$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200242.roa File: AS200242.roa (raw, json) Hash identifier: RWyvjdWDMF0YdZDfVKNZkoDT5NhXxPdHHbgzfTjrYtc= Subject key identifier: 20:8D:83:F5:C4:B8:74:71:36:0C:F9:2D:CE:85:2B:AC:45:99:B2:6B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7BC2762AC7D99E17C32B9F7FF23D66F50FD95851 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200242.roa Signing time: Sun 06 Oct 2024 04:45:04 +0000 ROA not before: Sun 06 Oct 2024 04:40:04 +0000 ROA not after: Sun 05 Oct 2025 04:45:04 +0000 asID: 200242 IP address blocks: 2a0a:6040:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Nov 2024 15:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:c2:76:2a:c7:d9:9e:17:c3:2b:9f:7f:f2:3d:66:f5:0f:d9:58:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:04 2024 GMT Not After : Oct 5 04:45:04 2025 GMT Subject: CN=208D83F5C4B87471360CF92DCE852BAC4599B26B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:eb:31:aa:9e:e9:d1:3c:f6:3d:b9:7a:3c:41: 77:16:62:d7:5e:b8:cb:8a:56:01:c2:e5:28:34:3c: 13:0d:e7:56:34:d3:cd:2e:44:5d:6c:b1:97:e9:2d: 8d:ee:0c:d1:fa:55:1a:29:6e:3e:d8:e3:dd:fb:7b: e7:eb:83:fd:85:29:e5:06:c2:f2:df:c9:b3:1f:fe: 06:1a:dd:5f:47:3c:50:4e:e0:8d:11:61:42:82:13: 1e:bb:99:57:5e:f9:59:c5:72:25:05:f9:11:f0:c4: 1e:05:87:f8:36:ac:a8:a9:52:7e:7f:03:64:37:09: 61:e7:48:2f:1b:63:b2:41:80:8c:36:7d:cc:41:70: 2c:3c:f8:04:7f:9a:33:99:ab:b4:a9:05:7c:e4:bf: 65:92:78:24:39:ab:03:86:c8:24:87:44:2e:20:5a: a9:40:47:56:08:89:03:f3:bd:f1:8d:9f:7e:f2:13: 83:55:b8:80:56:ee:e5:be:ae:27:3c:8b:f0:33:ec: 13:df:b5:49:67:7d:c3:fe:82:de:ee:3c:32:a4:60: 13:3d:f9:ca:21:d6:17:b2:05:a5:dc:7c:d3:33:03: 7e:60:0c:5a:0e:a1:6e:ff:31:c6:49:6c:cd:0d:1a: c6:20:70:25:46:b7:73:39:74:54:55:7a:8b:39:b6: 01:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:8D:83:F5:C4:B8:74:71:36:0C:F9:2D:CE:85:2B:AC:45:99:B2:6B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4100::/40 Signature Algorithm: sha256WithRSAEncryption 8e:cc:7a:3a:17:88:8b:2c:af:bd:f9:c4:db:ad:6f:62:77:0b: 06:23:be:14:25:65:85:32:d4:7b:e4:0f:36:57:4e:7a:b2:64: 38:27:4b:36:02:6c:4b:c4:f6:57:14:55:12:a8:29:d3:f6:b0: 3c:24:87:30:44:1f:d9:52:ea:5a:d0:3f:02:b8:c0:83:ca:38: fc:c4:05:a2:8d:94:0a:00:29:ff:f0:16:76:e1:76:c3:ea:16: 59:28:1f:d6:44:72:0b:d6:ed:38:fc:1a:7e:51:88:fa:24:55: 30:ed:5c:e4:cf:ea:48:d9:07:43:63:06:cd:0c:d2:72:7b:a7: eb:64:1d:10:18:a6:81:21:b1:78:24:e2:d6:48:fd:74:a1:72: 74:3b:75:ed:d3:36:a9:cb:af:4a:3b:20:3c:14:50:c0:eb:6e: 30:e1:43:84:12:9a:89:97:60:5d:e3:0b:14:41:9b:bd:0b:0e: 96:f5:2e:d6:c2:71:18:78:38:c7:e8:17:68:61:53:02:8e:9d: 8e:1c:d5:1a:5c:60:e0:4f:18:c1:41:46:dd:a6:9a:d0:7e:3d: 17:0b:3a:d8:4c:51:d1:99:89:25:3c:bb:29:8e:6f:7f:20:2d: 3b:27:a8:e9:6c:d7:21:dc:53:92:e5:52:bc:1c:15:4b:ab:09: b7:fb:48:d6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUe8J2KsfZnhfDK59/8j1m9Q/ZWFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDRaFw0yNTEwMDUwNDQ1MDRaMDMxMTAvBgNV BAMTKDIwOEQ4M0Y1QzRCODc0NzEzNjBDRjkyRENFODUyQkFDNDU5OUIyNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ6zGqnunRPPY9uXo8QXcWYtde uMuKVgHC5Sg0PBMN51Y0080uRF1ssZfpLY3uDNH6VRopbj7Y4937e+frg/2FKeUG wvLfybMf/gYa3V9HPFBO4I0RYUKCEx67mVde+VnFciUF+RHwxB4Fh/g2rKipUn5/ A2Q3CWHnSC8bY7JBgIw2fcxBcCw8+AR/mjOZq7SpBXzkv2WSeCQ5qwOGyCSHRC4g WqlAR1YIiQPzvfGNn37yE4NVuIBW7uW+ric8i/Az7BPftUlnfcP+gt7uPDKkYBM9 +coh1heyBaXcfNMzA35gDFoOoW7/McZJbM0NGsYgcCVGt3M5dFRVeos5tgFZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUII2D9cS4dHE2DPktzoUrrEWZsmswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEEwDQYJKoZIhvcNAQELBQADggEBAI7M ejoXiIssr735xNutb2J3CwYjvhQlZYUy1HvkDzZXTnqyZDgnSzYCbEvE9lcUVRKo KdP2sDwkhzBEH9lS6lrQPwK4wIPKOPzEBaKNlAoAKf/wFnbhdsPqFlkoH9ZEcgvW 7Tj8Gn5RiPokVTDtXOTP6kjZB0NjBs0M0nJ7p+tkHRAYpoEhsXgk4tZI/XShcnQ7 de3TNqnLr0o7IDwUUMDrbjDhQ4QSmomXYF3jCxRBm70LDpb1LtbCcRh4OMfoF2hh UwKOnY4c1RpcYOBPGMFBRt2mmtB+PRcLOthMUdGZiSU8uymOb38gLTsnqOls1yHc U5LlUrwcFUurCbf7SNY= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:00 2024 by rpki-client on console-ams.rpki-client.org