$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200535.roa File: AS200535.roa (raw, json) Hash identifier: eX7S82oQDocMmx39FtUMafOWMrrwQbRr2s+3bR8OFwM= Subject key identifier: 05:24:76:57:B1:65:79:60:A8:26:75:F4:EE:1A:A6:B9:3D:72:A4:FC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 35DA93130FF5043A4BD70B5CD8FB5C6ABC3DA628 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200535.roa Signing time: Sun 06 Oct 2024 04:45:08 +0000 ROA not before: Sun 06 Oct 2024 04:40:08 +0000 ROA not after: Sun 05 Oct 2025 04:45:08 +0000 asID: 200535 IP address blocks: 2a0a:6040:500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:da:93:13:0f:f5:04:3a:4b:d7:0b:5c:d8:fb:5c:6a:bc:3d:a6:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:08 2024 GMT Not After : Oct 5 04:45:08 2025 GMT Subject: CN=05247657B1657960A82675F4EE1AA6B93D72A4FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:64:9c:10:89:41:31:5e:57:4c:4b:91:68:59: cc:62:44:14:3f:36:da:9f:70:a9:79:64:67:d2:3c: 67:75:f0:04:a7:c3:8f:71:23:47:1e:23:4f:89:5d: 68:be:8b:47:68:27:50:a5:8b:cd:13:3c:a3:c8:a1: 18:5f:6a:28:50:64:15:c1:ee:77:bf:42:08:08:9d: 6e:bb:ae:bc:5f:3d:d1:17:ef:64:6e:45:d3:11:0e: 8f:d9:64:0d:be:8d:ca:54:6e:2e:1e:06:68:73:96: 80:85:00:d6:7c:33:83:b0:d1:fd:e0:df:82:d9:da: 12:71:97:12:d4:f1:03:8b:b1:96:e3:57:11:99:7c: cb:0d:d2:97:a8:d4:00:8b:0e:8b:bb:24:5b:82:f6: da:36:c8:d8:c2:9e:c3:7a:11:93:5f:fa:df:60:0d: 57:99:89:c8:f2:7f:eb:29:9b:85:63:1c:60:29:71: 62:c8:d7:dd:7a:c3:71:31:a8:c7:18:34:0b:cf:aa: c0:51:0a:dc:bd:6a:ae:64:cc:cf:cf:28:09:fb:e6: e8:d8:ac:4d:39:28:f9:34:3d:8e:e1:13:c0:f8:4b: 32:10:41:71:3c:5f:a3:a8:12:e3:dc:22:8e:5f:45: f2:5b:b4:8a:d8:6f:5b:1b:1b:2c:e1:05:6c:ed:19: 2f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:24:76:57:B1:65:79:60:A8:26:75:F4:EE:1A:A6:B9:3D:72:A4:FC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:500::/40 Signature Algorithm: sha256WithRSAEncryption 3c:07:9f:5f:59:76:a6:96:00:d0:ad:50:51:66:00:36:d6:cf: 52:df:44:df:28:49:89:f2:b8:fc:93:36:9c:74:f6:ce:e5:39: ad:9b:f6:2d:6f:dc:fc:b0:5e:84:0a:5f:a0:b3:0d:c2:39:fe: 79:da:9d:ed:1d:bb:42:0e:f4:9e:0e:05:6e:b0:76:4a:55:1e: ba:1f:36:0c:7e:fa:08:fe:f7:8a:a7:05:7b:31:a3:15:b0:53: 20:1d:36:cf:a5:73:97:c8:e7:31:40:e0:ab:d3:92:3a:6f:e1: 63:f7:29:5e:64:9f:c5:28:29:39:1d:fe:95:9e:e9:7c:68:26: de:06:a9:25:d3:94:c2:57:bb:dc:b8:04:df:8b:fb:a4:a1:a0: 09:35:63:a4:f6:51:7c:0b:3f:64:8a:28:81:0c:16:ad:c3:53: 8e:bf:12:37:97:b9:0b:ec:ec:1c:ac:d4:eb:8e:30:5a:f2:86: fc:75:48:95:1c:ee:d5:8e:36:cb:ca:24:ef:ef:a8:60:68:9d: 37:fb:6e:f0:86:f4:29:87:be:8e:31:64:30:d4:86:6b:99:91: 8e:43:03:66:24:77:21:c7:93:2a:13:05:b7:67:5d:6e:68:51: 17:10:b6:54:49:7c:54:30:42:a9:2e:8e:8d:be:95:76:15:8b: d7:98:eb:57 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNdqTEw/1BDpL1wtc2Ptcarw9pigwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDhaFw0yNTEwMDUwNDQ1MDhaMDMxMTAvBgNV BAMTKDA1MjQ3NjU3QjE2NTc5NjBBODI2NzVGNEVFMUFBNkI5M0Q3MkE0RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcZJwQiUExXldMS5FoWcxiRBQ/ NtqfcKl5ZGfSPGd18ASnw49xI0ceI0+JXWi+i0doJ1Cli80TPKPIoRhfaihQZBXB 7ne/QggInW67rrxfPdEX72RuRdMRDo/ZZA2+jcpUbi4eBmhzloCFANZ8M4Ow0f3g 34LZ2hJxlxLU8QOLsZbjVxGZfMsN0peo1ACLDou7JFuC9to2yNjCnsN6EZNf+t9g DVeZicjyf+spm4VjHGApcWLI1916w3ExqMcYNAvPqsBRCty9aq5kzM/PKAn75ujY rE05KPk0PY7hE8D4SzIQQXE8X6OoEuPcIo5fRfJbtIrYb1sbGyzhBWztGS+hAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUBSR2V7FleWCoJnX07hqmuT1ypPwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAUwDQYJKoZIhvcNAQELBQADggEBADwH n19ZdqaWANCtUFFmADbWz1LfRN8oSYnyuPyTNpx09s7lOa2b9i1v3PywXoQKX6Cz DcI5/nnane0du0IO9J4OBW6wdkpVHrofNgx++gj+94qnBXsxoxWwUyAdNs+lc5fI 5zFA4KvTkjpv4WP3KV5kn8UoKTkd/pWe6XxoJt4GqSXTlMJXu9y4BN+L+6ShoAk1 Y6T2UXwLP2SKKIEMFq3DU46/EjeXuQvs7Bys1OuOMFryhvx1SJUc7tWONsvKJO/v qGBonTf7bvCG9CmHvo4xZDDUhmuZkY5DA2YkdyHHkyoTBbdnXW5oURcQtlRJfFQw Qqkujo2+lXYVi9eY61c= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org