$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200866.roa File: AS200866.roa (raw, json) Hash identifier: hJvzq+jiEmUlmNpTB+uRHFcFKbnnBLQhNeOy0h11fFo= Subject key identifier: 11:47:0B:E6:54:38:BF:C5:57:C7:AD:CA:F1:35:21:DB:5A:43:AB:2F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6207802B25050662515B078C71D06C418F93C550 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200866.roa Signing time: Thu 19 Dec 2024 10:01:51 +0000 ROA not before: Thu 19 Dec 2024 09:56:51 +0000 ROA not after: Thu 18 Dec 2025 10:01:51 +0000 asID: 200866 IP address blocks: 2a0a:6040:d200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:07:80:2b:25:05:06:62:51:5b:07:8c:71:d0:6c:41:8f:93:c5:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Dec 19 09:56:51 2024 GMT Not After : Dec 18 10:01:51 2025 GMT Subject: CN=11470BE65438BFC557C7ADCAF13521DB5A43AB2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:03:dc:e6:dc:ac:d3:22:bd:3a:30:3f:b7: d1:65:7b:84:3d:17:71:5a:d1:58:74:b1:d5:7e:1b: f3:0e:ac:1c:99:36:c0:2b:7e:4a:2d:4e:eb:d7:07: fe:4d:26:44:2b:56:09:7a:5b:f1:db:bc:f5:b3:c3: 8f:a1:25:57:9e:db:5b:09:57:a9:06:67:f9:3b:af: 81:5e:35:e1:d6:93:ce:9d:2f:84:e7:1f:33:5f:d3: 1f:8e:f2:ce:ef:f9:97:1a:ab:3e:be:84:13:f7:03: 06:37:0d:12:00:fd:cc:43:87:f6:47:b1:d8:85:7b: ae:b6:d3:5b:8a:36:48:1f:88:7d:96:2f:25:67:25: eb:5c:2e:ab:4e:0b:d2:90:70:93:e1:4a:15:bf:ba: eb:39:f1:bd:21:f4:a0:bb:d8:75:0f:2d:61:ca:0a: 39:fe:40:0d:2d:7e:3d:28:93:f7:e9:ca:a9:b1:b4: 8b:5f:1b:a9:c6:b9:15:3a:f8:e6:cb:cc:0b:99:9c: 03:83:e6:2b:82:4c:5c:09:98:c6:a6:f0:63:a7:c6: 40:29:d2:ba:7a:eb:1e:ba:c4:bd:ee:40:e8:d0:b9: 6e:56:c7:3e:f0:5a:fc:0c:30:32:fb:38:53:7b:99: f8:ba:d1:e4:73:1f:0b:97:5b:08:38:b6:db:8f:7a: 76:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:47:0B:E6:54:38:BF:C5:57:C7:AD:CA:F1:35:21:DB:5A:43:AB:2F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200866.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d200::/40 Signature Algorithm: sha256WithRSAEncryption 83:3d:ea:61:a0:96:75:e6:6c:f7:35:ad:62:d4:0f:87:db:82: 59:d6:2d:96:4e:52:e4:75:ef:d9:ad:31:ce:7e:5e:1e:09:85: 15:6f:6a:df:e9:23:b5:89:23:71:c7:1f:a8:05:58:7c:55:51: ee:b9:58:ca:c5:7c:83:29:75:ea:4f:1a:69:ea:f4:82:e3:d6: 3c:f0:59:9e:3f:9b:4c:f1:d2:69:84:1d:85:a5:34:97:03:25: 15:90:20:d6:fe:3a:a0:c7:93:a8:7e:57:cb:4f:a8:9c:01:89: ac:34:40:e5:f8:8f:81:e6:d9:ab:0d:5f:1f:8b:f9:94:65:a2: a0:a9:91:83:80:ec:6b:c9:c7:42:12:84:f0:f3:91:ce:60:40: 85:5c:1d:73:6e:17:ef:87:ef:ec:e2:50:ab:b6:95:a9:58:3e: ac:fb:17:90:87:01:4d:7b:6e:e3:d0:b6:2e:2f:a5:0e:1e:fe: db:d1:11:bd:a4:56:87:a8:a7:56:38:6f:64:2f:12:9c:95:5c: 97:3d:92:28:03:0e:2f:e2:6f:54:ff:d1:f1:99:d9:c3:58:b9: d3:22:ea:57:75:8f:7f:19:fc:93:d9:ce:ee:69:41:cb:ad:59: 46:a4:87:d9:17:c3:84:3a:18:07:5e:38:dd:54:07:b3:bf:50: 5c:44:70:63 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYgeAKyUFBmJRWweMcdBsQY+TxVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEyMTkwOTU2NTFaFw0yNTEyMTgxMDAxNTFaMDMxMTAvBgNV BAMTKDExNDcwQkU2NTQzOEJGQzU1N0M3QURDQUYxMzUyMURCNUE0M0FCMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwywPc5tys0yK9OjA/t9Fle4Q9 F3Fa0Vh0sdV+G/MOrByZNsArfkotTuvXB/5NJkQrVgl6W/HbvPWzw4+hJVee21sJ V6kGZ/k7r4FeNeHWk86dL4TnHzNf0x+O8s7v+Zcaqz6+hBP3AwY3DRIA/cxDh/ZH sdiFe66201uKNkgfiH2WLyVnJetcLqtOC9KQcJPhShW/uus58b0h9KC72HUPLWHK Cjn+QA0tfj0ok/fpyqmxtItfG6nGuRU6+ObLzAuZnAOD5iuCTFwJmMam8GOnxkAp 0rp66x66xL3uQOjQuW5Wxz7wWvwMMDL7OFN7mfi60eRzHwuXWwg4ttuPenaJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEUcL5lQ4v8VXx63K8TUh21pDqy8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNIwDQYJKoZIhvcNAQELBQADggEBAIM9 6mGglnXmbPc1rWLUD4fbglnWLZZOUuR179mtMc5+Xh4JhRVvat/pI7WJI3HHH6gF WHxVUe65WMrFfIMpdepPGmnq9ILj1jzwWZ4/m0zx0mmEHYWlNJcDJRWQINb+OqDH k6h+V8tPqJwBiaw0QOX4j4Hm2asNXx+L+ZRloqCpkYOA7GvJx0IShPDzkc5gQIVc HXNuF++H7+ziUKu2lalYPqz7F5CHAU17buPQti4vpQ4e/tvREb2kVoeop1Y4b2Qv EpyVXJc9kigDDi/ib1T/0fGZ2cNYudMi6ld1j38Z/JPZzu5pQcutWUakh9kXw4Q6 GAdeON1UB7O/UFxEcGM= -----END CERTIFICATE-----Generated at Sat Jun 7 23:36:53 2025 by rpki-client