$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200007.roa File: AS200007.roa (raw, json) Hash identifier: 8cGRpvXnC6R4YqDJH1Qq4HRL1lLYdt9FXbLq3DrWunY= Subject key identifier: F3:88:92:EA:66:49:0E:E3:C3:45:1A:55:C7:24:70:F2:28:6D:93:30 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 699EF830EB1469DFA928CC863F6302561B59E530 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200007.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 200007 IP address blocks: 2a0a:6040:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:9e:f8:30:eb:14:69:df:a9:28:cc:86:3f:63:02:56:1b:59:e5:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=F38892EA66490EE3C3451A55C72470F2286D9330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8a:63:a5:99:51:6f:68:f2:00:35:d5:65:ad: dd:c0:50:b7:0f:83:f4:9e:36:c5:10:03:dc:df:36: ea:9b:73:e8:68:2d:e1:25:18:b2:7b:89:44:0f:ff: f7:80:4e:e5:8e:0a:71:42:88:7f:de:e3:26:16:34: 91:2f:6b:c6:c5:ae:02:68:d1:dc:48:1a:d8:08:6e: 21:e0:60:57:2f:09:02:4e:d1:aa:32:58:2c:67:6a: b7:86:2a:45:9f:21:e0:73:d5:5e:19:46:d2:c7:99: cf:e0:7f:22:75:be:b7:ee:95:7b:84:b4:89:65:11: c5:38:83:7a:c1:c6:3f:12:33:0a:80:08:72:a1:88: bb:36:28:6a:e9:a1:0c:66:66:74:70:e3:01:9b:b1: 1a:44:ed:5f:e4:01:7c:26:79:35:bb:94:9f:ca:0c: 40:00:1f:9d:a0:eb:64:a2:5c:6f:73:37:b4:50:d5: 77:f3:d3:5a:61:fa:50:2c:ec:6a:94:d3:c2:c1:10: 4a:e6:25:ff:dc:e3:ae:58:45:ec:e1:42:0f:05:46: 44:ad:21:b5:55:a4:19:aa:c9:5f:d7:f5:d6:bb:73: 22:5c:da:d2:47:2e:53:0e:7f:5e:17:af:96:a2:fc: 71:99:34:9d:0a:7a:37:74:b3:cd:36:f2:8c:66:fe: 34:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:88:92:EA:66:49:0E:E3:C3:45:1A:55:C7:24:70:F2:28:6D:93:30 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200007.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5900::/40 Signature Algorithm: sha256WithRSAEncryption 30:e9:11:81:81:af:e9:84:9e:c8:ce:bb:fa:34:14:e4:1a:8e: 8e:e4:23:d1:bb:51:21:38:90:06:59:c8:54:19:e2:b2:fe:29: 6b:c2:79:a9:86:bb:2c:08:1c:74:7b:6f:6d:a9:26:cd:20:76: 0c:34:5f:56:4b:7f:3c:dd:c7:54:02:f1:f6:06:bb:ae:f9:0e: bb:52:cf:ab:dc:78:5d:98:7f:a0:0b:86:8e:b4:80:91:ff:e4: 93:da:8b:45:a0:b9:bc:41:62:ac:be:28:0e:8a:40:80:68:8e: 0f:62:92:74:34:91:fc:6d:42:53:b8:8f:7a:00:5a:0f:42:0a: 41:d5:fe:23:75:73:71:37:a3:82:b3:3b:76:81:4a:f4:fd:f8: 44:e3:2c:88:9e:55:73:3b:24:43:69:51:6f:de:83:3f:a3:d8: 0f:5b:05:13:a7:63:97:6c:a7:97:6a:5f:82:1d:05:8b:b6:09: b2:db:a4:d1:8f:0f:28:12:3b:58:5d:f9:c3:d6:be:9b:6c:98: 3f:8c:7e:f2:1a:bf:87:67:95:e2:c9:bf:9c:41:60:a9:7f:c7: 88:bc:e6:79:e2:57:e2:3a:e2:01:a9:c4:e5:29:b2:fd:2b:a0: e6:a4:2b:80:f2:49:33:68:d1:93:cd:82:05:b8:06:54:69:af: 93:4b:d6:bf -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaZ74MOsUad+pKMyGP2MCVhtZ5TAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKEYzODg5MkVBNjY0OTBFRTNDMzQ1MUE1NUM3MjQ3MEYyMjg2RDkzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyimOlmVFvaPIANdVlrd3AULcP g/SeNsUQA9zfNuqbc+hoLeElGLJ7iUQP//eATuWOCnFCiH/e4yYWNJEva8bFrgJo 0dxIGtgIbiHgYFcvCQJO0aoyWCxnareGKkWfIeBz1V4ZRtLHmc/gfyJ1vrfulXuE tIllEcU4g3rBxj8SMwqACHKhiLs2KGrpoQxmZnRw4wGbsRpE7V/kAXwmeTW7lJ/K DEAAH52g62SiXG9zN7RQ1Xfz01ph+lAs7GqU08LBEErmJf/c465YRezhQg8FRkSt IbVVpBmqyV/X9da7cyJc2tJHLlMOf14Xr5ai/HGZNJ0Kejd0s8028oxm/jS7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU84iS6mZJDuPDRRpVxyRw8ihtkzAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMDA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFkwDQYJKoZIhvcNAQELBQADggEBADDp EYGBr+mEnsjOu/o0FOQajo7kI9G7USE4kAZZyFQZ4rL+KWvCeamGuywIHHR7b22p Js0gdgw0X1ZLfzzdx1QC8fYGu675DrtSz6vceF2Yf6ALho60gJH/5JPai0WgubxB Yqy+KA6KQIBojg9iknQ0kfxtQlO4j3oAWg9CCkHV/iN1c3E3o4KzO3aBSvT9+ETj LIieVXM7JENpUW/egz+j2A9bBROnY5dsp5dqX4IdBYu2CbLbpNGPDygSO1hd+cPW vptsmD+MfvIav4dnleLJv5xBYKl/x4i85nniV+I64gGpxOUpsv0roOakK4DySTNo 0ZPNggW4BlRpr5NL1r8= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org