$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200775.roa File: AS200775.roa (raw, json) Hash identifier: RG9Csk/06pIMeJ45IOK2ZMCJXkPNZFIjmDJqqQDjzZU= Subject key identifier: 34:F9:2D:48:40:AA:E3:98:36:57:83:30:9B:66:17:A9:69:30:FB:C9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 60954D18E1AB12E70BEDF7518485EEFF2C3269E2 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200775.roa Signing time: Sun 06 Oct 2024 04:45:11 +0000 ROA not before: Sun 06 Oct 2024 04:40:11 +0000 ROA not after: Sun 05 Oct 2025 04:45:11 +0000 asID: 200775 IP address blocks: 2a0a:6040:c200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:95:4d:18:e1:ab:12:e7:0b:ed:f7:51:84:85:ee:ff:2c:32:69:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:11 2024 GMT Not After : Oct 5 04:45:11 2025 GMT Subject: CN=34F92D4840AAE398365783309B6617A96930FBC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:50:0b:b8:23:22:41:5f:d9:94:b2:55:4b:9a: c6:bb:60:f2:25:a6:f3:d1:0f:49:e3:ef:77:05:d3: c3:4a:12:ed:70:a1:1a:3b:47:9b:71:2e:3c:4d:d2: 84:08:8a:d9:c7:22:47:b3:2e:1c:1c:a0:93:77:47: 8e:3d:81:61:c4:da:a3:85:44:7a:4b:a8:47:02:19: 4b:6a:5a:e8:9f:f9:92:52:44:22:a2:a9:70:fc:6d: bc:88:e8:ce:3d:1f:81:04:6a:58:97:35:73:84:f5: 3d:b9:d5:b3:07:67:7c:0a:a0:f0:62:35:73:37:02: ff:2b:b0:db:01:6a:d6:e3:95:50:2e:a9:93:d6:66: d4:e5:a5:c3:26:27:bf:fe:bf:fe:c9:89:3b:a1:c9: 5c:b9:d3:e1:02:5c:43:d9:23:87:a6:8a:fa:46:26: 00:b7:34:48:ae:01:e5:18:ed:f9:e7:b4:be:e6:42: 69:8a:e7:1b:a9:f2:80:27:3c:b0:93:c9:c1:e1:69: 00:81:07:8f:3d:f8:f6:72:8b:77:bc:ba:38:62:20: 00:8a:44:ad:b5:6d:fb:b4:e1:a6:ba:2f:62:03:db: cd:31:71:6f:30:2d:8a:a1:62:c2:4a:39:c9:68:d6: fc:19:da:3b:fe:ec:b1:e7:c1:57:ba:30:3e:6c:b4: fd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F9:2D:48:40:AA:E3:98:36:57:83:30:9B:66:17:A9:69:30:FB:C9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200775.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c200::/40 Signature Algorithm: sha256WithRSAEncryption 62:69:a8:e6:9d:89:bf:c3:40:ae:88:f1:1c:be:d1:db:8c:f6: ab:d6:3c:e6:93:f7:8b:51:96:ca:19:03:f5:49:bd:9d:b6:b5: d4:34:24:69:02:da:9f:85:d3:55:59:fb:fa:ba:76:c3:5e:40: ae:4b:2e:c8:a3:e2:b9:7f:2c:8a:a6:90:35:2a:a7:fc:d3:38: 31:1f:31:06:07:b4:c6:06:97:09:7d:a9:d4:0f:5f:6a:7a:74: cc:a8:59:8b:72:ee:40:63:41:db:22:d0:29:0b:e8:b2:fd:a0: b9:e4:e7:d0:56:fb:be:8b:50:33:3f:ea:67:bc:81:60:2c:67: ef:f3:87:05:b7:f5:e8:5f:82:53:b8:55:4c:cf:57:07:b7:6f: 72:33:7a:de:62:2c:b5:d5:56:10:95:46:cd:61:96:cc:f2:e8: bb:92:50:1c:ac:a7:4f:ac:7c:c6:73:56:33:10:2d:cc:3d:94: 6d:7b:2b:db:79:b3:10:23:ce:1d:8f:dc:df:40:da:94:75:a7: 3f:1c:2a:90:43:2b:f8:cc:fc:78:29:19:f2:01:11:d8:98:66: 7b:3d:84:a6:8f:b8:b5:4b:d2:72:be:62:fe:a4:6d:97:d4:8e: d1:f3:e0:71:4c:0c:cf:4a:43:d1:7a:bd:68:b3:5b:cd:a0:08: 01:07:3a:87 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYJVNGOGrEucL7fdRhIXu/ywyaeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTFaFw0yNTEwMDUwNDQ1MTFaMDMxMTAvBgNV BAMTKDM0RjkyRDQ4NDBBQUUzOTgzNjU3ODMzMDlCNjYxN0E5NjkzMEZCQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBUAu4IyJBX9mUslVLmsa7YPIl pvPRD0nj73cF08NKEu1woRo7R5txLjxN0oQIitnHIkezLhwcoJN3R449gWHE2qOF RHpLqEcCGUtqWuif+ZJSRCKiqXD8bbyI6M49H4EEaliXNXOE9T251bMHZ3wKoPBi NXM3Av8rsNsBatbjlVAuqZPWZtTlpcMmJ7/+v/7JiTuhyVy50+ECXEPZI4emivpG JgC3NEiuAeUY7fnntL7mQmmK5xup8oAnPLCTycHhaQCBB489+PZyi3e8ujhiIACK RK21bfu04aa6L2ID280xcW8wLYqhYsJKOclo1vwZ2jv+7LHnwVe6MD5stP3DAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUNPktSECq45g2V4Mwm2YXqWkw+8kwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMIwDQYJKoZIhvcNAQELBQADggEBAGJp qOadib/DQK6I8Ry+0duM9qvWPOaT94tRlsoZA/VJvZ22tdQ0JGkC2p+F01VZ+/q6 dsNeQK5LLsij4rl/LIqmkDUqp/zTODEfMQYHtMYGlwl9qdQPX2p6dMyoWYty7kBj Qdsi0CkL6LL9oLnk59BW+76LUDM/6me8gWAsZ+/zhwW39ehfglO4VUzPVwe3b3Iz et5iLLXVVhCVRs1hlszy6LuSUBysp0+sfMZzVjMQLcw9lG17K9t5sxAjzh2P3N9A 2pR1pz8cKpBDK/jM/HgpGfIBEdiYZns9hKaPuLVL0nK+Yv6kbZfUjtHz4HFMDM9K Q9F6vWizW82gCAEHOoc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org