$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200257.roa File: AS200257.roa (raw, json) Hash identifier: Tx5/tRtdjvzQeQkHsAEE8CLvrLEJyJiydsd7zEpY8FQ= Subject key identifier: 09:55:A1:72:A8:E0:51:8B:C9:FC:F7:57:61:94:38:F6:36:71:D7:E1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 79284975D30AC59A255D9B60D4C0731718E67F06 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200257.roa Signing time: Sun 06 Oct 2024 04:45:03 +0000 ROA not before: Sun 06 Oct 2024 04:40:03 +0000 ROA not after: Sun 05 Oct 2025 04:45:03 +0000 asID: 200257 IP address blocks: 2a0a:6040:3300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:28:49:75:d3:0a:c5:9a:25:5d:9b:60:d4:c0:73:17:18:e6:7f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:03 2024 GMT Not After : Oct 5 04:45:03 2025 GMT Subject: CN=0955A172A8E0518BC9FCF757619438F63671D7E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f6:bd:0a:2a:cc:81:1d:aa:41:98:dc:48:90: d4:a1:27:7e:05:32:96:e7:d8:54:df:c0:ae:cc:87: fb:4e:2e:48:2c:03:26:62:4e:1f:8f:52:43:a3:3a: 7a:90:91:2a:38:94:c9:ce:a8:c0:0b:39:7f:13:7e: bd:7c:bc:23:2e:b7:b0:d9:e0:49:61:7c:0d:75:29: 90:2d:d9:49:09:e2:1a:29:92:4b:b6:e5:29:d0:d6: 2a:7c:23:6c:1a:66:d8:13:af:f4:1e:ca:f7:6d:02: f9:5e:2a:ef:b0:84:7f:e0:96:30:d3:0b:29:c0:07: b9:3e:bf:0a:44:36:ef:79:e2:2c:a8:a5:1a:60:5a: a4:1f:27:60:10:19:c3:70:f7:91:9f:70:ce:3d:41: 90:eb:75:ea:e6:92:09:ec:99:5e:5e:db:eb:f7:6b: 48:09:15:72:64:71:26:34:e0:8a:d1:2d:cd:e9:2f: d1:2e:96:79:31:22:ba:0e:5b:5b:28:4a:c9:e8:69: 90:7b:75:7a:1c:ca:aa:0f:0e:23:6e:93:30:8e:f1: 9e:75:a6:32:e4:97:29:86:0f:9e:f4:92:c1:8d:05: 8b:39:73:b2:6e:03:12:b4:6f:e8:76:f4:21:db:12: f7:5c:3e:a4:02:ba:a5:ab:a5:ac:f3:9a:42:c2:15: 3f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:55:A1:72:A8:E0:51:8B:C9:FC:F7:57:61:94:38:F6:36:71:D7:E1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200257.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3300::/40 Signature Algorithm: sha256WithRSAEncryption 3f:78:0f:97:f3:24:88:57:09:f0:96:20:cb:cf:80:a1:1d:d3: 46:df:23:1b:b6:49:2d:9c:13:fb:a4:8b:10:a1:77:ed:d6:76: b5:4b:95:dd:4c:6b:f1:af:ec:05:af:cd:9b:5c:b0:71:b3:8b: 00:4e:e5:a8:ae:bc:ae:b0:54:e0:6e:13:78:01:f5:f4:c3:be: f6:d6:2e:b5:78:cd:27:72:21:50:52:61:00:3f:81:3c:c2:ef: f9:d9:d1:2b:31:14:a1:22:c3:32:3f:94:24:4e:8b:9d:56:49: 86:7e:f3:42:0a:90:e0:24:8e:ab:48:4f:d9:0c:78:32:a0:c3: 5c:32:b4:56:93:d8:35:ff:8e:f4:c5:f7:22:42:ca:ea:9b:ae: 38:89:b8:dd:9f:79:e6:2c:36:0d:82:33:ab:ba:f9:0e:59:ac: fd:93:4e:29:ed:01:a1:61:c9:7d:af:6d:19:85:ad:f0:95:63: 66:ff:9f:1c:20:b2:8b:da:5a:c0:65:8e:e4:d9:11:1d:8b:74: ea:ae:b4:4f:9b:cd:8d:85:f9:d9:37:4f:9b:44:3a:af:47:ea: e5:ef:7e:50:68:3a:49:8d:2c:ab:17:14:dc:3b:77:fa:f6:f2: de:e0:4d:a7:a6:b0:f8:b6:ca:50:dc:2c:13:c1:f0:c3:49:ca: 35:c3:7a:c1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUeShJddMKxZolXZtg1MBzFxjmfwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDNaFw0yNTEwMDUwNDQ1MDNaMDMxMTAvBgNV BAMTKDA5NTVBMTcyQThFMDUxOEJDOUZDRjc1NzYxOTQzOEY2MzY3MUQ3RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm9r0KKsyBHapBmNxIkNShJ34F Mpbn2FTfwK7Mh/tOLkgsAyZiTh+PUkOjOnqQkSo4lMnOqMALOX8Tfr18vCMut7DZ 4ElhfA11KZAt2UkJ4hopkku25SnQ1ip8I2waZtgTr/QeyvdtAvleKu+whH/gljDT CynAB7k+vwpENu954iyopRpgWqQfJ2AQGcNw95GfcM49QZDrdermkgnsmV5e2+v3 a0gJFXJkcSY04IrRLc3pL9EulnkxIroOW1soSsnoaZB7dXocyqoPDiNukzCO8Z51 pjLklymGD570ksGNBYs5c7JuAxK0b+h29CHbEvdcPqQCuqWrpazzmkLCFT9DAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCVWhcqjgUYvJ/PdXYZQ49jZx1+EwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDMwDQYJKoZIhvcNAQELBQADggEBAD94 D5fzJIhXCfCWIMvPgKEd00bfIxu2SS2cE/ukixChd+3WdrVLld1Ma/Gv7AWvzZtc sHGziwBO5aiuvK6wVOBuE3gB9fTDvvbWLrV4zSdyIVBSYQA/gTzC7/nZ0SsxFKEi wzI/lCROi51WSYZ+80IKkOAkjqtIT9kMeDKgw1wytFaT2DX/jvTF9yJCyuqbrjiJ uN2feeYsNg2CM6u6+Q5ZrP2TTintAaFhyX2vbRmFrfCVY2b/nxwgsovaWsBljuTZ ER2LdOqutE+bzY2F+dk3T5tEOq9H6uXvflBoOkmNLKsXFNw7d/r28t7gTaemsPi2 ylDcLBPB8MNJyjXDesE= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org