$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200455.roa File: AS200455.roa (raw, json) Hash identifier: wdTxVMMYQqN0vFuweEH7En43b8AOaJ8c64pXjWoNX3U= Subject key identifier: 14:56:2C:D0:FB:4C:C2:5C:E2:E8:6E:7E:53:26:08:AB:5D:BE:77:50 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3305C18089622C1436FFCDF7A8A5C296246E1746 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200455.roa Signing time: Sun 06 Oct 2024 04:45:19 +0000 ROA not before: Sun 06 Oct 2024 04:40:19 +0000 ROA not after: Sun 05 Oct 2025 04:45:19 +0000 asID: 200455 IP address blocks: 2a0a:6040:400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:05:c1:80:89:62:2c:14:36:ff:cd:f7:a8:a5:c2:96:24:6e:17:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:19 2024 GMT Not After : Oct 5 04:45:19 2025 GMT Subject: CN=14562CD0FB4CC25CE2E86E7E532608AB5DBE7750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3f:4e:c2:d5:fa:fb:6b:d5:f3:02:13:9c:c0: c2:bb:13:16:0d:42:3d:5b:03:9d:b0:84:11:7b:6d: 90:91:24:5d:b8:4e:27:f7:41:b7:4e:3b:e0:d0:23: ac:8a:33:fc:27:02:6c:1e:cd:8e:b3:70:30:ed:8d: d9:14:d0:9c:fc:cf:49:5d:7d:68:07:9c:3b:9d:47: d9:e0:33:b6:e2:3c:ba:25:52:12:20:14:24:f4:c2: ed:a2:14:42:14:38:12:cf:7c:c6:59:61:ca:57:b1: 09:2a:01:37:73:dc:80:f3:69:79:3a:1c:64:20:c8: 71:fc:87:5a:81:23:b4:f6:b8:d2:59:71:f6:95:e9: 77:e1:52:6c:50:7e:b3:0d:dc:0f:27:20:96:31:84: 2c:c4:0e:ee:f1:19:cd:92:d1:13:8c:0f:ef:7d:54: 0c:dc:73:d6:a2:36:6d:4b:12:2c:75:6c:4a:f7:e7: 87:bf:2c:16:57:bb:d0:fa:68:4c:a8:ed:cc:f3:e4: 32:e7:6f:35:5d:59:2a:e1:d3:08:e9:d6:b8:4d:a0: bd:85:38:38:e5:50:6d:1b:5f:58:a3:11:50:fc:fc: 23:25:a1:db:d1:f9:52:83:41:7a:16:2f:13:4c:8e: 40:a5:1f:f7:df:9c:2a:18:66:2b:e1:21:b5:26:18: 01:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:56:2C:D0:FB:4C:C2:5C:E2:E8:6E:7E:53:26:08:AB:5D:BE:77:50 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200455.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:400::/40 Signature Algorithm: sha256WithRSAEncryption c3:f4:a5:ee:0b:be:77:b8:05:19:71:75:09:b5:26:ed:b0:f8: 58:4f:db:48:22:d8:71:20:de:29:77:28:cf:1d:73:19:37:96: 09:fd:dc:87:4e:c2:b2:d9:e7:8a:f0:00:b9:e5:0f:60:73:36: 50:f8:cc:be:91:d9:f9:5d:1f:38:f0:23:2b:e6:90:9a:50:15: 8b:73:31:27:9e:32:0a:16:91:f3:b7:bd:bc:69:a2:dc:45:af: 34:13:17:84:53:64:e5:81:e5:6a:c9:66:55:ba:f7:a3:06:f5: 10:a3:98:1a:77:a5:f2:52:c3:a4:0f:4f:5e:db:46:28:78:a8: 74:45:e9:a9:05:b2:f0:90:25:d6:e4:99:d5:72:e2:a9:b5:22: a1:61:34:33:f6:8f:0f:f5:0a:1a:8a:6a:ca:90:92:61:8c:60: 14:40:c4:cc:51:c4:2b:42:cc:c3:14:d7:26:af:e2:23:8f:89: 31:58:b4:91:e5:35:22:18:68:d1:c7:ee:95:0f:ef:16:a8:31: 2a:bb:1e:c0:2b:28:ed:9b:a6:e7:3a:16:a1:07:55:9a:72:ba: 5b:45:d2:7f:7f:f9:b9:08:ea:0e:33:b6:f4:60:cc:80:47:f3: 7c:9a:1c:06:92:f2:47:0b:2a:57:c6:b9:cd:de:62:2c:d0:e2: 9e:e6:49:63 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMwXBgIliLBQ2/833qKXCliRuF0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTlaFw0yNTEwMDUwNDQ1MTlaMDMxMTAvBgNV BAMTKDE0NTYyQ0QwRkI0Q0MyNUNFMkU4NkU3RTUzMjYwOEFCNURCRTc3NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrP07C1fr7a9XzAhOcwMK7ExYN Qj1bA52whBF7bZCRJF24Tif3QbdOO+DQI6yKM/wnAmwezY6zcDDtjdkU0Jz8z0ld fWgHnDudR9ngM7biPLolUhIgFCT0wu2iFEIUOBLPfMZZYcpXsQkqATdz3IDzaXk6 HGQgyHH8h1qBI7T2uNJZcfaV6XfhUmxQfrMN3A8nIJYxhCzEDu7xGc2S0ROMD+99 VAzcc9aiNm1LEix1bEr354e/LBZXu9D6aEyo7czz5DLnbzVdWSrh0wjp1rhNoL2F ODjlUG0bX1ijEVD8/CMlodvR+VKDQXoWLxNMjkClH/ffnCoYZivhIbUmGAHrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFFYs0PtMwlzi6G5+UyYIq12+d1AwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNDU1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAQwDQYJKoZIhvcNAQELBQADggEBAMP0 pe4Lvne4BRlxdQm1Ju2w+FhP20gi2HEg3il3KM8dcxk3lgn93IdOwrLZ54rwALnl D2BzNlD4zL6R2fldHzjwIyvmkJpQFYtzMSeeMgoWkfO3vbxpotxFrzQTF4RTZOWB 5WrJZlW696MG9RCjmBp3pfJSw6QPT17bRih4qHRF6akFsvCQJdbkmdVy4qm1IqFh NDP2jw/1ChqKasqQkmGMYBRAxMxRxCtCzMMU1yav4iOPiTFYtJHlNSIYaNHH7pUP 7xaoMSq7HsArKO2bpuc6FqEHVZpyultF0n9/+bkI6g4ztvRgzIBH83yaHAaS8kcL KlfGuc3eYizQ4p7mSWM= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org