$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200890.roa File: AS200890.roa (raw, json) Hash identifier: xWYELlo5LQn+fegeYk4OSpXzKxL9u51BLJ5F4SokvsM= Subject key identifier: 15:B0:ED:11:D4:FB:96:D9:26:C7:CE:EC:1E:E0:46:E5:6B:7F:AF:CA Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 43F08E2270F3DE8FFD24EE57286D19C2C66EC90A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200890.roa Signing time: Sun 06 Oct 2024 04:44:58 +0000 ROA not before: Sun 06 Oct 2024 04:39:58 +0000 ROA not after: Sun 05 Oct 2025 04:44:58 +0000 asID: 200890 IP address blocks: 2a0a:6040:d400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:f0:8e:22:70:f3:de:8f:fd:24:ee:57:28:6d:19:c2:c6:6e:c9:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:58 2024 GMT Not After : Oct 5 04:44:58 2025 GMT Subject: CN=15B0ED11D4FB96D926C7CEEC1EE046E56B7FAFCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:b7:59:9f:40:92:d1:33:b7:58:a0:e6:d8: 84:f0:c6:aa:23:d9:25:5c:f9:cc:2f:32:cd:08:a1: 02:78:fd:fd:88:75:e1:5c:7d:e1:61:03:0f:09:d1: af:a9:f5:62:a9:82:e2:e9:87:fc:d7:77:05:77:2e: be:82:0c:c3:75:34:6d:ac:ed:3b:b6:f9:92:0f:3d: 34:f5:33:78:53:07:76:63:bf:fa:06:f4:70:51:27: 9b:89:86:40:44:be:d7:7f:71:a9:16:c5:cf:23:16: 2d:ed:89:74:4a:04:fb:08:2c:3f:05:22:cc:55:25: 8f:b3:34:b1:80:92:a9:fd:3e:c4:1c:e8:b6:c9:53: 1f:db:7f:bb:e4:50:63:78:a9:d8:3c:d0:f0:e7:ef: 23:8e:3b:3e:a7:81:59:3e:35:a9:5b:5d:6f:99:be: ed:f2:e1:e3:75:b6:1e:d7:be:4a:a4:0b:c9:9b:f9: 0e:a3:dc:63:c8:dd:5d:e2:d5:93:92:85:e2:e5:42: 35:a9:a8:96:6e:5a:ef:96:52:30:f1:6d:b4:86:fc: fc:e3:d2:c3:50:bb:db:4b:2d:fd:03:3f:94:4b:48: f0:57:d1:83:6b:1b:8e:ea:00:36:69:2f:9e:c1:c0: 76:95:cb:a7:af:7a:38:f6:a7:86:f2:ce:ec:c7:be: 35:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B0:ED:11:D4:FB:96:D9:26:C7:CE:EC:1E:E0:46:E5:6B:7F:AF:CA X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200890.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d400::/40 Signature Algorithm: sha256WithRSAEncryption 64:f8:3a:58:e8:6a:70:26:80:e7:f5:f7:ff:79:8c:fd:54:ed: ac:a1:fb:a7:9d:d0:e8:b9:c0:fa:55:52:ac:f7:64:3f:db:e0: f1:1f:2d:ed:25:42:92:77:6c:9b:9b:38:43:62:ab:e8:66:66: bd:a3:ec:d4:66:50:ec:77:11:59:5a:35:69:7c:7b:e3:92:07: a3:28:8b:51:55:ef:b7:18:5c:ef:d6:63:48:2d:ef:43:e2:a9: 14:74:49:80:08:24:38:2b:78:4b:a7:fa:f1:9f:f4:5d:63:e3: 32:58:53:6d:29:e6:ac:78:52:37:54:2f:40:71:d9:95:46:b8: b6:29:ce:e4:6b:db:fc:0a:37:23:df:d6:79:32:91:cf:13:a1: bd:7d:a2:20:49:08:f6:bc:ec:a4:eb:94:25:db:bd:51:78:bf: ee:68:a4:b0:3f:b9:ef:cf:29:5f:15:56:8f:c0:88:c2:87:fe: ae:8b:3a:76:31:b3:b4:9d:ea:b9:d1:8b:66:1b:7f:1a:f7:e0: 8e:e5:41:8c:71:cd:d3:5c:57:eb:a9:15:e7:98:2c:c3:6e:d2: 74:5c:dd:e3:fb:af:50:af:d4:17:1c:ad:a0:54:bd:8d:89:26: 05:16:3a:35:22:92:79:26:b5:cf:28:f7:7c:4d:70:86:43:07: 0b:62:ce:f7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQ/COInDz3o/9JO5XKG0ZwsZuyQowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NThaFw0yNTEwMDUwNDQ0NThaMDMxMTAvBgNV BAMTKDE1QjBFRDExRDRGQjk2RDkyNkM3Q0VFQzFFRTA0NkU1NkI3RkFGQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0RrdZn0CS0TO3WKDm2ITwxqoj 2SVc+cwvMs0IoQJ4/f2IdeFcfeFhAw8J0a+p9WKpguLph/zXdwV3Lr6CDMN1NG2s 7Tu2+ZIPPTT1M3hTB3Zjv/oG9HBRJ5uJhkBEvtd/cakWxc8jFi3tiXRKBPsILD8F IsxVJY+zNLGAkqn9PsQc6LbJUx/bf7vkUGN4qdg80PDn7yOOOz6ngVk+NalbXW+Z vu3y4eN1th7XvkqkC8mb+Q6j3GPI3V3i1ZOSheLlQjWpqJZuWu+WUjDxbbSG/Pzj 0sNQu9tLLf0DP5RLSPBX0YNrG47qADZpL57BwHaVy6evejj2p4byzuzHvjUPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFbDtEdT7ltkmx87sHuBG5Wt/r8owHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODkwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNQwDQYJKoZIhvcNAQELBQADggEBAGT4 OljoanAmgOf19/95jP1U7ayh+6ed0Oi5wPpVUqz3ZD/b4PEfLe0lQpJ3bJubOENi q+hmZr2j7NRmUOx3EVlaNWl8e+OSB6Moi1FV77cYXO/WY0gt70PiqRR0SYAIJDgr eEun+vGf9F1j4zJYU20p5qx4UjdUL0Bx2ZVGuLYpzuRr2/wKNyPf1nkykc8Tob19 oiBJCPa87KTrlCXbvVF4v+5opLA/ue/PKV8VVo/AiMKH/q6LOnYxs7Sd6rnRi2Yb fxr34I7lQYxxzdNcV+upFeeYLMNu0nRc3eP7r1Cv1BccraBUvY2JJgUWOjUiknkm tc8o93xNcIZDBwtizvc= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org