$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200791.roa File: AS200791.roa (raw, json) Hash identifier: dQM0Qh8TQAneK5Ni3s5JDmixPPp1N9n9o4sEwoy6HHs= Subject key identifier: 40:F2:85:ED:ED:B2:89:97:36:A2:B8:DD:01:64:15:2F:40:CC:CB:03 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1EE86C174B3F195C07B955C2D83E0C2209FD1A88 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200791.roa Signing time: Sun 06 Oct 2024 04:44:56 +0000 ROA not before: Sun 06 Oct 2024 04:39:56 +0000 ROA not after: Sun 05 Oct 2025 04:44:56 +0000 asID: 200791 IP address blocks: 2a0a:6040:bb00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e8:6c:17:4b:3f:19:5c:07:b9:55:c2:d8:3e:0c:22:09:fd:1a:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:56 2024 GMT Not After : Oct 5 04:44:56 2025 GMT Subject: CN=40F285EDEDB2899736A2B8DD0164152F40CCCB03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0d:85:5a:e2:8c:a0:d8:7a:6c:2e:0d:d6:53: 08:9a:62:b5:4d:c7:8b:1c:09:51:07:0d:0e:e9:68: 16:da:ed:4c:f9:c0:6a:e8:8e:ff:fc:1a:4d:00:62: d9:e6:63:71:95:1d:c2:b0:1a:6c:f3:55:be:9b:db: 35:63:a6:a3:91:0e:18:14:4e:9a:93:49:e8:04:bd: 12:53:69:0d:f4:53:74:a8:ca:e4:a4:32:a0:92:93: d9:c7:68:7c:99:72:f0:be:72:18:bb:e5:d9:9a:55: 3f:fd:18:7e:a6:0b:f1:a3:b1:ab:10:e9:af:5b:22: 7b:78:c6:9e:68:ac:cb:00:3b:aa:fd:2f:df:3e:8b: 0f:c2:d4:a9:34:b9:68:0a:15:e5:ec:7b:7d:c7:01: a1:9f:44:28:30:37:6b:09:bc:ef:cf:6f:42:f7:94: e7:1c:ad:1a:c3:32:7d:61:3d:19:ef:5c:49:59:2e: 4a:c7:b5:f3:b1:f2:f8:d6:fe:7d:c5:a8:87:dd:97: 5d:ad:fb:a5:a0:24:df:d5:9b:dd:e3:11:fd:a4:74: 1c:14:8e:9d:df:11:f8:25:05:e4:5d:59:7a:4e:15: 93:13:70:a0:7e:95:72:66:b0:ab:68:84:7d:42:fd: 3f:97:c7:4e:e9:82:f8:28:62:5a:8f:16:59:18:b1: 4d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:F2:85:ED:ED:B2:89:97:36:A2:B8:DD:01:64:15:2F:40:CC:CB:03 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200791.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bb00::/40 Signature Algorithm: sha256WithRSAEncryption 8e:4a:fc:34:9d:0d:c3:b4:76:05:9a:85:e5:1b:45:e7:40:24: 81:56:2d:1f:ba:a8:43:f0:17:03:94:42:06:74:a6:b7:47:04: b1:b4:56:61:d2:f0:dc:fa:7a:41:83:56:19:9e:82:5e:dd:1a: 54:33:5d:ae:31:61:68:5f:76:c5:f8:59:e8:73:b9:de:87:42: 4c:a5:b4:c2:9e:d0:ee:39:2e:76:a2:3a:c2:be:63:5b:38:51: 60:48:b7:27:8e:ab:d7:31:7e:19:1c:ea:d0:27:0d:ee:2e:f2: 68:ee:a1:5c:24:06:c6:7c:e2:cc:80:f2:5a:73:24:61:68:26: c7:d7:7e:85:68:df:ed:a9:7f:63:fa:fb:1d:30:aa:06:0f:99: 86:20:8e:c4:0e:6d:90:53:e7:c8:71:f4:28:17:c3:66:8e:b5: 22:61:af:4d:14:b4:1c:a1:b7:8f:80:30:3c:38:a2:8c:9f:3e: eb:09:ae:83:b6:cc:3a:c5:58:df:01:4f:91:8b:e2:32:01:bd: 02:6f:75:97:6c:14:16:76:b2:0f:99:a7:dd:c6:d8:bc:fa:fc: 4a:4e:05:f0:e4:44:ec:42:f9:d8:be:8e:35:26:20:bd:f7:02: 17:c2:4c:74:0a:6a:4c:2b:8e:b0:72:18:2b:25:f6:a3:56:aa: 89:5d:23:ad -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHuhsF0s/GVwHuVXC2D4MIgn9GogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTZaFw0yNTEwMDUwNDQ0NTZaMDMxMTAvBgNV BAMTKDQwRjI4NUVERURCMjg5OTczNkEyQjhERDAxNjQxNTJGNDBDQ0NCMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtDYVa4oyg2HpsLg3WUwiaYrVN x4scCVEHDQ7paBba7Uz5wGrojv/8Gk0AYtnmY3GVHcKwGmzzVb6b2zVjpqORDhgU TpqTSegEvRJTaQ30U3SoyuSkMqCSk9nHaHyZcvC+chi75dmaVT/9GH6mC/GjsasQ 6a9bInt4xp5orMsAO6r9L98+iw/C1Kk0uWgKFeXse33HAaGfRCgwN2sJvO/Pb0L3 lOccrRrDMn1hPRnvXElZLkrHtfOx8vjW/n3FqIfdl12t+6WgJN/Vm93jEf2kdBwU jp3fEfglBeRdWXpOFZMTcKB+lXJmsKtohH1C/T+Xx07pgvgoYlqPFlkYsU23AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQPKF7e2yiZc2orjdAWQVL0DMywMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzkxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLswDQYJKoZIhvcNAQELBQADggEBAI5K /DSdDcO0dgWaheUbRedAJIFWLR+6qEPwFwOUQgZ0prdHBLG0VmHS8Nz6ekGDVhme gl7dGlQzXa4xYWhfdsX4Wehzud6HQkyltMKe0O45LnaiOsK+Y1s4UWBItyeOq9cx fhkc6tAnDe4u8mjuoVwkBsZ84syA8lpzJGFoJsfXfoVo3+2pf2P6+x0wqgYPmYYg jsQObZBT58hx9CgXw2aOtSJhr00UtByht4+AMDw4ooyfPusJroO2zDrFWN8BT5GL 4jIBvQJvdZdsFBZ2sg+Zp93G2Lz6/EpOBfDkROxC+di+jjUmIL33AhfCTHQKakwr jrByGCsl9qNWqoldI60= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org