$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200800.roa File: AS200800.roa (raw, json) Hash identifier: 1VVmixygIw+8pspyQi6haxKMspf4U+eQEeTgf9CMWZg= Subject key identifier: 66:75:DD:42:7D:89:03:8C:33:62:83:CE:7A:BD:83:D8:C6:11:2F:D7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5E8674F43649583F4C9F29420F2FC9D7FEF84553 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200800.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 200800 IP address blocks: 2a0a:6040:a200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:86:74:f4:36:49:58:3f:4c:9f:29:42:0f:2f:c9:d7:fe:f8:45:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=6675DD427D89038C336283CE7ABD83D8C6112FD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0e:f9:e1:01:09:d4:1d:80:9f:b7:37:0b:db: 2c:94:bf:43:86:e0:ba:96:3d:d1:43:69:47:7f:aa: 24:df:98:85:fb:a2:41:84:b8:ee:b4:63:18:e1:d4: 94:75:31:d0:8c:07:9e:2a:77:4b:9f:b1:ef:7a:6a: a1:d5:d7:90:b7:66:50:0d:83:ad:c9:e8:57:fb:82: 88:c4:10:bc:83:fd:a9:87:6c:17:81:4f:93:16:c5: 73:2c:ca:43:c9:a7:9d:fc:17:f7:1b:ce:b2:5d:0b: 6e:83:28:f1:2e:7b:06:16:5b:8f:a2:77:58:6c:d5: e0:6f:7d:6d:4b:a1:a1:b2:72:2b:af:62:f4:58:15: 42:23:1f:fe:63:2a:c2:d6:e4:4b:28:4e:33:4e:06: 02:2c:24:cc:36:00:9e:db:19:59:6f:85:db:fc:e0: c3:67:84:0c:f7:79:81:f7:49:d5:b9:ee:fe:ac:d5: 11:5a:9b:df:15:a1:f4:f3:3f:cc:ba:35:0d:57:b9: 16:a0:d1:a9:04:ce:33:b4:93:40:d2:a0:43:28:11: 5e:74:87:4a:a9:df:55:34:89:b0:5f:01:38:fa:50: e2:e7:f6:00:fc:b9:fe:51:00:6f:fe:19:d8:f4:0e: 9a:c7:ac:ba:59:a4:dd:98:4f:64:30:2b:94:cf:20: e7:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:75:DD:42:7D:89:03:8C:33:62:83:CE:7A:BD:83:D8:C6:11:2F:D7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200800.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a200::/40 Signature Algorithm: sha256WithRSAEncryption ba:d5:47:e9:7f:c9:3b:47:be:8d:83:89:2c:ce:8b:24:22:5b: a6:7f:3c:ac:89:90:3a:5d:4b:cc:7f:57:0f:79:72:aa:b2:22: c4:df:4e:51:38:22:c9:d1:b8:6c:a0:79:63:f5:7f:40:81:d5: 54:14:f6:e2:dd:2b:2e:80:51:c0:c9:8f:12:ae:12:ce:63:8e: 49:2d:e9:95:19:5e:4f:bc:69:a8:32:db:a7:40:d6:0e:11:c2: 74:39:a1:15:67:54:ab:1c:8c:ca:4b:ba:0a:7f:a5:69:9d:f0: ae:e8:3a:e8:95:ad:d7:b2:9e:df:42:c9:2c:1a:98:fc:26:17: 5e:96:9d:fc:b5:08:88:50:88:85:37:96:f9:66:85:65:be:ec: a4:3a:26:b1:f5:dd:c4:d1:40:7e:59:e1:34:1e:de:0c:a2:76: e1:65:07:4b:35:95:c5:1f:62:4f:44:b5:8d:40:f7:30:da:0f: 68:6c:c0:b3:55:58:ba:ef:d2:7a:6d:f2:2d:26:8a:24:e5:ad: 5b:eb:2a:8a:5b:27:8b:36:e4:a4:2d:37:33:e4:35:08:9b:bb: 09:55:45:ac:d4:03:66:9a:f6:77:b5:f7:12:e9:f3:07:01:cb: 96:17:5f:28:eb:9c:ee:70:96:3c:ca:c6:78:90:03:00:9c:4a: 0b:5c:0c:9c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXoZ09DZJWD9MnylCDy/J1/74RVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKDY2NzVERDQyN0Q4OTAzOEMzMzYyODNDRTdBQkQ4M0Q4QzYxMTJGRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5DvnhAQnUHYCftzcL2yyUv0OG 4LqWPdFDaUd/qiTfmIX7okGEuO60Yxjh1JR1MdCMB54qd0ufse96aqHV15C3ZlAN g63J6Ff7gojEELyD/amHbBeBT5MWxXMsykPJp538F/cbzrJdC26DKPEuewYWW4+i d1hs1eBvfW1LoaGyciuvYvRYFUIjH/5jKsLW5EsoTjNOBgIsJMw2AJ7bGVlvhdv8 4MNnhAz3eYH3SdW57v6s1RFam98VofTzP8y6NQ1XuRag0akEzjO0k0DSoEMoEV50 h0qp31U0ibBfATj6UOLn9gD8uf5RAG/+Gdj0DprHrLpZpN2YT2QwK5TPIOdbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZnXdQn2JA4wzYoPOer2D2MYRL9cwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODAwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKIwDQYJKoZIhvcNAQELBQADggEBALrV R+l/yTtHvo2DiSzOiyQiW6Z/PKyJkDpdS8x/Vw95cqqyIsTfTlE4IsnRuGygeWP1 f0CB1VQU9uLdKy6AUcDJjxKuEs5jjkkt6ZUZXk+8aagy26dA1g4RwnQ5oRVnVKsc jMpLugp/pWmd8K7oOuiVrdeynt9CySwamPwmF16Wnfy1CIhQiIU3lvlmhWW+7KQ6 JrH13cTRQH5Z4TQe3gyiduFlB0s1lcUfYk9EtY1A9zDaD2hswLNVWLrv0npt8i0m iiTlrVvrKopbJ4s25KQtNzPkNQibuwlVRazUA2aa9ne19xLp8wcBy5YXXyjrnO5w ljzKxniQAwCcSgtcDJw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org