$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200912.roa File: AS200912.roa (raw, json) Hash identifier: e5AoOu9M/5CYF/xOBX6dLQzo9whBpG3aP9li+GdH4bI= Subject key identifier: 63:AB:B1:00:59:39:1D:B1:19:C9:BE:DB:91:45:AB:D7:81:65:E9:63 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7A2C4FBB9826ECEA8F5EC57E7B18E5001F8FE1BA Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200912.roa Signing time: Sun 06 Oct 2024 04:44:56 +0000 ROA not before: Sun 06 Oct 2024 04:39:56 +0000 ROA not after: Sun 05 Oct 2025 04:44:56 +0000 asID: 200912 IP address blocks: 2a0a:6040:e400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Nov 2024 14:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:2c:4f:bb:98:26:ec:ea:8f:5e:c5:7e:7b:18:e5:00:1f:8f:e1:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:39:56 2024 GMT Not After : Oct 5 04:44:56 2025 GMT Subject: CN=63ABB10059391DB119C9BEDB9145ABD78165E963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:71:8f:c5:33:1f:d4:2a:bb:cf:13:1b:ae:5c: a5:d1:50:16:ad:9b:c3:f2:96:5e:cc:0e:84:8a:b6: 33:35:dd:93:79:30:19:a3:c9:d8:0e:ec:66:e0:87: ae:1f:ca:a9:3e:22:43:31:ea:53:e6:e3:60:4e:4f: e5:0c:25:9e:04:4e:23:53:91:e6:a8:3c:ac:af:da: 32:22:9a:99:6f:96:c3:0c:6e:88:2d:b8:13:60:7b: 64:c0:d3:c4:f7:3f:e8:ea:86:55:5e:37:15:0f:12: 2b:be:1a:06:c5:62:b8:95:6c:d9:e9:5b:75:3f:34: ef:30:ea:f6:13:29:55:ec:74:9f:2c:1e:a3:05:6e: 92:5a:e5:c9:1c:3d:30:97:13:d5:b4:78:1f:e6:74: 86:ba:75:a4:79:be:1b:9d:c2:b5:99:ea:b6:2f:69: 64:0e:46:a1:89:5f:9a:99:f3:f5:59:25:04:f3:ed: 40:4c:d5:3c:8d:c5:7d:cc:dc:61:ca:42:53:2f:8a: 88:21:8b:ae:28:ba:b9:27:d1:6e:cf:4a:34:f8:a8: 8d:41:72:5a:1f:d9:47:77:5e:a1:5c:77:af:20:e8: be:98:80:fc:60:f2:a4:7c:70:a3:45:49:aa:34:52: 30:da:07:bc:7e:d7:3c:cd:ec:35:3f:24:1e:72:83: 54:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:AB:B1:00:59:39:1D:B1:19:C9:BE:DB:91:45:AB:D7:81:65:E9:63 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200912.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e400::/40 Signature Algorithm: sha256WithRSAEncryption ac:8f:6c:d5:f3:f7:1f:ee:0c:51:e9:77:c3:16:da:62:3c:ee: ef:c1:2c:fe:b2:32:13:15:30:4a:35:bf:6c:ec:5a:f3:c2:62: 46:f5:b8:24:3e:e1:5f:c8:62:7c:8e:0c:4e:88:72:dd:80:db: cd:05:a1:d1:75:eb:87:f4:c7:43:6d:56:45:ba:21:48:bf:e2: 7c:2d:fd:54:a7:f3:cd:a1:63:90:1e:b1:50:ae:54:f4:08:89: 03:a2:1a:58:1b:98:8d:51:83:86:a0:3e:95:27:fc:c0:f1:cf: 76:43:20:7f:c8:ab:47:04:52:e5:fe:c2:39:ca:fa:6d:73:af: 7f:8a:50:68:b2:80:7d:31:b0:5c:ba:72:1c:55:7a:55:45:42: 9e:91:33:0b:5d:ac:48:a9:9c:7b:28:90:59:79:14:b1:41:76: d5:cd:ae:72:18:cc:83:cd:79:cc:2e:de:60:05:30:87:1d:47: 2e:e2:6c:0b:ad:70:7e:c6:fe:b6:29:50:55:06:58:94:89:2c: 72:55:d3:ce:4c:3d:48:6d:7a:4a:c5:f8:0c:d4:03:f8:96:dc: 99:36:ca:d8:1d:0e:91:99:d6:a1:e2:05:fa:3f:fc:c5:f2:47: 6e:0a:f9:80:20:8b:f0:cb:0c:c4:8d:0d:77:bd:b3:c1:ca:24: 42:b7:5f:88 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUeixPu5gm7OqPXsV+exjlAB+P4bowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDM5NTZaFw0yNTEwMDUwNDQ0NTZaMDMxMTAvBgNV BAMTKDYzQUJCMTAwNTkzOTFEQjExOUM5QkVEQjkxNDVBQkQ3ODE2NUU5NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkcY/FMx/UKrvPExuuXKXRUBat m8Pyll7MDoSKtjM13ZN5MBmjydgO7Gbgh64fyqk+IkMx6lPm42BOT+UMJZ4ETiNT keaoPKyv2jIimplvlsMMbogtuBNge2TA08T3P+jqhlVeNxUPEiu+GgbFYriVbNnp W3U/NO8w6vYTKVXsdJ8sHqMFbpJa5ckcPTCXE9W0eB/mdIa6daR5vhudwrWZ6rYv aWQORqGJX5qZ8/VZJQTz7UBM1TyNxX3M3GHKQlMvioghi64ourkn0W7PSjT4qI1B clof2Ud3XqFcd68g6L6YgPxg8qR8cKNFSao0UjDaB7x+1zzN7DU/JB5yg1RPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUY6uxAFk5HbEZyb7bkUWr14Fl6WMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTEyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOQwDQYJKoZIhvcNAQELBQADggEBAKyP bNXz9x/uDFHpd8MW2mI87u/BLP6yMhMVMEo1v2zsWvPCYkb1uCQ+4V/IYnyODE6I ct2A280FodF164f0x0NtVkW6IUi/4nwt/VSn882hY5AesVCuVPQIiQOiGlgbmI1R g4agPpUn/MDxz3ZDIH/Iq0cEUuX+wjnK+m1zr3+KUGiygH0xsFy6chxVelVFQp6R MwtdrEipnHsokFl5FLFBdtXNrnIYzIPNecwu3mAFMIcdRy7ibAutcH7G/rYpUFUG WJSJLHJV085MPUhtekrF+AzUA/iW3Jk2ytgdDpGZ1qHiBfo//MXyR24K+YAgi/DL DMSNDXe9s8HKJEK3X4g= -----END CERTIFICATE-----Generated at Sun Nov 24 02:34:14 2024 by rpki-client on console-fra.rpki-client.org