$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200329.roa File: AS200329.roa (raw, json) Hash identifier: 96CsJp+So/q2D5+eF3QOmLcPKQRU18rPxHIj6y7CCRQ= Subject key identifier: 9A:1F:C6:89:C7:14:13:99:E6:0D:24:D9:EB:90:EA:CE:B7:C3:4E:DA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 395A976193C55AAB0885F209EA6A4558F230329F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200329.roa Signing time: Sun 06 Oct 2024 04:44:56 +0000 ROA not before: Sun 06 Oct 2024 04:39:56 +0000 ROA not after: Sun 05 Oct 2025 04:44:56 +0000 asID: 200329 IP address blocks: 2a0a:6040:b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:5a:97:61:93:c5:5a:ab:08:85:f2:09:ea:6a:45:58:f2:30:32:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:56 2024 GMT Not After : Oct 5 04:44:56 2025 GMT Subject: CN=9A1FC689C7141399E60D24D9EB90EACEB7C34EDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:35:74:d5:1b:bc:08:be:94:8b:37:4f:f7:a8: 10:15:f0:2e:d3:64:2e:8c:36:0e:c4:3d:94:15:29: 0a:4b:cb:88:86:b9:1d:7e:dd:4b:e0:b9:35:e9:0e: 00:b4:7e:ee:06:9a:d2:b2:b2:42:83:24:b8:8a:70: ce:93:4a:4e:51:d5:a5:83:e0:09:7c:94:a2:65:0f: 76:0f:b8:ec:92:f7:c3:51:71:12:f0:6d:e6:74:57: af:fc:64:dc:a4:21:7e:7a:cf:50:68:d8:71:48:fd: 2a:7d:7c:d6:a7:af:17:05:3d:4e:9c:b1:65:a4:ca: 1b:fe:06:04:72:30:40:6a:a0:fb:69:f0:dd:53:8b: fc:f6:0c:2f:d1:9e:0e:57:f2:07:dd:42:66:f2:c1: 18:ab:77:a9:9e:ff:d2:19:ec:15:d5:80:91:91:81: e1:ee:a1:2f:73:cb:ab:44:ed:67:e6:43:37:e4:f4: b0:76:28:b5:16:92:e0:0e:31:7b:d9:65:38:ea:70: e5:99:6f:a4:9e:e5:f2:b1:34:d2:c3:8e:82:fd:39: 18:36:bb:ba:44:90:ca:60:95:fb:ee:83:0d:a3:7d: 73:e6:12:ac:7a:73:f3:c2:2c:1d:fc:63:3a:80:a3: f8:c2:5b:be:c0:97:26:55:76:da:a3:54:20:94:0e: 47:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:1F:C6:89:C7:14:13:99:E6:0D:24:D9:EB:90:EA:CE:B7:C3:4E:DA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200329.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b00::/40 Signature Algorithm: sha256WithRSAEncryption ae:50:d0:f0:06:84:d0:7c:ca:bc:c8:4a:85:b8:bb:41:e9:4c: 07:64:44:c1:c4:b3:84:65:e9:a4:3c:b2:34:2f:a8:6c:3d:c2: d7:e9:61:7e:87:b3:ac:80:ba:28:16:51:05:d3:30:34:0c:20: 08:bd:03:79:6b:4c:91:83:67:18:85:8e:3e:9d:63:17:38:30: 0f:75:a3:af:2a:a6:60:a1:e0:71:c3:06:a3:31:a3:ff:e1:e6: c9:36:00:7c:c1:90:3b:fe:ea:3b:dd:54:61:18:e4:56:37:c2: 17:79:00:1d:22:f4:06:92:13:29:f4:53:4c:cd:f9:a5:d9:17: 8e:c0:a7:46:17:24:68:91:1d:b3:9c:46:dc:2d:ae:6c:79:8a: ab:1f:0e:d4:2d:f5:f3:40:5a:cd:d6:f0:74:7b:42:f3:2d:16: 9b:9d:25:bd:4f:82:61:30:63:d3:5f:bf:4e:dd:2f:e2:a3:f2: ec:9b:05:c7:ef:af:cc:ff:e5:84:fc:34:e8:8c:7d:34:df:a4: bc:10:db:5b:d8:69:29:12:97:e6:9a:1c:e4:cf:8c:a2:20:fb: d9:ca:35:2a:e8:a2:90:f4:6e:fe:ab:32:33:a1:74:f9:f6:15: 20:ff:23:20:c0:b1:a5:64:59:ba:85:57:19:d5:7d:8f:7a:c9: 4c:de:dd:52 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOVqXYZPFWqsIhfIJ6mpFWPIwMp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTZaFw0yNTEwMDUwNDQ0NTZaMDMxMTAvBgNV BAMTKDlBMUZDNjg5QzcxNDEzOTlFNjBEMjREOUVCOTBFQUNFQjdDMzRFREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpNXTVG7wIvpSLN0/3qBAV8C7T ZC6MNg7EPZQVKQpLy4iGuR1+3UvguTXpDgC0fu4GmtKyskKDJLiKcM6TSk5R1aWD 4Al8lKJlD3YPuOyS98NRcRLwbeZ0V6/8ZNykIX56z1Bo2HFI/Sp9fNanrxcFPU6c sWWkyhv+BgRyMEBqoPtp8N1Ti/z2DC/Rng5X8gfdQmbywRird6me/9IZ7BXVgJGR geHuoS9zy6tE7WfmQzfk9LB2KLUWkuAOMXvZZTjqcOWZb6Se5fKxNNLDjoL9ORg2 u7pEkMpglfvugw2jfXPmEqx6c/PCLB38YzqAo/jCW77AlyZVdtqjVCCUDkd3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmh/GiccUE5nmDSTZ65DqzrfDTtowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMzI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAswDQYJKoZIhvcNAQELBQADggEBAK5Q 0PAGhNB8yrzISoW4u0HpTAdkRMHEs4Rl6aQ8sjQvqGw9wtfpYX6Hs6yAuigWUQXT MDQMIAi9A3lrTJGDZxiFjj6dYxc4MA91o68qpmCh4HHDBqMxo//h5sk2AHzBkDv+ 6jvdVGEY5FY3whd5AB0i9AaSEyn0U0zN+aXZF47Ap0YXJGiRHbOcRtwtrmx5iqsf DtQt9fNAWs3W8HR7QvMtFpudJb1PgmEwY9Nfv07dL+Kj8uybBcfvr8z/5YT8NOiM fTTfpLwQ21vYaSkSl+aaHOTPjKIg+9nKNSroopD0bv6rMjOhdPn2FSD/IyDAsaVk WbqFVxnVfY96yUze3VI= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org