$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200545.roa File: AS200545.roa (raw, json) Hash identifier: 4b7ybmkBKqFawOnvzNpYJeOsrb4AZzaiE4PKikAJoqs= Subject key identifier: F7:4A:FD:CC:B3:90:53:F2:6E:8F:EA:04:0C:93:B7:3D:9C:D7:4B:45 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 19686AE2497D3A74FA932F907053792A028DC5D4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200545.roa Signing time: Sun 06 Oct 2024 04:44:56 +0000 ROA not before: Sun 06 Oct 2024 04:39:56 +0000 ROA not after: Sun 05 Oct 2025 04:44:56 +0000 asID: 200545 IP address blocks: 2a0a:6040:e900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:68:6a:e2:49:7d:3a:74:fa:93:2f:90:70:53:79:2a:02:8d:c5:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:56 2024 GMT Not After : Oct 5 04:44:56 2025 GMT Subject: CN=F74AFDCCB39053F26E8FEA040C93B73D9CD74B45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6e:22:06:c0:b2:4d:26:b3:53:e2:10:7d:14: df:32:87:a0:3f:38:de:71:f0:2f:17:66:59:b8:c4: ec:83:ec:e0:9a:ae:6e:80:0a:26:4b:d7:d9:cd:0b: f6:58:22:e9:73:73:87:9b:1d:7c:eb:36:30:c6:82: 4d:3a:79:8c:f7:9f:79:a7:c0:4d:d3:6e:ae:58:84: 69:8a:20:26:37:40:c1:1b:eb:4a:f8:e3:29:01:42: 13:16:95:ec:43:15:3d:e9:85:b0:88:a0:46:5b:b7: 81:ad:ee:1a:67:03:b7:64:62:57:46:f2:e1:e3:3d: ad:26:3e:b5:44:94:20:b2:d0:d2:54:47:d4:44:d7: a0:b9:70:0f:37:e4:cf:25:36:62:09:b8:ee:ef:ac: 69:c7:7c:c0:71:62:7a:be:4e:52:52:85:f1:d7:7f: d6:f5:15:4f:36:bc:33:3c:01:42:cd:36:2d:d8:a9: 4c:1d:68:43:2f:9b:a0:10:0a:2e:5f:ba:9c:7b:10: fa:ef:75:b5:6c:1c:18:ac:92:a3:45:1f:cd:20:30: 2e:dd:e3:d5:5d:61:34:b6:71:35:e0:41:2b:b6:60: a0:d4:64:9b:48:cc:49:2d:cd:bd:6c:18:9d:2e:8a: 76:d5:dc:e7:e0:3c:2a:e8:7e:b0:ea:78:4a:6c:d2: d2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4A:FD:CC:B3:90:53:F2:6E:8F:EA:04:0C:93:B7:3D:9C:D7:4B:45 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200545.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e900::/40 Signature Algorithm: sha256WithRSAEncryption 38:53:eb:53:ff:00:49:87:2e:5f:7d:86:63:4b:54:45:d4:e4: ee:64:db:c0:c4:fd:73:62:dc:5a:d9:89:26:2f:2a:02:cf:ca: 05:96:d6:1d:b8:37:25:fd:11:a8:5f:27:bb:7b:5e:c3:4f:4d: fc:55:9b:15:6d:34:c0:75:e9:6b:9f:fc:78:a9:59:99:32:92: 55:e9:55:8d:cc:f9:76:2f:f6:2d:e4:16:a4:09:b7:a9:c1:73: ba:08:19:98:ed:7f:71:a7:34:73:87:83:1e:7a:11:c8:50:ce: 26:89:fc:9f:28:b2:01:54:4e:56:e3:10:c3:07:d4:9f:d1:93: 18:84:8e:f2:42:a5:3a:df:16:e0:9b:7b:37:cf:5b:d6:5f:9c: 34:bd:b3:d1:5b:14:72:6d:01:d0:bd:29:b0:ff:15:6d:f3:1a: a0:67:7a:61:d6:c2:c3:90:5d:5e:ae:31:49:77:fb:5a:c1:aa: d8:b7:fd:ed:a5:00:32:b5:85:5c:62:05:32:db:2e:df:07:0e: 1b:1c:62:c4:66:d8:bf:33:f0:62:42:45:da:37:b2:07:a4:80: 6f:fe:3a:f0:18:bf:9a:9c:3c:be:da:a0:02:26:df:d5:4b:45: 0d:38:4b:5a:d7:f0:e0:e6:2e:4c:d1:6e:ce:94:1c:04:d1:d0: c1:29:7f:cc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGWhq4kl9OnT6ky+QcFN5KgKNxdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTZaFw0yNTEwMDUwNDQ0NTZaMDMxMTAvBgNV BAMTKEY3NEFGRENDQjM5MDUzRjI2RThGRUEwNDBDOTNCNzNEOUNENzRCNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqbiIGwLJNJrNT4hB9FN8yh6A/ ON5x8C8XZlm4xOyD7OCarm6ACiZL19nNC/ZYIulzc4ebHXzrNjDGgk06eYz3n3mn wE3Tbq5YhGmKICY3QMEb60r44ykBQhMWlexDFT3phbCIoEZbt4Gt7hpnA7dkYldG 8uHjPa0mPrVElCCy0NJUR9RE16C5cA835M8lNmIJuO7vrGnHfMBxYnq+TlJShfHX f9b1FU82vDM8AULNNi3YqUwdaEMvm6AQCi5fupx7EPrvdbVsHBiskqNFH80gMC7d 49VdYTS2cTXgQSu2YKDUZJtIzEktzb1sGJ0uinbV3OfgPCrofrDqeEps0tLTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU90r9zLOQU/Juj+oEDJO3PZzXS0UwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTQ1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOkwDQYJKoZIhvcNAQELBQADggEBADhT 61P/AEmHLl99hmNLVEXU5O5k28DE/XNi3FrZiSYvKgLPygWW1h24NyX9EahfJ7t7 XsNPTfxVmxVtNMB16Wuf/HipWZkyklXpVY3M+XYv9i3kFqQJt6nBc7oIGZjtf3Gn NHOHgx56EchQziaJ/J8osgFUTlbjEMMH1J/RkxiEjvJCpTrfFuCbezfPW9ZfnDS9 s9FbFHJtAdC9KbD/FW3zGqBnemHWwsOQXV6uMUl3+1rBqti3/e2lADK1hVxiBTLb Lt8HDhscYsRm2L8z8GJCRdo3sgekgG/+OvAYv5qcPL7aoAIm39VLRQ04S1rX8ODm LkzRbs6UHATR0MEpf8w= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org