$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200237.roa File: AS200237.roa (raw, json) Hash identifier: B4oaKx1fQ+KF4Kq56KMBS1tHwMU7rEE5MvSPrqHFCs8= Subject key identifier: E4:D3:F8:31:EF:EE:7F:3C:AB:9B:54:21:2B:C8:2E:35:D4:1C:D6:AA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5EB50FACC02AA4F02D09CACEEA0AECE1133B8998 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200237.roa Signing time: Sun 06 Oct 2024 04:45:02 +0000 ROA not before: Sun 06 Oct 2024 04:40:02 +0000 ROA not after: Sun 05 Oct 2025 04:45:02 +0000 asID: 200237 IP address blocks: 2a0a:6040:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b5:0f:ac:c0:2a:a4:f0:2d:09:ca:ce:ea:0a:ec:e1:13:3b:89:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:02 2024 GMT Not After : Oct 5 04:45:02 2025 GMT Subject: CN=E4D3F831EFEE7F3CAB9B54212BC82E35D41CD6AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9b:d8:f2:6d:5f:35:d2:c6:b5:64:3f:8f:0e: 35:bf:f7:c9:26:62:99:2f:c9:95:dc:3d:e3:52:6f: 98:43:28:67:d2:da:29:6d:7e:a1:d5:86:39:28:ed: 1b:6c:ca:ab:46:b3:5f:41:8a:d9:a0:cd:4f:fe:3f: 64:74:1d:8d:63:42:30:df:98:ca:d3:dc:8c:62:c4: bd:2f:e6:a7:ba:f2:68:91:4b:0f:16:7a:b9:03:83: 22:2f:e5:1a:c1:f9:4f:0d:14:8f:8a:16:c0:35:cb: fe:69:f2:b7:9d:a4:dd:14:eb:fe:68:71:49:36:24: 8c:3e:68:4e:e6:01:be:f5:96:63:26:63:53:fd:bb: 7f:56:ed:0d:38:12:d1:c6:b1:4b:1c:48:ab:0a:38: 3c:61:d4:0a:96:6e:fb:53:15:d7:28:bd:7f:a0:29: 27:dd:22:2b:2c:cf:1f:e3:d3:b9:9f:a2:c2:b1:ca: 2d:e2:9d:3e:f5:76:39:1a:23:5f:de:6d:3e:bf:cb: 99:0f:4f:92:f1:26:87:23:1f:67:9c:27:1a:22:27: 53:0a:c7:64:2f:ed:0c:9e:b7:1b:81:e8:c3:08:6d: a3:73:e4:69:3b:34:eb:61:32:c6:c4:cb:63:4c:f6: e8:33:46:0b:42:cc:20:69:55:0a:af:fa:75:c8:47: 18:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D3:F8:31:EF:EE:7F:3C:AB:9B:54:21:2B:C8:2E:35:D4:1C:D6:AA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3800::/40 Signature Algorithm: sha256WithRSAEncryption b2:0e:52:24:21:4e:ae:43:ba:60:a4:38:21:9a:8d:51:80:4f: 3e:3c:55:cf:6d:71:fd:39:09:a3:49:fd:c6:3b:ae:c1:0f:51: b3:bd:15:38:66:68:7b:45:04:7b:15:6d:07:53:8b:12:a3:d3: b2:73:56:85:f8:68:bb:56:9f:39:f7:b7:f1:44:2f:cd:df:ef: a6:7a:40:bb:af:dc:36:ee:d9:39:9d:5f:97:bf:1a:c5:f2:d1: 61:44:54:91:2b:e2:52:db:05:7a:d9:63:6c:3a:1c:03:9b:2b: ef:1d:0d:e2:c3:7f:cc:c8:52:05:27:fa:42:e9:6e:a1:41:c9: fe:6f:7e:fa:f8:1b:b8:9d:2b:fa:a9:66:04:04:90:eb:d4:04: 7e:05:86:18:a1:6f:24:22:0a:4e:60:fd:55:96:d2:79:d3:72: b1:ab:4e:57:c0:2f:32:fa:65:9b:58:8a:db:41:4c:3a:e9:c2: 90:54:30:76:e9:f5:b9:04:03:44:2d:db:28:c4:f8:a5:9f:a6: 67:89:94:28:aa:3e:b5:6b:da:2c:71:ca:18:21:af:86:81:ef: 9a:b2:6f:0f:ac:84:0f:0f:35:be:a2:d0:ec:19:34:51:2c:9d: 5f:3e:22:07:9b:38:40:e4:b1:14:31:18:8c:d3:d6:f8:eb:5a: bd:c7:f0:12 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXrUPrMAqpPAtCcrO6grs4RM7iZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDJaFw0yNTEwMDUwNDQ1MDJaMDMxMTAvBgNV BAMTKEU0RDNGODMxRUZFRTdGM0NBQjlCNTQyMTJCQzgyRTM1RDQxQ0Q2QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3m9jybV810sa1ZD+PDjW/98km YpkvyZXcPeNSb5hDKGfS2iltfqHVhjko7RtsyqtGs19BitmgzU/+P2R0HY1jQjDf mMrT3IxixL0v5qe68miRSw8WerkDgyIv5RrB+U8NFI+KFsA1y/5p8redpN0U6/5o cUk2JIw+aE7mAb71lmMmY1P9u39W7Q04EtHGsUscSKsKODxh1AqWbvtTFdcovX+g KSfdIisszx/j07mfosKxyi3inT71djkaI1/ebT6/y5kPT5LxJocjH2ecJxoiJ1MK x2Qv7QyetxuB6MMIbaNz5Gk7NOthMsbEy2NM9ugzRgtCzCBpVQqv+nXIRxjbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU5NP4Me/ufzyrm1QhK8guNdQc1qowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDgwDQYJKoZIhvcNAQELBQADggEBALIO UiQhTq5DumCkOCGajVGATz48Vc9tcf05CaNJ/cY7rsEPUbO9FThmaHtFBHsVbQdT ixKj07JzVoX4aLtWnzn3t/FEL83f76Z6QLuv3Dbu2TmdX5e/GsXy0WFEVJEr4lLb BXrZY2w6HAObK+8dDeLDf8zIUgUn+kLpbqFByf5vfvr4G7idK/qpZgQEkOvUBH4F hhihbyQiCk5g/VWW0nnTcrGrTlfALzL6ZZtYittBTDrpwpBUMHbp9bkEA0Qt2yjE +KWfpmeJlCiqPrVr2ixxyhghr4aB75qybw+shA8PNb6i0OwZNFEsnV8+IgebOEDk sRQxGIzT1vjrWr3H8BI= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org