$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200243.roa File: AS200243.roa (raw, json) Hash identifier: BO/ju6lNAnbLbiqhhB+tvj2yoGZV87Psg0OMstVRUNE= Subject key identifier: AB:6A:63:E5:6A:4A:15:54:83:49:A5:A1:50:A8:BC:83:BE:0F:63:F7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 33320C72B10BDC79F4C486773EFECDA626EC605A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200243.roa Signing time: Sun 06 Oct 2024 04:45:15 +0000 ROA not before: Sun 06 Oct 2024 04:40:15 +0000 ROA not after: Sun 05 Oct 2025 04:45:15 +0000 asID: 200243 IP address blocks: 2a0a:6040:900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:32:0c:72:b1:0b:dc:79:f4:c4:86:77:3e:fe:cd:a6:26:ec:60:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:15 2024 GMT Not After : Oct 5 04:45:15 2025 GMT Subject: CN=AB6A63E56A4A15548349A5A150A8BC83BE0F63F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c3:0f:52:bb:54:ad:ef:ca:81:c4:86:e1:4e: ea:7e:4d:50:8c:86:16:cb:d3:0b:d6:a4:c1:b9:bb: d5:a1:82:81:bb:fe:fb:04:90:6c:e9:1b:4d:5f:ec: cb:8c:af:35:a9:6e:3b:86:ae:27:96:3e:10:64:6f: d8:d9:4f:d0:c7:33:c9:da:ab:59:e4:da:52:2a:58: 76:7f:e0:e5:08:60:2b:6e:87:ef:d2:5d:d3:46:1d: f8:e4:8c:56:3f:84:c3:47:4e:9c:06:cc:4e:ff:15: 8b:83:e3:38:c9:3e:7f:5b:01:b1:97:a2:65:53:5e: 88:20:93:d3:3f:c0:33:31:d2:41:20:fc:6e:52:23: f9:f7:fe:a4:a2:6f:f1:29:63:4a:cc:6c:fb:80:f7: fc:eb:7b:32:b1:11:f8:e7:c4:74:67:fd:ba:10:7e: 79:1e:ff:0e:96:7a:60:a2:1a:f1:14:da:ef:75:84: 46:64:51:d5:d7:d3:07:d6:ca:45:09:2d:65:71:88: 6d:e5:b8:13:21:53:a5:a3:64:ed:da:af:14:87:0d: 28:9c:ac:18:82:f1:29:b9:ed:82:4d:3f:7c:b4:f9: 8a:a9:e5:15:e9:a2:40:2d:08:ae:02:f8:fb:f4:1b: c5:74:4b:b8:32:41:ff:78:f9:84:60:91:30:08:3c: f7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6A:63:E5:6A:4A:15:54:83:49:A5:A1:50:A8:BC:83:BE:0F:63:F7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200243.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:900::/40 Signature Algorithm: sha256WithRSAEncryption 99:36:27:76:b5:e7:d1:ad:a8:d6:d3:7a:68:de:ed:ee:5a:05: 19:79:dd:29:e0:04:25:d7:33:26:4b:ad:0d:78:32:3e:47:75: 22:25:89:1e:88:c3:78:e1:9b:ee:75:ef:87:a0:26:1c:e9:3b: 40:e0:e6:cb:b8:12:16:e6:88:33:f5:4e:32:fe:82:38:20:0a: b0:21:ef:98:cc:99:50:c7:cd:e5:fd:ba:c3:8e:d9:b5:25:58: 59:46:2f:26:65:4b:db:73:a2:43:c9:27:0f:6f:a2:09:3e:9d: 16:1f:dd:90:d2:77:06:c0:49:9d:ee:15:a9:83:05:6d:82:a1: 57:03:d0:c3:8d:c6:1a:09:2c:84:fb:a0:2a:64:c9:22:54:6d: 2c:33:cc:41:fd:4a:9b:03:8b:da:38:ff:6d:a7:fd:b6:0d:22: e0:36:db:9a:19:da:c8:81:32:a4:10:f9:09:59:d9:61:a9:d1: 9a:36:56:8f:2c:4a:f2:87:a2:02:4f:27:f4:29:c1:4d:3d:fb: 54:f8:18:f9:60:e7:1b:47:9a:55:12:0b:f4:07:2b:cb:67:aa: 93:8a:73:13:4a:29:0a:09:32:78:d6:70:cd:08:35:f5:af:a4: a4:f6:f4:56:c6:8b:ff:2e:ad:f1:93:0d:a0:11:8f:38:76:0c: 3b:0e:a7:38 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMzIMcrEL3Hn0xIZ3Pv7NpibsYFowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTVaFw0yNTEwMDUwNDQ1MTVaMDMxMTAvBgNV BAMTKEFCNkE2M0U1NkE0QTE1NTQ4MzQ5QTVBMTUwQThCQzgzQkUwRjYzRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrww9Su1St78qBxIbhTup+TVCM hhbL0wvWpMG5u9WhgoG7/vsEkGzpG01f7MuMrzWpbjuGrieWPhBkb9jZT9DHM8na q1nk2lIqWHZ/4OUIYCtuh+/SXdNGHfjkjFY/hMNHTpwGzE7/FYuD4zjJPn9bAbGX omVTXoggk9M/wDMx0kEg/G5SI/n3/qSib/EpY0rMbPuA9/zrezKxEfjnxHRn/boQ fnke/w6WemCiGvEU2u91hEZkUdXX0wfWykUJLWVxiG3luBMhU6WjZO3arxSHDSic rBiC8Sm57YJNP3y0+Yqp5RXpokAtCK4C+Pv0G8V0S7gyQf94+YRgkTAIPPf7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUq2pj5WpKFVSDSaWhUKi8g74PY/cwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAkwDQYJKoZIhvcNAQELBQADggEBAJk2 J3a159GtqNbTemje7e5aBRl53SngBCXXMyZLrQ14Mj5HdSIliR6Iw3jhm+5174eg JhzpO0Dg5su4EhbmiDP1TjL+gjggCrAh75jMmVDHzeX9usOO2bUlWFlGLyZlS9tz okPJJw9vogk+nRYf3ZDSdwbASZ3uFamDBW2CoVcD0MONxhoJLIT7oCpkySJUbSwz zEH9SpsDi9o4/22n/bYNIuA225oZ2siBMqQQ+QlZ2WGp0Zo2Vo8sSvKHogJPJ/Qp wU09+1T4GPlg5xtHmlUSC/QHK8tnqpOKcxNKKQoJMnjWcM0INfWvpKT29FbGi/8u rfGTDaARjzh2DDsOpzg= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org