$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200221.roa File: AS200221.roa (raw, json) Hash identifier: JdLf3jm+pyDqdl2v1EjOmMne+Vw5/OknXj3cZVomt70= Subject key identifier: 27:20:7A:F2:8F:4F:0D:7B:57:30:6C:0E:23:27:32:46:50:2F:5E:3B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 76DEC33EEEACA32E783431DE275823AF22068538 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200221.roa Signing time: Sun 06 Oct 2024 04:45:19 +0000 ROA not before: Sun 06 Oct 2024 04:40:19 +0000 ROA not after: Sun 05 Oct 2025 04:45:19 +0000 asID: 200221 IP address blocks: 2a0a:6040:2100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:de:c3:3e:ee:ac:a3:2e:78:34:31:de:27:58:23:af:22:06:85:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:19 2024 GMT Not After : Oct 5 04:45:19 2025 GMT Subject: CN=27207AF28F4F0D7B57306C0E23273246502F5E3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d4:00:81:8e:ca:e7:83:e0:e6:44:f4:47:d3: c9:73:84:12:ef:b8:a6:7f:4c:81:9b:49:cb:6c:1a: cd:19:c8:a5:45:66:70:f0:7e:7a:01:c3:fb:c8:b0: 6c:2d:c0:36:47:08:b1:2e:43:1d:8e:ec:b1:21:93: 3c:06:e8:b8:25:fc:53:36:61:10:12:0e:1a:74:f8: 11:53:38:9a:5b:11:37:2c:fb:36:d6:1b:3d:f9:d8: 50:3a:5d:a2:22:65:b1:74:b8:b3:be:83:ba:ce:fe: 46:a2:99:03:66:cf:e4:65:bf:e1:a2:5d:6b:d7:26: 3b:93:4d:35:b5:86:ff:b6:f5:5a:a0:8f:3a:b2:4c: ff:a9:67:29:d0:40:5c:97:22:0a:3a:89:4c:db:01: 88:c5:30:0b:9c:82:ef:73:cb:b0:d7:90:55:0c:7b: 53:f1:03:5a:e4:3e:90:4a:7a:db:11:7b:8b:84:1d: ba:30:15:6b:6b:95:aa:0e:49:91:41:74:da:bc:f7: 6c:94:4e:ea:43:df:0d:61:3c:0e:88:df:e2:22:00: cf:ff:1f:d0:73:86:9b:8f:eb:62:dd:d9:b9:71:65: 3f:53:57:fc:53:23:11:ed:33:fa:51:aa:21:0f:15: 1b:b0:e9:65:ac:1a:60:15:8c:c4:47:70:04:6a:b6: a5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:20:7A:F2:8F:4F:0D:7B:57:30:6C:0E:23:27:32:46:50:2F:5E:3B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200221.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2100::/40 Signature Algorithm: sha256WithRSAEncryption 94:3c:67:22:92:c2:96:63:42:7f:a4:b1:2e:24:4d:50:8c:9d: 8f:94:f5:27:b1:c3:8c:5f:45:00:10:9e:9d:bf:cd:0f:d6:30: 09:7f:9a:4b:91:03:ae:cc:22:38:d5:d6:b9:1d:1b:1d:21:83: ab:ee:08:5b:06:91:27:8b:30:32:3e:ef:1f:b6:20:97:0d:33: ee:cb:be:3f:dc:67:43:25:0a:60:85:cc:91:f7:5f:54:f1:30: 38:5a:b4:c8:15:96:0f:20:c8:a1:0a:42:40:e6:6d:38:2b:63: f6:8f:75:f4:71:0c:3d:89:5f:20:a2:b5:a5:dc:d2:95:e0:43: 00:92:db:b6:fa:44:94:f2:67:e7:3c:d7:b8:45:e6:62:5c:6b: e0:1c:1c:b2:1e:62:1f:60:74:6c:67:89:da:c3:1b:f1:ec:e7: e7:6a:6a:4f:da:02:0e:d5:15:a5:4b:6f:a0:14:ca:33:a9:a8: c3:c9:a4:42:91:5a:3f:0f:a5:0e:86:e2:b5:fb:fc:5c:7b:ff: 6d:50:0f:a5:73:05:24:f4:cc:9b:c4:e6:51:88:6e:8f:ee:09: 54:8a:eb:66:7f:ec:02:63:55:d2:e6:76:6a:27:0d:25:87:52: e9:be:87:2b:4f:54:d1:63:07:f3:bf:9a:66:f4:37:57:93:b2: 6f:c4:91:04 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdt7DPu6soy54NDHeJ1gjryIGhTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTlaFw0yNTEwMDUwNDQ1MTlaMDMxMTAvBgNV BAMTKDI3MjA3QUYyOEY0RjBEN0I1NzMwNkMwRTIzMjczMjQ2NTAyRjVFM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI1ACBjsrng+DmRPRH08lzhBLv uKZ/TIGbSctsGs0ZyKVFZnDwfnoBw/vIsGwtwDZHCLEuQx2O7LEhkzwG6Lgl/FM2 YRASDhp0+BFTOJpbETcs+zbWGz352FA6XaIiZbF0uLO+g7rO/kaimQNmz+Rlv+Gi XWvXJjuTTTW1hv+29VqgjzqyTP+pZynQQFyXIgo6iUzbAYjFMAucgu9zy7DXkFUM e1PxA1rkPpBKetsRe4uEHbowFWtrlaoOSZFBdNq892yUTupD3w1hPA6I3+IiAM// H9BzhpuP62Ld2blxZT9TV/xTIxHtM/pRqiEPFRuw6WWsGmAVjMRHcARqtqVTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJyB68o9PDXtXMGwOIycyRlAvXjswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjIxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCEwDQYJKoZIhvcNAQELBQADggEBAJQ8 ZyKSwpZjQn+ksS4kTVCMnY+U9Sexw4xfRQAQnp2/zQ/WMAl/mkuRA67MIjjV1rkd Gx0hg6vuCFsGkSeLMDI+7x+2IJcNM+7Lvj/cZ0MlCmCFzJH3X1TxMDhatMgVlg8g yKEKQkDmbTgrY/aPdfRxDD2JXyCitaXc0pXgQwCS27b6RJTyZ+c817hF5mJca+Ac HLIeYh9gdGxnidrDG/Hs5+dqak/aAg7VFaVLb6AUyjOpqMPJpEKRWj8PpQ6G4rX7 /Fx7/21QD6VzBST0zJvE5lGIbo/uCVSK62Z/7AJjVdLmdmonDSWHUum+hytPVNFj B/O/mmb0N1eTsm/EkQQ= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org