$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200731.roa File: AS200731.roa (raw, json) Hash identifier: DkQRFTEef+2BC+ORrARNpAPm+K/g99F0bxgApZQbjA0= Subject key identifier: AD:A8:82:CB:51:1C:14:25:44:EF:61:6B:25:48:48:A4:6A:E1:14:CD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 044B61B2CB583ACB171E383AEA39151042347CFE Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200731.roa Signing time: Sun 06 Oct 2024 04:45:05 +0000 ROA not before: Sun 06 Oct 2024 04:40:05 +0000 ROA not after: Sun 05 Oct 2025 04:45:05 +0000 asID: 200731 IP address blocks: 2a0a:6040:b800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:4b:61:b2:cb:58:3a:cb:17:1e:38:3a:ea:39:15:10:42:34:7c:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:05 2024 GMT Not After : Oct 5 04:45:05 2025 GMT Subject: CN=ADA882CB511C142544EF616B254848A46AE114CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e1:43:2e:b6:b2:30:5e:1e:1c:93:0c:60:42: 6c:b8:c4:ca:35:59:17:f1:7e:c0:dd:21:39:9e:45: 71:15:fd:77:17:00:cb:41:61:86:cd:9c:24:9a:f4: 90:96:2b:2b:1d:80:aa:12:c8:6f:b9:7a:42:5b:5e: 97:68:da:d7:45:01:0b:8d:e8:15:53:06:08:bb:50: 8a:88:a0:a0:88:a0:a5:f8:03:d4:ae:ce:97:70:05: c9:dd:59:24:10:87:ad:3c:45:96:a5:62:26:1a:42: 72:15:c6:ac:7a:1b:cf:1d:2d:fa:59:98:53:0b:95: 38:a3:04:7a:0f:a1:9c:d5:bb:a8:89:67:30:94:02: d5:74:be:86:76:bf:9f:eb:29:89:91:be:97:2e:e7: 39:f9:0b:0b:29:a6:94:a8:27:80:95:92:5d:bc:0d: b6:2a:18:a5:0a:f5:f5:54:24:12:ea:26:20:02:9f: 0d:d7:ac:e7:72:fe:b2:bf:e1:22:6e:65:14:06:30: 87:fd:7a:b7:95:42:f2:ee:8e:72:8f:d4:fe:ec:5b: ff:90:c2:77:6f:28:0f:07:67:26:6c:6d:f3:98:f4: 7a:83:55:63:59:b4:f5:6b:4f:31:a4:65:d2:d9:77: 46:6f:7f:3e:9d:12:b3:55:25:b0:c7:5e:18:a7:17: 4c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A8:82:CB:51:1C:14:25:44:EF:61:6B:25:48:48:A4:6A:E1:14:CD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b800::/40 Signature Algorithm: sha256WithRSAEncryption c6:05:18:b4:35:74:b6:c0:25:c0:e8:16:a7:1a:e5:0f:fc:d5: 07:c0:7b:c2:34:d3:9e:90:69:47:fb:6a:5a:dd:c4:d4:eb:f0: c8:55:a8:21:a2:bf:55:5c:46:61:c1:cd:c9:5b:2b:4b:7c:9a: cb:93:bc:ed:d4:4d:fd:30:77:bd:cf:d3:f8:2f:40:a7:6b:22: 7e:cf:02:46:67:82:ed:f5:64:df:e7:23:75:e4:fd:0c:25:11: a2:c0:18:d0:bd:99:f9:43:3f:01:fd:ef:ec:ff:c1:55:8d:55: 45:f2:94:ed:ca:a7:42:eb:76:06:ee:0c:a5:81:e2:3d:b3:1f: 25:24:89:04:aa:ba:f5:5a:bb:57:a8:4e:87:86:90:4d:ec:4e: 85:dc:0c:2b:db:8d:e3:b8:47:5d:bb:01:ce:3a:c8:a9:d9:aa: 7b:c3:21:b5:31:e7:0d:57:b5:17:f2:74:11:dc:80:88:68:eb: 04:d9:6c:62:2e:fb:dd:ab:03:86:fc:bc:b3:3a:a2:4d:77:d3: 1a:02:56:74:a7:74:7c:6f:7e:d3:5a:32:19:34:51:c7:28:00: 08:50:fb:92:0b:68:e0:ab:a9:5c:0b:0c:3f:75:54:0b:9d:76: c8:e0:a3:07:92:6b:87:7b:37:83:22:ab:7f:e5:df:6c:ed:4e: 47:76:a2:86 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBEthsstYOssXHjg66jkVEEI0fP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDVaFw0yNTEwMDUwNDQ1MDVaMDMxMTAvBgNV BAMTKEFEQTg4MkNCNTExQzE0MjU0NEVGNjE2QjI1NDg0OEE0NkFFMTE0Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC54UMutrIwXh4ckwxgQmy4xMo1 WRfxfsDdITmeRXEV/XcXAMtBYYbNnCSa9JCWKysdgKoSyG+5ekJbXpdo2tdFAQuN 6BVTBgi7UIqIoKCIoKX4A9SuzpdwBcndWSQQh608RZalYiYaQnIVxqx6G88dLfpZ mFMLlTijBHoPoZzVu6iJZzCUAtV0voZ2v5/rKYmRvpcu5zn5CwspppSoJ4CVkl28 DbYqGKUK9fVUJBLqJiACnw3XrOdy/rK/4SJuZRQGMIf9ereVQvLujnKP1P7sW/+Q wndvKA8HZyZsbfOY9HqDVWNZtPVrTzGkZdLZd0Zvfz6dErNVJbDHXhinF0xtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUraiCy1EcFCVE72FrJUhIpGrhFM0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLgwDQYJKoZIhvcNAQELBQADggEBAMYF GLQ1dLbAJcDoFqca5Q/81QfAe8I0056QaUf7alrdxNTr8MhVqCGiv1VcRmHBzclb K0t8msuTvO3UTf0wd73P0/gvQKdrIn7PAkZngu31ZN/nI3Xk/QwlEaLAGNC9mflD PwH97+z/wVWNVUXylO3Kp0LrdgbuDKWB4j2zHyUkiQSquvVau1eoToeGkE3sToXc DCvbjeO4R127Ac46yKnZqnvDIbUx5w1XtRfydBHcgIho6wTZbGIu+92rA4b8vLM6 ok130xoCVnSndHxvftNaMhk0UccoAAhQ+5ILaOCrqVwLDD91VAuddsjgoweSa4d7 N4Miq3/l32ztTkd2ooY= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:54 2024 by rpki-client on console-ams.rpki-client.org