$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198963.roa File: AS198963.roa (raw, json) Hash identifier: /0n+UrFNTcwqx3N65r5MuV3oc00hq8vsLVaV4GKRyEc= Subject key identifier: 3E:C0:31:C9:DC:B8:02:17:59:22:F4:7F:6C:33:0A:E5:D2:61:FC:31 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 63A7ADB543A86DCB2CBA7301DFC1590FE9C1598C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198963.roa Signing time: Thu 07 Mar 2024 12:58:17 +0000 ROA not before: Thu 07 Mar 2024 12:53:17 +0000 ROA not after: Thu 06 Mar 2025 12:58:17 +0000 asID: 198963 IP address blocks: 2a05:dfc1:1300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a7:ad:b5:43:a8:6d:cb:2c:ba:73:01:df:c1:59:0f:e9:c1:59:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 7 12:53:17 2024 GMT Not After : Mar 6 12:58:17 2025 GMT Subject: CN=3EC031C9DCB802175922F47F6C330AE5D261FC31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:99:2b:4e:ca:39:7d:fd:bc:52:ba:d4:b1:d2: d8:b4:c0:ab:0b:d7:d6:43:1a:58:1a:67:6b:c8:05: 27:ef:dc:65:67:69:d3:89:2c:45:a8:d0:ab:87:2f: 8d:d6:4a:97:2d:69:2c:c7:ce:fd:00:ed:31:30:d4: 38:5a:0b:b6:b8:19:f1:c1:fd:bd:77:b7:40:bb:7e: f3:bb:97:77:4e:04:95:3e:8f:8a:e4:b4:6e:76:5f: 4d:af:ad:0b:a1:fd:6e:9c:b4:b6:46:7b:6a:9a:a8: 59:7c:95:92:7a:87:18:5d:30:d4:e6:88:2a:90:b0: 62:dc:c3:4f:68:c8:57:62:c5:d1:d4:d8:8f:b0:77: ea:59:21:52:27:f4:be:bf:3d:b2:f8:23:66:02:ca: ee:26:6a:54:99:3a:e0:a5:63:2a:f6:17:6e:ad:78: 7a:fc:59:e6:81:e6:1d:0d:84:c1:a8:81:9c:ba:9c: 1c:ba:ae:f5:fe:cb:42:05:83:b4:a2:34:17:63:d3: a7:bc:ec:69:16:ac:0d:ff:de:a6:8c:12:99:eb:05: a5:0f:58:b3:db:4e:e0:88:0d:41:8b:ed:44:5c:81: 72:f9:17:d7:22:c3:e6:90:53:0f:f6:8c:64:df:02: f5:3b:dc:43:b1:5b:22:49:a3:1c:f0:40:6c:72:9c: e1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C0:31:C9:DC:B8:02:17:59:22:F4:7F:6C:33:0A:E5:D2:61:FC:31 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198963.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1300::/40 Signature Algorithm: sha256WithRSAEncryption 36:9e:a3:ce:d8:5d:32:11:38:58:3c:26:bb:7d:06:09:2b:a2: f9:cc:03:53:8e:3b:19:63:7c:91:e9:d4:de:fd:5f:35:70:e1: ae:47:7c:94:2c:17:78:30:a0:33:9b:7b:8b:c9:e7:b8:42:47: 3c:bd:62:92:76:03:dc:46:ac:60:36:af:26:b0:3a:7c:8b:3e: d1:44:93:60:c0:4c:cd:9d:44:9d:e7:ac:c7:d8:dd:dd:13:96: 8c:2c:66:12:d9:76:dc:dc:0f:8b:e9:94:8a:a2:e7:7f:c0:8b: f7:72:d6:32:06:0a:65:f1:e7:3c:0b:b2:13:cc:fc:91:ec:02: 90:73:f1:4b:67:1f:c7:cf:de:45:28:05:a4:bf:1d:63:55:c3: 05:94:2a:6b:87:63:4b:39:22:f1:37:0e:4c:71:0e:1b:6f:4b: b7:e4:ac:54:0b:27:1b:20:20:d4:d8:0b:56:d6:bc:79:1b:3e: d7:96:e3:5a:32:2a:b6:d8:a1:cf:a3:79:11:70:94:77:b9:98: 60:ca:a6:f2:57:eb:2f:c7:9c:07:ec:07:e9:a3:ec:7d:81:ec: a5:46:13:cd:97:0d:c5:1a:4a:2c:c3:86:95:8b:df:da:6f:4c: 91:02:0f:98:b5:ba:e1:bf:79:94:9f:ae:63:de:93:95:7f:8b: c2:54:95:15 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUY6ettUOobcssunMB38FZD+nBWYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMDcxMjUzMTdaFw0yNTAzMDYxMjU4MTdaMDMxMTAvBgNV BAMTKDNFQzAzMUM5RENCODAyMTc1OTIyRjQ3RjZDMzMwQUU1RDI2MUZDMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZmStOyjl9/bxSutSx0ti0wKsL 19ZDGlgaZ2vIBSfv3GVnadOJLEWo0KuHL43WSpctaSzHzv0A7TEw1DhaC7a4GfHB /b13t0C7fvO7l3dOBJU+j4rktG52X02vrQuh/W6ctLZGe2qaqFl8lZJ6hxhdMNTm iCqQsGLcw09oyFdixdHU2I+wd+pZIVIn9L6/PbL4I2YCyu4malSZOuClYyr2F26t eHr8WeaB5h0NhMGogZy6nBy6rvX+y0IFg7SiNBdj06e87GkWrA3/3qaMEpnrBaUP WLPbTuCIDUGL7URcgXL5F9ciw+aQUw/2jGTfAvU73EOxWyJJoxzwQGxynOH5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUPsAxydy4AhdZIvR/bDMK5dJh/DEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4OTYzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRMwDQYJKoZIhvcNAQELBQADggEBADae o87YXTIROFg8Jrt9BgkrovnMA1OOOxljfJHp1N79XzVw4a5HfJQsF3gwoDObe4vJ 57hCRzy9YpJ2A9xGrGA2ryawOnyLPtFEk2DATM2dRJ3nrMfY3d0TlowsZhLZdtzc D4vplIqi53/Ai/dy1jIGCmXx5zwLshPM/JHsApBz8UtnH8fP3kUoBaS/HWNVwwWU KmuHY0s5IvE3DkxxDhtvS7fkrFQLJxsgINTYC1bWvHkbPteW41oyKrbYoc+jeRFw lHe5mGDKpvJX6y/HnAfsB+mj7H2B7KVGE82XDcUaSizDhpWL39pvTJECD5i1uuG/ eZSfrmPek5V/i8JUlRU= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org