$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200789.roa File: AS200789.roa (raw, json) Hash identifier: fguh1S5j0IWghmR4T6OaMUQinY5i0WV79uVA/56zsa8= Subject key identifier: 55:AB:1D:E4:41:37:11:9D:00:9B:64:5D:7F:C5:00:C9:E9:D0:C5:45 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1EFDBDC91396B1B4C9C30ACD398CAFDD0BF53A8A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200789.roa Signing time: Sun 06 Oct 2024 04:45:06 +0000 ROA not before: Sun 06 Oct 2024 04:40:06 +0000 ROA not after: Sun 05 Oct 2025 04:45:06 +0000 asID: 200789 IP address blocks: 2a0a:6040:b700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:fd:bd:c9:13:96:b1:b4:c9:c3:0a:cd:39:8c:af:dd:0b:f5:3a:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:06 2024 GMT Not After : Oct 5 04:45:06 2025 GMT Subject: CN=55AB1DE44137119D009B645D7FC500C9E9D0C545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a9:25:ee:ea:71:7a:55:41:46:c9:70:96:ae: a5:17:a5:6a:f2:70:9d:a0:b3:01:46:a5:ff:82:78: 19:06:32:99:b2:a0:18:b0:17:d2:87:74:da:c2:45: 38:4a:5b:a4:cb:af:a9:c3:fb:d1:18:2c:c4:55:aa: 3a:5c:8f:32:9c:50:ea:3a:45:02:7e:57:b7:5c:fd: 90:50:c8:62:ad:38:66:17:d3:3c:83:93:de:b5:36: 80:2c:64:4c:21:54:c7:bf:b1:ac:e2:78:ef:42:a3: e7:78:69:2d:5a:f3:dd:26:8b:69:f6:be:cb:dc:ee: 45:36:b4:d6:7a:50:f3:85:f6:77:fa:90:f6:e1:08: d4:43:0f:32:6d:91:0c:8d:f3:8d:a5:92:f2:6b:89: a9:33:ee:07:3e:e0:86:2a:3a:ce:1c:88:2f:f6:12: 50:2f:f5:dc:c4:e4:9b:e3:b9:eb:2e:73:1c:bf:22: 48:d1:da:4e:bd:67:52:d2:71:b4:07:da:f4:59:ac: 32:99:aa:5e:05:d8:6b:6d:58:e4:85:35:42:49:92: 0e:93:20:12:65:69:1f:7a:28:06:27:16:b0:10:fc: 30:14:4f:ca:c2:17:71:dd:39:8b:38:04:34:58:b7: e6:2f:d9:f1:5f:3a:ef:dd:08:db:06:65:5e:b3:1d: 70:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:AB:1D:E4:41:37:11:9D:00:9B:64:5D:7F:C5:00:C9:E9:D0:C5:45 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200789.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b700::/40 Signature Algorithm: sha256WithRSAEncryption 1b:cd:ea:b6:40:db:2e:c4:8b:02:56:59:13:2a:c4:72:a8:26: 53:30:46:d8:08:8b:86:b0:38:3f:96:a6:3c:13:17:f5:f1:f6: fe:00:05:34:64:5f:9a:1c:76:64:26:18:5a:34:67:ff:69:5a: de:1f:30:00:75:93:fb:8e:0c:44:2e:20:18:9d:cd:ce:ef:9a: 47:cf:b6:c7:b2:de:86:e8:d1:64:4d:81:a7:03:23:8c:d1:2d: 2a:04:59:07:b8:82:ad:f2:94:97:f6:0c:f1:f8:5e:c6:24:cf: 26:68:83:f7:06:82:5f:f7:7e:8e:f2:44:b5:00:4a:0b:2f:dd: 8a:8e:b0:db:19:9c:ec:6e:cb:97:7a:b8:45:ec:83:61:77:8c: f0:5d:4d:4d:5a:88:8f:1f:fc:f7:70:71:41:3c:7c:7a:42:d3: 1a:a8:da:28:cc:10:82:b7:0a:ee:08:48:f2:02:a7:99:32:3f: 66:f2:c4:bb:6c:0e:a7:71:65:e4:ca:73:6c:f1:a7:3a:04:89: 49:37:c1:7a:80:b9:ce:0d:ae:4a:eb:d6:ba:56:f5:42:9d:51: 3d:ba:26:8a:b8:d7:59:97:cf:c2:56:ff:85:8f:6c:c4:39:69: e0:37:12:1d:9b:d7:11:a2:47:de:50:0e:47:9b:8c:75:03:e8: 00:30:56:98 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHv29yROWsbTJwwrNOYyv3Qv1OoowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDZaFw0yNTEwMDUwNDQ1MDZaMDMxMTAvBgNV BAMTKDU1QUIxREU0NDEzNzExOUQwMDlCNjQ1RDdGQzUwMEM5RTlEMEM1NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPqSXu6nF6VUFGyXCWrqUXpWry cJ2gswFGpf+CeBkGMpmyoBiwF9KHdNrCRThKW6TLr6nD+9EYLMRVqjpcjzKcUOo6 RQJ+V7dc/ZBQyGKtOGYX0zyDk961NoAsZEwhVMe/sazieO9Co+d4aS1a890mi2n2 vsvc7kU2tNZ6UPOF9nf6kPbhCNRDDzJtkQyN842lkvJriakz7gc+4IYqOs4ciC/2 ElAv9dzE5Jvjuesucxy/IkjR2k69Z1LScbQH2vRZrDKZql4F2GttWOSFNUJJkg6T IBJlaR96KAYnFrAQ/DAUT8rCF3HdOYs4BDRYt+Yv2fFfOu/dCNsGZV6zHXADAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUVasd5EE3EZ0Am2Rdf8UAyenQxUUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzg5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLcwDQYJKoZIhvcNAQELBQADggEBABvN 6rZA2y7EiwJWWRMqxHKoJlMwRtgIi4awOD+WpjwTF/Xx9v4ABTRkX5ocdmQmGFo0 Z/9pWt4fMAB1k/uODEQuIBidzc7vmkfPtsey3obo0WRNgacDI4zRLSoEWQe4gq3y lJf2DPH4XsYkzyZog/cGgl/3fo7yRLUASgsv3YqOsNsZnOxuy5d6uEXsg2F3jPBd TU1aiI8f/PdwcUE8fHpC0xqo2ijMEIK3Cu4ISPICp5kyP2byxLtsDqdxZeTKc2zx pzoEiUk3wXqAuc4Nrkrr1rpW9UKdUT26Joq411mXz8JW/4WPbMQ5aeA3Eh2b1xGi R95QDkebjHUD6AAwVpg= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org