$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200676.roa File: AS200676.roa (raw, json) Hash identifier: HZv623+fmRtTIHBi6SydTQUay9luFpRZ/HpcNd0x1JY= Subject key identifier: 64:B4:0B:FD:6C:C6:19:19:4B:6E:E2:90:9C:33:97:02:A1:F1:44:71 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 448CE33E826E539B2704FA7A4DE5FAF6C432716D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200676.roa Signing time: Sun 06 Oct 2024 04:45:14 +0000 ROA not before: Sun 06 Oct 2024 04:40:14 +0000 ROA not after: Sun 05 Oct 2025 04:45:14 +0000 asID: 200676 IP address blocks: 2a0a:6040:b100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:8c:e3:3e:82:6e:53:9b:27:04:fa:7a:4d:e5:fa:f6:c4:32:71:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:14 2024 GMT Not After : Oct 5 04:45:14 2025 GMT Subject: CN=64B40BFD6CC619194B6EE2909C339702A1F14471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0b:64:50:31:71:14:50:6f:d7:ac:69:8c:e0: ca:38:4a:a9:dc:43:86:ce:9a:4b:15:a6:39:df:b5: 6d:af:8c:90:4a:b2:2d:9a:9b:4f:a2:9c:1d:d7:e8: d1:e1:08:4b:32:e3:76:63:56:f2:78:20:9a:8d:11: df:e9:95:a5:07:05:a9:4d:0c:65:f6:ac:f4:1b:b6: 9c:d6:4d:93:1f:a9:31:94:c0:e4:ec:2d:d2:e9:01: 10:e2:5e:24:04:1e:5b:5d:94:15:ac:2f:85:c2:b7: 1a:af:8d:a3:ac:47:b1:87:e7:80:14:14:71:bc:73: a3:4e:4a:bc:16:b2:db:fe:ac:22:01:28:6c:17:fa: db:e5:0b:d5:7d:11:cf:e1:b7:33:89:cf:43:93:75: 25:7d:4d:27:a8:a3:9b:c7:bc:86:30:94:a6:a1:e4: 9f:5f:8d:73:45:f6:d4:37:a0:c2:bb:e2:e1:8b:bf: 20:34:87:4c:92:c0:79:15:3c:1f:fc:fd:1a:cb:71: b5:1b:9f:96:03:fb:35:21:06:11:a6:03:92:5b:a2: 86:57:b1:cc:3a:36:9c:05:10:94:2e:58:c5:2b:6c: 0b:8b:21:3c:59:6b:fe:a4:e9:93:27:b2:8f:5e:8e: 1b:ec:83:d2:cf:83:61:d5:9e:6a:ec:89:01:7e:45: cc:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B4:0B:FD:6C:C6:19:19:4B:6E:E2:90:9C:33:97:02:A1:F1:44:71 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b100::/40 Signature Algorithm: sha256WithRSAEncryption c4:8c:e8:a6:cf:de:31:fd:37:c7:27:e5:d1:9d:f3:e5:44:90: 7c:2a:7a:50:88:36:d2:05:ef:71:64:ff:d9:e3:95:e0:c9:b6: ee:bf:bf:42:53:29:1a:65:2d:bc:79:3f:a5:81:a8:2f:0e:31: 50:4e:3d:a1:0e:9e:b9:9d:ca:60:8b:ca:18:d6:b1:09:1c:b9: 62:62:69:97:f3:6e:f4:87:4d:46:dc:0d:e1:24:c8:b4:76:88: 2d:50:f9:a2:87:ab:5b:f7:a0:e4:84:6a:48:65:02:8b:23:df: e7:e6:54:81:8f:62:2a:1b:51:21:b7:18:0e:01:7f:09:9b:bc: dd:38:11:90:8d:ab:7e:ee:0f:b0:3e:bc:16:57:71:dc:d1:46: c0:1e:5b:06:21:c2:19:da:51:0c:14:60:f2:76:dc:fd:bf:c6: 9f:0d:b0:77:ba:1e:65:bc:2b:2e:56:1d:c1:ce:9b:b2:f8:02: 5d:d1:bf:65:83:c7:3b:cf:a9:ea:8c:d8:e7:35:f2:c5:c5:31: e0:79:05:ff:dd:75:26:83:4d:84:03:44:ef:34:d5:82:81:01: ee:6b:03:c7:8b:71:84:43:e1:c9:5b:8b:42:bc:52:dc:06:57: 85:49:12:05:54:5c:22:8d:67:1b:0d:a8:81:7b:19:b1:9a:4e: 8c:da:ff:9e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURIzjPoJuU5snBPp6TeX69sQycW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTRaFw0yNTEwMDUwNDQ1MTRaMDMxMTAvBgNV BAMTKDY0QjQwQkZENkNDNjE5MTk0QjZFRTI5MDlDMzM5NzAyQTFGMTQ0NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChC2RQMXEUUG/XrGmM4Mo4Sqnc Q4bOmksVpjnftW2vjJBKsi2am0+inB3X6NHhCEsy43ZjVvJ4IJqNEd/plaUHBalN DGX2rPQbtpzWTZMfqTGUwOTsLdLpARDiXiQEHltdlBWsL4XCtxqvjaOsR7GH54AU FHG8c6NOSrwWstv+rCIBKGwX+tvlC9V9Ec/htzOJz0OTdSV9TSeoo5vHvIYwlKah 5J9fjXNF9tQ3oMK74uGLvyA0h0ySwHkVPB/8/RrLcbUbn5YD+zUhBhGmA5JbooZX scw6NpwFEJQuWMUrbAuLITxZa/6k6ZMnso9ejhvsg9LPg2HVnmrsiQF+RcwRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZLQL/WzGGRlLbuKQnDOXAqHxRHEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLEwDQYJKoZIhvcNAQELBQADggEBAMSM 6KbP3jH9N8cn5dGd8+VEkHwqelCINtIF73Fk/9njleDJtu6/v0JTKRplLbx5P6WB qC8OMVBOPaEOnrmdymCLyhjWsQkcuWJiaZfzbvSHTUbcDeEkyLR2iC1Q+aKHq1v3 oOSEakhlAosj3+fmVIGPYiobUSG3GA4BfwmbvN04EZCNq37uD7A+vBZXcdzRRsAe WwYhwhnaUQwUYPJ23P2/xp8NsHe6HmW8Ky5WHcHOm7L4Al3Rv2WDxzvPqeqM2Oc1 8sXFMeB5Bf/ddSaDTYQDRO801YKBAe5rA8eLcYRD4clbi0K8UtwGV4VJEgVUXCKN ZxsNqIF7GbGaToza/54= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org