$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200579.roa File: AS200579.roa (raw, json) Hash identifier: Tx72KruQWcn4dS2IEvk377v3Xj+FEBmUde1aLVzLW2E= Subject key identifier: 14:F0:35:AA:10:43:19:15:BD:BA:F0:BF:5F:83:28:D4:C2:AF:BE:9A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: FF01B2E13CA1C4022D278DEC8B48A16C7CBA5B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200579.roa Signing time: Sun 06 Oct 2024 04:45:10 +0000 ROA not before: Sun 06 Oct 2024 04:40:10 +0000 ROA not after: Sun 05 Oct 2025 04:45:10 +0000 asID: 200579 IP address blocks: 2a0a:6040:fb00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ff:01:b2:e1:3c:a1:c4:02:2d:27:8d:ec:8b:48:a1:6c:7c:ba:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:10 2024 GMT Not After : Oct 5 04:45:10 2025 GMT Subject: CN=14F035AA10431915BDBAF0BF5F8328D4C2AFBE9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b4:37:9b:00:fa:4a:e3:19:15:a3:7b:79:ce: cf:ba:1c:9d:e3:53:3b:92:76:8b:06:e9:d9:84:c9: f4:1d:43:ad:43:2e:89:a3:b0:b4:98:92:8b:83:df: 88:cd:6d:22:e0:37:7a:8c:f7:02:a4:11:0f:ac:11: 0b:b2:e2:e2:0d:70:27:12:1a:f9:54:bf:e3:ad:0a: fc:cf:02:64:8a:95:e6:39:c2:1b:05:3e:e6:c4:06: 34:5f:e8:b9:7d:45:b9:5a:95:2a:4f:8e:8d:84:d3: 32:90:d9:59:b8:92:7d:98:ca:c5:8f:59:bf:5a:12: 68:5c:f8:47:be:0d:ed:22:1a:34:89:f8:6d:7d:7f: 2d:8e:72:b0:dd:dc:78:14:b2:e4:bc:f5:0b:43:19: c1:fd:6c:c9:e0:a6:3c:dc:84:6a:8a:17:8e:fe:1d: 9d:20:c4:92:63:8f:a4:9d:b5:5f:8d:1c:33:9b:a9: 03:c5:17:7c:7e:d2:f1:ca:9b:5f:ab:fd:cb:f3:b3: aa:cd:71:8a:53:64:30:9b:9e:bf:8f:88:c0:e4:53: a8:7e:98:13:1f:fd:88:6e:f8:a0:6f:7f:1a:94:27: 68:c9:3d:cd:7a:67:b8:51:70:68:7c:8d:e7:ad:9b: d4:9c:8d:fb:c6:9c:1b:74:03:0f:f2:d8:96:ed:1c: b2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F0:35:AA:10:43:19:15:BD:BA:F0:BF:5F:83:28:D4:C2:AF:BE:9A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200579.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fb00::/40 Signature Algorithm: sha256WithRSAEncryption 00:60:6e:d7:31:b5:6b:85:33:19:ce:5d:27:bf:5f:28:e0:65: e8:10:1c:29:53:44:63:d4:d5:85:6f:20:97:49:a2:6d:b9:d3: fc:99:ba:de:30:3c:11:25:41:3c:8a:80:3a:54:fd:d7:12:d8: 42:b7:37:60:32:57:9c:09:3f:b9:b3:12:29:a2:4f:c0:af:4d: 5e:8c:a9:37:11:cc:a9:47:a9:12:49:27:2a:32:81:e5:e6:b4: 98:d4:60:08:3f:ba:f6:bd:3c:6e:1b:30:1f:43:bb:b7:bb:37: f3:f1:36:4d:35:79:8e:9c:da:67:bd:26:8e:cb:75:88:34:57: f2:d4:ee:18:94:cf:61:12:46:89:32:a5:dd:d3:60:d7:4f:0f: 3d:85:5e:2e:49:b1:ba:33:29:59:5b:5b:c4:aa:61:e4:56:40: e5:c5:23:6f:79:40:4a:67:62:f3:34:0f:c9:22:fc:f5:6b:9f: 0f:73:5f:11:3c:73:b7:3a:5f:37:a4:d3:c2:21:5e:a4:e4:fd: 80:91:ec:ed:d6:8e:ce:d7:71:c6:d2:e8:03:6a:41:f5:e3:f8: 85:3f:b3:76:3f:60:f0:7f:41:1b:5a:a6:e9:5d:24:94:7d:31: 6c:21:14:14:88:f3:8e:d8:03:06:e0:c7:04:56:d0:14:12:d6: 57:f4:f0:3c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAP8BsuE8ocQCLSeN7ItIoWx8ulswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTBaFw0yNTEwMDUwNDQ1MTBaMDMxMTAvBgNV BAMTKDE0RjAzNUFBMTA0MzE5MTVCREJBRjBCRjVGODMyOEQ0QzJBRkJFOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDtDebAPpK4xkVo3t5zs+6HJ3j UzuSdosG6dmEyfQdQ61DLomjsLSYkouD34jNbSLgN3qM9wKkEQ+sEQuy4uINcCcS GvlUv+OtCvzPAmSKleY5whsFPubEBjRf6Ll9RblalSpPjo2E0zKQ2Vm4kn2YysWP Wb9aEmhc+Ee+De0iGjSJ+G19fy2OcrDd3HgUsuS89QtDGcH9bMngpjzchGqKF47+ HZ0gxJJjj6SdtV+NHDObqQPFF3x+0vHKm1+r/cvzs6rNcYpTZDCbnr+PiMDkU6h+ mBMf/Yhu+KBvfxqUJ2jJPc16Z7hRcGh8jeetm9ScjfvGnBt0Aw/y2JbtHLJPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFPA1qhBDGRW9uvC/X4Mo1MKvvpowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPswDQYJKoZIhvcNAQELBQADggEBAABg btcxtWuFMxnOXSe/XyjgZegQHClTRGPU1YVvIJdJom250/yZut4wPBElQTyKgDpU /dcS2EK3N2AyV5wJP7mzEimiT8CvTV6MqTcRzKlHqRJJJyoygeXmtJjUYAg/uva9 PG4bMB9Du7e7N/PxNk01eY6c2me9Jo7LdYg0V/LU7hiUz2ESRokypd3TYNdPDz2F Xi5JsbozKVlbW8SqYeRWQOXFI295QEpnYvM0D8ki/PVrnw9zXxE8c7c6Xzek08Ih XqTk/YCR7O3Wjs7XccbS6ANqQfXj+IU/s3Y/YPB/QRtapuldJJR9MWwhFBSI847Y AwbgxwRW0BQS1lf08Dw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org