$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200267.roa File: AS200267.roa (raw, json) Hash identifier: CBErGRmJjJYiZ4CrOj3mFxqwTw+oyKkxtQaZC/8bMxg= Subject key identifier: 57:55:3B:A2:F9:C3:2A:2C:E2:39:E4:0A:8E:79:62:31:71:48:86:73 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 54C3308C4C243A195E015A52ED1081EC33AD4412 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200267.roa Signing time: Sun 06 Oct 2024 04:44:57 +0000 ROA not before: Sun 06 Oct 2024 04:39:57 +0000 ROA not after: Sun 05 Oct 2025 04:44:57 +0000 asID: 200267 IP address blocks: 2a0a:6040:c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:c3:30:8c:4c:24:3a:19:5e:01:5a:52:ed:10:81:ec:33:ad:44:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:57 2024 GMT Not After : Oct 5 04:44:57 2025 GMT Subject: CN=57553BA2F9C32A2CE239E40A8E79623171488673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3a:6b:32:7e:ed:a7:f9:e0:ad:14:e6:0f:28: 33:81:b7:09:48:b9:e8:03:67:53:c1:1e:ce:f1:05: 8f:b3:9d:73:f3:2b:9a:7c:39:55:29:ee:20:4a:57: 3e:a1:e3:1d:dd:e8:6e:57:33:5f:4f:84:79:95:8e: ae:d6:8b:61:16:1d:1c:a2:44:e7:01:d2:f0:7d:a0: a3:df:3f:ea:b6:58:e4:4c:7d:94:cb:00:44:a3:b9: eb:4f:1c:b4:77:be:4d:dd:93:c5:e0:11:f6:58:bc: 01:1d:95:47:f1:f1:8f:1b:40:5c:89:b9:47:dc:0b: 17:60:0f:38:c9:56:6c:12:02:23:b0:c8:9a:52:49: cb:9e:55:30:09:b9:de:30:f9:91:8e:c5:26:5a:06: 58:6f:be:b3:81:2d:c3:96:28:71:fd:6e:71:8e:2b: 25:96:cf:eb:45:36:a9:d9:54:a5:1e:52:f2:45:01: 9f:c3:20:de:09:dd:2b:f7:73:0c:0b:52:23:83:a9: 94:b1:72:49:00:db:5f:20:22:23:e3:b6:f5:eb:97: b2:2a:bf:51:3a:ce:2c:2b:a3:b3:68:8d:57:4e:a6: c5:8f:8e:09:8a:f9:3f:27:c7:e8:d8:da:bd:ec:99: 01:2c:70:9a:d2:88:26:4b:9c:f3:07:6c:96:b6:0f: 00:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:55:3B:A2:F9:C3:2A:2C:E2:39:E4:0A:8E:79:62:31:71:48:86:73 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200267.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c00::/40 Signature Algorithm: sha256WithRSAEncryption c3:c7:b8:9a:86:9d:df:e5:45:57:c0:36:f6:fa:6c:0d:98:d5: 3d:db:82:da:8d:54:b3:42:7b:5b:b3:a0:e9:72:0c:c4:74:f6: 75:04:ec:0f:54:58:0e:c5:56:37:9a:ef:b0:f7:19:68:86:d6: 6d:c6:09:91:c6:a8:11:80:66:65:77:06:78:b4:d7:8a:69:6e: db:d6:58:84:f3:ba:88:ee:84:95:2e:0b:a3:d2:b2:54:19:d9: f5:be:10:70:de:e2:4e:68:c2:99:41:63:9f:07:29:eb:36:d9: b5:a7:8f:55:1a:5d:32:12:68:a5:ae:3f:52:83:ba:ae:f5:44: db:1f:8d:89:3a:38:5d:cc:56:d5:11:67:d7:d3:fc:82:a1:68: 61:3a:f6:f8:64:ff:60:0b:da:45:4c:98:a2:ab:2e:ff:01:d1: e7:2f:d9:70:8c:72:86:b1:e7:23:5f:57:f1:db:1a:46:39:be: ce:79:27:cb:7e:8d:96:2c:6b:14:e9:83:8e:fc:49:5b:eb:87: 1f:da:1e:9a:e0:2e:88:97:bb:7c:71:6c:4a:a2:8e:78:f4:97: fb:45:56:a7:a1:d5:09:e5:e8:e6:0d:1a:2b:0f:da:59:eb:27: f1:cb:79:fa:92:03:1f:d2:13:f1:7c:82:be:e9:50:aa:27:31: f4:58:0d:37 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVMMwjEwkOhleAVpS7RCB7DOtRBIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTdaFw0yNTEwMDUwNDQ0NTdaMDMxMTAvBgNV BAMTKDU3NTUzQkEyRjlDMzJBMkNFMjM5RTQwQThFNzk2MjMxNzE0ODg2NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMOmsyfu2n+eCtFOYPKDOBtwlI uegDZ1PBHs7xBY+znXPzK5p8OVUp7iBKVz6h4x3d6G5XM19PhHmVjq7Wi2EWHRyi ROcB0vB9oKPfP+q2WORMfZTLAESjuetPHLR3vk3dk8XgEfZYvAEdlUfx8Y8bQFyJ uUfcCxdgDzjJVmwSAiOwyJpSScueVTAJud4w+ZGOxSZaBlhvvrOBLcOWKHH9bnGO KyWWz+tFNqnZVKUeUvJFAZ/DIN4J3Sv3cwwLUiODqZSxckkA218gIiPjtvXrl7Iq v1E6ziwro7NojVdOpsWPjgmK+T8nx+jY2r3smQEscJrSiCZLnPMHbJa2DwAXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUV1U7ovnDKiziOeQKjnliMXFIhnMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAwwDQYJKoZIhvcNAQELBQADggEBAMPH uJqGnd/lRVfANvb6bA2Y1T3bgtqNVLNCe1uzoOlyDMR09nUE7A9UWA7FVjea77D3 GWiG1m3GCZHGqBGAZmV3Bni014ppbtvWWITzuojuhJUuC6PSslQZ2fW+EHDe4k5o wplBY58HKes22bWnj1UaXTISaKWuP1KDuq71RNsfjYk6OF3MVtURZ9fT/IKhaGE6 9vhk/2AL2kVMmKKrLv8B0ecv2XCMcoax5yNfV/HbGkY5vs55J8t+jZYsaxTpg478 SVvrhx/aHprgLoiXu3xxbEqijnj0l/tFVqeh1Qnl6OYNGisP2lnrJ/HLefqSAx/S E/F8gr7pUKonMfRYDTc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org