$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200795.roa File: AS200795.roa (raw, json) Hash identifier: a3H+JWtnijy2BOrYE5hCQBDbw8G+or7w43G0Uii42Nc= Subject key identifier: 78:93:43:F4:88:E3:56:F4:3E:26:3D:8D:AE:BE:3D:1E:7E:DB:FC:22 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 25DD1F25B5F66075FE724CE028430CA581AB9A6C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200795.roa Signing time: Sun 06 Oct 2024 04:45:17 +0000 ROA not before: Sun 06 Oct 2024 04:40:17 +0000 ROA not after: Sun 05 Oct 2025 04:45:17 +0000 asID: 200795 IP address blocks: 2a0a:6040:be00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:dd:1f:25:b5:f6:60:75:fe:72:4c:e0:28:43:0c:a5:81:ab:9a:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:17 2024 GMT Not After : Oct 5 04:45:17 2025 GMT Subject: CN=789343F488E356F43E263D8DAEBE3D1E7EDBFC22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:6c:48:9f:c9:2c:1a:92:c4:ef:54:6e:46:a7: 02:5e:f2:5d:09:b1:16:2b:d8:50:f7:80:e6:7c:92: b0:d1:db:af:94:1f:f9:40:58:90:7c:13:1a:a7:0c: 99:40:5b:52:f6:7f:99:f1:e2:1f:b0:a0:ae:07:98: ef:e9:1f:27:b7:cb:0b:cf:c8:1c:1b:06:d6:2c:f8: ee:79:55:44:0a:44:ba:c6:17:bc:02:ef:92:02:01: ed:49:16:6f:34:b5:be:23:f2:cf:7d:8d:79:85:72: fc:87:ee:c4:5c:65:c0:51:63:63:1c:3f:14:f6:ba: 4f:6c:4d:87:a1:e2:1b:d1:8d:73:44:02:8b:84:28: 67:41:1f:c6:7f:b9:86:f8:a2:d5:ee:76:2a:bf:a3: 89:73:2f:b5:1f:4f:94:62:a6:cb:3f:20:4f:98:64: b8:0b:a7:98:fc:cd:13:cc:7e:57:2e:55:8d:de:ce: 75:22:3b:75:d0:82:db:75:48:65:ba:3c:ae:0c:d2: 6f:a9:95:14:3f:ee:87:b9:1d:0f:4d:1b:35:bf:5b: 73:b4:f6:5f:da:ee:c0:a6:18:14:3c:4c:20:fb:8f: 92:ce:16:e5:75:85:1a:31:39:15:89:bf:a6:8b:10: 3c:93:7c:6f:75:f2:81:2f:76:4f:ad:15:81:82:37: 72:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:93:43:F4:88:E3:56:F4:3E:26:3D:8D:AE:BE:3D:1E:7E:DB:FC:22 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200795.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:be00::/40 Signature Algorithm: sha256WithRSAEncryption b9:49:2f:64:d1:8a:d3:26:fa:65:55:a0:0d:32:7d:26:2d:f6: 30:2b:c4:95:fd:f7:41:bf:11:b6:7b:5e:c1:b2:ef:ef:44:29: bf:02:5d:b9:ce:09:75:ae:c1:b8:88:d8:cf:2b:13:20:22:e0: e7:38:49:ca:65:51:a2:43:30:f9:59:7c:c7:2d:32:37:e8:71: b7:a2:9b:ce:6b:d2:dc:2f:78:7b:53:ae:a4:0e:81:4f:68:fd: 2f:eb:9f:8b:b5:51:a7:da:66:a9:d5:0a:56:89:e5:70:c2:22: 13:30:1f:82:78:16:c7:54:1f:ac:f7:31:a1:6e:65:4d:f1:90: 5c:fc:8a:ff:14:ad:40:f5:94:a7:4f:08:1c:48:d2:c3:5a:b5: fd:3f:6a:cd:10:0a:55:4a:d8:a3:7d:b8:e9:24:73:53:75:30: 9f:e8:b2:5b:01:98:78:13:dc:98:70:d2:77:06:bd:b6:b7:e0: ca:fe:72:69:c2:6c:6e:67:63:0a:83:64:51:c4:3b:c9:63:8b: 03:57:3a:b1:ff:5a:1a:4b:97:16:05:da:51:46:02:83:c4:19: ba:29:8f:7c:ce:9f:a1:2c:22:aa:49:af:0f:ee:4f:5b:f3:9a: 29:ad:00:bf:12:b6:fb:9e:21:d7:d1:f6:20:eb:a1:d6:8e:7f: d8:41:0a:5f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJd0fJbX2YHX+ckzgKEMMpYGrmmwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTdaFw0yNTEwMDUwNDQ1MTdaMDMxMTAvBgNV BAMTKDc4OTM0M0Y0ODhFMzU2RjQzRTI2M0Q4REFFQkUzRDFFN0VEQkZDMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmbEifySwaksTvVG5GpwJe8l0J sRYr2FD3gOZ8krDR26+UH/lAWJB8ExqnDJlAW1L2f5nx4h+woK4HmO/pHye3ywvP yBwbBtYs+O55VUQKRLrGF7wC75ICAe1JFm80tb4j8s99jXmFcvyH7sRcZcBRY2Mc PxT2uk9sTYeh4hvRjXNEAouEKGdBH8Z/uYb4otXudiq/o4lzL7UfT5Ripss/IE+Y ZLgLp5j8zRPMflcuVY3eznUiO3XQgtt1SGW6PK4M0m+plRQ/7oe5HQ9NGzW/W3O0 9l/a7sCmGBQ8TCD7j5LOFuV1hRoxORWJv6aLEDyTfG918oEvdk+tFYGCN3JXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUeJND9IjjVvQ+Jj2Nrr49Hn7b/CIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzk1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQL4wDQYJKoZIhvcNAQELBQADggEBALlJ L2TRitMm+mVVoA0yfSYt9jArxJX990G/EbZ7XsGy7+9EKb8CXbnOCXWuwbiI2M8r EyAi4Oc4ScplUaJDMPlZfMctMjfocbeim85r0twveHtTrqQOgU9o/S/rn4u1Uafa ZqnVClaJ5XDCIhMwH4J4FsdUH6z3MaFuZU3xkFz8iv8UrUD1lKdPCBxI0sNatf0/ as0QClVK2KN9uOkkc1N1MJ/oslsBmHgT3Jhw0ncGvba34Mr+cmnCbG5nYwqDZFHE O8ljiwNXOrH/WhpLlxYF2lFGAoPEGbopj3zOn6EsIqpJrw/uT1vzmimtAL8Stvue IdfR9iDrodaOf9hBCl8= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org