$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200268.roa File: AS200268.roa (raw, json) Hash identifier: 8hfIqzxuFpBmYGRxf9QgDpSvE2xFrNNl1tZ/JVgVpV4= Subject key identifier: DE:F8:67:DB:36:A9:89:01:FB:86:04:81:0D:35:22:DC:C1:50:AB:E7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 778405060F7741EDBCF1F49A1DCD6132C03AD45A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200268.roa Signing time: Sun 06 Oct 2024 04:45:14 +0000 ROA not before: Sun 06 Oct 2024 04:40:14 +0000 ROA not after: Sun 05 Oct 2025 04:45:14 +0000 asID: 200268 IP address blocks: 2a0a:6040:1b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:84:05:06:0f:77:41:ed:bc:f1:f4:9a:1d:cd:61:32:c0:3a:d4:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:14 2024 GMT Not After : Oct 5 04:45:14 2025 GMT Subject: CN=DEF867DB36A98901FB8604810D3522DCC150ABE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c2:f2:5d:ef:82:db:c1:05:e4:2d:46:b8:a5: 40:55:6a:4f:67:0b:00:c2:e2:c5:41:eb:00:f0:28: d0:07:eb:e5:9a:c2:bb:4e:1c:59:81:13:32:1a:63: 22:d4:52:02:01:fc:02:20:46:1c:87:24:92:b8:d5: fc:7c:ff:43:fa:c6:4a:aa:75:61:d1:fb:7e:29:30: 23:3c:1e:76:23:3f:fc:76:1b:f2:5f:28:b9:88:2e: 5c:bb:f8:82:32:15:a3:07:21:38:2d:0e:16:b1:d7: 67:a7:30:00:00:68:0a:7e:f5:1d:5d:d8:55:8d:07: 16:8b:a7:34:2f:46:36:d1:44:a0:08:d0:bd:be:05: 7b:d6:b2:12:cf:59:d8:1f:4e:3a:df:8c:7f:aa:36: 70:7c:27:32:2f:0f:8d:2a:e6:16:d8:39:2d:dd:dc: ee:33:6b:07:be:62:66:9c:54:e1:65:8b:7b:1c:62: 8b:52:2c:f7:6d:57:63:06:32:c9:34:0a:3c:09:0f: 23:1e:c6:b8:7b:4a:23:b3:3b:08:2a:2d:86:b4:76: dc:eb:fd:c9:8c:38:7b:10:44:d1:af:17:6c:ab:19: 05:d2:ce:cf:bb:91:c8:d3:d9:5f:a7:97:67:c7:09: d4:af:25:eb:b5:3b:9b:1f:35:02:f4:ea:69:b6:80: b8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F8:67:DB:36:A9:89:01:FB:86:04:81:0D:35:22:DC:C1:50:AB:E7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200268.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1b00::/40 Signature Algorithm: sha256WithRSAEncryption 72:db:36:1e:41:e5:7a:82:9a:18:fa:8a:c4:b3:a1:0d:92:73: 12:9b:2d:7a:aa:d8:57:70:28:b7:59:ff:c4:4b:8c:87:29:1b: 51:54:2e:fb:72:23:4e:1a:94:72:06:9a:6c:33:30:3c:f7:52: bc:d8:c8:f8:58:3b:75:b9:a5:3b:b7:48:8d:21:9d:bd:27:9f: 64:47:22:7e:6b:fc:50:1a:b5:bc:a7:b4:bc:0d:9e:04:dc:92: f9:73:61:48:19:11:53:04:cf:0a:5b:53:4f:65:ba:c7:b7:e3: 58:c5:df:03:f1:11:59:2d:34:cf:39:a4:9f:7f:e0:3b:c5:90: d4:cd:0b:39:f4:22:da:1a:c9:a8:cd:31:4f:c8:d4:9e:f2:30: ab:3b:a0:70:39:0d:cd:e6:c7:c8:73:75:d9:a2:ed:c5:e1:d9: 23:19:f4:0b:af:12:1a:2e:71:23:87:c5:38:55:e3:fc:c5:98: 30:8d:f3:7b:39:0b:9f:8b:cc:2d:7b:9e:fb:54:fa:f6:f9:c4: 4c:7e:86:3f:30:02:d8:36:fd:c9:25:e3:33:3e:24:54:44:61: 37:9a:3d:f6:f3:ce:6f:f4:7d:04:59:c0:23:4c:8b:35:38:a8: 9a:8e:65:8d:e7:92:5b:51:8f:e9:1c:64:f3:94:8f:c9:6c:41: 8f:9b:47:a7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd4QFBg93Qe288fSaHc1hMsA61FowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTRaFw0yNTEwMDUwNDQ1MTRaMDMxMTAvBgNV BAMTKERFRjg2N0RCMzZBOTg5MDFGQjg2MDQ4MTBEMzUyMkRDQzE1MEFCRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1wvJd74LbwQXkLUa4pUBVak9n CwDC4sVB6wDwKNAH6+WawrtOHFmBEzIaYyLUUgIB/AIgRhyHJJK41fx8/0P6xkqq dWHR+34pMCM8HnYjP/x2G/JfKLmILly7+IIyFaMHITgtDhax12enMAAAaAp+9R1d 2FWNBxaLpzQvRjbRRKAI0L2+BXvWshLPWdgfTjrfjH+qNnB8JzIvD40q5hbYOS3d 3O4zawe+YmacVOFli3scYotSLPdtV2MGMsk0CjwJDyMexrh7SiOzOwgqLYa0dtzr /cmMOHsQRNGvF2yrGQXSzs+7kcjT2V+nl2fHCdSvJeu1O5sfNQL06mm2gLjvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU3vhn2zapiQH7hgSBDTUi3MFQq+cwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBswDQYJKoZIhvcNAQELBQADggEBAHLb Nh5B5XqCmhj6isSzoQ2ScxKbLXqq2FdwKLdZ/8RLjIcpG1FULvtyI04alHIGmmwz MDz3UrzYyPhYO3W5pTu3SI0hnb0nn2RHIn5r/FAatbyntLwNngTckvlzYUgZEVME zwpbU09luse341jF3wPxEVktNM85pJ9/4DvFkNTNCzn0ItoayajNMU/I1J7yMKs7 oHA5Dc3mx8hzddmi7cXh2SMZ9AuvEhoucSOHxThV4/zFmDCN83s5C5+LzC17nvtU +vb5xEx+hj8wAtg2/ckl4zM+JFREYTeaPfbzzm/0fQRZwCNMizU4qJqOZY3nkltR j+kcZPOUj8lsQY+bR6c= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org