$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200219.roa File: AS200219.roa (raw, json) Hash identifier: hYBmFl8P8lS/dMnmNEgLamJUwS5CG5dSeb8FaZxLEH8= Subject key identifier: D0:07:99:D7:8E:F5:86:83:B6:FE:62:97:DA:14:D9:3C:12:3E:86:30 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 49D30A478D79B5AB3E51F2453816CB1FD1829849 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200219.roa Signing time: Sun 06 Oct 2024 04:45:09 +0000 ROA not before: Sun 06 Oct 2024 04:40:09 +0000 ROA not after: Sun 05 Oct 2025 04:45:09 +0000 asID: 200219 IP address blocks: 2a0a:6040:2500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d3:0a:47:8d:79:b5:ab:3e:51:f2:45:38:16:cb:1f:d1:82:98:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:09 2024 GMT Not After : Oct 5 04:45:09 2025 GMT Subject: CN=D00799D78EF58683B6FE6297DA14D93C123E8630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3c:0b:33:ef:d8:3e:5b:66:18:a9:1b:87:4f: 19:85:6a:f6:b2:41:52:d3:7a:17:42:30:1a:f7:d4: c6:77:05:d5:a1:ad:4b:f0:ee:b7:b3:0a:78:24:3a: 8e:05:6a:ec:14:0b:30:09:a9:1d:5c:a5:45:41:72: 42:7b:66:ca:da:3d:98:fc:1a:c1:8b:0b:96:bf:79: 9a:84:90:43:3a:1c:b5:78:5e:9a:19:b8:21:11:4b: 92:e3:66:35:c3:00:14:93:64:7d:9a:a4:7e:17:75: 82:30:cc:ba:27:b1:7b:42:f5:34:79:9f:61:e0:3e: 06:4d:c3:0c:d7:44:62:8e:29:81:76:9d:5e:11:ad: 75:7d:3c:e7:b1:31:b1:2e:c4:b7:dd:56:cd:be:fa: e7:d7:b2:4f:67:7f:d5:5a:f5:73:88:99:57:bf:18: 5f:c4:f4:e5:7e:ff:52:76:c5:4f:8f:37:da:a1:38: 57:4e:16:a5:13:b8:a7:bd:c2:89:b2:ab:d0:27:c8: 24:98:26:35:8e:15:35:c0:d3:85:06:24:67:da:ff: eb:7c:97:08:6c:16:15:03:78:bf:c5:b9:12:45:72: 4d:ce:a5:3a:1e:79:43:fd:40:1d:e5:61:17:a3:6d: 87:ad:26:26:11:1f:e9:8f:80:01:14:54:1c:fd:44: 5a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:07:99:D7:8E:F5:86:83:B6:FE:62:97:DA:14:D9:3C:12:3E:86:30 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200219.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2500::/40 Signature Algorithm: sha256WithRSAEncryption a4:5b:7d:31:07:bc:c3:57:04:36:f7:dd:2b:53:16:19:95:dd: 00:b2:b6:e0:56:5b:73:2f:0a:33:c7:ca:62:96:bb:1e:07:ac: 80:a1:cd:13:fa:86:41:4f:42:24:b7:58:29:25:d6:06:00:41: 72:9e:73:4c:1a:ec:06:c3:3e:33:dd:a9:48:47:af:dd:b2:d2: 14:a7:ce:8d:cb:b4:76:2a:53:ac:9d:3b:7e:02:c0:84:12:0d: a2:3b:8a:b2:7e:67:39:bd:d7:f6:4a:88:f0:68:a8:4b:51:9d: 22:6b:2c:31:b1:39:a8:f2:70:65:40:36:18:d7:da:0d:54:66: db:40:bd:3a:86:62:9d:e5:f0:9b:0e:bd:39:fa:d7:f5:42:94: 81:b1:6f:10:3f:8b:22:8b:1c:86:c9:7b:9f:bf:59:0b:f3:7b: 5a:38:8f:0b:5a:f5:6a:6c:c7:cb:5e:56:b9:4b:ec:f2:20:89: 7a:88:f5:57:0d:22:b6:79:07:b6:02:67:06:66:6c:df:e7:1e: ec:32:cc:1c:55:e8:9b:94:ac:5f:96:f0:37:1a:8d:34:bd:23: be:b1:28:c9:89:88:38:6e:2b:ac:98:1c:83:20:38:da:de:95: ac:67:d9:d2:39:ce:5b:2d:a6:2d:f9:82:92:d2:7e:c2:ef:bf: 0d:fd:2e:16 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSdMKR415tas+UfJFOBbLH9GCmEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDlaFw0yNTEwMDUwNDQ1MDlaMDMxMTAvBgNV BAMTKEQwMDc5OUQ3OEVGNTg2ODNCNkZFNjI5N0RBMTREOTNDMTIzRTg2MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnPAsz79g+W2YYqRuHTxmFavay QVLTehdCMBr31MZ3BdWhrUvw7rezCngkOo4FauwUCzAJqR1cpUVBckJ7ZsraPZj8 GsGLC5a/eZqEkEM6HLV4XpoZuCERS5LjZjXDABSTZH2apH4XdYIwzLonsXtC9TR5 n2HgPgZNwwzXRGKOKYF2nV4RrXV9POexMbEuxLfdVs2++ufXsk9nf9Va9XOImVe/ GF/E9OV+/1J2xU+PN9qhOFdOFqUTuKe9womyq9AnyCSYJjWOFTXA04UGJGfa/+t8 lwhsFhUDeL/FuRJFck3OpToeeUP9QB3lYRejbYetJiYRH+mPgAEUVBz9RFofAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU0AeZ1471hoO2/mKX2hTZPBI+hjAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjE5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCUwDQYJKoZIhvcNAQELBQADggEBAKRb fTEHvMNXBDb33StTFhmV3QCytuBWW3MvCjPHymKWux4HrIChzRP6hkFPQiS3WCkl 1gYAQXKec0wa7AbDPjPdqUhHr92y0hSnzo3LtHYqU6ydO34CwIQSDaI7irJ+Zzm9 1/ZKiPBoqEtRnSJrLDGxOajycGVANhjX2g1UZttAvTqGYp3l8JsOvTn61/VClIGx bxA/iyKLHIbJe5+/WQvze1o4jwta9Wpsx8teVrlL7PIgiXqI9VcNIrZ5B7YCZwZm bN/nHuwyzBxV6JuUrF+W8DcajTS9I76xKMmJiDhuK6yYHIMgONrelaxn2dI5zlst pi35gpLSfsLvvw39LhY= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org