$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200454.roa File: AS200454.roa (raw, json) Hash identifier: YQGTc1mC+wPq77K610a8M4NRL0QcHT/hD0N2n2rLTWQ= Subject key identifier: CB:93:37:3C:38:5B:63:5D:B3:A3:40:8D:0C:1C:56:7D:55:60:07:07 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 481F68815F5A0D1437368269B8554DB4449562E3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200454.roa Signing time: Sun 06 Oct 2024 04:45:07 +0000 ROA not before: Sun 06 Oct 2024 04:40:07 +0000 ROA not after: Sun 05 Oct 2025 04:45:07 +0000 asID: 200454 IP address blocks: 2a0a:6040:aa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Nov 2024 15:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1f:68:81:5f:5a:0d:14:37:36:82:69:b8:55:4d:b4:44:95:62:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:07 2024 GMT Not After : Oct 5 04:45:07 2025 GMT Subject: CN=CB93373C385B635DB3A3408D0C1C567D55600707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f5:42:f7:6d:63:40:0e:5d:ba:6d:da:a6:16: 80:f8:ec:c9:9d:74:da:9f:74:23:db:fe:01:f0:ca: b9:3b:b7:60:5d:a4:4e:9d:97:15:f7:6a:95:74:92: 97:a0:1a:1c:8f:8d:74:51:be:db:5b:ee:b3:af:d1: 3a:ad:c7:d0:f7:f2:01:05:9b:bd:aa:04:f2:55:91: a7:41:96:db:36:b1:2c:72:b1:fc:fb:36:10:4c:ac: 09:33:81:6e:cc:07:b8:36:98:63:83:ac:9b:33:5c: 2e:71:c9:71:06:a3:dc:4a:8d:b9:16:85:4d:a9:3a: c6:de:2e:60:dd:9d:f9:af:75:d9:79:59:47:61:ac: d0:50:78:e2:aa:3d:ce:85:8e:69:07:0a:3f:79:5a: 23:2f:a1:e6:ae:d7:61:54:e2:ba:8a:b8:6d:da:7c: 6a:80:4b:d9:d3:1b:7b:49:25:53:43:50:8c:2c:b7: dd:96:dc:23:fe:a1:45:8a:25:7d:bd:d3:62:c8:ad: 9f:6b:2c:6b:86:13:ee:5d:0f:14:8b:56:fb:61:cc: db:c9:fa:01:5f:fb:92:ce:0f:58:91:b6:35:b7:37: 34:bc:fb:d1:3a:1d:6b:e8:aa:9a:65:87:64:53:06: da:1c:5b:04:67:b4:d6:18:94:93:27:2d:67:8c:d2: 34:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:93:37:3C:38:5B:63:5D:B3:A3:40:8D:0C:1C:56:7D:55:60:07:07 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:aa00::/40 Signature Algorithm: sha256WithRSAEncryption 47:3e:78:e5:ee:b6:48:ba:24:4c:56:19:ea:1e:ec:71:05:ca: 2f:63:be:aa:73:38:64:4d:3a:b4:04:eb:ea:11:3a:7f:ca:eb: cf:6e:50:1c:9b:b6:da:ab:39:80:d0:38:ac:93:cc:2d:96:fd: f7:8f:59:64:c0:eb:25:9a:82:fb:21:44:2c:65:49:eb:09:1a: af:60:68:66:5c:cb:b9:10:93:9f:49:9a:ea:32:e4:2b:3d:5e: 0c:52:de:e5:ef:72:78:9f:b2:fe:89:39:4e:da:7d:a0:4f:01: 82:2a:61:22:d8:25:ac:00:8c:f8:59:f1:fa:dd:fd:96:e0:3e: 12:5b:a2:d8:1b:a3:c8:98:97:7e:87:3d:1d:6f:2a:65:4b:ff: cd:6c:b1:41:b4:5b:db:58:1e:58:67:c8:cb:33:89:91:d1:6d: ba:36:ab:7a:bd:9b:46:8f:d4:91:94:ce:18:1c:9d:4d:02:c6: b9:bc:b5:c6:7a:b3:82:50:36:24:ec:ed:02:2c:4c:20:34:f2: a6:08:59:f4:2e:31:1b:fc:f4:75:b4:c4:20:aa:45:26:16:54: d3:c3:b9:c6:12:08:fd:d7:22:72:45:e2:7c:b0:08:36:4d:f2: 5f:5a:fa:4f:2e:ab:0b:22:65:cc:24:0c:b6:b2:23:e4:8f:32: 48:a8:8b:ca -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSB9ogV9aDRQ3NoJpuFVNtESVYuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDdaFw0yNTEwMDUwNDQ1MDdaMDMxMTAvBgNV BAMTKENCOTMzNzNDMzg1QjYzNURCM0EzNDA4RDBDMUM1NjdENTU2MDA3MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi9UL3bWNADl26bdqmFoD47Mmd dNqfdCPb/gHwyrk7t2BdpE6dlxX3apV0kpegGhyPjXRRvttb7rOv0Tqtx9D38gEF m72qBPJVkadBlts2sSxysfz7NhBMrAkzgW7MB7g2mGODrJszXC5xyXEGo9xKjbkW hU2pOsbeLmDdnfmvddl5WUdhrNBQeOKqPc6FjmkHCj95WiMvoeau12FU4rqKuG3a fGqAS9nTG3tJJVNDUIwst92W3CP+oUWKJX2902LIrZ9rLGuGE+5dDxSLVvthzNvJ +gFf+5LOD1iRtjW3NzS8+9E6HWvoqpplh2RTBtocWwRntNYYlJMnLWeM0jRhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUy5M3PDhbY12zo0CNDBxWfVVgBwcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNDU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKowDQYJKoZIhvcNAQELBQADggEBAEc+ eOXutki6JExWGeoe7HEFyi9jvqpzOGRNOrQE6+oROn/K689uUBybttqrOYDQOKyT zC2W/fePWWTA6yWagvshRCxlSesJGq9gaGZcy7kQk59Jmuoy5Cs9XgxS3uXvcnif sv6JOU7afaBPAYIqYSLYJawAjPhZ8frd/ZbgPhJbotgbo8iYl36HPR1vKmVL/81s sUG0W9tYHlhnyMsziZHRbbo2q3q9m0aP1JGUzhgcnU0Cxrm8tcZ6s4JQNiTs7QIs TCA08qYIWfQuMRv89HW0xCCqRSYWVNPDucYSCP3XInJF4nywCDZN8l9a+k8uqwsi ZcwkDLayI+SPMkioi8o= -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:30 2024 by rpki-client on console-fra.rpki-client.org