$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200592.roa File: AS200592.roa (raw, json) Hash identifier: wS+9LAUXEnO5Ph5zUP2241Gk21adBRPgZBChKVq1/oc= Subject key identifier: FB:62:D0:67:8F:85:10:7A:54:DF:A7:1B:BA:EE:45:D7:A5:08:BF:D0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 60F76E887EB2380CB334155090B2940599D38BE0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200592.roa Signing time: Sun 06 Oct 2024 04:45:19 +0000 ROA not before: Sun 06 Oct 2024 04:40:19 +0000 ROA not after: Sun 05 Oct 2025 04:45:19 +0000 asID: 200592 IP address blocks: 2a0a:6040:d300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f7:6e:88:7e:b2:38:0c:b3:34:15:50:90:b2:94:05:99:d3:8b:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:19 2024 GMT Not After : Oct 5 04:45:19 2025 GMT Subject: CN=FB62D0678F85107A54DFA71BBAEE45D7A508BFD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c1:b9:5c:30:a2:52:eb:50:d4:dc:88:3a:bd: f1:9f:fd:de:c9:bd:64:ba:7e:8f:fb:44:48:3e:cb: 2f:cd:44:92:02:fa:fe:08:48:cc:18:94:86:c1:43: 44:43:04:94:e6:12:93:a3:ee:42:f1:b6:96:7a:36: 0a:82:88:f8:29:78:6c:12:a1:48:78:79:86:3e:26: 14:a5:37:18:76:17:22:44:1b:c7:9a:af:1a:cc:de: d0:8c:05:f5:45:3a:10:90:91:4b:d0:7c:18:99:cd: 31:5c:73:3e:be:ca:d2:63:48:ee:c5:79:39:75:4f: b2:05:ce:a5:d3:26:15:fb:a4:b5:e7:71:d0:84:b4: 49:21:f8:47:d4:17:51:f0:5a:72:ba:c8:f2:63:86: 9c:e7:20:13:7a:b7:19:8b:cb:6b:1b:b8:19:98:9a: 22:27:fb:90:3d:c7:51:ee:22:80:25:c9:bc:5c:c0: e0:69:5b:df:b1:20:0a:17:78:83:cb:70:62:e0:c2: f0:da:01:c6:f0:03:84:9f:f3:68:fd:b3:1a:b2:04: 80:d4:7d:88:04:37:d8:73:1d:2f:d9:ec:bc:22:e1: c1:28:3c:da:67:85:9c:81:94:12:30:9e:92:64:fa: 8c:65:40:97:c0:2f:e9:6e:b0:e7:b2:a5:ba:a7:fd: a5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:62:D0:67:8F:85:10:7A:54:DF:A7:1B:BA:EE:45:D7:A5:08:BF:D0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200592.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d300::/40 Signature Algorithm: sha256WithRSAEncryption 56:0b:2d:39:23:b4:b8:7a:c2:21:cf:6d:d1:3b:d9:ac:87:f6: 2c:31:95:68:01:77:ea:18:75:6b:bb:1c:21:db:97:96:2c:9f: ef:45:0b:36:11:6c:cb:ba:07:cb:69:a7:c5:91:ba:a4:5d:73: ae:50:d0:14:1a:4d:38:fb:80:f0:27:69:53:4d:31:4d:10:a8: fa:89:b9:79:ea:b4:22:cd:d6:91:25:09:99:64:01:63:c4:45: 22:80:b2:9c:57:b5:2d:2b:d5:c4:39:8e:2a:03:19:72:ad:6a: 86:7a:92:6a:85:35:55:8b:85:7f:fa:a4:97:4c:15:35:73:0c: 7c:79:03:fc:74:30:e9:97:2a:ca:9a:8e:81:d1:68:bb:99:a6: 5a:ff:26:b5:50:b8:4e:76:8b:f0:76:8c:8f:b8:e1:51:36:5b: 19:b3:3d:d0:04:4d:dc:bc:0e:db:68:1c:e1:75:82:66:97:20: ee:9e:3e:02:2f:ad:55:b3:e6:18:ce:73:76:a4:d9:70:93:4d: 40:90:32:f0:57:aa:68:b0:41:1f:38:d2:36:19:13:e5:d8:67: 80:5a:0f:31:0a:7d:86:e7:a4:e6:f5:3c:40:bd:3b:f2:9b:32: d0:28:58:07:36:c0:5d:c6:18:5e:6b:78:dc:67:d8:68:5c:09: cf:4a:3f:22 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYPduiH6yOAyzNBVQkLKUBZnTi+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTlaFw0yNTEwMDUwNDQ1MTlaMDMxMTAvBgNV BAMTKEZCNjJEMDY3OEY4NTEwN0E1NERGQTcxQkJBRUU0NUQ3QTUwOEJGRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXwblcMKJS61DU3Ig6vfGf/d7J vWS6fo/7REg+yy/NRJIC+v4ISMwYlIbBQ0RDBJTmEpOj7kLxtpZ6NgqCiPgpeGwS oUh4eYY+JhSlNxh2FyJEG8earxrM3tCMBfVFOhCQkUvQfBiZzTFccz6+ytJjSO7F eTl1T7IFzqXTJhX7pLXncdCEtEkh+EfUF1HwWnK6yPJjhpznIBN6txmLy2sbuBmY miIn+5A9x1HuIoAlybxcwOBpW9+xIAoXeIPLcGLgwvDaAcbwA4Sf82j9sxqyBIDU fYgEN9hzHS/Z7Lwi4cEoPNpnhZyBlBIwnpJk+oxlQJfAL+lusOeypbqn/aWTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+2LQZ4+FEHpU36cbuu5F16UIv9AwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTkyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNMwDQYJKoZIhvcNAQELBQADggEBAFYL LTkjtLh6wiHPbdE72ayH9iwxlWgBd+oYdWu7HCHbl5Ysn+9FCzYRbMu6B8tpp8WR uqRdc65Q0BQaTTj7gPAnaVNNMU0QqPqJuXnqtCLN1pElCZlkAWPERSKAspxXtS0r 1cQ5jioDGXKtaoZ6kmqFNVWLhX/6pJdMFTVzDHx5A/x0MOmXKsqajoHRaLuZplr/ JrVQuE52i/B2jI+44VE2WxmzPdAETdy8DttoHOF1gmaXIO6ePgIvrVWz5hjOc3ak 2XCTTUCQMvBXqmiwQR840jYZE+XYZ4BaDzEKfYbnpOb1PEC9O/KbMtAoWAc2wF3G GF5reNxn2GhcCc9KPyI= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org