$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200558.roa File: AS200558.roa (raw, json) Hash identifier: FiJRAZXUZatWGIgQQfoKHDMQSmuXV+3KisSf7rOTPvE= Subject key identifier: B4:A0:5D:41:83:99:F2:84:6D:00:71:A6:5E:26:2D:9E:06:54:0E:D1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1B978BB0770EFD28E5C8B715394A03A95257DD8C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200558.roa Signing time: Sun 06 Oct 2024 04:45:13 +0000 ROA not before: Sun 06 Oct 2024 04:40:13 +0000 ROA not after: Sun 05 Oct 2025 04:45:13 +0000 asID: 200558 IP address blocks: 2a0a:6040:a700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:97:8b:b0:77:0e:fd:28:e5:c8:b7:15:39:4a:03:a9:52:57:dd:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:13 2024 GMT Not After : Oct 5 04:45:13 2025 GMT Subject: CN=B4A05D418399F2846D0071A65E262D9E06540ED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:60:d9:1c:4d:10:42:75:d4:ef:12:44:d5:2a: 68:61:fc:1e:e8:84:02:89:66:27:4f:00:65:61:f5: 25:f1:fb:fc:c5:44:ad:1d:07:72:d6:63:e2:ac:93: 85:27:8d:72:8a:51:ec:b2:6b:d7:0f:23:8f:1f:cf: 61:cc:c2:6c:03:db:09:2f:c0:bc:9a:80:b7:9a:6f: 24:74:b1:8e:f0:6c:65:9c:08:26:d6:c8:4f:98:35: 89:24:9e:38:3e:46:c0:7d:21:7c:22:8b:eb:66:50: e7:c5:0e:55:93:32:d8:89:c6:78:7d:8d:e8:42:71: c0:e7:d4:07:77:a5:99:a3:6c:9f:58:1e:0a:a7:00: 53:5c:3f:57:a3:8f:28:58:bc:dc:26:f9:55:35:8a: 75:ee:02:84:82:8a:4a:47:ca:ac:9a:22:53:f8:95: ed:4b:be:94:88:d9:7c:a4:67:d6:25:af:14:8d:f8: c8:12:29:05:40:e0:73:7c:75:99:e8:8a:30:e6:f5: 81:96:59:64:e1:6b:69:ed:01:d6:a5:97:5f:3a:ba: 56:5b:43:a7:be:d3:f5:b6:49:70:96:b0:ab:47:63: 3f:7d:98:b6:82:51:1b:c7:96:8e:16:2b:fc:9d:cf: a1:95:f3:8f:4e:61:19:e8:94:e6:01:48:3f:30:b8: 73:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A0:5D:41:83:99:F2:84:6D:00:71:A6:5E:26:2D:9E:06:54:0E:D1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200558.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a700::/40 Signature Algorithm: sha256WithRSAEncryption 98:15:3f:3b:b8:c4:85:25:94:dd:36:8c:da:c1:d9:1c:3e:55: 59:82:55:5b:1f:b1:f6:44:bf:77:da:4e:75:50:47:ce:dc:df: f1:74:94:ba:73:31:99:20:ed:b9:6d:a2:09:47:4a:3b:00:23: 42:64:f5:5d:a6:a5:c1:07:ed:4d:14:32:dc:01:6b:76:49:13: 9b:2d:18:85:cb:37:52:d2:21:67:78:cc:04:9b:3d:cd:3f:d6: 7c:d8:02:7e:12:87:c4:45:a9:6a:dd:08:eb:9c:0f:79:ab:50: 39:a6:d6:65:d2:e8:d9:20:b0:69:21:7a:e5:d4:cd:d5:cb:9a: 53:d8:60:ca:94:96:2c:b3:52:b7:0a:0f:0b:a0:94:45:d1:30: 54:45:b7:c9:71:81:09:94:cc:74:ce:24:74:f8:20:3a:1f:67: 95:76:fa:d1:7f:b0:5c:31:90:1d:b3:f3:d5:2a:48:68:aa:db: 7e:95:41:b1:e2:e9:cc:c0:66:7c:ce:58:32:14:60:59:f7:46: 75:c5:c1:c5:c8:08:91:c6:81:95:93:a6:e1:6d:2c:48:2d:27: ba:e6:7a:26:9b:f7:fa:dc:09:f8:ab:90:76:a7:f8:fd:3a:1c: c2:cf:a8:4b:3b:22:d4:76:fa:cc:b1:2c:d6:fa:38:fc:c5:ee: b1:df:3c:2e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUG5eLsHcO/SjlyLcVOUoDqVJX3YwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTNaFw0yNTEwMDUwNDQ1MTNaMDMxMTAvBgNV BAMTKEI0QTA1RDQxODM5OUYyODQ2RDAwNzFBNjVFMjYyRDlFMDY1NDBFRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgYNkcTRBCddTvEkTVKmhh/B7o hAKJZidPAGVh9SXx+/zFRK0dB3LWY+Ksk4UnjXKKUeyya9cPI48fz2HMwmwD2wkv wLyagLeabyR0sY7wbGWcCCbWyE+YNYkknjg+RsB9IXwii+tmUOfFDlWTMtiJxnh9 jehCccDn1Ad3pZmjbJ9YHgqnAFNcP1ejjyhYvNwm+VU1inXuAoSCikpHyqyaIlP4 le1LvpSI2XykZ9YlrxSN+MgSKQVA4HN8dZnoijDm9YGWWWTha2ntAdall186ulZb Q6e+0/W2SXCWsKtHYz99mLaCURvHlo4WK/ydz6GV849OYRnolOYBSD8wuHMXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUtKBdQYOZ8oRtAHGmXiYtngZUDtEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTU4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKcwDQYJKoZIhvcNAQELBQADggEBAJgV Pzu4xIUllN02jNrB2Rw+VVmCVVsfsfZEv3faTnVQR87c3/F0lLpzMZkg7bltoglH SjsAI0Jk9V2mpcEH7U0UMtwBa3ZJE5stGIXLN1LSIWd4zASbPc0/1nzYAn4Sh8RF qWrdCOucD3mrUDmm1mXS6NkgsGkheuXUzdXLmlPYYMqUliyzUrcKDwuglEXRMFRF t8lxgQmUzHTOJHT4IDofZ5V2+tF/sFwxkB2z89UqSGiq236VQbHi6czAZnzOWDIU YFn3RnXFwcXICJHGgZWTpuFtLEgtJ7rmeiab9/rcCfirkHan+P06HMLPqEs7ItR2 +syxLNb6OPzF7rHfPC4= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org