$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200172.roa File: AS200172.roa (raw, json) Hash identifier: wKvGmtnCydOsefAfYKfcKf0/lhb9/YXq8groHoYBSIM= Subject key identifier: 5D:D0:ED:1D:81:83:F6:FB:48:01:1A:B1:C6:9F:78:9F:91:CA:1F:AD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0A7539B42D8A7DCF04D18F54D20248E07C9C0B4D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200172.roa Signing time: Sun 06 Oct 2024 04:45:08 +0000 ROA not before: Sun 06 Oct 2024 04:40:08 +0000 ROA not after: Sun 05 Oct 2025 04:45:08 +0000 asID: 200172 IP address blocks: 2a0a:6040:2600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:75:39:b4:2d:8a:7d:cf:04:d1:8f:54:d2:02:48:e0:7c:9c:0b:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:08 2024 GMT Not After : Oct 5 04:45:08 2025 GMT Subject: CN=5DD0ED1D8183F6FB48011AB1C69F789F91CA1FAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:33:7d:b1:39:62:02:18:be:b2:03:31:f2:fa: 59:6c:eb:f2:09:2c:3c:3b:1f:d1:36:0c:19:73:46: 8a:03:aa:0c:11:b8:67:55:ee:a8:cc:3c:17:88:7d: 9f:73:8a:8d:4c:69:90:c7:9c:56:ab:1d:02:8a:30: e9:a0:ed:fc:1a:36:c5:32:cd:25:25:25:e1:35:05: 04:01:bd:83:72:d4:a6:4b:eb:01:ec:6b:df:99:b1: 8f:76:8a:61:e3:c8:ae:59:fd:98:49:65:4a:57:a5: 41:0a:74:90:64:7a:e7:98:8d:24:31:82:fa:9a:db: 1f:b9:19:7e:c1:78:30:e8:d1:09:ae:fe:d2:e9:1d: c9:f3:dd:63:fe:98:db:c8:98:30:67:11:df:c2:a5: 8d:ee:b7:a3:f2:61:31:23:3c:be:5b:b7:b9:74:e7: b2:04:63:04:6f:2f:0a:06:61:c3:c6:58:0a:a9:97: 5f:cb:c0:93:06:23:dc:1c:1f:cb:b1:e1:0c:c8:5e: b5:98:87:5f:aa:7e:85:4d:81:4e:9f:23:e2:10:28: 31:8d:87:12:39:ae:da:71:ae:20:47:68:cd:a1:f3: 8a:ac:58:b4:69:ef:a4:a6:2d:59:56:9f:f8:bb:99: 13:4b:0b:8d:2a:cd:1a:5c:3d:1d:78:8b:ab:ae:32: 05:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D0:ED:1D:81:83:F6:FB:48:01:1A:B1:C6:9F:78:9F:91:CA:1F:AD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200172.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2600::/40 Signature Algorithm: sha256WithRSAEncryption 0c:bf:5e:cf:2b:f3:22:7a:c4:d4:df:8e:1e:1a:16:b8:14:1d: 2d:f2:ed:19:0d:d6:14:72:d2:a3:06:24:fb:48:74:6c:c2:bc: 6d:32:ae:0d:6d:46:98:61:6c:66:7d:40:40:18:52:53:b7:33: 4b:43:67:fb:fe:6c:20:16:f7:98:55:5a:22:3d:04:c0:92:0b: 28:9d:cf:40:4f:f3:13:40:5c:18:80:b9:5b:dc:1f:5c:bf:a7: 22:2e:cf:69:d1:7d:67:3f:54:bd:81:dd:c1:d1:1a:57:d8:bf: da:f6:06:03:02:8e:26:20:68:97:0c:4f:d2:5d:68:12:54:d8: 51:44:67:fa:c7:10:84:fa:aa:06:61:03:3d:34:7a:28:02:d4: ec:c7:5a:77:02:8d:04:8a:d9:cb:c9:a5:dd:89:3c:bc:aa:5e: 37:a1:64:87:ab:1d:d5:a1:fc:46:a2:45:1d:47:32:5e:ed:b0: 88:f5:14:44:a7:d1:bb:47:4c:81:8a:62:cc:dd:7f:ba:52:41: fd:e5:77:dc:7d:60:bd:01:a6:3b:db:49:6f:9f:41:6e:47:03: ea:2f:62:9b:25:f8:83:10:c6:b0:d6:8d:55:f5:73:f1:39:a5: 45:f9:9e:b8:05:4c:d1:33:73:6a:4e:72:de:65:f3:2f:63:00: d2:fe:e1:fe -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCnU5tC2Kfc8E0Y9U0gJI4HycC00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDhaFw0yNTEwMDUwNDQ1MDhaMDMxMTAvBgNV BAMTKDVERDBFRDFEODE4M0Y2RkI0ODAxMUFCMUM2OUY3ODlGOTFDQTFGQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoM32xOWICGL6yAzHy+lls6/IJ LDw7H9E2DBlzRooDqgwRuGdV7qjMPBeIfZ9zio1MaZDHnFarHQKKMOmg7fwaNsUy zSUlJeE1BQQBvYNy1KZL6wHsa9+ZsY92imHjyK5Z/ZhJZUpXpUEKdJBkeueYjSQx gvqa2x+5GX7BeDDo0Qmu/tLpHcnz3WP+mNvImDBnEd/CpY3ut6PyYTEjPL5bt7l0 57IEYwRvLwoGYcPGWAqpl1/LwJMGI9wcH8ux4QzIXrWYh1+qfoVNgU6fI+IQKDGN hxI5rtpxriBHaM2h84qsWLRp76SmLVlWn/i7mRNLC40qzRpcPR14i6uuMgWBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXdDtHYGD9vtIARqxxp94n5HKH60wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMTcyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCYwDQYJKoZIhvcNAQELBQADggEBAAy/ Xs8r8yJ6xNTfjh4aFrgUHS3y7RkN1hRy0qMGJPtIdGzCvG0yrg1tRphhbGZ9QEAY UlO3M0tDZ/v+bCAW95hVWiI9BMCSCyidz0BP8xNAXBiAuVvcH1y/pyIuz2nRfWc/ VL2B3cHRGlfYv9r2BgMCjiYgaJcMT9JdaBJU2FFEZ/rHEIT6qgZhAz00eigC1OzH WncCjQSK2cvJpd2JPLyqXjehZIerHdWh/EaiRR1HMl7tsIj1FESn0btHTIGKYszd f7pSQf3ld9x9YL0BpjvbSW+fQW5HA+ovYpsl+IMQxrDWjVX1c/E5pUX5nrgFTNEz c2pOct5l8y9jANL+4f4= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org