$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200879.roa File: AS200879.roa (raw, json) Hash identifier: WMeemNiRqGfHq8GUX0Yx1LbUchikGN/yyvpjl6gLiik= Subject key identifier: CC:E5:C0:FF:D2:AA:DD:D6:7E:3F:D8:AA:0C:4F:F3:D1:AD:58:D7:71 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 35EC672F4ACCF13A746A4BC984CAF44C21DC934D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200879.roa Signing time: Sun 06 Oct 2024 04:45:15 +0000 ROA not before: Sun 06 Oct 2024 04:40:15 +0000 ROA not after: Sun 05 Oct 2025 04:45:15 +0000 asID: 200879 IP address blocks: 2a0a:6040:f200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ec:67:2f:4a:cc:f1:3a:74:6a:4b:c9:84:ca:f4:4c:21:dc:93:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:15 2024 GMT Not After : Oct 5 04:45:15 2025 GMT Subject: CN=CCE5C0FFD2AADDD67E3FD8AA0C4FF3D1AD58D771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ad:00:28:85:56:bc:7b:6e:9c:69:8c:a7:d6: 79:7f:d8:f9:da:a8:32:36:09:92:79:71:65:1d:35: e9:df:44:e9:de:9b:60:d3:ec:ae:51:0e:e5:98:6d: 7f:6e:c6:63:aa:34:ba:1d:d5:5a:98:14:13:f5:72: 29:ab:aa:c4:94:63:d7:73:fc:73:64:9b:88:23:8c: 9b:35:34:d7:ee:b1:a7:2e:cb:7e:12:60:7e:f0:2f: bd:b7:3a:dc:42:d1:00:91:73:29:dc:64:51:17:d1: bf:1b:7a:f3:9d:d3:d6:51:1a:fb:ad:98:f0:05:c0: 67:fe:5b:ac:d2:56:32:14:8c:4b:d3:5f:07:d8:93: c5:3c:83:70:86:2a:7e:40:fe:b9:c8:1d:30:96:74: 09:b3:19:6d:58:d4:ef:a2:df:ff:e4:d0:b8:1e:84: e4:2d:2b:43:37:69:c8:e6:7f:ea:dc:65:3e:68:f5: b2:72:f8:94:3a:20:2c:7a:66:9b:ab:a3:22:f5:c2: 30:2e:3c:7f:1f:0e:1a:cf:db:bf:e0:9a:51:71:67: 72:6b:d1:da:a8:5f:a3:a5:1b:da:8a:1c:24:24:9f: 25:5e:6a:40:c9:79:37:5a:e3:c5:5c:02:a4:e5:ce: 3a:51:6d:c1:c8:20:0a:29:0f:18:51:b4:dc:2e:27: 72:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E5:C0:FF:D2:AA:DD:D6:7E:3F:D8:AA:0C:4F:F3:D1:AD:58:D7:71 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200879.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f200::/40 Signature Algorithm: sha256WithRSAEncryption bb:dc:36:fd:5f:f6:ce:c1:29:79:39:04:cf:af:4d:24:8d:d1: b0:95:a9:ad:53:b6:00:e9:3f:1b:04:1d:0c:3c:d4:c6:21:f3: 30:af:0d:24:9b:ca:28:82:6b:74:f8:64:08:74:39:f1:c2:90: 22:04:7e:95:b3:e7:ca:2b:8a:08:92:74:74:bc:70:20:f5:2d: 5e:85:f2:9f:e1:7e:5b:e0:9a:c9:10:28:66:0b:b2:02:b9:f6: fe:90:01:9b:73:c8:d8:ca:1f:90:8d:10:9e:2c:4b:37:49:09: fc:69:05:2a:fe:82:f1:19:18:ad:40:f3:9a:20:25:aa:61:23: 6c:0a:7d:ba:33:04:59:93:d2:2f:df:ad:4c:37:90:ac:a3:10: 7b:7e:e1:27:c7:38:bf:fe:02:5b:1e:f8:1e:8a:ce:61:ab:8b: 08:b0:cd:bd:78:2d:d5:b1:04:46:52:48:da:e3:01:f6:04:d9: e9:7f:69:70:ba:9a:5b:d3:bd:32:d3:13:87:1f:58:09:4b:12: 5b:4a:8d:46:b5:c7:d3:ec:f9:70:65:af:62:d7:f7:08:d3:e9: fa:54:5b:1a:4c:d7:1a:b6:af:3f:43:aa:c6:12:22:74:7a:b1: cc:c3:02:20:bf:80:9a:65:21:61:c9:e3:79:12:d1:58:15:fb: db:33:42:30 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNexnL0rM8Tp0akvJhMr0TCHck00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTVaFw0yNTEwMDUwNDQ1MTVaMDMxMTAvBgNV BAMTKENDRTVDMEZGRDJBQURERDY3RTNGRDhBQTBDNEZGM0QxQUQ1OEQ3NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsrQAohVa8e26caYyn1nl/2Pna qDI2CZJ5cWUdNenfROnem2DT7K5RDuWYbX9uxmOqNLod1VqYFBP1cimrqsSUY9dz /HNkm4gjjJs1NNfusacuy34SYH7wL723OtxC0QCRcyncZFEX0b8bevOd09ZRGvut mPAFwGf+W6zSVjIUjEvTXwfYk8U8g3CGKn5A/rnIHTCWdAmzGW1Y1O+i3//k0Lge hOQtK0M3acjmf+rcZT5o9bJy+JQ6ICx6ZpuroyL1wjAuPH8fDhrP27/gmlFxZ3Jr 0dqoX6OlG9qKHCQknyVeakDJeTda48VcAqTlzjpRbcHIIAopDxhRtNwuJ3IJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUzOXA/9Kq3dZ+P9iqDE/z0a1Y13EwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPIwDQYJKoZIhvcNAQELBQADggEBALvc Nv1f9s7BKXk5BM+vTSSN0bCVqa1TtgDpPxsEHQw81MYh8zCvDSSbyiiCa3T4ZAh0 OfHCkCIEfpWz58origiSdHS8cCD1LV6F8p/hflvgmskQKGYLsgK59v6QAZtzyNjK H5CNEJ4sSzdJCfxpBSr+gvEZGK1A85ogJaphI2wKfbozBFmT0i/frUw3kKyjEHt+ 4SfHOL/+Alse+B6KzmGriwiwzb14LdWxBEZSSNrjAfYE2el/aXC6mlvTvTLTE4cf WAlLEltKjUa1x9Ps+XBlr2LX9wjT6fpUWxpM1xq2rz9DqsYSInR6sczDAiC/gJpl IWHJ43kS0VgV+9szQjA= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org