$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200122.roa File: AS200122.roa (raw, json) Hash identifier: WNH5kMOVLuYqyYxWjIzNk7hzt+sE0/l8pw0JX59XZ2A= Subject key identifier: 94:39:D4:DB:73:BE:7D:14:59:52:77:A8:B3:1C:72:FC:B8:32:46:9C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6FE6CF0B1E9801AC861E776476D10BD1DB592A65 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200122.roa Signing time: Sun 06 Oct 2024 04:45:13 +0000 ROA not before: Sun 06 Oct 2024 04:40:13 +0000 ROA not after: Sun 05 Oct 2025 04:45:13 +0000 asID: 200122 IP address blocks: 2a0a:6040:e700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:e6:cf:0b:1e:98:01:ac:86:1e:77:64:76:d1:0b:d1:db:59:2a:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:13 2024 GMT Not After : Oct 5 04:45:13 2025 GMT Subject: CN=9439D4DB73BE7D14595277A8B31C72FCB832469C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:21:f3:17:d6:72:da:86:f5:f7:7f:95:ef:8b: f6:9d:05:6b:83:bc:cb:5a:6b:41:7e:0f:83:70:81: f4:78:ff:96:80:a2:94:ff:de:9a:18:45:c5:4d:71: c7:33:d9:5c:c1:e5:c8:cf:62:f7:09:91:c2:70:7b: 79:95:a7:bf:78:7d:1e:59:71:94:ab:4c:aa:94:9f: 2f:8e:28:63:c6:38:6a:5a:0d:82:97:b7:93:67:50: 25:41:a8:86:5c:2d:e1:f1:68:61:28:f4:3c:34:9a: 28:2a:e9:1b:21:f9:23:35:49:e7:43:e5:76:d8:be: 25:54:67:77:0b:c5:c9:c9:d9:f3:7b:7a:d5:ce:fc: 4c:86:4d:a9:87:37:4d:29:2e:8e:1e:93:4e:ab:95: 7a:30:00:62:ea:60:27:f8:45:b0:d0:a9:d1:99:46: 4f:12:e3:ac:13:e6:99:9c:4e:d2:a4:b8:e1:f2:91: 53:b6:6a:af:b0:2f:dc:52:bc:ad:85:73:67:69:36: e7:3b:77:fd:9b:29:65:56:ca:b3:57:17:42:0d:38: 1d:ef:42:1f:4d:44:ef:02:1d:a9:c2:b6:2f:19:89: 99:79:e0:b3:83:0a:51:7e:68:8c:d2:8e:a0:ff:81: b5:b1:d3:16:ac:a2:e2:a9:56:bd:f6:d4:55:6a:80: 0b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:39:D4:DB:73:BE:7D:14:59:52:77:A8:B3:1C:72:FC:B8:32:46:9C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200122.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e700::/40 Signature Algorithm: sha256WithRSAEncryption 6f:4c:12:07:51:a9:79:b9:bf:b5:62:cc:7a:41:c1:5c:39:29: ec:16:26:67:74:74:ad:a2:fe:76:82:db:38:46:59:55:e2:a4: e4:29:c2:1c:00:1f:db:be:07:b7:08:16:7e:52:88:80:86:21: 87:64:3f:db:a6:a6:b3:b2:bf:fa:ba:20:c2:7e:c0:3f:9a:2a: ca:af:1a:0c:22:ec:80:ea:73:04:72:8c:e9:6e:2f:89:2e:d6: 9d:9b:9a:8f:f4:f2:31:78:35:9f:65:f8:f0:e0:7c:c1:8d:79: 62:0d:be:74:db:2f:0d:ef:19:5e:6f:79:df:7d:ea:33:b7:d7: 85:9f:50:1e:9a:e3:8d:a5:9f:84:47:b1:21:1d:bb:cb:4b:74: 7d:3c:f9:5b:b6:76:ba:90:c5:2d:24:e3:6a:f3:ab:1c:42:f4: 74:6e:c7:4f:88:18:62:39:a1:fb:2b:a2:84:19:b9:db:cf:43: cd:dc:24:d0:34:2b:d2:60:b0:53:ff:9b:6c:3e:59:81:e6:50: 0f:e5:ab:83:31:5b:40:c4:c2:46:ae:9c:d9:82:f5:61:73:8e: b3:6a:92:2e:5b:21:ba:53:4f:c7:18:4c:c8:2c:39:3d:d8:44: af:81:1c:fa:2c:54:30:b5:51:f6:6e:8e:32:33:fd:68:3a:7a: 50:3f:04:04 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUb+bPCx6YAayGHndkdtEL0dtZKmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTNaFw0yNTEwMDUwNDQ1MTNaMDMxMTAvBgNV BAMTKDk0MzlENERCNzNCRTdEMTQ1OTUyNzdBOEIzMUM3MkZDQjgzMjQ2OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxIfMX1nLahvX3f5Xvi/adBWuD vMtaa0F+D4NwgfR4/5aAopT/3poYRcVNcccz2VzB5cjPYvcJkcJwe3mVp794fR5Z cZSrTKqUny+OKGPGOGpaDYKXt5NnUCVBqIZcLeHxaGEo9Dw0migq6Rsh+SM1SedD 5XbYviVUZ3cLxcnJ2fN7etXO/EyGTamHN00pLo4ek06rlXowAGLqYCf4RbDQqdGZ Rk8S46wT5pmcTtKkuOHykVO2aq+wL9xSvK2Fc2dpNuc7d/2bKWVWyrNXF0INOB3v Qh9NRO8CHanCti8ZiZl54LODClF+aIzSjqD/gbWx0xasouKpVr321FVqgAu7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlDnU23O+fRRZUneosxxy/LgyRpwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMTIyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOcwDQYJKoZIhvcNAQELBQADggEBAG9M EgdRqXm5v7VizHpBwVw5KewWJmd0dK2i/naC2zhGWVXipOQpwhwAH9u+B7cIFn5S iICGIYdkP9umprOyv/q6IMJ+wD+aKsqvGgwi7IDqcwRyjOluL4ku1p2bmo/08jF4 NZ9l+PDgfMGNeWINvnTbLw3vGV5ved996jO314WfUB6a442ln4RHsSEdu8tLdH08 +Vu2drqQxS0k42rzqxxC9HRux0+IGGI5ofsrooQZudvPQ83cJNA0K9JgsFP/m2w+ WYHmUA/lq4MxW0DEwkaunNmC9WFzjrNqki5bIbpTT8cYTMgsOT3YRK+BHPosVDC1 UfZujjIz/Wg6elA/BAQ= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org