$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200840.roa File: AS200840.roa (raw, json) Hash identifier: g0+BIfrMLw/v2Pv4UBe0ZfDFHe/AcWwjJ6nEhTBBVsA= Subject key identifier: 26:24:DC:3F:23:FC:4B:70:99:AB:23:D0:46:9E:AA:22:F7:32:B6:F5 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6283653853F03EAFB3CEF3A256D60A479729872F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200840.roa Signing time: Sun 06 Oct 2024 04:44:57 +0000 ROA not before: Sun 06 Oct 2024 04:39:57 +0000 ROA not after: Sun 05 Oct 2025 04:44:57 +0000 asID: 200840 IP address blocks: 2a0a:6040:c400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:83:65:38:53:f0:3e:af:b3:ce:f3:a2:56:d6:0a:47:97:29:87:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:57 2024 GMT Not After : Oct 5 04:44:57 2025 GMT Subject: CN=2624DC3F23FC4B7099AB23D0469EAA22F732B6F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b8:a5:5d:74:ce:51:76:59:51:c9:8e:9b:f0: 86:5c:2e:51:46:17:f4:25:ee:cd:bf:67:de:bf:d5: 54:68:f2:89:15:6d:40:3f:31:9c:8d:9f:3c:d0:95: 72:8f:d0:0c:be:7b:ef:ae:86:8a:ee:3e:d0:c7:1e: 74:66:f9:b4:1c:14:6a:b9:32:f9:75:88:ef:21:87: 10:54:69:82:6d:cb:5e:19:3a:96:a7:a1:e0:aa:b3: 77:ac:c6:94:d0:7b:e9:a7:3e:52:c3:13:44:11:7f: 10:c3:97:b3:71:b3:aa:55:13:b2:05:10:83:17:80: 5a:c8:3b:da:bb:18:43:1f:94:27:b5:ff:7c:aa:84: 7b:20:47:c8:81:d2:e4:fc:a3:c1:8e:cb:f7:76:11: c6:b0:48:f8:7b:6b:41:df:f1:dc:30:08:7d:d3:ff: 23:4b:59:73:49:a5:64:af:e0:8d:c3:af:a7:8d:2c: 0a:30:19:74:2f:c2:41:85:ca:06:da:32:e4:15:b0: e6:e7:03:4a:2a:f5:96:33:b0:d1:58:3a:11:32:c6: 8e:81:af:59:c2:1a:09:e6:ee:11:92:1c:da:a7:46: 9f:f1:12:af:5f:e4:2b:58:6a:0f:c0:ee:36:5d:76: 45:62:80:95:8a:a3:f5:04:e3:6c:fb:44:d9:95:45: 42:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:24:DC:3F:23:FC:4B:70:99:AB:23:D0:46:9E:AA:22:F7:32:B6:F5 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c400::/40 Signature Algorithm: sha256WithRSAEncryption 8c:a9:d0:63:89:f1:c8:19:89:89:4d:25:b6:33:e3:ca:66:65: e0:74:ba:ec:f6:8d:01:64:e8:a9:bb:f5:50:ac:54:8b:da:d2: c2:95:f9:2a:ce:19:ac:e2:a4:5a:c4:d3:1f:3e:24:bc:0c:c9: 93:6d:5b:a0:df:d9:47:b8:a0:2b:79:b0:28:a6:c0:c5:57:e7: d1:40:fa:33:8b:10:91:72:77:57:e8:a7:86:b0:da:f4:59:08: 1e:ef:d1:f6:41:89:d6:a3:49:4a:97:fb:da:18:45:e4:9a:5d: ae:61:45:b9:7b:a1:69:a8:4b:3d:7e:65:5b:9b:7d:73:a3:35: 9c:71:f8:75:d0:f5:f6:82:10:bb:29:88:15:ac:99:87:52:69: ae:2f:d8:92:d2:86:d8:1c:0f:cc:1b:32:5c:ad:c2:15:60:91: 3e:f0:fd:29:5e:74:2d:e4:97:e1:ef:ac:4f:2b:a9:71:14:5c: e9:b6:e3:cc:a1:bd:d5:3e:2b:8f:c6:7c:a2:5f:0e:32:67:bd: e7:f2:bd:dd:54:4c:56:73:80:5c:db:aa:5a:d7:5f:33:71:42: 97:d8:e8:ba:1f:39:8e:9e:9c:96:1f:68:d2:e5:cd:95:4a:01: 5d:f6:14:c0:3c:d4:b3:03:99:1d:e7:8d:c2:ae:1d:22:3e:51: 9e:57:7b:01 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYoNlOFPwPq+zzvOiVtYKR5cphy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTdaFw0yNTEwMDUwNDQ0NTdaMDMxMTAvBgNV BAMTKDI2MjREQzNGMjNGQzRCNzA5OUFCMjNEMDQ2OUVBQTIyRjczMkI2RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxuKVddM5RdllRyY6b8IZcLlFG F/Ql7s2/Z96/1VRo8okVbUA/MZyNnzzQlXKP0Ay+e++uhoruPtDHHnRm+bQcFGq5 Mvl1iO8hhxBUaYJty14ZOpanoeCqs3esxpTQe+mnPlLDE0QRfxDDl7Nxs6pVE7IF EIMXgFrIO9q7GEMflCe1/3yqhHsgR8iB0uT8o8GOy/d2EcawSPh7a0Hf8dwwCH3T /yNLWXNJpWSv4I3Dr6eNLAowGXQvwkGFygbaMuQVsObnA0oq9ZYzsNFYOhEyxo6B r1nCGgnm7hGSHNqnRp/xEq9f5CtYag/A7jZddkVigJWKo/UE42z7RNmVRUINAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJiTcPyP8S3CZqyPQRp6qIvcytvUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMQwDQYJKoZIhvcNAQELBQADggEBAIyp 0GOJ8cgZiYlNJbYz48pmZeB0uuz2jQFk6Km79VCsVIva0sKV+SrOGazipFrE0x8+ JLwMyZNtW6Df2Ue4oCt5sCimwMVX59FA+jOLEJFyd1fop4aw2vRZCB7v0fZBidaj SUqX+9oYReSaXa5hRbl7oWmoSz1+ZVubfXOjNZxx+HXQ9faCELspiBWsmYdSaa4v 2JLShtgcD8wbMlytwhVgkT7w/SledC3kl+HvrE8rqXEUXOm248yhvdU+K4/GfKJf DjJnvefyvd1UTFZzgFzbqlrXXzNxQpfY6LofOY6enJYfaNLlzZVKAV32FMA81LMD mR3njcKuHSI+UZ5XewE= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org