$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200885.roa File: AS200885.roa (raw, json) Hash identifier: dDzDMeim2TkCcmQiRTrvfwlTFKZCoAFbfB4uRAg6jCk= Subject key identifier: 4B:71:F5:CC:7A:71:8F:D5:BB:51:14:8D:FE:D4:9C:AC:25:9A:73:2B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0C9FEC50665546EF7B9270D5005133CED31F02E3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200885.roa Signing time: Sun 06 Oct 2024 04:45:20 +0000 ROA not before: Sun 06 Oct 2024 04:40:20 +0000 ROA not after: Sun 05 Oct 2025 04:45:20 +0000 asID: 200885 IP address blocks: 2a0a:6040:ea00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:9f:ec:50:66:55:46:ef:7b:92:70:d5:00:51:33:ce:d3:1f:02:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:20 2024 GMT Not After : Oct 5 04:45:20 2025 GMT Subject: CN=4B71F5CC7A718FD5BB51148DFED49CAC259A732B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6a:b6:f4:83:dd:7b:5c:5f:c6:e7:24:8a:35: b8:68:4c:0c:8c:d3:8a:61:d9:5c:48:4f:8a:d8:25: 1d:a7:a8:06:bd:5a:93:21:fb:50:e4:38:80:d0:59: 1d:fd:55:1d:f9:b1:99:de:65:0c:66:bd:33:1a:12: 1d:0b:d7:db:79:2a:4b:fd:77:75:87:24:47:cd:38: 9f:7d:e1:cb:7b:67:05:02:53:66:8a:8e:a9:ab:82: bd:71:c7:27:9a:ad:49:ab:5b:7b:0b:79:e6:7f:71: a2:36:21:4a:0a:b2:52:ac:de:2c:a5:09:13:12:ae: 22:39:57:5e:0f:15:18:e8:4e:bb:d3:69:8d:02:de: eb:6b:d4:db:cd:3c:27:e4:a0:2b:71:6b:75:3d:c3: d3:da:28:ce:42:ce:eb:38:3d:8d:e7:85:85:71:31: fb:d7:02:fa:b5:3d:75:3e:06:a8:01:ee:a6:bf:05: de:a1:ee:96:2c:cb:cd:46:d2:10:51:eb:a2:67:db: 8a:d7:64:d0:f9:93:56:b3:3f:9f:60:ed:c4:1e:1a: 79:eb:91:2e:8b:43:78:02:81:d0:7c:f0:2f:4b:bb: ed:82:29:53:4f:ee:09:3f:17:0f:f7:fd:f4:d4:34: 4d:bb:c3:ea:52:13:9b:ac:57:23:3a:78:19:6e:fb: b7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:71:F5:CC:7A:71:8F:D5:BB:51:14:8D:FE:D4:9C:AC:25:9A:73:2B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200885.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 62:2c:66:d5:34:26:49:f8:7c:a5:01:14:a5:d6:5d:20:1c:3e: c7:b4:4d:80:59:2b:6a:d9:47:74:ce:70:3f:58:55:8e:15:54: de:73:98:0e:0e:05:88:35:13:b0:7f:a6:5c:01:02:ed:23:35: c4:57:97:58:c0:42:df:39:82:c2:43:92:4d:5c:1b:44:82:26: c9:9f:93:03:57:8c:bf:ca:6c:ca:a2:a1:b4:83:c4:40:dd:17: 8d:3e:bd:ed:cc:2b:29:b9:24:80:71:68:f4:ad:7c:03:02:7c: b4:ef:cb:84:82:cc:94:db:f9:fe:d5:8b:3e:65:60:c6:b9:3d: 0b:82:cc:da:92:ca:65:ac:18:da:8f:d4:bb:23:47:f5:b5:c7: bb:44:69:39:4b:96:dd:6c:a0:c5:8d:97:97:90:d9:53:5b:26: 1d:ad:ab:c4:a5:d4:83:a0:5c:dc:b7:38:56:6d:02:9d:e7:a8: c0:01:94:21:e7:b0:1f:0d:b5:8e:3e:be:f5:53:d4:49:cf:a3: 36:65:99:bc:c2:9c:5d:42:d2:91:d9:bc:8f:55:05:87:03:51: 18:be:0c:6e:ba:93:4a:dc:7c:99:f9:4b:33:a6:0e:95:14:0d: 42:f0:66:31:37:36:4e:f8:60:00:9d:39:63:6b:eb:ac:37:86: f3:a9:a5:4c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDJ/sUGZVRu97knDVAFEzztMfAuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMjBaFw0yNTEwMDUwNDQ1MjBaMDMxMTAvBgNV BAMTKDRCNzFGNUNDN0E3MThGRDVCQjUxMTQ4REZFRDQ5Q0FDMjU5QTczMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLarb0g917XF/G5ySKNbhoTAyM 04ph2VxIT4rYJR2nqAa9WpMh+1DkOIDQWR39VR35sZneZQxmvTMaEh0L19t5Kkv9 d3WHJEfNOJ994ct7ZwUCU2aKjqmrgr1xxyearUmrW3sLeeZ/caI2IUoKslKs3iyl CRMSriI5V14PFRjoTrvTaY0C3utr1NvNPCfkoCtxa3U9w9PaKM5Czus4PY3nhYVx MfvXAvq1PXU+BqgB7qa/Bd6h7pYsy81G0hBR66Jn24rXZND5k1azP59g7cQeGnnr kS6LQ3gCgdB88C9Lu+2CKVNP7gk/Fw/3/fTUNE27w+pSE5usVyM6eBlu+7f7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUS3H1zHpxj9W7URSN/tScrCWacyswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODg1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOowDQYJKoZIhvcNAQELBQADggEBAGIs ZtU0Jkn4fKUBFKXWXSAcPse0TYBZK2rZR3TOcD9YVY4VVN5zmA4OBYg1E7B/plwB Au0jNcRXl1jAQt85gsJDkk1cG0SCJsmfkwNXjL/KbMqiobSDxEDdF40+ve3MKym5 JIBxaPStfAMCfLTvy4SCzJTb+f7Viz5lYMa5PQuCzNqSymWsGNqP1LsjR/W1x7tE aTlLlt1soMWNl5eQ2VNbJh2tq8Sl1IOgXNy3OFZtAp3nqMABlCHnsB8NtY4+vvVT 1EnPozZlmbzCnF1C0pHZvI9VBYcDURi+DG66k0rcfJn5SzOmDpUUDULwZjE3Nk74 YACdOWNr66w3hvOppUw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org