$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200732.roa File: AS200732.roa (raw, json) Hash identifier: UBDP0tyZMjHiLreZRtbHjB0T5icIfYBME6CRb8Rfyyo= Subject key identifier: 5B:CF:09:75:6F:E8:44:0D:93:69:76:BD:08:DD:DA:AF:04:11:58:D8 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3B048CDBBF84C11D26CD057FEB66899EA826C649 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200732.roa Signing time: Sun 06 Oct 2024 04:44:57 +0000 ROA not before: Sun 06 Oct 2024 04:39:57 +0000 ROA not after: Sun 05 Oct 2025 04:44:57 +0000 asID: 200732 IP address blocks: 2a0a:6040:b600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:04:8c:db:bf:84:c1:1d:26:cd:05:7f:eb:66:89:9e:a8:26:c6:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:57 2024 GMT Not After : Oct 5 04:44:57 2025 GMT Subject: CN=5BCF09756FE8440D936976BD08DDDAAF041158D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a8:c8:be:6a:f1:06:5f:4c:27:75:f0:e0:ff: 87:77:f1:ad:7d:9f:24:4c:c6:aa:86:7f:78:e3:6d: 06:83:3f:cf:8a:f2:5e:9d:42:4e:9c:b2:76:78:e7: 66:67:bc:ef:ff:b6:ca:d8:48:60:d8:4a:77:1f:9b: 98:25:bd:f8:61:87:b2:09:be:6d:52:d3:1c:16:56: 49:9b:70:f4:69:0b:e1:c2:05:a8:e8:b9:78:f9:b0: b8:31:ff:13:f1:fc:74:4c:e5:46:c5:c5:b0:0c:3c: 86:f8:a3:8f:5b:04:53:9f:f3:99:bb:af:db:a4:93: 31:8d:89:92:91:eb:df:40:bb:05:b9:7a:51:53:42: f4:d2:44:05:7f:5e:34:7a:83:8d:7b:1f:94:c5:03: ff:43:ee:ef:6d:92:99:7b:1d:ec:39:43:cf:46:42: 88:b2:0a:53:e8:21:5a:29:45:2d:11:97:88:8b:55: b2:58:22:22:1c:79:e4:a0:fb:04:52:0a:f3:38:ad: 75:23:69:46:fa:16:7e:6e:bd:f1:e9:fd:56:2a:27: d1:03:88:16:f6:c9:96:99:b3:e7:de:cb:78:1e:92: e9:17:31:e9:95:d7:68:07:b3:28:50:6a:c4:9e:62: e9:7d:ce:7d:1f:d0:8b:86:0a:24:bc:26:4d:d1:43: 14:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:CF:09:75:6F:E8:44:0D:93:69:76:BD:08:DD:DA:AF:04:11:58:D8 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b600::/40 Signature Algorithm: sha256WithRSAEncryption 7d:46:a1:42:2e:7c:2a:04:e0:92:65:95:f4:b2:cf:b9:1b:d6: 14:8e:d6:56:29:e4:28:4e:6b:c5:36:75:14:bc:83:02:b5:11: a2:a2:95:27:64:54:26:26:94:ac:f4:a7:9e:47:ef:e2:dd:20: 2c:e3:e8:53:f2:ac:ab:d6:41:3a:1d:aa:c7:63:a2:17:d3:2d: da:e2:48:ee:7f:59:d9:cb:48:8f:56:df:52:de:29:c4:76:cc: 9c:e2:6e:85:13:b0:bb:37:f1:83:c7:83:fd:d2:50:7f:b5:95: a9:7e:80:aa:18:00:3b:80:32:50:d7:84:29:9d:14:3d:e2:91: 81:6d:82:54:20:e1:50:ef:4a:0b:10:b8:0f:7f:94:14:1c:fa: 04:d7:08:40:e5:18:a1:93:7d:16:4b:f8:5b:4c:d7:ae:68:87: d1:67:bc:8f:2b:af:96:91:08:cb:54:41:cb:cb:69:9b:ef:d1: 39:22:38:fe:02:4e:db:48:2b:98:2a:4d:92:98:71:e7:23:cb: 53:ad:aa:92:66:50:1d:fc:77:02:58:41:69:20:8e:02:7b:aa: 6c:4b:34:df:88:7b:f6:79:a2:ff:50:25:d2:25:d3:8e:1c:45: 39:7b:75:00:02:25:f2:9d:40:44:bf:44:c0:d7:84:f8:0a:45: f2:ca:d3:94 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOwSM27+EwR0mzQV/62aJnqgmxkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTdaFw0yNTEwMDUwNDQ0NTdaMDMxMTAvBgNV BAMTKDVCQ0YwOTc1NkZFODQ0MEQ5MzY5NzZCRDA4REREQUFGMDQxMTU4RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAqMi+avEGX0wndfDg/4d38a19 nyRMxqqGf3jjbQaDP8+K8l6dQk6csnZ452ZnvO//tsrYSGDYSncfm5glvfhhh7IJ vm1S0xwWVkmbcPRpC+HCBajouXj5sLgx/xPx/HRM5UbFxbAMPIb4o49bBFOf85m7 r9ukkzGNiZKR699AuwW5elFTQvTSRAV/XjR6g417H5TFA/9D7u9tkpl7Hew5Q89G QoiyClPoIVopRS0Rl4iLVbJYIiIceeSg+wRSCvM4rXUjaUb6Fn5uvfHp/VYqJ9ED iBb2yZaZs+fey3gekukXMemV12gHsyhQasSeYul9zn0f0IuGCiS8Jk3RQxQVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUW88JdW/oRA2TaXa9CN3arwQRWNgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLYwDQYJKoZIhvcNAQELBQADggEBAH1G oUIufCoE4JJllfSyz7kb1hSO1lYp5ChOa8U2dRS8gwK1EaKilSdkVCYmlKz0p55H 7+LdICzj6FPyrKvWQTodqsdjohfTLdriSO5/WdnLSI9W31LeKcR2zJziboUTsLs3 8YPHg/3SUH+1lal+gKoYADuAMlDXhCmdFD3ikYFtglQg4VDvSgsQuA9/lBQc+gTX CEDlGKGTfRZL+FtM165oh9FnvI8rr5aRCMtUQcvLaZvv0TkiOP4CTttIK5gqTZKY cecjy1OtqpJmUB38dwJYQWkgjgJ7qmxLNN+Ie/Z5ov9QJdIl044cRTl7dQACJfKd QES/RMDXhPgKRfLK05Q= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org