$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200730.roa File: AS200730.roa (raw, json) Hash identifier: Vf+Niz63IwpnJ1AAwdSnGSo6poVLlwZpxVlzLpV5HvM= Subject key identifier: EC:E4:DB:B6:D1:6E:69:D9:70:B6:D4:59:A3:2A:A4:58:1F:E7:EE:D5 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 722B31900E2C930FAA8A38E7250823BA6CA38A90 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200730.roa Signing time: Sun 06 Oct 2024 04:45:08 +0000 ROA not before: Sun 06 Oct 2024 04:40:08 +0000 ROA not after: Sun 05 Oct 2025 04:45:08 +0000 asID: 200730 IP address blocks: 2a0a:6040:c900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:2b:31:90:0e:2c:93:0f:aa:8a:38:e7:25:08:23:ba:6c:a3:8a:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:08 2024 GMT Not After : Oct 5 04:45:08 2025 GMT Subject: CN=ECE4DBB6D16E69D970B6D459A32AA4581FE7EED5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5a:e9:1c:24:7b:01:e9:ef:fc:95:5a:a9:e2: 10:1c:7c:24:95:2e:5f:3e:56:d7:1e:37:39:18:40: 50:5d:6a:b7:a1:7b:0a:fb:00:09:29:cb:fe:b9:a8: ae:c0:9b:0e:b5:35:03:5d:6f:56:5f:28:c8:9d:cd: a8:3e:2d:76:67:68:59:93:71:55:41:01:63:f7:0b: ad:52:02:a2:09:ce:74:85:35:20:82:c5:38:3d:17: c8:9e:da:a5:6e:cc:99:a0:22:9c:62:d9:8b:5a:c6: a4:0b:07:6d:be:aa:07:3b:eb:23:1e:93:d6:82:66: e9:27:13:9b:a8:eb:ee:91:73:a0:9e:4e:01:44:ec: 39:13:f4:ef:3f:1e:ba:f1:66:9d:c0:0f:4d:1c:f6: b2:26:4f:44:77:6f:d0:5a:35:16:ac:23:f9:a8:63: a8:64:39:d4:55:71:d9:ea:58:ad:3d:46:13:e6:fd: 51:32:e2:dc:be:fe:39:73:c6:7d:0d:a8:7b:38:84: 89:44:3a:7e:48:f1:09:09:22:84:47:99:57:7d:b3: d1:42:ea:04:30:9e:aa:3c:b6:d7:3f:9c:55:fe:da: 59:f6:a5:e1:9f:15:ad:aa:7a:9d:58:e8:48:13:15: 84:df:eb:66:8e:20:5d:32:76:d9:25:2a:68:d9:2e: a0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:E4:DB:B6:D1:6E:69:D9:70:B6:D4:59:A3:2A:A4:58:1F:E7:EE:D5 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c900::/40 Signature Algorithm: sha256WithRSAEncryption 06:30:e1:fe:56:fb:a6:0d:8f:1e:44:d9:c8:3d:b1:bb:2b:7f: 7b:f1:ff:f8:38:d6:2e:4d:0d:7e:b7:19:80:ab:b4:f2:3e:38: 42:e8:45:e4:d6:57:b0:cf:ff:d3:d6:72:9e:9c:e9:69:86:1c: 1d:9c:94:8e:be:24:98:4e:85:52:d1:98:43:f2:d1:43:b4:10: e0:f1:a9:64:33:e8:7c:f4:6f:53:fd:e4:10:92:f1:b5:42:5a: d1:62:02:49:b4:5e:9f:98:6d:a4:d2:c1:5d:47:75:84:ac:5c: 36:97:5b:9a:eb:cd:57:a7:f5:97:42:40:b3:41:c0:61:36:e6: 72:70:23:15:8b:ca:0b:89:11:54:13:11:99:61:03:d4:68:6b: 09:b2:1f:aa:77:57:ef:bc:3f:e4:c4:be:1d:97:97:79:d3:dd: fd:e5:86:81:5a:f6:ad:46:ca:84:9f:67:c0:50:5d:ca:a8:40: c4:82:2f:39:2e:88:5a:bf:b6:c7:0c:8b:f0:af:bb:d1:09:d3: 2b:bd:e4:63:47:c3:73:d7:84:37:3f:cd:47:94:05:d7:3d:2b: 5d:02:b8:fe:15:ee:a6:b8:de:25:c2:d8:27:4b:21:64:f1:b7: 5f:b4:da:37:34:ed:a7:b8:ab:2b:8b:e3:8a:68:9c:d4:65:0a: f4:d0:41:36 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcisxkA4skw+qijjnJQgjumyjipAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDhaFw0yNTEwMDUwNDQ1MDhaMDMxMTAvBgNV BAMTKEVDRTREQkI2RDE2RTY5RDk3MEI2RDQ1OUEzMkFBNDU4MUZFN0VFRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaWukcJHsB6e/8lVqp4hAcfCSV Ll8+VtceNzkYQFBdarehewr7AAkpy/65qK7Amw61NQNdb1ZfKMidzag+LXZnaFmT cVVBAWP3C61SAqIJznSFNSCCxTg9F8ie2qVuzJmgIpxi2YtaxqQLB22+qgc76yMe k9aCZuknE5uo6+6Rc6CeTgFE7DkT9O8/HrrxZp3AD00c9rImT0R3b9BaNRasI/mo Y6hkOdRVcdnqWK09RhPm/VEy4ty+/jlzxn0NqHs4hIlEOn5I8QkJIoRHmVd9s9FC 6gQwnqo8ttc/nFX+2ln2peGfFa2qep1Y6EgTFYTf62aOIF0ydtklKmjZLqChAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7OTbttFuadlwttRZoyqkWB/n7tUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMkwDQYJKoZIhvcNAQELBQADggEBAAYw 4f5W+6YNjx5E2cg9sbsrf3vx//g41i5NDX63GYCrtPI+OELoReTWV7DP/9PWcp6c 6WmGHB2clI6+JJhOhVLRmEPy0UO0EODxqWQz6Hz0b1P95BCS8bVCWtFiAkm0Xp+Y baTSwV1HdYSsXDaXW5rrzVen9ZdCQLNBwGE25nJwIxWLyguJEVQTEZlhA9Roawmy H6p3V++8P+TEvh2Xl3nT3f3lhoFa9q1GyoSfZ8BQXcqoQMSCLzkuiFq/tscMi/Cv u9EJ0yu95GNHw3PXhDc/zUeUBdc9K10CuP4V7qa43iXC2CdLIWTxt1+02jc07ae4 qyuL44ponNRlCvTQQTY= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org