$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200263.roa File: AS200263.roa (raw, json) Hash identifier: UIKAN4ixXeGzlkHFK6c5TqWeFeIX3xHLv4h7z/xWBIU= Subject key identifier: 7B:E1:D1:7E:62:5D:43:46:BD:95:B0:08:4B:FF:5E:F9:17:26:F2:8F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5F0B702B1F71D66F22AE2472D1AFCD590DEC3468 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200263.roa Signing time: Sun 06 Oct 2024 04:45:09 +0000 ROA not before: Sun 06 Oct 2024 04:40:09 +0000 ROA not after: Sun 05 Oct 2025 04:45:09 +0000 asID: 200263 IP address blocks: 2a0a:6040:2b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:0b:70:2b:1f:71:d6:6f:22:ae:24:72:d1:af:cd:59:0d:ec:34:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:09 2024 GMT Not After : Oct 5 04:45:09 2025 GMT Subject: CN=7BE1D17E625D4346BD95B0084BFF5EF91726F28F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:99:e5:df:f2:e4:e2:ac:b9:de:ef:7a:fb:e0: ac:4f:a9:08:4d:69:ba:9a:b6:2b:a2:db:36:a4:60: d3:70:24:3b:ca:72:8e:58:e4:d9:25:9c:2b:ad:ff: 58:fd:f8:00:2a:a5:1c:6a:fb:1b:12:5d:82:ed:39: e9:a2:70:3c:77:4f:38:ea:ea:52:f3:6a:43:38:dd: e1:4f:31:42:1e:fb:ae:98:ea:48:e0:2b:a2:53:82: e7:bd:8b:cc:01:e7:54:3b:2f:21:09:0d:0d:71:e3: 54:5b:31:b4:24:fc:4e:f3:6e:e4:d2:28:f8:7e:f8: bb:31:9f:98:00:b8:80:fc:ad:2f:88:74:7e:eb:11: d3:d6:c0:3c:74:2b:96:32:99:3c:a8:ce:a4:d5:f4: fd:6a:d2:24:57:ec:dd:8b:22:0f:f7:5e:26:67:97: 9a:61:25:83:30:22:df:34:a6:e9:4c:74:11:45:08: 48:8d:be:25:97:8c:7a:e7:12:95:0b:a7:7e:1f:62: a4:4f:37:bc:61:49:b5:12:b0:95:d8:b7:5e:6d:8c: 1e:25:87:74:9d:97:ad:cc:06:6e:0b:0a:4c:b6:c4: c1:3f:34:b2:d7:fe:d4:3b:80:0e:ac:9f:df:4f:02: 0c:98:fb:ab:c5:14:85:46:a9:bc:38:24:df:06:7e: 8f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E1:D1:7E:62:5D:43:46:BD:95:B0:08:4B:FF:5E:F9:17:26:F2:8F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200263.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2b00::/40 Signature Algorithm: sha256WithRSAEncryption 98:7b:f6:3b:ef:85:ea:db:25:50:fb:b4:9c:48:50:06:15:36: ea:f0:45:05:36:d8:ed:a2:e2:45:00:b6:f9:10:66:86:66:4c: 98:ca:94:f5:81:62:0d:a6:04:8f:24:c8:f7:17:05:ae:f4:91: 7a:d9:39:c3:d0:e4:b5:df:fb:4e:f2:8b:9a:4c:b1:13:02:d6: 69:e5:fd:59:71:33:f4:f8:cd:50:bd:3a:4f:74:76:30:e5:3e: de:34:08:17:e6:29:b8:67:d4:c8:47:68:24:ba:39:1a:75:95: 2c:54:6e:a1:82:6a:2c:92:8c:8a:4a:ce:fd:db:a9:1a:fd:9c: 9e:bd:bf:8e:64:86:60:ec:fb:8c:7e:6c:ad:4c:33:62:65:58: 0c:5a:08:9f:e1:eb:6b:11:23:6f:b8:08:e8:ad:aa:94:d3:04: be:e7:9e:3c:c9:f3:5d:6b:5e:8f:c5:5f:1f:3f:3e:85:af:e1: 0d:ee:66:1b:ce:e5:9d:63:a1:b0:b4:18:19:d0:e0:08:22:75: c4:60:ea:a7:5d:c1:73:b9:7e:f7:27:61:87:ed:da:3b:41:58: b0:92:9a:4d:00:6f:d6:14:d0:c2:b7:3a:ef:b2:9a:47:c0:3d: 0c:68:ca:7b:00:8f:d4:90:49:5c:3c:34:6d:b3:ac:34:b2:8f: 00:c7:d3:d5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXwtwKx9x1m8iriRy0a/NWQ3sNGgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDlaFw0yNTEwMDUwNDQ1MDlaMDMxMTAvBgNV BAMTKDdCRTFEMTdFNjI1RDQzNDZCRDk1QjAwODRCRkY1RUY5MTcyNkYyOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCumeXf8uTirLne73r74KxPqQhN abqatiui2zakYNNwJDvKco5Y5NklnCut/1j9+AAqpRxq+xsSXYLtOemicDx3Tzjq 6lLzakM43eFPMUIe+66Y6kjgK6JTgue9i8wB51Q7LyEJDQ1x41RbMbQk/E7zbuTS KPh++Lsxn5gAuID8rS+IdH7rEdPWwDx0K5YymTyozqTV9P1q0iRX7N2LIg/3XiZn l5phJYMwIt80pulMdBFFCEiNviWXjHrnEpULp34fYqRPN7xhSbUSsJXYt15tjB4l h3Sdl63MBm4LCky2xME/NLLX/tQ7gA6sn99PAgyY+6vFFIVGqbw4JN8Gfo9bAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUe+HRfmJdQ0a9lbAIS/9e+Rcm8o8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjYzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCswDQYJKoZIhvcNAQELBQADggEBAJh7 9jvvherbJVD7tJxIUAYVNurwRQU22O2i4kUAtvkQZoZmTJjKlPWBYg2mBI8kyPcX Ba70kXrZOcPQ5LXf+07yi5pMsRMC1mnl/VlxM/T4zVC9Ok90djDlPt40CBfmKbhn 1MhHaCS6ORp1lSxUbqGCaiySjIpKzv3bqRr9nJ69v45khmDs+4x+bK1MM2JlWAxa CJ/h62sRI2+4COitqpTTBL7nnjzJ811rXo/FXx8/PoWv4Q3uZhvO5Z1jobC0GBnQ 4AgidcRg6qddwXO5fvcnYYft2jtBWLCSmk0Ab9YU0MK3Ou+ymkfAPQxoynsAj9SQ SVw8NG2zrDSyjwDH09U= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org