$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200754.roa File: AS200754.roa (raw, json) Hash identifier: L2Jc6yVzwmydwE12d9UgVGQkZB6/AuLN9uGEjq6rM2I= Subject key identifier: 12:84:46:D2:59:88:5C:45:1C:EA:61:EE:2A:7E:EC:91:35:E2:C8:02 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 55428AE541FD9A93262448B352753FC76E287335 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200754.roa Signing time: Sun 06 Oct 2024 04:45:11 +0000 ROA not before: Sun 06 Oct 2024 04:40:11 +0000 ROA not after: Sun 05 Oct 2025 04:45:11 +0000 asID: 200754 IP address blocks: 2a0a:6040:c300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:42:8a:e5:41:fd:9a:93:26:24:48:b3:52:75:3f:c7:6e:28:73:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:11 2024 GMT Not After : Oct 5 04:45:11 2025 GMT Subject: CN=128446D259885C451CEA61EE2A7EEC9135E2C802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dd:bc:ca:9e:b0:e4:30:b1:00:09:b5:89:41: eb:3c:3a:ce:fe:dc:21:9c:f4:48:be:a0:8e:4d:cf: 18:52:40:12:bb:e5:2f:7c:89:aa:56:c4:db:bd:f0: 8f:7d:3c:37:82:ca:e5:ee:22:46:9d:50:03:d1:9e: dd:18:9c:e7:68:42:60:ce:8b:29:d0:4f:69:c4:e6: f4:09:16:a4:c0:53:c0:7b:2c:d5:c9:d4:d0:54:f9: a1:37:51:15:24:90:60:2f:bf:df:4b:96:5e:b8:91: 00:18:f6:c7:de:22:e5:0b:cb:20:f2:9f:1f:48:05: 93:b3:68:5d:33:76:65:b4:31:ca:89:fa:0e:da:11: 5e:af:78:3b:dc:9f:49:b5:f3:58:2c:4f:e1:25:10: a9:af:d1:7f:b4:d3:15:73:6a:e7:28:09:b1:ae:e7: 56:92:9d:cd:a4:6d:66:d4:ec:99:23:4c:f0:48:c0: dc:73:b0:a6:2e:95:dd:b1:d5:30:47:0f:c9:67:67: 79:d1:71:69:d3:7d:5d:4a:69:78:65:cc:e2:72:ea: 41:58:31:45:97:d0:38:c8:90:e2:e2:37:73:bb:6f: ca:e1:b3:9a:04:a5:e7:c7:08:58:aa:6f:e3:56:e7: b1:4d:1b:31:f0:52:04:5f:bf:37:92:23:62:d1:1d: a4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:84:46:D2:59:88:5C:45:1C:EA:61:EE:2A:7E:EC:91:35:E2:C8:02 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200754.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c300::/40 Signature Algorithm: sha256WithRSAEncryption c1:7f:fa:15:c6:8d:a2:b2:3c:12:e0:76:04:e0:0f:60:b1:79: 97:bc:6c:b2:c6:be:f7:14:c9:5c:00:17:3e:09:e9:8c:37:20: f4:17:0f:b2:fb:99:62:1c:3c:cd:f9:7a:1d:b4:aa:c4:a1:ae: f5:1e:9b:6a:fc:d8:38:6b:a8:0f:0d:76:66:19:08:61:e9:e2: 0e:d6:4a:fc:91:a7:7d:52:7a:06:62:34:04:b8:fb:e3:b7:26: 21:e5:a9:14:90:32:0d:87:12:76:22:6d:30:1f:21:4e:bf:7a: d0:f6:e6:fc:b1:6f:f2:4d:a4:4f:e1:ab:c1:a0:bd:78:3b:08: b7:b6:1e:25:eb:f4:a4:b2:ef:cb:b4:81:f1:1a:9d:0c:96:88: ec:e2:54:93:c3:a3:57:30:80:04:f2:c4:c6:08:34:d8:4d:c8: bd:93:61:12:67:7c:55:46:69:1f:58:63:11:fd:2c:77:fb:1b: 24:88:c3:f1:1b:fd:6a:61:ae:6e:79:63:d4:12:3b:9e:60:2b: d2:7b:c2:90:27:04:84:8e:00:82:38:6f:fd:6d:fb:72:b7:d9: 21:7a:41:52:86:81:33:d8:4b:98:15:b6:f1:8c:e5:46:b5:35: 06:2d:08:ef:90:ac:75:c6:11:91:68:4d:ff:22:a8:e7:03:5d: 87:ff:ea:43 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVUKK5UH9mpMmJEizUnU/x24oczUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTFaFw0yNTEwMDUwNDQ1MTFaMDMxMTAvBgNV BAMTKDEyODQ0NkQyNTk4ODVDNDUxQ0VBNjFFRTJBN0VFQzkxMzVFMkM4MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC23bzKnrDkMLEACbWJQes8Os7+ 3CGc9Ei+oI5NzxhSQBK75S98iapWxNu98I99PDeCyuXuIkadUAPRnt0YnOdoQmDO iynQT2nE5vQJFqTAU8B7LNXJ1NBU+aE3URUkkGAvv99Lll64kQAY9sfeIuULyyDy nx9IBZOzaF0zdmW0McqJ+g7aEV6veDvcn0m181gsT+ElEKmv0X+00xVzaucoCbGu 51aSnc2kbWbU7JkjTPBIwNxzsKYuld2x1TBHD8lnZ3nRcWnTfV1KaXhlzOJy6kFY MUWX0DjIkOLiN3O7b8rhs5oEpefHCFiqb+NW57FNGzHwUgRfvzeSI2LRHaRJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEoRG0lmIXEUc6mHuKn7skTXiyAIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMMwDQYJKoZIhvcNAQELBQADggEBAMF/ +hXGjaKyPBLgdgTgD2CxeZe8bLLGvvcUyVwAFz4J6Yw3IPQXD7L7mWIcPM35eh20 qsShrvUem2r82DhrqA8NdmYZCGHp4g7WSvyRp31SegZiNAS4++O3JiHlqRSQMg2H EnYibTAfIU6/etD25vyxb/JNpE/hq8GgvXg7CLe2HiXr9KSy78u0gfEanQyWiOzi VJPDo1cwgATyxMYINNhNyL2TYRJnfFVGaR9YYxH9LHf7GySIw/Eb/Wphrm55Y9QS O55gK9J7wpAnBISOAII4b/1t+3K32SF6QVKGgTPYS5gVtvGM5Ua1NQYtCO+QrHXG EZFoTf8iqOcDXYf/6kM= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org