$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200326.roa File: AS200326.roa (raw, json) Hash identifier: jAGYqHEv70bP6qxEAG2frdNqCxAZeooRVCtrghZc93g= Subject key identifier: C7:CE:14:FC:06:81:82:83:5A:79:2A:84:EF:49:AE:96:A5:99:3F:D3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 462959595575E41879139D6AD235CAA374C9823F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200326.roa Signing time: Sun 06 Oct 2024 04:45:19 +0000 ROA not before: Sun 06 Oct 2024 04:40:19 +0000 ROA not after: Sun 05 Oct 2025 04:45:19 +0000 asID: 200326 IP address blocks: 2a0a:6040:a500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:29:59:59:55:75:e4:18:79:13:9d:6a:d2:35:ca:a3:74:c9:82:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:19 2024 GMT Not After : Oct 5 04:45:19 2025 GMT Subject: CN=C7CE14FC068182835A792A84EF49AE96A5993FD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6c:56:22:80:3c:cd:32:a5:4e:29:6e:91:2b: eb:ea:ec:fd:d4:15:6b:06:f6:60:8d:57:25:c8:54: 0e:dc:81:4a:55:19:5c:0f:bd:67:51:3d:12:b5:f0: 56:a1:37:20:ce:4c:4c:cd:da:46:71:1b:87:2e:c6: b0:87:70:32:36:06:d6:61:9f:ac:cb:1e:fb:c9:22: a9:a9:13:45:19:ae:be:cb:27:e8:92:36:26:96:a9: be:89:de:eb:87:75:df:f0:21:65:63:b3:73:c9:01: c2:77:ec:05:f6:9a:45:bf:d1:eb:29:0c:1e:35:70: 34:85:35:19:eb:95:bf:89:8a:61:d9:d7:09:e4:ad: 5a:2d:96:fa:34:bb:44:ab:f3:27:a1:50:2d:a9:79: 6e:68:1a:52:7c:54:67:08:5e:ea:9b:a4:ce:ed:d2: 21:e7:5e:a3:c1:a6:ad:d3:ce:88:6c:93:0f:86:14: 6d:fa:d9:48:d1:46:37:08:cf:d3:46:8f:19:1a:51: f2:6a:6c:72:0f:cf:ee:9d:b8:38:1d:00:ae:4d:1e: b3:b1:f8:34:2d:a5:63:19:27:38:fa:44:48:35:27: f0:d4:41:0c:eb:15:ef:98:10:5e:f1:4c:84:c5:d5: 56:15:46:0b:8f:a8:d2:68:b4:2b:59:e9:14:b5:fc: 1b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:CE:14:FC:06:81:82:83:5A:79:2A:84:EF:49:AE:96:A5:99:3F:D3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a500::/40 Signature Algorithm: sha256WithRSAEncryption b6:79:e5:48:2d:f9:ec:96:8e:8a:06:2a:38:3f:65:c3:1b:8d: 18:8d:19:7e:9f:e1:11:0c:fd:ce:aa:89:9e:5a:53:06:cf:5e: 6d:82:56:bd:be:f4:92:9d:b7:ac:4d:c8:15:e6:4c:d5:d5:9e: 0f:48:84:93:75:c0:74:ea:8e:06:76:df:b9:fc:c7:d9:78:72: 18:4e:27:87:f4:9a:7c:05:9a:79:16:87:8e:cb:60:74:a5:55: 4f:c6:cf:4c:c7:05:d4:bf:29:c2:25:37:b5:5b:34:ad:9a:15: d7:6a:17:52:f5:85:40:ef:e9:5b:11:d8:ab:7b:80:5d:a2:16: c6:a7:be:90:bd:90:e0:b2:de:d6:57:c5:a6:6b:34:27:53:bb: f3:5e:ed:4f:ad:4e:5a:35:c8:bd:af:cb:cf:0c:3d:94:01:79: b7:08:44:c2:76:bb:d0:d4:ad:38:93:b0:7a:92:b0:d4:5a:17: 00:fa:b6:de:ae:53:4c:f8:40:69:62:97:7e:61:da:8c:e8:57: 1e:c3:f0:bc:37:53:84:65:a1:2f:74:56:73:42:65:7d:fd:fd: 1d:c8:df:cc:3d:0d:28:4a:03:51:1a:f2:33:8d:22:6e:52:dd: d8:4a:a3:e0:85:d9:f1:72:ea:1d:f9:4f:60:ff:ed:ed:fa:38: 5e:28:07:fc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURilZWVV15Bh5E51q0jXKo3TJgj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTlaFw0yNTEwMDUwNDQ1MTlaMDMxMTAvBgNV BAMTKEM3Q0UxNEZDMDY4MTgyODM1QTc5MkE4NEVGNDlBRTk2QTU5OTNGRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKbFYigDzNMqVOKW6RK+vq7P3U FWsG9mCNVyXIVA7cgUpVGVwPvWdRPRK18FahNyDOTEzN2kZxG4cuxrCHcDI2BtZh n6zLHvvJIqmpE0UZrr7LJ+iSNiaWqb6J3uuHdd/wIWVjs3PJAcJ37AX2mkW/0esp DB41cDSFNRnrlb+JimHZ1wnkrVotlvo0u0Sr8yehUC2peW5oGlJ8VGcIXuqbpM7t 0iHnXqPBpq3Tzohskw+GFG362UjRRjcIz9NGjxkaUfJqbHIPz+6duDgdAK5NHrOx +DQtpWMZJzj6REg1J/DUQQzrFe+YEF7xTITF1VYVRguPqNJotCtZ6RS1/Bt/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUx84U/AaBgoNaeSqE70mulqWZP9MwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMzI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKUwDQYJKoZIhvcNAQELBQADggEBALZ5 5Ugt+eyWjooGKjg/ZcMbjRiNGX6f4REM/c6qiZ5aUwbPXm2CVr2+9JKdt6xNyBXm TNXVng9IhJN1wHTqjgZ237n8x9l4chhOJ4f0mnwFmnkWh47LYHSlVU/Gz0zHBdS/ KcIlN7VbNK2aFddqF1L1hUDv6VsR2Kt7gF2iFsanvpC9kOCy3tZXxaZrNCdTu/Ne 7U+tTlo1yL2vy88MPZQBebcIRMJ2u9DUrTiTsHqSsNRaFwD6tt6uU0z4QGlil35h 2ozoVx7D8Lw3U4RloS90VnNCZX39/R3I38w9DShKA1Ea8jONIm5S3dhKo+CF2fFy 6h35T2D/7e36OF4oB/w= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org