$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198981.roa File: AS198981.roa (raw, json) Hash identifier: yQRJVxBVehf8Cu9AW8scbnbnUVQFwVlj2tBcjV6krJE= Subject key identifier: 2F:AB:BB:90:D3:EE:37:CA:0B:36:B4:E3:84:DF:49:7B:DD:82:60:C1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 06D5C9E3673BEDB343E33A986DAD997221FCD455 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198981.roa Signing time: Thu 07 Mar 2024 11:58:16 +0000 ROA not before: Thu 07 Mar 2024 11:53:16 +0000 ROA not after: Thu 06 Mar 2025 11:58:16 +0000 asID: 198981 IP address blocks: 2a05:dfc1:2b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:d5:c9:e3:67:3b:ed:b3:43:e3:3a:98:6d:ad:99:72:21:fc:d4:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 7 11:53:16 2024 GMT Not After : Mar 6 11:58:16 2025 GMT Subject: CN=2FABBB90D3EE37CA0B36B4E384DF497BDD8260C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d9:2c:80:40:3a:5a:ac:ca:27:dd:d7:d5:10: 7b:ff:62:a7:ca:a9:a6:62:e7:38:c2:21:b0:84:54: 86:ca:71:99:f6:bc:f4:0f:d7:7f:c4:5a:e3:6b:b1: 78:05:0a:3a:4f:8f:21:c9:fc:be:c7:42:f0:d9:37: b4:45:c1:3c:4c:67:79:ca:e1:89:7c:6e:44:d6:9f: 65:39:74:2b:b6:d5:23:b8:22:ad:d5:a5:0f:37:64: 26:b3:ea:df:b1:54:3f:43:8f:05:1e:49:f3:58:13: 61:22:6f:02:22:e6:90:82:b7:9d:c3:16:ad:80:0c: 33:f5:87:59:b8:f9:7c:3b:bc:13:45:67:ce:5d:ef: 9a:b4:f7:7b:96:f0:fc:3e:3e:04:af:01:bf:73:b9: a7:b6:c5:02:b4:b1:94:7c:50:32:56:73:53:1c:ad: c3:8b:86:0c:9b:57:c6:2e:fc:e2:a4:c4:d5:29:7a: 26:ef:ce:3f:5e:79:4a:08:c6:57:c9:72:cc:ee:c9: c6:dd:ee:ba:4e:f2:89:c3:d1:76:14:63:7d:87:67: 68:d4:45:b2:ac:c2:e4:2e:da:bb:5a:fa:68:29:f0: 35:cf:f7:2c:90:8c:ab:48:b5:cb:e8:c7:c5:24:f1: 28:56:ab:08:24:9c:98:4f:c0:ed:6a:b9:6d:0a:c5: 60:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:AB:BB:90:D3:EE:37:CA:0B:36:B4:E3:84:DF:49:7B:DD:82:60:C1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2b00::/40 Signature Algorithm: sha256WithRSAEncryption af:b4:a2:35:ee:39:4e:e5:77:fd:9a:00:24:84:e8:32:c9:7b: f6:0a:a8:84:a9:79:86:f4:38:c6:3e:a1:5c:bf:f9:2e:82:2f: 1a:a5:6c:1c:bb:c6:6c:cf:19:d3:3b:e0:47:3a:89:c6:c7:02: 8c:f4:fb:bb:63:1c:1d:d0:54:32:a1:6f:b0:2d:7f:79:ac:f7: 51:f6:e5:98:5f:29:db:e0:de:29:fa:08:e4:0f:27:1d:5d:b8: 41:db:b5:21:fb:26:dd:69:af:39:8d:2a:48:c1:1e:65:56:b2: ba:b7:af:c3:36:93:e7:94:07:a4:ed:a9:e2:81:17:a9:53:f5: 0e:a4:ca:9c:c5:09:a0:ca:8d:e5:76:a2:16:ca:cc:d5:3f:28: 05:c6:67:3a:19:0e:b6:09:35:e0:5c:d5:2f:b9:b9:a5:45:a5: 69:19:33:e0:31:37:f5:00:b7:9f:e6:13:91:18:0b:46:3a:e5: 99:fc:5c:69:7c:6e:3f:0c:ea:9d:3a:2e:f2:ce:63:f6:0b:ba: 72:53:82:d0:bc:0a:0d:06:9e:5c:ab:c8:7d:8e:3a:8d:a2:c8: 84:bf:f8:85:c5:0b:fb:6f:96:60:23:d7:6d:d5:ef:02:6f:c3: 4a:a2:37:2e:43:19:33:c2:75:0a:f5:e9:cf:06:7c:47:03:bc: 32:c2:16:93 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBtXJ42c77bND4zqYba2ZciH81FUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDAzMDcxMTUzMTZaFw0yNTAzMDYxMTU4MTZaMDMxMTAvBgNV BAMTKDJGQUJCQjkwRDNFRTM3Q0EwQjM2QjRFMzg0REY0OTdCREQ4MjYwQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm2SyAQDparMon3dfVEHv/YqfK qaZi5zjCIbCEVIbKcZn2vPQP13/EWuNrsXgFCjpPjyHJ/L7HQvDZN7RFwTxMZ3nK 4Yl8bkTWn2U5dCu21SO4Iq3VpQ83ZCaz6t+xVD9DjwUeSfNYE2EibwIi5pCCt53D Fq2ADDP1h1m4+Xw7vBNFZ85d75q093uW8Pw+PgSvAb9zuae2xQK0sZR8UDJWc1Mc rcOLhgybV8Yu/OKkxNUpeibvzj9eeUoIxlfJcszuycbd7rpO8onD0XYUY32HZ2jU RbKswuQu2rta+mgp8DXP9yyQjKtItcvox8Uk8ShWqwgknJhPwO1quW0KxWCDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUL6u7kNPuN8oLNrTjhN9Je92CYMEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4OTgxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwSswDQYJKoZIhvcNAQELBQADggEBAK+0 ojXuOU7ld/2aACSE6DLJe/YKqISpeYb0OMY+oVy/+S6CLxqlbBy7xmzPGdM74Ec6 icbHAoz0+7tjHB3QVDKhb7Atf3ms91H25ZhfKdvg3in6COQPJx1duEHbtSH7Jt1p rzmNKkjBHmVWsrq3r8M2k+eUB6TtqeKBF6lT9Q6kypzFCaDKjeV2ohbKzNU/KAXG ZzoZDrYJNeBc1S+5uaVFpWkZM+AxN/UAt5/mE5EYC0Y65Zn8XGl8bj8M6p06LvLO Y/YLunJTgtC8Cg0GnlyryH2OOo2iyIS/+IXFC/tvlmAj123V7wJvw0qiNy5DGTPC dQr16c8GfEcDvDLCFpM= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org