$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200907.roa File: AS200907.roa (raw, json) Hash identifier: lKSp6fazvJPOqxGWHZx8w+qbg3EOaHU7DrgWiXff+pM= Subject key identifier: F0:0A:BA:D0:D7:6E:BF:77:3A:C9:CB:93:A1:C3:B0:9E:AA:04:0A:33 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3465C95A0B2C7949826E3A2D67BA7004CA924752 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200907.roa Signing time: Sun 06 Oct 2024 04:44:56 +0000 ROA not before: Sun 06 Oct 2024 04:39:56 +0000 ROA not after: Sun 05 Oct 2025 04:44:56 +0000 asID: 200907 IP address blocks: 2a0a:6040:e100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:65:c9:5a:0b:2c:79:49:82:6e:3a:2d:67:ba:70:04:ca:92:47:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:56 2024 GMT Not After : Oct 5 04:44:56 2025 GMT Subject: CN=F00ABAD0D76EBF773AC9CB93A1C3B09EAA040A33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a6:de:33:8c:09:79:50:05:ff:13:fb:a1:ca: bc:2c:bc:57:33:d0:8a:a6:87:bf:0c:02:4e:94:5a: fc:48:54:ea:7e:20:f0:5b:c9:05:c3:70:a4:bb:53: c9:51:a3:9b:fd:d1:8c:28:f5:dc:06:1a:ed:a9:9d: 05:9b:14:0a:57:ed:ee:33:8c:8c:52:de:35:28:95: bf:a1:5c:e6:dd:23:ee:50:e1:cf:cb:0a:60:43:44: f5:4c:32:fd:aa:32:7b:cb:d0:ec:84:da:5c:73:43: d0:9d:65:25:e0:e3:ef:09:6c:ea:e5:8f:b0:57:a2: de:51:47:5a:35:37:19:1d:88:b2:2b:4b:e0:2b:3b: c4:c9:1e:58:19:ca:dc:8b:0e:3a:60:e2:be:98:66: 46:cd:9f:38:d1:06:78:29:39:ef:b0:fe:5f:9b:7c: f0:20:c3:97:b9:12:bf:41:82:7c:68:3f:6e:cc:42: c3:c5:56:ce:6b:5e:e4:ca:40:62:39:e4:c8:15:6b: e1:8b:46:aa:84:24:1b:69:e6:f6:62:8e:0b:a0:09: d0:c7:21:e0:f4:db:bb:36:d9:32:37:7d:89:d4:f5: b8:8c:51:46:f0:c0:29:11:e1:79:73:c9:ce:33:f0: 13:38:43:42:e5:88:d8:cb:3f:51:84:54:f7:ee:bc: 1f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:0A:BA:D0:D7:6E:BF:77:3A:C9:CB:93:A1:C3:B0:9E:AA:04:0A:33 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200907.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e100::/40 Signature Algorithm: sha256WithRSAEncryption 6b:75:4f:1d:e5:5b:f5:94:50:31:21:97:3b:58:9b:23:6e:09: ea:c3:ac:b2:45:ac:f6:2c:c8:db:cd:b4:14:44:44:52:a9:93: a4:29:e3:e5:4f:38:c8:b2:bf:ca:97:d9:ba:55:7b:f5:0b:d4: a6:3e:51:7b:63:d5:3e:90:fc:2d:bf:06:33:22:e6:38:bb:55: 29:34:7d:15:69:90:3b:44:28:20:55:9e:55:bc:d6:a9:0e:38: 47:b6:60:bc:26:c1:20:cf:36:3e:7a:77:41:12:bc:b3:e5:ae: 4a:99:a2:23:3f:46:7d:77:55:5a:03:f7:cc:24:c3:8a:27:18: 37:20:31:55:3b:a2:49:11:11:fd:29:ce:4d:c6:e9:6a:bb:00: 97:c1:ab:38:55:5c:4f:d9:93:93:b3:7f:fb:88:a1:96:8c:27: 61:62:43:48:b7:0e:8e:da:b7:4d:29:56:cc:22:f3:d3:15:b2: fa:db:1e:13:0d:35:f5:aa:cd:58:fe:1b:ea:36:52:3d:3b:6c: 9b:ac:f8:b4:b2:71:60:78:01:a5:2c:75:de:fc:33:ee:ae:19: 44:37:a0:7a:f3:47:28:38:54:ce:01:28:f8:32:14:69:a1:46: a1:4b:4f:91:b3:c2:8e:9c:40:58:d9:16:37:d4:b9:a1:fa:7f: 02:26:bf:5c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNGXJWgsseUmCbjotZ7pwBMqSR1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTZaFw0yNTEwMDUwNDQ0NTZaMDMxMTAvBgNV BAMTKEYwMEFCQUQwRDc2RUJGNzczQUM5Q0I5M0ExQzNCMDlFQUEwNDBBMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdpt4zjAl5UAX/E/uhyrwsvFcz 0Iqmh78MAk6UWvxIVOp+IPBbyQXDcKS7U8lRo5v90Ywo9dwGGu2pnQWbFApX7e4z jIxS3jUolb+hXObdI+5Q4c/LCmBDRPVMMv2qMnvL0OyE2lxzQ9CdZSXg4+8JbOrl j7BXot5RR1o1NxkdiLIrS+ArO8TJHlgZytyLDjpg4r6YZkbNnzjRBngpOe+w/l+b fPAgw5e5Er9BgnxoP27MQsPFVs5rXuTKQGI55MgVa+GLRqqEJBtp5vZijgugCdDH IeD027s22TI3fYnU9biMUUbwwCkR4Xlzyc4z8BM4Q0LliNjLP1GEVPfuvB/RAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8Aq60Nduv3c6ycuTocOwnqoECjMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOEwDQYJKoZIhvcNAQELBQADggEBAGt1 Tx3lW/WUUDEhlztYmyNuCerDrLJFrPYsyNvNtBRERFKpk6Qp4+VPOMiyv8qX2bpV e/UL1KY+UXtj1T6Q/C2/BjMi5ji7VSk0fRVpkDtEKCBVnlW81qkOOEe2YLwmwSDP Nj56d0ESvLPlrkqZoiM/Rn13VVoD98wkw4onGDcgMVU7okkREf0pzk3G6Wq7AJfB qzhVXE/Zk5Ozf/uIoZaMJ2FiQ0i3Do7at00pVswi89MVsvrbHhMNNfWqzVj+G+o2 Uj07bJus+LSycWB4AaUsdd78M+6uGUQ3oHrzRyg4VM4BKPgyFGmhRqFLT5Gzwo6c QFjZFjfUuaH6fwImv1w= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org