$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200766.roa File: AS200766.roa (raw, json) Hash identifier: IT3IjT0UGuKSIEeGQxeQbFsEjvrN5NFz6TBNDdltf+g= Subject key identifier: 0A:FB:1D:FC:2D:B3:2D:ED:26:38:81:EE:39:F0:D3:F1:51:A9:96:5C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 74798788BDC475EE299C9A9B5B5193BE9432D9A3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200766.roa Signing time: Sun 06 Oct 2024 04:44:56 +0000 ROA not before: Sun 06 Oct 2024 04:39:56 +0000 ROA not after: Sun 05 Oct 2025 04:44:56 +0000 asID: 200766 IP address blocks: 2a0a:6040:c100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:79:87:88:bd:c4:75:ee:29:9c:9a:9b:5b:51:93:be:94:32:d9:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:56 2024 GMT Not After : Oct 5 04:44:56 2025 GMT Subject: CN=0AFB1DFC2DB32DED263881EE39F0D3F151A9965C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a6:52:47:90:0c:14:a3:3b:81:22:d1:24:a9: 44:80:5d:1a:97:ad:9a:85:3a:56:d6:56:3b:0b:db: a6:e2:94:32:a9:17:cd:2e:7e:9f:2e:fa:e2:2e:c6: 02:13:ef:67:65:05:b2:1f:49:2b:8b:d1:c4:6b:85: c4:31:c4:18:a7:92:67:4d:49:63:06:fc:97:35:6d: 38:4d:d4:28:43:ae:0b:3a:a1:14:f9:f6:4f:de:c9: 86:23:7e:0d:29:9f:c8:03:87:82:db:6d:40:7a:d2: bc:7f:18:0d:c1:04:5b:de:4e:90:7a:02:64:ca:8f: ef:98:74:65:0b:27:8e:ff:8a:21:cd:23:6f:0d:cf: 00:69:33:ab:a2:57:8e:a1:e5:1d:a8:c2:f4:94:80: 24:bb:2d:cf:e4:e0:f2:58:12:1e:18:a5:e3:69:2b: 4a:1e:bc:d4:a2:ef:72:0e:46:96:28:7f:d1:66:80: 6f:e9:a9:bc:ca:d7:e6:fa:02:4b:8e:e2:1a:df:f7: 97:b1:56:7e:f4:b8:49:5a:c9:d5:22:61:ad:7f:59: 3f:8e:81:d4:76:ff:fe:8f:ee:eb:8e:3e:4f:3e:85: 50:88:9e:bd:a7:46:00:9e:2d:46:d0:21:c1:b8:e1: 4c:9f:83:50:ad:22:23:12:21:5d:05:a5:54:47:bf: 5f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:FB:1D:FC:2D:B3:2D:ED:26:38:81:EE:39:F0:D3:F1:51:A9:96:5C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200766.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c100::/40 Signature Algorithm: sha256WithRSAEncryption a9:ca:04:77:0d:fe:0f:5b:e6:73:b2:4d:e6:03:d4:10:1c:c2: de:0e:da:2d:4d:ea:1b:65:f2:87:dd:1b:e0:4e:7b:74:9d:1a: 8b:a4:9f:91:75:fa:1f:56:54:88:5e:87:dc:9e:ac:6b:c1:f2: 20:61:15:3d:01:c0:06:33:5b:82:1f:af:f8:e7:6a:e5:e3:a5: 31:64:71:c0:91:23:20:87:45:51:a4:ed:94:7e:4d:ef:99:6e: cd:34:e8:76:da:76:ad:07:d3:08:cf:c9:5a:40:fd:73:0c:67: d2:70:4e:c1:74:f0:c4:0c:96:06:58:d7:75:1e:c6:f0:78:94: 2b:4f:06:e8:71:8f:c4:4b:d9:cb:fd:fb:c6:25:6b:be:21:7e: 76:ca:f5:67:65:64:2d:f7:e1:d5:9e:e5:df:19:71:2d:2d:a2: 1a:6e:3f:1a:51:04:ce:15:92:0a:b4:fd:b0:c2:04:6c:c5:8c: d7:c2:c1:0e:3a:02:dd:42:2d:d0:c0:1c:d3:4c:d7:3c:bb:df: dd:fa:33:4e:a9:f4:9d:6c:59:6b:d1:05:de:82:17:05:37:e6: a7:cf:e5:f2:57:5d:99:6b:0b:26:d0:af:15:04:56:43:f9:d2: 32:ca:7f:71:6e:7b:a4:26:8c:34:d5:50:22:03:3b:66:47:87: 86:63:35:de -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdHmHiL3Ede4pnJqbW1GTvpQy2aMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTZaFw0yNTEwMDUwNDQ0NTZaMDMxMTAvBgNV BAMTKDBBRkIxREZDMkRCMzJERUQyNjM4ODFFRTM5RjBEM0YxNTFBOTk2NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzplJHkAwUozuBItEkqUSAXRqX rZqFOlbWVjsL26bilDKpF80ufp8u+uIuxgIT72dlBbIfSSuL0cRrhcQxxBinkmdN SWMG/Jc1bThN1ChDrgs6oRT59k/eyYYjfg0pn8gDh4LbbUB60rx/GA3BBFveTpB6 AmTKj++YdGULJ47/iiHNI28NzwBpM6uiV46h5R2owvSUgCS7Lc/k4PJYEh4YpeNp K0oevNSi73IORpYof9FmgG/pqbzK1+b6AkuO4hrf95exVn70uElaydUiYa1/WT+O gdR2//6P7uuOPk8+hVCInr2nRgCeLUbQIcG44Uyfg1CtIiMSIV0FpVRHv18lAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCvsd/C2zLe0mOIHuOfDT8VGpllwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMEwDQYJKoZIhvcNAQELBQADggEBAKnK BHcN/g9b5nOyTeYD1BAcwt4O2i1N6htl8ofdG+BOe3SdGoukn5F1+h9WVIheh9ye rGvB8iBhFT0BwAYzW4Ifr/jnauXjpTFkccCRIyCHRVGk7ZR+Te+Zbs006Hbadq0H 0wjPyVpA/XMMZ9JwTsF08MQMlgZY13UexvB4lCtPBuhxj8RL2cv9+8Yla74hfnbK 9WdlZC334dWe5d8ZcS0tohpuPxpRBM4Vkgq0/bDCBGzFjNfCwQ46At1CLdDAHNNM 1zy73936M06p9J1sWWvRBd6CFwU35qfP5fJXXZlrCybQrxUEVkP50jLKf3Fue6Qm jDTVUCIDO2ZHh4ZjNd4= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org