$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200335.roa File: AS200335.roa (raw, json) Hash identifier: 2/hnUxhjVQ0VVO/hKaMpLb541ThgNKQOd1FgIY6vHKg= Subject key identifier: EA:02:CE:3B:86:E7:D4:74:37:83:A4:D4:C3:47:05:2A:DD:27:3D:27 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 12A901BE932B024B5498101049DBF3290EE1309C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200335.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 200335 IP address blocks: 2a0a:6040:3100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a9:01:be:93:2b:02:4b:54:98:10:10:49:db:f3:29:0e:e1:30:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=EA02CE3B86E7D4743783A4D4C347052ADD273D27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7a:d9:8a:0e:4f:55:ac:c9:5c:99:0b:06:5d: 8a:d9:9f:3a:d2:50:f9:f2:58:61:58:db:1f:66:b3: ff:66:05:29:bd:d3:a2:c4:e3:90:f8:c5:a0:c4:d3: 3d:72:6a:93:19:15:75:3f:dc:52:9f:5a:29:7d:41: 65:14:ca:9e:c3:ec:a2:fd:36:a1:45:dc:f1:a5:09: eb:22:f5:90:7a:59:e0:50:c4:1a:ff:9a:96:97:2f: 62:f5:8f:6a:85:85:df:d4:ee:89:71:c9:e9:e9:68: 82:35:10:fa:50:d9:c6:4e:fd:20:6b:e9:1a:9c:71: d1:1e:1c:93:c7:50:4d:76:fb:62:6b:63:a1:ca:1a: 67:d9:65:57:ce:30:10:57:a8:c9:ce:4d:f3:f0:70: 96:38:6b:49:3d:76:73:2b:87:a1:12:9d:d3:7d:f4: d5:d6:15:b3:48:0b:1f:90:a0:5b:a5:88:2d:3e:ed: f6:e0:3f:78:71:8d:58:f4:af:a1:fc:7b:44:26:f3: 11:9c:a5:bd:04:62:53:7c:0f:6b:a8:22:4d:9d:97: 95:d9:50:5a:ca:6c:80:e5:77:b9:94:1a:a1:bb:e1: 91:63:09:82:ae:45:49:23:e2:4d:ff:33:86:6d:8b: 89:42:8f:9c:a0:4b:da:ad:ed:fe:78:4c:52:44:ee: 4b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:02:CE:3B:86:E7:D4:74:37:83:A4:D4:C3:47:05:2A:DD:27:3D:27 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3100::/40 Signature Algorithm: sha256WithRSAEncryption 4c:77:67:14:91:06:12:78:82:61:c5:7a:01:18:f7:3d:5a:27: 89:ad:bb:d6:fb:67:4c:0b:bb:15:54:36:d8:fa:0d:dd:11:52: 20:5c:c9:64:3c:88:10:ae:8a:51:f7:1a:a5:8a:99:1b:a9:81: 13:73:86:d6:ce:32:5e:8f:72:34:a6:a1:fa:1b:61:74:58:8a: 19:6c:94:82:9c:79:24:f1:62:0b:6a:36:b9:fd:63:63:58:11: 5a:14:4c:cc:d1:ad:8a:ea:71:b1:70:f9:bb:56:a3:c5:f3:1e: 62:10:cc:95:21:02:7c:61:0c:12:ff:5f:a6:a6:60:ed:14:69: 83:49:62:89:86:82:5a:97:c4:33:ac:1c:30:57:a8:0f:a9:2d: 89:8e:28:7b:8c:67:4e:26:9e:02:72:0a:7c:5f:42:90:d5:e2: 54:fd:56:90:22:17:4f:49:4b:11:4d:b5:9f:93:04:90:d4:ce: 76:28:ed:85:cd:c4:2c:13:89:2b:b4:82:38:19:43:3c:84:07: e9:48:c2:72:83:61:da:b2:92:c4:6a:30:f0:ce:80:d9:70:c3: 59:87:06:25:ea:a1:8d:d3:25:df:62:72:d6:6f:dd:f7:28:4f: c4:0c:17:d3:ea:ab:01:b7:35:3a:bc:d6:ab:31:cf:ba:37:41: 1b:a8:33:5b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEqkBvpMrAktUmBAQSdvzKQ7hMJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKEVBMDJDRTNCODZFN0Q0NzQzNzgzQTRENEMzNDcwNTJBREQyNzNEMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVetmKDk9VrMlcmQsGXYrZnzrS UPnyWGFY2x9ms/9mBSm906LE45D4xaDE0z1yapMZFXU/3FKfWil9QWUUyp7D7KL9 NqFF3PGlCesi9ZB6WeBQxBr/mpaXL2L1j2qFhd/U7olxyenpaII1EPpQ2cZO/SBr 6RqccdEeHJPHUE12+2JrY6HKGmfZZVfOMBBXqMnOTfPwcJY4a0k9dnMrh6ESndN9 9NXWFbNICx+QoFuliC0+7fbgP3hxjVj0r6H8e0Qm8xGcpb0EYlN8D2uoIk2dl5XZ UFrKbIDld7mUGqG74ZFjCYKuRUkj4k3/M4Zti4lCj5ygS9qt7f54TFJE7kupAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU6gLOO4bn1HQ3g6TUw0cFKt0nPScwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDEwDQYJKoZIhvcNAQELBQADggEBAEx3 ZxSRBhJ4gmHFegEY9z1aJ4mtu9b7Z0wLuxVUNtj6Dd0RUiBcyWQ8iBCuilH3GqWK mRupgRNzhtbOMl6PcjSmofobYXRYihlslIKceSTxYgtqNrn9Y2NYEVoUTMzRrYrq cbFw+btWo8XzHmIQzJUhAnxhDBL/X6amYO0UaYNJYomGglqXxDOsHDBXqA+pLYmO KHuMZ04mngJyCnxfQpDV4lT9VpAiF09JSxFNtZ+TBJDUznYo7YXNxCwTiSu0gjgZ QzyEB+lIwnKDYdqyksRqMPDOgNlww1mHBiXqoY3TJd9ictZv3fcoT8QMF9PqqwG3 NTq81qsxz7o3QRuoM1s= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org