$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200850.roa File: AS200850.roa (raw, json) Hash identifier: CghM8KxJbrIU8ob9hjn4eSg1JrtUhyjL3Eat5xR/2gM= Subject key identifier: 22:AF:4A:E2:78:84:D6:C2:27:64:26:5B:86:04:EF:A8:94:A7:CC:60 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4A0CD7EBAD8068D01686C9EB93A95172A4EA7D30 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200850.roa Signing time: Sun 06 Oct 2024 04:45:20 +0000 ROA not before: Sun 06 Oct 2024 04:40:20 +0000 ROA not after: Sun 05 Oct 2025 04:45:20 +0000 asID: 200850 IP address blocks: 2a0a:6040:800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:0c:d7:eb:ad:80:68:d0:16:86:c9:eb:93:a9:51:72:a4:ea:7d:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:20 2024 GMT Not After : Oct 5 04:45:20 2025 GMT Subject: CN=22AF4AE27884D6C22764265B8604EFA894A7CC60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a0:14:b5:a9:07:9e:3d:2c:d3:70:23:62:5d: 63:fb:f1:e7:a9:b0:4c:e0:69:d6:23:5c:52:ef:34: e6:c8:f7:f4:92:7f:90:38:c4:36:10:e8:33:8f:2f: 8f:18:d3:02:ff:65:2c:91:4c:68:2a:0c:35:72:03: 73:ba:0f:a0:13:18:d6:47:f1:fd:a5:27:3f:d5:3d: 70:13:22:a5:64:70:15:00:ee:d1:2e:65:b5:c0:1b: c8:f7:5c:20:d6:5d:9a:55:f2:82:33:35:e0:49:70: 82:20:cb:8b:9b:86:20:89:69:88:44:ea:df:56:65: 95:5f:0f:6f:00:b5:81:2b:8a:e4:f5:54:6c:d6:f4: 8a:29:bf:5c:f6:a8:36:2c:3f:31:8a:30:42:52:53: a9:ef:46:53:e8:e7:6f:56:42:51:39:06:43:ca:6e: 2b:bd:28:ca:ff:e7:f5:e4:1d:17:7d:a0:04:0f:e5: 2e:bd:1e:06:ac:24:ed:4d:cc:b2:a8:d0:55:aa:24: 36:c3:77:64:b2:2b:16:76:77:e7:a8:91:4e:c6:68: a3:92:61:ac:c9:09:2d:09:c8:44:7c:e9:4e:1d:ba: 65:7e:0e:6f:e5:4b:a1:c8:0b:3c:91:08:8c:15:52: ae:f9:f7:c6:13:5c:8a:a6:28:84:e5:5c:f3:a7:d3: 97:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AF:4A:E2:78:84:D6:C2:27:64:26:5B:86:04:EF:A8:94:A7:CC:60 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200850.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:800::/40 Signature Algorithm: sha256WithRSAEncryption 2d:f1:db:f1:17:48:dc:88:60:90:1c:1d:dc:23:a0:a9:b6:a7: 06:45:bf:f6:11:63:78:27:b5:0c:f6:d6:88:09:20:4c:71:9f: 2a:96:0c:2d:0f:e4:2b:1f:cd:85:d6:ae:71:a1:53:fb:28:06: fd:57:97:05:d0:6d:8f:d9:a4:15:74:c8:ad:d7:33:ed:1d:4a: 6e:1e:64:c0:b8:4f:8c:9f:c8:18:e5:76:0a:a8:10:6a:55:e6: 2a:cc:ef:78:21:54:9a:4c:ff:a3:ee:ae:b0:fe:ac:b0:c5:e8: 23:2b:60:c7:55:9b:f5:7a:5c:62:68:fa:07:23:16:4d:5d:4f: 37:3d:3b:44:1e:cb:2e:30:12:37:a5:07:2e:f7:78:6d:8f:31: d5:26:94:08:53:a0:3d:9e:55:c3:9a:bd:d3:1a:a4:37:a0:85: 67:53:73:a2:ee:b0:8e:ff:27:a0:f5:36:69:d1:2a:89:64:b9: f4:9c:67:e1:a1:cc:3b:17:bb:1b:42:00:12:9c:f9:c7:f9:3f: 08:00:15:eb:f7:10:bd:2f:5a:ac:31:ef:5e:15:52:cc:83:85: 6c:2a:88:d6:ff:83:fc:6f:fc:10:7a:bf:52:41:fc:65:26:bf: b8:ae:62:cb:9b:ce:e2:f1:25:e2:40:6f:14:db:a1:58:b0:e6: aa:35:e3:d6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSgzX662AaNAWhsnrk6lRcqTqfTAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMjBaFw0yNTEwMDUwNDQ1MjBaMDMxMTAvBgNV BAMTKDIyQUY0QUUyNzg4NEQ2QzIyNzY0MjY1Qjg2MDRFRkE4OTRBN0NDNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLoBS1qQeePSzTcCNiXWP78eep sEzgadYjXFLvNObI9/SSf5A4xDYQ6DOPL48Y0wL/ZSyRTGgqDDVyA3O6D6ATGNZH 8f2lJz/VPXATIqVkcBUA7tEuZbXAG8j3XCDWXZpV8oIzNeBJcIIgy4ubhiCJaYhE 6t9WZZVfD28AtYEriuT1VGzW9Iopv1z2qDYsPzGKMEJSU6nvRlPo529WQlE5BkPK biu9KMr/5/XkHRd9oAQP5S69HgasJO1NzLKo0FWqJDbDd2SyKxZ2d+eokU7GaKOS YazJCS0JyER86U4dumV+Dm/lS6HICzyRCIwVUq7598YTXIqmKITlXPOn05cFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIq9K4niE1sInZCZbhgTvqJSnzGAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODUwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAgwDQYJKoZIhvcNAQELBQADggEBAC3x 2/EXSNyIYJAcHdwjoKm2pwZFv/YRY3gntQz21ogJIExxnyqWDC0P5CsfzYXWrnGh U/soBv1XlwXQbY/ZpBV0yK3XM+0dSm4eZMC4T4yfyBjldgqoEGpV5irM73ghVJpM /6PurrD+rLDF6CMrYMdVm/V6XGJo+gcjFk1dTzc9O0Qeyy4wEjelBy73eG2PMdUm lAhToD2eVcOavdMapDeghWdTc6LusI7/J6D1NmnRKolkufScZ+GhzDsXuxtCABKc +cf5PwgAFev3EL0vWqwx714VUsyDhWwqiNb/g/xv/BB6v1JB/GUmv7iuYsubzuLx JeJAbxTboViw5qo149Y= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org