 06:d2:02:8f:a4:40:63:1c:2a:da:28:44:01:1c:2c:6c:24:ee: db:58:48:2d:f8:43:bd:38:fc:91:58:d3:47:8c:70:62:21:cf: 90:6f:33:7e:4d:dc:82:b8:c3:98:f6:9b:44:f8:c1:fa:4a:dc: ac:7f:f6:68:1f:b2:4f:e9:06:9d:cf:61:f6:0e:16:4f:4a:5a: 8d:5f:c1:6f:c4:33:21:4c:1d:42:40:c8:b2:6e:95:62:3c:3b: bf:69:be:90:4c:d6:a8:b2:3f:3c:80:f7:4b:0d:ca:77:59:9e: 74:18:2d:35:8d:b9:15:d3:2c:0c:81:b5:de:85:05:11:92:31: 52:31:d3:44:ca:e2:d8:95:de:13:c6:2e:ba:4d:bf:2a:da:6c: 88:eb:5d:2f:2b:08:a2:79:54:40:dd:86:33:02:0f:51:6d:6a: 68:69:f3:92:4a:33:40:d2:e9:49:a5:2b:53:fd:eb:18:9d:6b: b3:63:eb:b6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbvleY+7Ro+L+eFwKLBg+DF7rRtowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMTQwOTUzMjBaFw0yNTAzMTMwOTU4MjBaMDMxMTAvBgNV BAMTKDQwNzEyQjUxOTQ0RDI5MTUzOEU0NkEzRjc4N0MyODdEMTVGNTM0NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWV28e5r3R1oChND/rgEcY7/Li 6w4RpbzQ4kpfPi2WOiyk6z3aruglZfmVENVJ11B5T4Nrm59Sh01q0+ynfmwR344P BBO5BvELmx+Ukeerv3CI0nc8fS2gCjhRUgu/pCI5n2dHNXsL0NxK+ihH2E8FZwzJ pYFUuSfRo9aHQlgb+u0PeGhqM0k/hlJGnHA0INiFOvHlTfs5TP7sDg0Kwx5qht75 aOouhdh6bpsg+toL2sTy1Yu/8tosRgHO9qdJO9YwOM1ZA0LhW/L/ZDNY8oyugYx4 odpSLGUEn310BbCcvw8cqZ91gklTGn30aLV4HDkdSorPP12TxCgkH7gMmzQdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQHErUZRNKRU45Go/eHwofRX1NFQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4OTQ2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTMwDQYJKoZIhvcNAQELBQADggEBABWe Zrc7y3racYr4+TdbsEcvxareSao7Pt+K3gaURSI+RjeCtf/5G6aPqapdZVQ0HnLZ Jq9RULpmqiL4VQ0PV2h1h3lGgTc9YAbSAo+kQGMcKtooRAEcLGwk7ttYSC34Q704 /JFY00eMcGIhz5BvM35N3IK4w5j2m0T4wfpK3Kx/9mgfsk/pBp3PYfYOFk9KWo1f wW/EMyFMHUJAyLJulWI8O79pvpBM1qiyPzyA90sNyndZnnQYLTWNuRXTLAyBtd6F BRGSMVIx00TK4tiV3hPGLrpNvyrabIjrXS8rCKJ5VEDdhjMCD1Ftamhp85JKM0DS 6UmlK1P96xida7Nj67Y= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org