$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200895.roa File: AS200895.roa (raw, json) Hash identifier: a9uahW/NsZU75PI7quVBEhHph6oQgWXfpX9roW37htc= Subject key identifier: 3C:6F:E7:92:E7:A6:3E:09:62:DC:56:7A:79:33:F1:23:E7:02:36:7F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1C18783E4010AC61DC19AD1687C3161A42F1D75A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200895.roa Signing time: Sun 06 Oct 2024 04:45:09 +0000 ROA not before: Sun 06 Oct 2024 04:40:09 +0000 ROA not after: Sun 05 Oct 2025 04:45:09 +0000 asID: 200895 IP address blocks: 2a0a:6040:d700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:18:78:3e:40:10:ac:61:dc:19:ad:16:87:c3:16:1a:42:f1:d7:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:09 2024 GMT Not After : Oct 5 04:45:09 2025 GMT Subject: CN=3C6FE792E7A63E0962DC567A7933F123E702367F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fe:9a:35:93:6f:14:d2:7f:fa:fe:8d:3e:0d: e3:f7:a7:6e:8e:29:e1:0e:3d:db:75:5d:b0:06:ae: 56:67:1e:34:75:59:dc:1d:3e:80:5c:25:6f:83:38: ef:d0:1f:51:d4:7a:0b:af:49:3c:b9:da:8b:c8:77: bd:d4:63:a9:46:a2:ed:ef:fd:f9:cf:f2:95:64:19: 7a:82:cd:d9:a9:c9:40:f3:49:ee:4c:a9:91:d5:15: ec:fc:ec:1d:1c:89:11:4f:dc:fd:7f:ad:55:af:4b: 2e:53:23:ea:32:55:89:8b:3c:9d:e6:ed:40:b1:46: f1:a3:37:97:20:3c:91:60:bd:63:ba:7d:ca:68:71: 94:c2:75:4a:2b:38:b6:bb:cd:06:c6:53:82:20:97: 3c:e5:b4:fd:7e:45:3f:bf:8f:8b:12:f7:18:00:1b: 45:cd:b1:68:9b:37:ce:ca:f7:c5:32:56:e7:93:e1: b5:79:3e:94:45:15:e9:f9:69:a6:3d:b1:ff:54:c0: de:3f:13:23:58:ac:d8:e6:30:ce:5d:f4:d0:9d:f4: 3e:ab:08:d2:64:87:e7:37:75:10:ec:33:e1:9d:c3: 47:9a:fc:18:5c:10:89:2a:21:c4:d8:5e:00:ca:0b: 5c:31:7e:29:c9:1f:95:70:51:a9:1d:78:8c:63:27: 9a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:6F:E7:92:E7:A6:3E:09:62:DC:56:7A:79:33:F1:23:E7:02:36:7F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200895.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d700::/40 Signature Algorithm: sha256WithRSAEncryption 7e:32:3f:76:ca:79:03:3e:32:ba:e4:d5:5e:b8:0f:e7:9a:c9: 58:0f:89:c6:23:a3:f4:1e:b9:6e:86:93:48:3b:b0:6e:84:fd: 93:56:68:25:45:f4:da:76:83:ea:ae:8e:4b:55:7f:c6:d0:5b: d1:03:53:7c:95:3f:11:d5:8c:de:af:17:3e:fa:7d:be:03:ff: 34:1a:b3:ad:83:27:5d:1b:e4:10:e5:d4:ab:a1:98:3c:48:a9: c2:6f:50:94:5f:5a:aa:f8:a4:9d:55:5f:5e:1a:c8:a8:4f:9e: 29:f4:32:f4:84:6e:5e:95:5d:f3:ff:6f:a7:8b:bd:1d:04:a1: 77:fb:d6:38:5a:4b:c9:b4:9f:d7:27:98:55:9e:96:82:57:89: a4:c1:66:88:35:2f:3f:88:53:1c:16:e1:a8:d4:db:e4:a4:b9: 19:be:a3:5d:ac:43:ea:ba:5d:64:c8:9f:7e:ac:61:56:17:a4: 16:bb:5b:4b:0c:a7:d7:9e:9d:19:d5:a4:ec:c6:d9:cb:3a:de: bb:6f:a5:49:84:b3:36:3b:a3:40:29:ff:7d:78:bb:26:99:0d: 1b:f1:82:16:81:47:36:45:94:bb:65:d3:4c:d4:df:73:d1:84: c4:9f:8f:71:36:6b:44:b0:25:23:f3:15:fd:26:77:f1:0e:12: ec:b4:0f:e5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHBh4PkAQrGHcGa0Wh8MWGkLx11owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDlaFw0yNTEwMDUwNDQ1MDlaMDMxMTAvBgNV BAMTKDNDNkZFNzkyRTdBNjNFMDk2MkRDNTY3QTc5MzNGMTIzRTcwMjM2N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ/po1k28U0n/6/o0+DeP3p26O KeEOPdt1XbAGrlZnHjR1WdwdPoBcJW+DOO/QH1HUeguvSTy52ovId73UY6lGou3v /fnP8pVkGXqCzdmpyUDzSe5MqZHVFez87B0ciRFP3P1/rVWvSy5TI+oyVYmLPJ3m 7UCxRvGjN5cgPJFgvWO6fcpocZTCdUorOLa7zQbGU4IglzzltP1+RT+/j4sS9xgA G0XNsWibN87K98UyVueT4bV5PpRFFen5aaY9sf9UwN4/EyNYrNjmMM5d9NCd9D6r CNJkh+c3dRDsM+Gdw0ea/BhcEIkqIcTYXgDKC1wxfinJH5VwUakdeIxjJ5rnAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUPG/nkuemPgli3FZ6eTPxI+cCNn8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODk1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNcwDQYJKoZIhvcNAQELBQADggEBAH4y P3bKeQM+Mrrk1V64D+eayVgPicYjo/QeuW6Gk0g7sG6E/ZNWaCVF9Np2g+qujktV f8bQW9EDU3yVPxHVjN6vFz76fb4D/zQas62DJ10b5BDl1KuhmDxIqcJvUJRfWqr4 pJ1VX14ayKhPnin0MvSEbl6VXfP/b6eLvR0EoXf71jhaS8m0n9cnmFWeloJXiaTB Zog1Lz+IUxwW4ajU2+SkuRm+o12sQ+q6XWTIn36sYVYXpBa7W0sMp9eenRnVpOzG 2cs63rtvpUmEszY7o0Ap/314uyaZDRvxghaBRzZFlLtl00zU33PRhMSfj3E2a0Sw JSPzFf0md/EOEuy0D+U= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org