$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200269.roa File: AS200269.roa (raw, json) Hash identifier: 1cxR+Z7R4gjvgsxi6VMROKa/2mAXnhEUswvALz8EVO4= Subject key identifier: 52:5A:B1:F0:DC:CA:64:7A:E8:B9:9E:5D:81:38:4E:BF:D1:EC:C3:57 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7461FF2E2EB251B6C2B4B9396DD1AC4B82F6FA2C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200269.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 200269 IP address blocks: 2a0a:6040:2f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:61:ff:2e:2e:b2:51:b6:c2:b4:b9:39:6d:d1:ac:4b:82:f6:fa:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=525AB1F0DCCA647AE8B99E5D81384EBFD1ECC357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:5e:5d:f6:eb:20:c0:2d:8f:d5:d9:71:74:11: 34:1a:1f:b3:af:9b:d7:a5:06:1c:cd:db:1f:38:f4: 38:cd:0e:e1:16:30:76:e2:17:d0:67:5d:a1:b9:1d: bd:84:85:a0:2f:53:15:74:5a:1f:54:4b:d5:7e:54: 7d:dc:a1:0c:50:83:4d:68:e2:b5:c3:40:5c:41:b1: 13:ef:18:ba:5e:83:83:9c:ce:c1:25:f4:36:f0:ec: 23:58:d6:b7:8b:e3:27:35:6d:98:fd:47:5b:df:d4: ef:f0:a0:45:99:5f:6e:bc:9b:3f:3d:10:85:da:fb: 98:c5:bc:19:64:c6:8a:8c:6c:25:2b:7f:8e:d8:51: 68:da:19:9b:ca:96:9a:7c:1a:91:0a:2b:25:80:92: 67:06:3f:93:84:13:ba:30:85:2c:c2:ef:1a:23:b1: d6:70:fd:86:2f:3e:6c:34:bc:e7:51:e5:e2:5c:af: 2e:06:1b:84:34:39:17:67:5a:6e:db:dd:0c:97:8a: 37:10:96:30:87:7c:96:68:eb:3b:1f:0d:fd:aa:73: 16:b5:46:e0:58:02:1c:b6:2c:a8:92:c5:4a:8c:91: 32:39:80:19:98:24:d6:27:e7:70:82:48:60:66:39: 49:7d:08:f0:c3:81:89:40:5a:57:e0:bc:39:f8:d1: c0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5A:B1:F0:DC:CA:64:7A:E8:B9:9E:5D:81:38:4E:BF:D1:EC:C3:57 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200269.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2f00::/40 Signature Algorithm: sha256WithRSAEncryption b1:10:5f:e1:3a:15:9c:89:c7:29:be:80:f0:70:a0:44:13:62: db:98:30:54:7d:cb:fc:0f:0b:88:60:e2:e4:83:17:78:5d:24: 7b:a5:20:0a:9e:81:43:18:b8:a1:58:ff:86:71:98:75:3b:5b: 5c:26:0f:5f:2f:86:35:3d:8a:41:35:eb:7a:47:f1:17:ef:e7: b5:1a:31:fc:43:ac:f0:08:64:9c:45:8b:f5:04:be:8a:fa:3f: 2a:73:e7:1c:2d:0c:0e:e0:f4:ff:d7:af:00:80:24:fb:95:23: d5:14:1e:74:44:70:16:c6:aa:56:5c:04:c9:9d:0e:88:62:3f: e8:59:49:f6:85:6a:4e:af:8e:56:2f:79:4e:0d:a3:96:6a:57: ce:1f:6a:c2:0c:dd:11:c2:e2:69:25:be:77:51:a3:59:97:1d: e5:4c:40:de:34:02:e1:75:04:9c:38:ac:0a:77:bd:f6:a6:0b: d1:be:ce:c4:d6:dd:4f:8a:08:1f:e6:14:aa:3f:59:c4:3d:db: 56:21:88:5a:c9:e4:38:be:d8:8f:4c:ee:9d:9c:1a:5a:eb:13: a8:48:b0:7b:55:6f:6c:a2:68:61:ed:85:89:37:77:23:ac:de: 38:ae:bd:a5:04:7a:6f:e5:8a:29:b3:6b:be:3d:3d:09:3b:50: d2:06:57:5d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdGH/Li6yUbbCtLk5bdGsS4L2+iwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKDUyNUFCMUYwRENDQTY0N0FFOEI5OUU1RDgxMzg0RUJGRDFFQ0MzNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvXl326yDALY/V2XF0ETQaH7Ov m9elBhzN2x849DjNDuEWMHbiF9BnXaG5Hb2EhaAvUxV0Wh9US9V+VH3coQxQg01o 4rXDQFxBsRPvGLpeg4OczsEl9Dbw7CNY1reL4yc1bZj9R1vf1O/woEWZX268mz89 EIXa+5jFvBlkxoqMbCUrf47YUWjaGZvKlpp8GpEKKyWAkmcGP5OEE7owhSzC7xoj sdZw/YYvPmw0vOdR5eJcry4GG4Q0ORdnWm7b3QyXijcQljCHfJZo6zsfDf2qcxa1 RuBYAhy2LKiSxUqMkTI5gBmYJNYn53CCSGBmOUl9CPDDgYlAWlfgvDn40cBPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUlqx8NzKZHrouZ5dgThOv9Hsw1cwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQC8wDQYJKoZIhvcNAQELBQADggEBALEQ X+E6FZyJxym+gPBwoEQTYtuYMFR9y/wPC4hg4uSDF3hdJHulIAqegUMYuKFY/4Zx mHU7W1wmD18vhjU9ikE163pH8Rfv57UaMfxDrPAIZJxFi/UEvor6Pypz5xwtDA7g 9P/XrwCAJPuVI9UUHnREcBbGqlZcBMmdDohiP+hZSfaFak6vjlYveU4No5ZqV84f asIM3RHC4mklvndRo1mXHeVMQN40AuF1BJw4rAp3vfamC9G+zsTW3U+KCB/mFKo/ WcQ921YhiFrJ5Di+2I9M7p2cGlrrE6hIsHtVb2yiaGHthYk3dyOs3jiuvaUEem/l iimza749PQk7UNIGV10= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:45 2024 by rpki-client on console-fra.rpki-client.org