$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200447.roa File: AS200447.roa (raw, json) Hash identifier: ktsBO85c/wcdS+7Dt4G7eqAyS1WlHqZiwguhpu2A+FQ= Subject key identifier: 9E:40:CC:98:99:B6:AC:71:FA:73:6A:1D:6E:2A:60:8D:9C:AB:EA:6C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5BDC69B552BE33E0CE3AE07FB77CD35669443948 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200447.roa Signing time: Thu 24 Oct 2024 23:45:27 +0000 ROA not before: Thu 24 Oct 2024 23:40:27 +0000 ROA not after: Thu 23 Oct 2025 23:45:27 +0000 asID: 200447 IP address blocks: 2a06:9f81:2100::/40 maxlen: 48 2a0a:6040:b900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:dc:69:b5:52:be:33:e0:ce:3a:e0:7f:b7:7c:d3:56:69:44:39:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 24 23:40:27 2024 GMT Not After : Oct 23 23:45:27 2025 GMT Subject: CN=9E40CC9899B6AC71FA736A1D6E2A608D9CABEA6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b7:83:0d:65:96:11:d4:80:6e:6a:75:f4:c5: 34:9a:aa:78:e1:43:d9:ee:dd:cd:c7:b5:95:8b:55: 4d:73:64:e3:0b:f9:b5:ae:9e:01:13:3e:0f:0c:0a: 14:95:30:4a:2d:3e:ef:05:38:2c:a2:bb:df:02:97: 15:d8:7a:2c:f4:f9:bc:b3:2a:9c:57:97:be:74:b3: 36:82:5c:21:42:9e:7e:6e:01:9f:b9:95:bf:ea:82: 55:32:64:ff:76:12:65:eb:90:e3:83:72:54:ce:dd: a3:5d:9d:be:e2:d9:60:85:2f:94:57:9c:a5:24:26: 20:5a:8b:34:dc:ba:36:c4:d2:00:0f:54:3e:d1:30: 9d:26:24:3e:ff:75:a6:c5:b4:3c:ba:4e:7c:41:dc: cd:f6:d1:cf:76:80:1b:9c:3f:f9:90:e8:bd:63:40: 96:4b:fc:24:12:ad:b1:a7:62:09:a4:e6:99:18:79: 30:b8:c6:2d:2e:04:82:7e:12:d1:a3:6f:bc:83:2d: 19:f3:e5:95:52:d0:fe:7a:30:82:09:01:ef:f4:cb: 9c:e2:bd:b0:92:06:fd:c0:f5:96:2c:07:9f:4f:a9: 28:eb:21:ad:d4:e4:f3:2c:01:b5:19:43:5a:44:c4: 47:a9:49:1b:da:80:d3:46:29:fb:e7:03:eb:e0:d5: 45:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:40:CC:98:99:B6:AC:71:FA:73:6A:1D:6E:2A:60:8D:9C:AB:EA:6C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200447.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2100::/40 2a0a:6040:b900::/40 Signature Algorithm: sha256WithRSAEncryption 7f:ac:bc:3f:c3:5e:04:d4:49:10:44:59:43:79:2d:35:c6:9a: b5:43:5f:c3:85:7f:e5:2b:fa:1d:07:e6:39:a2:e6:5e:39:26: 5b:93:e6:4a:bc:5f:71:bd:16:9e:24:3c:34:08:f0:da:03:a0: 14:32:b0:d7:7e:51:88:99:5c:1a:16:57:c0:00:4e:f8:cf:71: de:59:f2:19:e7:ae:56:b8:1a:6a:ab:03:7d:49:16:11:e3:17: 9d:a4:a0:84:91:70:d8:f9:03:7f:45:bb:a5:b7:42:84:3f:ad: 8c:a4:73:5c:b4:45:4d:c8:98:99:85:cd:40:17:c5:a2:b1:85: c7:22:7e:43:04:b7:56:1e:2a:86:a7:18:0c:8c:9d:58:e6:d4: ec:38:eb:fd:52:68:cd:73:6b:af:a6:41:1a:1b:ae:af:31:6a: 71:46:5f:9e:a5:67:41:fe:f2:97:37:e8:e6:a7:4c:94:64:a9: 6e:f1:e6:a0:9d:15:ff:b7:e8:80:6d:05:79:f9:98:2a:11:bd: 6e:30:84:fa:dd:90:09:13:79:7c:fb:16:e5:e1:db:ef:e1:a1: 26:3d:78:35:18:6a:89:82:3b:21:26:63:62:c5:f8:8e:33:1c: 8b:8d:bf:3a:91:cb:5e:11:cf:63:80:19:ad:32:47:1c:b4:eb: 06:b3:ef:8d -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUW9xptVK+M+DOOuB/t3zTVmlEOUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMjQyMzQwMjdaFw0yNTEwMjMyMzQ1MjdaMDMxMTAvBgNV BAMTKDlFNDBDQzk4OTlCNkFDNzFGQTczNkExRDZFMkE2MDhEOUNBQkVBNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOt4MNZZYR1IBuanX0xTSaqnjh Q9nu3c3HtZWLVU1zZOML+bWungETPg8MChSVMEotPu8FOCyiu98ClxXYeiz0+byz KpxXl750szaCXCFCnn5uAZ+5lb/qglUyZP92EmXrkOODclTO3aNdnb7i2WCFL5RX nKUkJiBaizTcujbE0gAPVD7RMJ0mJD7/dabFtDy6TnxB3M320c92gBucP/mQ6L1j QJZL/CQSrbGnYgmk5pkYeTC4xi0uBIJ+EtGjb7yDLRnz5ZVS0P56MIIJAe/0y5zi vbCSBv3A9ZYsB59PqSjrIa3U5PMsAbUZQ1pExEepSRvagNNGKfvnA+vg1UW1AgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUnkDMmJm2rHH6c2odbipgjZyr6mwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNDQ3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgafgSEDBgAqCmBAuTANBgkqhkiG9w0BAQsF AAOCAQEAf6y8P8NeBNRJEERZQ3ktNcaatUNfw4V/5Sv6HQfmOaLmXjkmW5PmSrxf cb0WniQ8NAjw2gOgFDKw135RiJlcGhZXwABO+M9x3lnyGeeuVrgaaqsDfUkWEeMX naSghJFw2PkDf0W7pbdChD+tjKRzXLRFTciYmYXNQBfForGFxyJ+QwS3Vh4qhqcY DIydWObU7Djr/VJozXNrr6ZBGhuurzFqcUZfnqVnQf7ylzfo5qdMlGSpbvHmoJ0V /7fogG0FefmYKhG9bjCE+t2QCRN5fPsW5eHb7+GhJj14NRhqiYI7ISZjYsX4jjMc i42/OpHLXhHPY4AZrTJHHLTrBrPvjQ== -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org