$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200141.roa File: AS200141.roa (raw, json) Hash identifier: 1MxFj4P2QRN0RFD8nwEgZKUvi+3RSF9mA8tRhNGpYao= Subject key identifier: 91:D5:C9:4E:EA:63:6A:37:6E:F7:33:E0:8A:17:DA:D7:AF:FD:AA:52 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2ACCC3F026A683DE73BFA11262BED2A2C0A7DC66 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200141.roa Signing time: Sun 06 Oct 2024 04:45:10 +0000 ROA not before: Sun 06 Oct 2024 04:40:10 +0000 ROA not after: Sun 05 Oct 2025 04:45:10 +0000 asID: 200141 IP address blocks: 2a0a:6040:4a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:cc:c3:f0:26:a6:83:de:73:bf:a1:12:62:be:d2:a2:c0:a7:dc:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:10 2024 GMT Not After : Oct 5 04:45:10 2025 GMT Subject: CN=91D5C94EEA636A376EF733E08A17DAD7AFFDAA52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:87:ad:0e:5c:42:50:54:cf:11:d2:0a:0a:55: 5c:4c:06:74:ef:29:1b:ba:eb:c0:16:90:bb:aa:d5: e0:3a:44:03:28:bd:42:95:81:8a:f3:f7:11:14:79: 84:6b:e7:c1:d5:01:49:2c:2e:33:62:f6:7e:da:6b: 3d:45:15:11:c3:16:4c:44:3a:b2:f3:ae:41:a2:ea: 13:57:89:1e:a5:5c:c6:0e:a2:06:35:ca:5c:27:51: f2:8a:0a:be:f7:06:1c:c9:f3:df:d4:00:34:86:8d: 6c:5e:9c:25:e0:f8:76:98:16:3d:81:57:4c:67:49: a4:18:1d:6d:35:33:2a:c1:3e:ec:21:cb:1d:59:db: 33:1c:e5:66:2f:ac:11:a9:ad:77:16:79:28:54:b2: 23:91:78:a1:07:9c:96:bb:e5:e0:11:19:87:7c:d3: 96:ee:49:64:80:b8:d4:66:1b:b6:13:15:91:65:95: ed:9f:b0:b8:9a:ad:a0:14:d3:57:48:b1:11:46:8e: 27:59:92:d4:45:7e:c0:36:18:4d:47:f0:4e:26:90: e5:5f:64:49:6c:fd:39:42:2a:ba:a1:70:49:de:32: fc:64:0c:77:b0:03:86:1f:3a:97:f2:94:35:b9:f7: 68:dd:32:a0:c1:c6:ff:17:fa:34:c7:b4:6a:a2:80: d4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D5:C9:4E:EA:63:6A:37:6E:F7:33:E0:8A:17:DA:D7:AF:FD:AA:52 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200141.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4a00::/40 Signature Algorithm: sha256WithRSAEncryption 29:85:9a:f7:67:4f:72:05:7d:43:bb:83:81:c1:f4:8f:03:97: e5:03:2f:b9:04:a2:45:47:29:0d:c1:41:25:6c:93:41:6c:61: 24:18:12:91:49:47:20:ed:d7:ea:f6:3a:27:37:77:ca:80:f6: a3:3e:03:1c:99:8e:33:a8:46:78:ad:84:f5:37:c3:f3:d5:77: 8f:b9:78:a0:50:49:e6:5e:ff:cb:1b:fb:be:d2:35:64:a7:06: 9a:46:3b:ca:61:bb:4d:06:33:7d:96:81:72:6e:01:32:e9:ed: ab:f0:df:89:e0:a9:df:1f:90:b8:42:38:01:68:ac:fa:bb:9c: d3:da:64:f9:53:05:39:f6:3e:86:71:5b:ba:ba:f6:0c:d2:aa: 26:ae:8f:15:59:8e:b5:1c:58:9d:c5:12:a5:85:d2:23:0d:44: 7d:3b:cd:da:04:37:11:12:b0:24:8d:7b:b5:14:2d:84:df:a0: b9:52:b4:66:cc:4e:0a:27:db:01:f9:30:bb:71:9c:93:3b:67: 70:1c:71:bc:e1:ee:8e:98:05:26:74:13:64:7b:a3:96:94:77: 26:55:ac:1d:30:a7:d5:5e:83:10:a5:8a:6f:8b:e1:21:0d:00: 4c:65:48:28:07:5b:03:d8:9f:4f:15:3c:a4:5b:a0:2c:71:6a: b2:a7:6b:7c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKszD8Camg95zv6ESYr7SosCn3GYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTBaFw0yNTEwMDUwNDQ1MTBaMDMxMTAvBgNV BAMTKDkxRDVDOTRFRUE2MzZBMzc2RUY3MzNFMDhBMTdEQUQ3QUZGREFBNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5h60OXEJQVM8R0goKVVxMBnTv KRu668AWkLuq1eA6RAMovUKVgYrz9xEUeYRr58HVAUksLjNi9n7aaz1FFRHDFkxE OrLzrkGi6hNXiR6lXMYOogY1ylwnUfKKCr73BhzJ89/UADSGjWxenCXg+HaYFj2B V0xnSaQYHW01MyrBPuwhyx1Z2zMc5WYvrBGprXcWeShUsiOReKEHnJa75eARGYd8 05buSWSAuNRmG7YTFZFlle2fsLiaraAU01dIsRFGjidZktRFfsA2GE1H8E4mkOVf ZEls/TlCKrqhcEneMvxkDHewA4YfOpfylDW592jdMqDBxv8X+jTHtGqigNSZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUkdXJTupjajdu9zPgihfa16/9qlIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMTQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEowDQYJKoZIhvcNAQELBQADggEBACmF mvdnT3IFfUO7g4HB9I8Dl+UDL7kEokVHKQ3BQSVsk0FsYSQYEpFJRyDt1+r2Oic3 d8qA9qM+AxyZjjOoRnithPU3w/PVd4+5eKBQSeZe/8sb+77SNWSnBppGO8phu00G M32WgXJuATLp7avw34ngqd8fkLhCOAForPq7nNPaZPlTBTn2PoZxW7q69gzSqiau jxVZjrUcWJ3FEqWF0iMNRH07zdoENxESsCSNe7UULYTfoLlStGbMTgon2wH5MLtx nJM7Z3Accbzh7o6YBSZ0E2R7o5aUdyZVrB0wp9VegxClim+L4SENAExlSCgHWwPY n08VPKRboCxxarKna3w= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org