$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200158.roa File: AS200158.roa (raw, json) Hash identifier: gJKTabGCuj2y9KaVsZZ8hqzK0pogDukXmB2ydCFtDnw= Subject key identifier: 67:53:E5:8A:AE:0A:4A:49:C8:03:26:EB:AE:14:35:C1:F8:E1:DE:DD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1330EC37894BF5D0A7D851F43C4C422E37FC8519 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200158.roa Signing time: Sun 06 Oct 2024 04:44:55 +0000 ROA not before: Sun 06 Oct 2024 04:39:55 +0000 ROA not after: Sun 05 Oct 2025 04:44:55 +0000 asID: 200158 IP address blocks: 2a0a:6040:600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:30:ec:37:89:4b:f5:d0:a7:d8:51:f4:3c:4c:42:2e:37:fc:85:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:55 2024 GMT Not After : Oct 5 04:44:55 2025 GMT Subject: CN=6753E58AAE0A4A49C80326EBAE1435C1F8E1DEDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:38:8b:72:f1:1f:d4:21:79:4d:36:68:cd:47: 95:fd:b4:49:43:b7:8b:be:8e:7e:af:a0:2c:9c:bb: 8e:f7:f1:1c:12:b8:c3:ba:45:d7:ed:cb:2e:7c:80: dd:57:70:89:68:a9:50:43:69:78:1c:31:41:db:f0: 92:66:55:de:bf:c4:fb:25:39:c2:d3:d7:db:d5:aa: 1d:1c:d6:dc:8a:b5:03:1d:d8:67:09:67:ac:e7:19: 06:68:f5:87:f3:cc:2c:2e:31:7c:4a:8a:4e:4f:9b: 71:8b:c1:e6:13:2e:91:1a:c8:b3:d6:94:85:da:e9: 99:d6:87:91:f4:db:2e:5d:62:83:17:21:96:10:77: 48:84:84:47:ac:71:db:42:94:7d:dd:3e:37:ae:8b: db:f5:71:24:a2:03:ce:bd:7b:af:65:8e:5b:5e:c0: fc:da:5b:bd:b1:ee:73:db:9c:40:b9:f5:d4:9e:7b: ea:be:74:dc:f2:e8:95:5e:6b:9f:ab:53:6b:a4:66: 13:6b:97:02:2e:3c:e3:9d:94:2e:f3:37:f9:7f:77: 6c:a5:64:8e:de:95:6f:23:5e:cc:40:82:60:31:ab: f2:8c:b9:09:0d:32:27:b4:6e:e4:7a:c8:d9:60:84: 4f:9d:2e:d4:0d:e4:f7:82:ee:f3:a8:a7:e2:35:3a: e1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:53:E5:8A:AE:0A:4A:49:C8:03:26:EB:AE:14:35:C1:F8:E1:DE:DD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200158.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:600::/40 Signature Algorithm: sha256WithRSAEncryption 9d:fa:00:95:dc:3b:7e:12:18:ad:63:a3:8a:5c:6c:ac:00:59: 1b:c6:24:02:09:a7:56:61:38:34:b1:e9:e0:d9:22:96:28:83: 49:e5:14:4f:c0:c7:b3:a5:09:16:ca:04:3d:47:2d:ed:f3:9e: 9e:d9:ab:76:05:e3:b1:68:c8:0b:ac:9c:3a:e2:45:63:82:28: 5c:44:b3:42:00:e9:1f:9f:13:be:d6:51:19:ab:4c:89:3f:8a: 3b:87:0d:20:cc:c1:f2:6e:1e:0c:f4:7b:cf:bb:32:31:95:13: f6:dd:ff:7e:bc:c4:a9:f4:7f:50:29:2e:9f:00:7b:59:bb:66: 11:5e:26:2f:34:0a:43:9a:cb:cc:1b:ab:19:e3:a6:62:b3:fa: bb:22:c8:8d:21:57:8c:14:b7:d4:b2:a1:9d:78:d2:4d:04:b9: 08:27:eb:73:b9:a6:23:64:b9:8f:ef:03:56:f9:3d:b1:c2:9e: 39:ac:08:78:91:29:84:c3:21:52:ca:5f:0c:9b:dd:ce:2d:11: 22:ad:8e:9e:a8:f1:a0:84:64:e9:54:16:ec:43:c4:09:49:0e: eb:54:d4:b4:11:21:a9:0a:a5:27:cf:67:2a:f3:44:5e:16:fc: 58:48:87:ae:3d:e3:80:e3:80:38:1b:29:c7:a4:c2:56:9b:f1: ae:28:4c:9c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEzDsN4lL9dCn2FH0PExCLjf8hRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTVaFw0yNTEwMDUwNDQ0NTVaMDMxMTAvBgNV BAMTKDY3NTNFNThBQUUwQTRBNDlDODAzMjZFQkFFMTQzNUMxRjhFMURFREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXOIty8R/UIXlNNmjNR5X9tElD t4u+jn6voCycu4738RwSuMO6Rdftyy58gN1XcIloqVBDaXgcMUHb8JJmVd6/xPsl OcLT19vVqh0c1tyKtQMd2GcJZ6znGQZo9YfzzCwuMXxKik5Pm3GLweYTLpEayLPW lIXa6ZnWh5H02y5dYoMXIZYQd0iEhEescdtClH3dPjeui9v1cSSiA869e69ljlte wPzaW72x7nPbnEC59dSee+q+dNzy6JVea5+rU2ukZhNrlwIuPOOdlC7zN/l/d2yl ZI7elW8jXsxAgmAxq/KMuQkNMie0buR6yNlghE+dLtQN5PeC7vOop+I1OuEbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZ1Pliq4KSknIAybrrhQ1wfjh3t0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMTU4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAYwDQYJKoZIhvcNAQELBQADggEBAJ36 AJXcO34SGK1jo4pcbKwAWRvGJAIJp1ZhODSx6eDZIpYog0nlFE/Ax7OlCRbKBD1H Le3znp7Zq3YF47FoyAusnDriRWOCKFxEs0IA6R+fE77WURmrTIk/ijuHDSDMwfJu Hgz0e8+7MjGVE/bd/368xKn0f1ApLp8Ae1m7ZhFeJi80CkOay8wbqxnjpmKz+rsi yI0hV4wUt9SyoZ140k0EuQgn63O5piNkuY/vA1b5PbHCnjmsCHiRKYTDIVLKXwyb 3c4tESKtjp6o8aCEZOlUFuxDxAlJDutU1LQRIakKpSfPZyrzRF4W/FhIh64944Dj gDgbKcekwlab8a4oTJw= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org