$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200234.roa File: AS200234.roa (raw, json) Hash identifier: 0cfjUlwifbARK72kVidJo+l1Y8ZB7ThK22oHMiOCWUE= Subject key identifier: 60:54:02:AE:05:29:80:E1:8C:71:79:42:1B:68:4E:15:E4:23:72:15 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 78B72FC6F3DD44BC63203FBA615CC667286A1292 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200234.roa Signing time: Sun 05 Nov 2023 04:07:11 +0000 ROA not before: Sun 05 Nov 2023 04:02:11 +0000 ROA not after: Sun 03 Nov 2024 04:07:11 +0000 asID: 200234 IP address blocks: 2a0a:6040:3600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:b7:2f:c6:f3:dd:44:bc:63:20:3f:ba:61:5c:c6:67:28:6a:12:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:11 2023 GMT Not After : Nov 3 04:07:11 2024 GMT Subject: CN=605402AE052980E18C7179421B684E15E4237215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:02:5b:1e:7b:63:51:59:87:66:a2:4a:66:e8: ce:25:45:15:9a:71:9c:c3:3f:3b:28:77:1e:8c:2b: ac:21:ce:8b:c5:ae:49:3a:bc:fa:d8:03:ef:97:87: 25:d2:ea:37:3a:7a:c4:87:df:80:7e:3b:99:08:9b: 51:27:35:2c:d5:f0:b0:15:5a:3e:84:82:44:6f:57: 2a:90:2e:1d:a8:69:37:f0:67:c6:35:63:e0:11:9b: a9:64:82:04:57:04:3d:10:a7:62:28:31:32:e4:86: 98:b1:50:3d:e2:c0:24:20:77:bc:1d:bf:f4:45:a1: 60:7c:be:60:a3:32:26:17:b9:d1:ff:7e:a7:80:bf: 1f:0d:24:27:c3:e2:d4:37:72:85:0d:13:af:23:06: 8f:a3:da:10:13:cb:7c:3a:0c:f7:54:c8:9f:bd:3c: 87:3d:4a:93:ee:15:7e:51:34:ed:b6:2c:6e:75:4e: f6:eb:ca:f4:94:71:78:74:1f:0a:cf:1d:69:97:e7: ec:4a:5f:cd:75:2a:f9:a6:11:50:02:7b:5b:48:05: ab:86:81:ad:1f:49:a2:90:34:f0:51:5a:d7:98:04: 2f:35:fc:59:e2:3f:f1:87:0b:66:a2:71:32:7b:c7: 67:cb:cd:ab:30:28:ce:95:37:cb:59:66:0d:f2:43: a7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:54:02:AE:05:29:80:E1:8C:71:79:42:1B:68:4E:15:E4:23:72:15 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3600::/40 Signature Algorithm: sha256WithRSAEncryption a8:24:43:09:f6:29:1f:2b:48:84:26:e5:fc:4b:38:36:74:3c: 0d:c5:06:19:11:32:b2:32:0e:85:00:68:c3:18:a3:fa:ac:69: d0:f5:7d:19:c8:f3:bd:cd:a6:74:3c:ef:df:93:74:02:2d:11: e0:c2:9c:29:4a:99:cb:18:09:43:16:0f:2e:be:ff:9d:7e:e1: b8:1d:04:92:57:21:d9:5f:37:6f:5b:a4:80:85:2f:7c:88:03: 31:8a:c7:68:85:db:f4:79:24:40:ba:73:a5:15:c1:31:57:ec: 92:d9:62:7a:01:5c:ea:52:4d:cc:e7:d0:90:f2:10:5c:c4:12: cd:f0:68:8a:93:8e:bd:6c:91:d0:e7:74:56:73:7c:ad:a5:df: dd:64:7a:24:59:58:37:90:cf:0e:4c:3b:5d:e1:0e:92:db:95: 40:c1:46:67:31:ef:3e:dc:51:04:4b:f8:71:38:da:ef:14:76: 53:6c:0a:e1:b3:71:36:6d:6f:bd:9c:12:ca:e7:6a:93:d8:65: ef:28:2c:ec:86:4d:e6:0e:40:cc:cc:c5:a0:aa:a5:b1:89:d9: 78:f8:bf:26:70:73:6b:52:e3:c3:07:91:bc:6f:1a:a3:61:f1: 8c:5f:25:e2:b0:a8:49:ed:f3:7d:87:28:51:78:1b:cf:1e:22: 19:7d:4c:a0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUeLcvxvPdRLxjID+6YVzGZyhqEpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTFaFw0yNDExMDMwNDA3MTFaMDMxMTAvBgNV BAMTKDYwNTQwMkFFMDUyOTgwRTE4QzcxNzk0MjFCNjg0RTE1RTQyMzcyMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqAlsee2NRWYdmokpm6M4lRRWa cZzDPzsodx6MK6whzovFrkk6vPrYA++XhyXS6jc6esSH34B+O5kIm1EnNSzV8LAV Wj6EgkRvVyqQLh2oaTfwZ8Y1Y+ARm6lkggRXBD0Qp2IoMTLkhpixUD3iwCQgd7wd v/RFoWB8vmCjMiYXudH/fqeAvx8NJCfD4tQ3coUNE68jBo+j2hATy3w6DPdUyJ+9 PIc9SpPuFX5RNO22LG51TvbryvSUcXh0HwrPHWmX5+xKX811KvmmEVACe1tIBauG ga0fSaKQNPBRWteYBC81/FniP/GHC2aicTJ7x2fLzaswKM6VN8tZZg3yQ6dtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUYFQCrgUpgOGMcXlCG2hOFeQjchUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDYwDQYJKoZIhvcNAQELBQADggEBAKgk Qwn2KR8rSIQm5fxLODZ0PA3FBhkRMrIyDoUAaMMYo/qsadD1fRnI873NpnQ879+T dAItEeDCnClKmcsYCUMWDy6+/51+4bgdBJJXIdlfN29bpICFL3yIAzGKx2iF2/R5 JEC6c6UVwTFX7JLZYnoBXOpSTczn0JDyEFzEEs3waIqTjr1skdDndFZzfK2l391k eiRZWDeQzw5MO13hDpLblUDBRmcx7z7cUQRL+HE42u8UdlNsCuGzcTZtb72cEsrn apPYZe8oLOyGTeYOQMzMxaCqpbGJ2Xj4vyZwc2tS48MHkbxvGqNh8YxfJeKwqEnt 832HKFF4G88eIhl9TKA= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org