$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200671.roa File: AS200671.roa (raw, json) Hash identifier: jKvFxXAsLmSn3nCPN+e3fMbv9R7OyOYKgx5hbUGnw10= Subject key identifier: 2A:5F:1F:A1:4F:4D:CB:9D:2B:16:B0:8B:98:54:DE:04:F4:D1:AD:B9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 673859BDBB9BE5F75DAB904F281090C0EF3080C6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200671.roa Signing time: Sun 06 Oct 2024 04:45:15 +0000 ROA not before: Sun 06 Oct 2024 04:40:15 +0000 ROA not after: Sun 05 Oct 2025 04:45:15 +0000 asID: 200671 IP address blocks: 2a0a:6040:f700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:38:59:bd:bb:9b:e5:f7:5d:ab:90:4f:28:10:90:c0:ef:30:80:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:15 2024 GMT Not After : Oct 5 04:45:15 2025 GMT Subject: CN=2A5F1FA14F4DCB9D2B16B08B9854DE04F4D1ADB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ec:e0:eb:03:5a:5d:36:d2:21:3b:23:ba:81: c6:89:a5:57:72:5c:95:8a:fd:d6:eb:35:c7:75:55: 0a:b7:b3:ba:e2:19:87:fc:0f:50:07:8f:0c:75:34: 55:78:2b:4b:31:fa:9c:cb:a5:54:80:ec:78:3d:f7: 82:e7:75:54:ef:22:6b:90:e6:41:ce:5d:a9:f0:18: e2:10:fb:87:af:f3:49:11:7d:75:34:7c:e6:e3:10: 43:2c:1c:3f:fb:87:ed:71:c4:55:d3:04:c1:2f:c8: 29:0a:2c:38:50:ee:bb:34:55:37:28:d6:1e:6e:fe: de:19:3c:c1:c9:e5:4d:40:59:cf:b8:d3:4c:56:73: 5f:8a:d2:59:ab:0c:8e:21:2e:ad:e9:0e:0d:57:c3: b5:e1:7e:30:e2:70:f6:13:15:d7:9b:c7:12:ac:f6: e6:ea:d4:9f:8d:59:fd:b6:a9:22:f3:90:d0:4c:a7: a8:54:11:36:db:93:71:1e:55:0e:60:4f:ce:6a:9b: f3:02:45:60:5c:fa:2f:f7:7d:e7:8e:29:fc:df:e6: cc:1c:d2:1d:f7:36:f8:d4:d7:7f:f4:b9:ab:36:13: 6c:d3:4d:bd:a4:42:0f:2f:68:f9:a9:24:0b:89:38: 11:4a:31:86:c1:29:73:c8:9a:80:23:67:3f:66:a1: 81:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5F:1F:A1:4F:4D:CB:9D:2B:16:B0:8B:98:54:DE:04:F4:D1:AD:B9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200671.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f700::/40 Signature Algorithm: sha256WithRSAEncryption 3e:c2:94:1a:d3:f7:6a:47:e8:ba:d1:9c:4e:0d:01:91:38:ea: 7a:2f:97:6b:ed:ad:6d:38:6e:f1:db:e5:02:94:1b:f0:c8:18: da:52:7c:2b:a4:13:e6:a7:5e:30:44:c5:77:d4:f9:b9:4b:06: 60:ce:bd:80:fd:b8:f0:cb:dc:ef:49:be:4b:d2:55:52:a0:5e: d8:7a:c9:6d:b5:32:37:63:bf:64:81:77:f3:ee:a6:ae:88:20: 14:96:94:cc:53:b9:1e:ac:73:89:c8:cb:10:40:d3:b0:5f:d4: cc:90:d5:15:d5:48:5c:b7:fc:e7:33:d1:39:23:43:e5:d9:ab: b3:9d:1c:24:57:8a:4d:a9:ff:8c:8a:57:c5:89:96:59:a3:da: 04:38:1d:ad:0d:d6:c0:99:1d:cc:27:e9:86:ee:aa:9b:f6:bd: dc:e2:db:16:21:b5:d5:c2:20:60:9f:4e:49:04:34:b7:4c:e1: 13:c2:44:a3:79:28:1b:3f:b6:c3:5e:5c:ac:01:4b:50:ab:91: a5:5e:41:bc:ca:0a:55:10:7d:24:25:8d:6d:8b:b2:3b:90:be: 90:17:6a:6e:e0:c3:b4:ad:20:0e:ca:e1:f9:f8:88:f2:77:89: 36:5e:20:46:f3:e8:82:83:52:68:85:d6:73:bf:cf:3d:db:dc: a3:9c:d2:f3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZzhZvbub5fddq5BPKBCQwO8wgMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTVaFw0yNTEwMDUwNDQ1MTVaMDMxMTAvBgNV BAMTKDJBNUYxRkExNEY0RENCOUQyQjE2QjA4Qjk4NTRERTA0RjREMUFEQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV7ODrA1pdNtIhOyO6gcaJpVdy XJWK/dbrNcd1VQq3s7riGYf8D1AHjwx1NFV4K0sx+pzLpVSA7Hg994LndVTvImuQ 5kHOXanwGOIQ+4ev80kRfXU0fObjEEMsHD/7h+1xxFXTBMEvyCkKLDhQ7rs0VTco 1h5u/t4ZPMHJ5U1AWc+400xWc1+K0lmrDI4hLq3pDg1Xw7XhfjDicPYTFdebxxKs 9ubq1J+NWf22qSLzkNBMp6hUETbbk3EeVQ5gT85qm/MCRWBc+i/3feeOKfzf5swc 0h33NvjU13/0uas2E2zTTb2kQg8vaPmpJAuJOBFKMYbBKXPImoAjZz9moYFLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUKl8foU9Ny50rFrCLmFTeBPTRrbkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNjcxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPcwDQYJKoZIhvcNAQELBQADggEBAD7C lBrT92pH6LrRnE4NAZE46novl2vtrW04bvHb5QKUG/DIGNpSfCukE+anXjBExXfU +blLBmDOvYD9uPDL3O9JvkvSVVKgXth6yW21Mjdjv2SBd/Pupq6IIBSWlMxTuR6s c4nIyxBA07Bf1MyQ1RXVSFy3/Ocz0TkjQ+XZq7OdHCRXik2p/4yKV8WJllmj2gQ4 Ha0N1sCZHcwn6Ybuqpv2vdzi2xYhtdXCIGCfTkkENLdM4RPCRKN5KBs/tsNeXKwB S1CrkaVeQbzKClUQfSQljW2LsjuQvpAXam7gw7StIA7K4fn4iPJ3iTZeIEbz6IKD UmiF1nO/zz3b3KOc0vM= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org