$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200234.roa File: AS200234.roa (raw, json) Hash identifier: RJFykYQ79WaNmBdpcUuFE7ciHi7F2Ix1vQNL346lxHk= Subject key identifier: 20:DA:92:B4:9D:13:4F:34:4F:B1:DB:97:47:E7:EF:B2:BC:77:3D:D7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 048F6AEDCAC8850F9B04D0321617930C6F46FF61 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200234.roa Signing time: Sun 06 Oct 2024 04:45:08 +0000 ROA not before: Sun 06 Oct 2024 04:40:08 +0000 ROA not after: Sun 05 Oct 2025 04:45:08 +0000 asID: 200234 IP address blocks: 2a0a:6040:3600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:8f:6a:ed:ca:c8:85:0f:9b:04:d0:32:16:17:93:0c:6f:46:ff:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:08 2024 GMT Not After : Oct 5 04:45:08 2025 GMT Subject: CN=20DA92B49D134F344FB1DB9747E7EFB2BC773DD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:71:8b:ed:27:72:7a:69:59:83:ba:05:a0:81: 56:f9:f6:8a:58:68:58:db:83:50:e7:e3:05:3e:80: 4c:71:19:87:31:2a:02:0a:fa:19:d2:99:92:cf:5c: 8f:cf:08:64:fe:c3:e4:67:67:01:6a:d4:16:e5:a0: 0b:ba:e1:ad:7f:2e:61:d7:23:c7:af:36:70:53:c8: 0b:5e:82:cb:34:54:75:c7:2e:49:ee:83:b5:22:3e: b9:dd:f9:b4:e3:51:b4:c2:e5:f6:63:cc:c5:33:38: ce:81:9c:1e:21:55:76:16:57:df:f0:51:e9:d0:83: 50:23:cc:fa:a6:9d:91:1e:6b:2f:75:7a:12:40:ce: 03:b7:2e:7a:2c:21:c8:85:61:4a:6a:18:a1:cb:d2: 08:d3:4c:e3:3f:dc:c5:ad:ef:63:13:91:d1:11:0f: 25:47:98:5a:c0:e1:46:74:d1:98:8c:fc:de:0a:0d: 9d:cb:3d:01:d3:d1:b5:3d:58:ef:9c:a9:e0:ab:59: ee:90:a6:f4:ce:39:cc:14:ea:96:77:2d:8b:f6:ba: a0:6a:0f:b9:d0:6e:61:bb:d4:48:8f:66:b6:19:4d: a9:b2:ad:d2:34:f5:94:66:9b:bf:1f:56:e7:df:3c: 74:e4:f9:38:3e:76:59:27:f5:fd:b7:20:09:45:04: 61:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DA:92:B4:9D:13:4F:34:4F:B1:DB:97:47:E7:EF:B2:BC:77:3D:D7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3600::/40 Signature Algorithm: sha256WithRSAEncryption 4f:85:26:f3:9a:66:86:59:72:c5:11:e1:43:bf:df:34:68:fa: d5:c4:fc:f9:02:62:5e:bb:60:7a:66:b0:9e:84:39:9f:1a:81: 94:cd:79:c7:90:ac:df:2c:f3:5f:93:83:ea:fb:d0:77:57:6d: 89:29:15:e5:c2:b6:97:7b:b2:e1:96:59:bd:12:29:bd:78:2f: 7e:57:02:e8:a6:b3:2a:d3:ba:52:34:63:51:04:68:f4:b9:51: 10:55:f3:eb:8b:5b:e0:c0:23:08:2d:47:e3:a5:3a:95:60:bf: 39:cc:da:9c:9b:eb:8e:20:2c:9d:ad:cb:59:a0:97:97:cd:90: 66:91:d1:62:e9:08:f9:30:db:65:1f:6f:2c:4e:b7:06:d6:2a: 26:7c:33:0c:48:07:36:8a:8d:89:8d:e1:ba:94:f7:b6:ca:bb: 40:c9:2d:d2:f3:bd:e7:bd:84:30:8a:b3:a2:de:ec:7d:71:7e: 0e:de:01:fe:31:2e:89:02:2c:a0:84:0f:cb:fc:ce:84:ba:10: 6a:c8:d8:ca:00:09:b2:42:6c:0f:b6:1f:1e:56:56:be:92:41: 00:af:f7:b6:7e:19:d8:15:34:c0:55:77:c5:59:de:77:c3:37: f7:1d:21:9b:1f:79:31:38:49:12:e4:da:99:9d:35:79:30:47: d7:52:46:ad -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBI9q7crIhQ+bBNAyFheTDG9G/2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDhaFw0yNTEwMDUwNDQ1MDhaMDMxMTAvBgNV BAMTKDIwREE5MkI0OUQxMzRGMzQ0RkIxREI5NzQ3RTdFRkIyQkM3NzNERDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJcYvtJ3J6aVmDugWggVb59opY aFjbg1Dn4wU+gExxGYcxKgIK+hnSmZLPXI/PCGT+w+RnZwFq1BbloAu64a1/LmHX I8evNnBTyAtegss0VHXHLknug7UiPrnd+bTjUbTC5fZjzMUzOM6BnB4hVXYWV9/w UenQg1AjzPqmnZEeay91ehJAzgO3LnosIciFYUpqGKHL0gjTTOM/3MWt72MTkdER DyVHmFrA4UZ00ZiM/N4KDZ3LPQHT0bU9WO+cqeCrWe6QpvTOOcwU6pZ3LYv2uqBq D7nQbmG71EiPZrYZTamyrdI09ZRmm78fVuffPHTk+Tg+dlkn9f23IAlFBGGjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUINqStJ0TTzRPsduXR+fvsrx3PdcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDYwDQYJKoZIhvcNAQELBQADggEBAE+F JvOaZoZZcsUR4UO/3zRo+tXE/PkCYl67YHpmsJ6EOZ8agZTNeceQrN8s81+Tg+r7 0HdXbYkpFeXCtpd7suGWWb0SKb14L35XAuimsyrTulI0Y1EEaPS5URBV8+uLW+DA IwgtR+OlOpVgvznM2pyb644gLJ2ty1mgl5fNkGaR0WLpCPkw22UfbyxOtwbWKiZ8 MwxIBzaKjYmN4bqU97bKu0DJLdLzvee9hDCKs6Le7H1xfg7eAf4xLokCLKCED8v8 zoS6EGrI2MoACbJCbA+2Hx5WVr6SQQCv97Z+GdgVNMBVd8VZ3nfDN/cdIZsfeTE4 SRLk2pmdNXkwR9dSRq0= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org