$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200307.roa File: AS200307.roa (raw, json) Hash identifier: cC7A3qiGQ3cj2wT4iVoeJvNjVCtN7Yc2Fe5mAu3/Gjc= Subject key identifier: 47:84:A0:35:2C:71:F7:17:09:CD:85:2F:48:0F:F3:14:1F:25:E9:36 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 74BFB7D17B85D1EF0395E05EAB76D491F415DCBD Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200307.roa Signing time: Sun 06 Oct 2024 04:45:14 +0000 ROA not before: Sun 06 Oct 2024 04:40:14 +0000 ROA not after: Sun 05 Oct 2025 04:45:14 +0000 asID: 200307 IP address blocks: 2a0a:6040:ac00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:bf:b7:d1:7b:85:d1:ef:03:95:e0:5e:ab:76:d4:91:f4:15:dc:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:14 2024 GMT Not After : Oct 5 04:45:14 2025 GMT Subject: CN=4784A0352C71F71709CD852F480FF3141F25E936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:40:00:8f:24:4e:78:43:de:4a:8d:a1:bf:e2: 8d:3b:27:ea:24:30:03:5d:f2:e5:73:2d:3a:53:af: 23:5a:11:8d:58:86:d0:56:55:1b:11:1c:78:24:07: 3e:94:68:79:3a:ca:d1:31:ca:a5:b4:22:84:4e:b9: 97:62:db:ce:c9:bb:e0:7a:2a:74:39:bf:50:6e:84: 7e:43:7b:04:4b:b0:25:38:8b:c6:40:4e:5b:5e:6f: 49:55:97:3b:e7:84:f7:90:56:72:ac:a4:b5:28:2f: 37:e6:b6:23:b6:9c:44:6b:79:5b:89:cf:7d:81:ca: d2:a6:fa:2c:d1:4c:4b:b1:fa:8c:b6:30:9e:8c:8c: d2:3d:c0:a0:38:33:3b:13:d7:ec:97:b9:23:ef:45: ff:42:b4:1a:60:66:a5:5a:0c:03:e7:64:5f:b4:7f: df:48:09:97:07:9a:38:41:db:dc:a2:45:3d:38:26: 39:19:7f:5d:26:f5:ed:b9:3a:91:fc:33:80:5f:29: ab:76:a1:6c:09:89:89:88:61:49:23:c4:61:2c:21: 82:b6:85:33:00:ed:c7:ad:5d:2c:5e:6e:19:5e:12: 5a:3a:83:f6:81:81:b6:74:1d:3f:86:be:f4:4e:36: 64:0a:3b:3c:9b:19:36:e3:09:59:34:e8:83:a2:ee: 24:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:84:A0:35:2C:71:F7:17:09:CD:85:2F:48:0F:F3:14:1F:25:E9:36 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200307.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ac00::/40 Signature Algorithm: sha256WithRSAEncryption 7a:36:bc:02:f1:63:da:6c:14:66:b7:c3:fb:96:c5:94:ef:c1: 57:d5:db:14:32:79:4d:7e:3a:b1:af:b8:2f:a4:f2:9f:94:ba: 83:93:11:af:17:39:70:4e:b5:b4:7c:91:91:a0:48:7b:f7:36: f4:60:ef:9a:35:5b:0c:8f:88:18:6d:72:13:b5:63:2b:bd:83: 7d:e1:23:7d:ca:03:73:cd:54:78:47:66:e2:f2:2f:ff:8a:24: b6:30:aa:4b:42:70:4f:f4:19:db:f6:b1:b2:3b:72:91:14:23: bb:2b:43:3a:85:5b:dd:30:0c:55:ea:7a:37:03:19:1e:75:9e: f6:e3:dd:b7:5c:cc:e8:a8:d6:26:78:95:80:06:ee:cb:81:e4: e4:46:f3:eb:2f:3b:4a:f6:e9:83:da:78:75:3d:1c:03:25:6d: 90:3c:e3:83:a3:f9:dd:65:30:49:3a:b6:95:f9:cb:5a:54:c0: d9:9c:13:a1:4f:8b:90:24:60:ec:1f:e6:e5:61:52:32:59:13: 24:5b:c3:96:b9:90:5e:76:3a:66:1f:39:1b:cc:c0:09:9d:13: 5f:24:b4:8a:dd:67:6a:9b:fe:ec:79:f7:6e:00:25:a9:e0:4b: a4:27:24:28:59:6d:d7:19:a8:91:fc:a2:42:a9:39:08:0e:73: 98:68:41:e9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdL+30XuF0e8DleBeq3bUkfQV3L0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTRaFw0yNTEwMDUwNDQ1MTRaMDMxMTAvBgNV BAMTKDQ3ODRBMDM1MkM3MUY3MTcwOUNEODUyRjQ4MEZGMzE0MUYyNUU5MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEQACPJE54Q95KjaG/4o07J+ok MANd8uVzLTpTryNaEY1YhtBWVRsRHHgkBz6UaHk6ytExyqW0IoROuZdi287Ju+B6 KnQ5v1BuhH5DewRLsCU4i8ZATlteb0lVlzvnhPeQVnKspLUoLzfmtiO2nERreVuJ z32BytKm+izRTEux+oy2MJ6MjNI9wKA4MzsT1+yXuSPvRf9CtBpgZqVaDAPnZF+0 f99ICZcHmjhB29yiRT04JjkZf10m9e25OpH8M4BfKat2oWwJiYmIYUkjxGEsIYK2 hTMA7cetXSxebhleElo6g/aBgbZ0HT+GvvRONmQKOzybGTbjCVk06IOi7iTJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUR4SgNSxx9xcJzYUvSA/zFB8l6TYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMzA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKwwDQYJKoZIhvcNAQELBQADggEBAHo2 vALxY9psFGa3w/uWxZTvwVfV2xQyeU1+OrGvuC+k8p+UuoOTEa8XOXBOtbR8kZGg SHv3NvRg75o1WwyPiBhtchO1Yyu9g33hI33KA3PNVHhHZuLyL/+KJLYwqktCcE/0 Gdv2sbI7cpEUI7srQzqFW90wDFXqejcDGR51nvbj3bdczOio1iZ4lYAG7suB5ORG 8+svO0r26YPaeHU9HAMlbZA844Oj+d1lMEk6tpX5y1pUwNmcE6FPi5AkYOwf5uVh UjJZEyRbw5a5kF52OmYfORvMwAmdE18ktIrdZ2qb/ux5924AJangS6QnJChZbdcZ qJH8okKpOQgOc5hoQek= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org